This allows an attacker to overwrite up to 250 bytes outside of the allocated buffer with arbitrary data.
The giftrans function in giftrans 1.12.2 contains a stack-based buffer overflow because a value inside the input file determines the amount of data to write. In doProlog in xmlparse.c in Expat (aka libexpat) before 2.4.3, an integer overflow exists for m_groupSize. Mruby is vulnerable to Heap-based Buffer Overflow User interaction is not needed for exploitation. This could lead to local escalation of privilege with no additional execution privileges needed. In mdp driver, there is a possible memory corruption due to an integer overflow. In lighttpd 1.4.46 through 1.4.63, the mod_extforward_Forwarded function of the mod_extforward plugin has a stack-based buffer overflow (4 bytes), as demonstrated by remote denial of service (daemon crash).
0 kommentar(er)
