Wanderingglitch

**Name of the Vulnerable Software and Affected Versions** Academy Software Foundation OpenEXR image parsing library versions 3.2.1 and prior **Description** The issue is caused by a failure in validating the number of scanline samples of a OpenEXR file containing deep scanline data, leading to a heap-based buffer overflow. This allows a remote attacker to read or write arbitrary data. The vulnerability was resolved in versions v3.2.2 and v3.1.12 of the affected library. **Recommendations** For versions 3.2.1 and prior, update to version v3.2.2 or v3.1.12 to resolve the issue. As a temporary workaround, consider restricting the use of OpenEXR files containing deep scanline data until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Wireshark versions 2.0.0 through 4.0.7 **Description** The issue is related to a divide by zero error in the CP2179 component of Wireshark, which can be exploited by a remote attacker to cause a denial of service. This occurs due to a failure in validating the length provided by an attacker-crafted CP2179 packet. **Recommendations** For Wireshark versions 2.0.0 through 4.0.7, update to a version that fixes the divide by zero error in the CP2179 component to prevent denial of service attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cesanta Mongoose version 7.10 **Description** The issue arises from a failure to validate the length of a provided MQTT CMD PUBLISH parsed message with a variable length header, leading to a heap-based buffer overflow vulnerability in the default configuration. **Recommendations** For version 7.10, update to version 7.11 to resolve the issue. As a temporary workaround, consider restricting the use of the MQTT CMD PUBLISH message with a variable length header until a patch is available.

**Name of the Vulnerable Software and Affected Versions** CUPS versions prior to 2.4.7 **Description** The issue is related to a failure in validating the length provided by an attacker-crafted PPD PostScript document, making CUPS and libppd susceptible to a heap-based buffer overflow and possibly code execution. This can be exploited by an attacker to potentially elevate privileges and execute arbitrary code. **Recommendations** For versions prior to 2.4.7, update to CUPS version 2.4.7 or later to resolve the issue. As a temporary workaround, consider restricting the processing of PPD PostScript documents to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Wireshark versions 4.0.5 and prior **Description** The issue arises from a failure to validate the length of an attacker-crafted MSMMS packet, leading to a heap-based buffer overflow. This could result in code execution within the context of the process running the affected software. The issue is particularly relevant in unusual configurations. **Recommendations** For Wireshark versions 4.0.5 and prior, update to a version that addresses this issue to prevent potential heap-based buffer overflow and code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Wireshark versions 4.0.5 and prior **Description** The issue arises from a failure to validate the length provided by an attacker-crafted IEEE-C37.118 packet, making Wireshark susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark. **Recommendations** For Wireshark versions 4.0.5 and prior, consider disabling the processing of IEEE-C37.118 packets until a patch is available. As a temporary workaround, restrict access to the vulnerable function that handles IEEE-C37.118 packets to minimize the risk of exploitation. Avoid using Wireshark to analyze potentially malicious packets until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.13.5 **Description** The issue is related to the Accessibility Framework component and involves insufficient access restrictions. Exploitation of this issue may allow an attacker to execute arbitrary code with system privileges or disclose protected information using a specially crafted application. **Recommendations** For macOS versions prior to 10.13.5, update to version 10.13.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the Accessibility Framework component until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 11.3 Apple Safari versions prior to 11.1 Apple iCloud versions prior to 7.4 on Windows Apple iTunes versions prior to 12.7.4 on Windows Apple tvOS versions prior to 11.3 Apple watchOS versions prior to 4.3 **Description** The issue involves the WebKit component and allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted web site. **Recommendations** For iOS versions prior to 11.3, update to version 11.3 or later. For Safari versions prior to 11.1, update to version 11.1 or later. For iCloud versions prior to 7.4 on Windows, update to version 7.4 or later. For iTunes versions prior to 12.7.4 on Windows, update to version 12.7.4 or later. For tvOS versions prior to 11.3, update to version 11.3 or later. For watchOS versions prior to 4.3, update to version 4.3 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 11.3 Safari versions prior to 11.1 iCloud versions prior to 7.4 on Windows iTunes versions prior to 12.7.4 on Windows tvOS versions prior to 11.3 watchOS versions prior to 4.3 **Description** The issue involves the WebKit component and allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted web site. **Recommendations** For iOS versions prior to 11.3, update to version 11.3 or later. For Safari versions prior to 11.1, update to version 11.1 or later. For iCloud versions prior to 7.4 on Windows, update to version 7.4 or later. For iTunes versions prior to 12.7.4 on Windows, update to version 12.7.4 or later. For tvOS versions prior to 11.3, update to version 11.3 or later. For watchOS versions prior to 4.3, update to version 4.3 or later.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 11.3 Apple Safari versions prior to 11.1 Apple iCloud versions prior to 7.4 on Windows Apple iTunes versions prior to 12.7.4 on Windows Apple tvOS versions prior to 11.3 Apple watchOS versions prior to 4.3 **Description** The issue involves the WebKit component and allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted web site. **Recommendations** For iOS versions prior to 11.3, update to version 11.3 or later. For Safari versions prior to 11.1, update to version 11.1 or later. For iCloud versions prior to 7.4 on Windows, update to version 7.4 or later. For iTunes versions prior to 12.7.4 on Windows, update to version 12.7.4 or later. For tvOS versions prior to 11.3, update to version 11.3 or later. For watchOS versions prior to 4.3, update to version 4.3 or later.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 11.3 Apple Safari versions prior to 11.1 Apple iCloud versions prior to 7.4 on Windows Apple iTunes versions prior to 12.7.4 on Windows Apple tvOS versions prior to 11.3 Apple watchOS versions prior to 4.3 **Description** The issue involves the WebKit component and allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted web site. **Recommendations** For iOS versions prior to 11.3, update to version 11.3 or later. For Safari versions prior to 11.1, update to version 11.1 or later. For iCloud versions prior to 7.4 on Windows, update to version 7.4 or later. For iTunes versions prior to 12.7.4 on Windows, update to version 12.7.4 or later. For tvOS versions prior to 11.3, update to version 11.3 or later. For watchOS versions prior to 4.3, update to version 4.3 or later.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 11.3 Apple Safari versions prior to 11.1 Apple iCloud versions prior to 7.4 on Windows Apple iTunes versions prior to 12.7.4 on Windows Apple tvOS versions prior to 11.3 Apple watchOS versions prior to 4.3 **Description** The issue involves the WebKit component and allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted web site. **Recommendations** For iOS versions prior to 11.3, update to version 11.3 or later. For Safari versions prior to 11.1, update to version 11.1 or later. For iCloud versions prior to 7.4 on Windows, update to version 7.4 or later. For iTunes versions prior to 12.7.4 on Windows, update to version 12.7.4 or later. For tvOS versions prior to 11.3, update to version 11.3 or later. For watchOS versions prior to 4.3, update to version 4.3 or later.

**Name of the Vulnerable Software and Affected Versions** Adobe Flash Player versions 23.0.0.207 and earlier Adobe Flash Player versions 11.2.202.644 and earlier **Description** The issue is caused by a buffer boundary violation in the RegExp class for specific search strategies in the Flash Player platform. This can allow a remote attacker to execute arbitrary code. **Recommendations** For Adobe Flash Player versions 23.0.0.207 and earlier, update to a version later than 23.0.0.207 to resolve the issue. For Adobe Flash Player versions 11.2.202.644 and earlier, update to a version later than 11.2.202.644 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Adobe Flash Player versions 23.0.0.207 and earlier Adobe Flash Player versions 11.2.202.644 and earlier **Description** The issue is caused by a buffer boundary error in the RegExp class of the Flash Player platform, related to the backtrack search functionality. This can allow a remote attacker to execute arbitrary code by disrupting the search functionality. **Recommendations** For Adobe Flash Player versions 23.0.0.207 and earlier, update to a version later than 23.0.0.207 to resolve the issue. For Adobe Flash Player versions 11.2.202.644 and earlier, update to a version later than 11.2.202.644 to resolve the issue. As a temporary workaround, consider restricting the use of the RegExp class until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Adobe Acrobat versions (affected versions not specified) Adobe Acrobat Document Cloud versions (affected versions not specified) Adobe Reader versions (affected versions not specified) Adobe Reader Document Cloud versions (affected versions not specified) **Description** The issue is related to the implementation of the `apply` function in Adobe PDF editing and viewing software, which is connected to insufficient access restrictions to certain features. This can allow a remote attacker to bypass JavaScript execution restrictions. **Recommendations** For Adobe Acrobat, consider disabling JavaScript execution until a patch is available. For Adobe Acrobat Document Cloud, restrict access to the `apply` function to minimize the risk of exploitation. For Adobe Reader, avoid using the JavaScript API in sensitive environments until the issue is resolved. For Adobe Reader Document Cloud, limit the use of JavaScript execution to necessary operations only. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Adobe Acrobat versions (affected versions not specified) Adobe Acrobat Document Cloud versions (affected versions not specified) Adobe Reader versions (affected versions not specified) Adobe Reader Document Cloud versions (affected versions not specified) **Description** The issue is related to the implementation of function calls in Adobe PDF editing and viewing software, specifically concerning insufficient access restrictions to certain features. This can be exploited by a remote attacker to bypass JavaScript execution restrictions. **Recommendations** For Adobe Acrobat, consider disabling JavaScript execution until a patch is available. For Adobe Acrobat Document Cloud, restrict access to sensitive features that may be exploited through the vulnerability. For Adobe Reader, avoid using the JavaScript API in sensitive contexts until the issue is resolved. For Adobe Reader Document Cloud, limit the use of potentially vulnerable functions to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Adobe Acrobat versions (affected versions not specified) Adobe Acrobat Document Cloud versions (affected versions not specified) Adobe Reader versions (affected versions not specified) Adobe Reader Document Cloud versions (affected versions not specified) **Description** The issue is related to the implementation of the Function bind in Adobe PDF editing and viewing software, which is associated with insufficient access restrictions to certain features. This can allow a remote attacker to bypass JavaScript execution restrictions. **Recommendations** For Adobe Acrobat, consider restricting access to the `Function bind` until a patch is available. For Adobe Acrobat Document Cloud, avoid using the JavaScript API in sensitive environments until the issue is resolved. For Adobe Reader, restrict the execution of JavaScript code from untrusted sources as a temporary mitigation measure. For Adobe Reader Document Cloud, limit the use of the JavaScript API to necessary operations only until a fix is provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Server 2003 SP2 and R2 SP2 Windows Vista SP2 Windows Server 2008 SP2 and R2 SP1 Windows 7 SP1 Windows 8 Windows 8.1 Windows Server 2012 Gold and R2 Windows RT Gold and 8.1 **Description** The issue is related to the win32k.sys driver in the Windows operating system, which lacks protection for internal data. This allows a local attacker to obtain sensitive information from uninitialized kernel memory using a specially crafted application. The vulnerability can lead to the disclosure of memory addresses or other sensitive kernel information, potentially facilitating further system exploitation. **Recommendations** For Windows Server 2003 SP2 and R2 SP2, update to a newer version to mitigate the risk. For Windows Vista SP2, update to a newer version to mitigate the risk. For Windows Server 2008 SP2 and R2 SP1, update to a newer version to mitigate the risk. For Windows 7 SP1, update to a newer version to mitigate the risk. For Windows 8, update to a newer version to mitigate the risk. For Windows 8.1, update to a newer version to mitigate the risk. For Windows Server 2012 Gold and R2, update to a newer version to mitigate the risk. For Windows RT Gold and 8.1, update to a newer version to mitigate the risk. As a temporary workaround, consider restricting access to the win32k.sys driver until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 8.4 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service due to memory corruption. This can be achieved via a crafted ICC profile in a PDF document. **Recommendations** For versions prior to 8.4, update to version 8.4 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple QuickTime Plugin (affected versions not specified) **Description** The issue is related to a use-after-free remote code execution problem. No information is provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.