Tomasz Kojm

6 exploits Active since Jul 2017
CVE-2017-11423 WRITEUP MEDIUM WORKING POC
libmspack 0.5alpha - Denial of Service via Crafted CAB File
The cabd_read_string function in mspack/cabd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2 and other products, allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a crafted CAB file.
CVSS 5.5
CVE-2017-11541 WRITEUP CRITICAL WORKING POC
tcpdump 4.9.0 - Heap-Based Buffer Over-Read in lldp_print Function
tcpdump 4.9.0 has a heap-based buffer over-read in the lldp_print function in print-lldp.c, related to util-print.c.
CVSS 9.8
CVE-2017-11542 WRITEUP CRITICAL WORKING POC
tcpdump 4.9.0 - Out-of-bounds Read in pimv1_print
tcpdump 4.9.0 has a heap-based buffer over-read in the pimv1_print function in print-pim.c.
CVSS 9.8
CVE-2017-11543 WRITEUP CRITICAL WORKING POC
tcpdump 4.9.0 - Buffer Overflow in sliplink_print Function
tcpdump 4.9.0 has a buffer overflow in the sliplink_print function in print-sl.c.
CVSS 9.8
CVE-2017-12067 WRITEUP HIGH WORKING POC
Potrace 1.14 - Heap-Based Buffer Over-Read in mkbitmap.c Interpolate Function
Potrace 1.14 has a heap-based buffer over-read in the interpolate_cubic function in mkbitmap.c.
CVSS 7.5
CVE-2017-12447 WRITEUP HIGH WORKING POC
gdk-pixbuf - Denial of Service via Crafted File Folder
GdkPixBuf (aka gdk-pixbuf), possibly 2.32.2, as used by GNOME Nautilus 3.14.3 on Ubuntu 16.04, allows attackers to cause a denial of service (stack corruption) or possibly have unspecified other impact via a crafted file folder.
CVSS 7.8