Tomasz Kojm

6 exploits Active since Jul 2017
CVE-2017-11423 WRITEUP MEDIUM WORKING POC
Libmspack - Out-of-Bounds Read
The cabd_read_string function in mspack/cabd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2 and other products, allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a crafted CAB file.
CVSS 5.5
CVE-2017-11541 WRITEUP CRITICAL WORKING POC
tcpdump 4.9.0 - Buffer Overflow
tcpdump 4.9.0 has a heap-based buffer over-read in the lldp_print function in print-lldp.c, related to util-print.c.
CVSS 9.8
CVE-2017-11542 WRITEUP CRITICAL WORKING POC
tcpdump 4.9.0 - Buffer Overflow
tcpdump 4.9.0 has a heap-based buffer over-read in the pimv1_print function in print-pim.c.
CVSS 9.8
CVE-2017-11543 WRITEUP CRITICAL WORKING POC
tcpdump 4.9.0 - Buffer Overflow
tcpdump 4.9.0 has a buffer overflow in the sliplink_print function in print-sl.c.
CVSS 9.8
CVE-2017-12067 WRITEUP HIGH WORKING POC
Potrace 1.14 - Buffer Overflow
Potrace 1.14 has a heap-based buffer over-read in the interpolate_cubic function in mkbitmap.c.
CVSS 7.5
CVE-2017-12447 WRITEUP HIGH WORKING POC
Gnome Gdk-pixbuf - Memory Corruption
GdkPixBuf (aka gdk-pixbuf), possibly 2.32.2, as used by GNOME Nautilus 3.14.3 on Ubuntu 16.04, allows attackers to cause a denial of service (stack corruption) or possibly have unspecified other impact via a crafted file folder.
CVSS 7.8