Young Xiao

5 exploits Active since May 2019
CVE-2019-11884 WRITEUP LOW WRITEUP
Linux kernel <5.0.15 - Info Disclosure
The do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c in the Linux kernel before 5.0.15 allows a local user to obtain potentially sensitive information from kernel stack memory via a HIDPCONNADD command, because a name field may not end with a '\0' character.
CVSS 3.3
CVE-2019-12980 WRITEUP MEDIUM WRITEUP
libming 0.4.8 - Denial of Service via Integer Overflow in SWFInput_readSBits
In Ming (aka libming) 0.4.8, there is an integer overflow (caused by an out-of-range left shift) in the SWFInput_readSBits function in blocks/input.c. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted swf file.
CVSS 6.5
CVE-2019-12981 WRITEUP HIGH WRITEUP
libming 0.4.8 - Buffer Overflow in SWFShape_setLeftFillStyle
Ming (aka libming) 0.4.8 has an "fill overflow" vulnerability in the function SWFShape_setLeftFillStyle in blocks/shape.c.
CVSS 8.8
CVE-2019-12982 WRITEUP MEDIUM WRITEUP
libming 0.4.8 - Heap Buffer Overflow and Underflow in decompileCAST Function
Ming (aka libming) 0.4.8 has a heap buffer overflow and underflow in the decompileCAST function in util/decompile.c in libutil.a. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted SWF file.
CVSS 6.5
CVE-2019-12984 WRITEUP MEDIUM WRITEUP
Linux Kernel < 5.1.13 - Denial of Service via NFC Attribute Omission in nfc_genl_deactivate_target()
A NULL pointer dereference vulnerability in the function nfc_genl_deactivate_target() in net/nfc/netlink.c in the Linux kernel before 5.1.13 can be triggered by a malicious user-mode program that omits certain NFC attributes, leading to denial of service.
CVSS 5.5