Overview CVE-2025-65406 details a heap overflow vulnerability found in Live555 Streaming Media version 2018.09.02. The vulnerability resides within the MatroskaFile::createRTPSinkForTrackNumber() function. An attacker can exploit this flaw by providing a specially crafted MKV file, potentially leading to a Denial of Service (DoS) condition. This report provides an in-depth analysis of the vulnerability, its potential impact, and available mitigation strategies. Technical Details The MatroskaFile::createRTPSinkForTrackNumber() function, responsible for creating an RTP sink for a specific track number within a Matroska (MKV) file, is susceptible to a heap overflow. By crafting a malicious MKV file with oversized or unexpected data related to the…
-
-
Overview A critical security vulnerability, identified as CVE-2025-8351, has been discovered in Avast Antivirus for MacOS. This vulnerability is a heap-based buffer overflow that could allow a local attacker to execute arbitrary code or cause a denial-of-service condition on the antivirus engine process. The vulnerability occurs when the software processes a malformed file. This issue affects Antivirus versions 8.3.70.94 and earlier, and has been patched in version 8.3.70.98. Technical Details CVE-2025-8351 is a heap-based buffer overflow vulnerability. This means that when Avast Antivirus scans a specially crafted (malformed) file, the software attempts to write data beyond the allocated memory buffer…
-
Overview CVE-2025-65405 details a use-after-free vulnerability found in Live555 Streaming Media version 2018.09.02. This flaw resides within the ADTSAudioFileSource::samplingFrequency() function and can be exploited by attackers who provide a specially crafted ADTS/AAC file. Successful exploitation leads to a Denial of Service (DoS) condition, impacting the availability of services relying on the vulnerable Live555 library. Technical Details The vulnerability occurs due to improper memory management within the ADTSAudioFileSource::samplingFrequency() function. The function attempts to access memory that has already been freed, resulting in a use-after-free condition. This typically happens when a crafted ADTS/AAC file is processed, causing the function to operate on…
-
Overview A critical buffer overflow vulnerability, identified as CVE-2025-65404, has been discovered in Live555 Streaming Media version 2018.09.02. This flaw resides within the getSideInfo2() function and can be exploited by attackers to trigger a Denial of Service (DoS) condition by sending a maliciously crafted MP3 stream to a vulnerable server. This article provides a comprehensive overview of the vulnerability, its potential impact, and recommended mitigation steps. Technical Details The vulnerability stems from insufficient bounds checking within the getSideInfo2() function when processing MP3 streams. A specially crafted MP3 stream can cause the function to write beyond the allocated buffer, leading to…
-
Overview CVE-2025-65403 details a buffer overflow vulnerability found in LightFTP version 2.0. This vulnerability resides within the g_cfg.MaxUsers component and can be exploited by attackers to trigger a Denial of Service (DoS) condition. A crafted input provided to this component overflows the buffer, potentially crashing the application or leading to other unexpected behavior. Technical Details The vulnerability stems from insufficient input validation when handling the g_cfg.MaxUsers configuration setting. By providing an input string larger than the allocated buffer for g_cfg.MaxUsers, an attacker can overwrite adjacent memory regions. This can corrupt program data or overwrite critical function pointers, leading to a…
-
Overview A critical denial-of-service (DoS) vulnerability, tracked as CVE-2025-64775, has been identified in Apache Struts. This flaw stems from improper handling of multipart requests, potentially leading to excessive file creation and subsequent disk exhaustion. Exploitation of this vulnerability could render affected Struts applications unavailable. Technical Details The vulnerability resides in the multipart request processing mechanism within Apache Struts. An attacker can craft a malicious multipart request that causes the application to create numerous temporary files, rapidly filling up the available disk space. This ultimately results in a denial-of-service condition as the server becomes unable to function correctly due to disk…
-
Overview A critical SQL injection vulnerability, identified as CVE-2025-63535, has been discovered in the Blood Bank Management System version 1.0. This flaw resides within the abs.php component of the application. Due to inadequate input sanitization, attackers can inject arbitrary SQL code into queries, potentially leading to unauthorized data access, modification, or even complete system compromise. Technical Details The vulnerability stems from the application’s failure to properly sanitize user-supplied input within SQL queries executed by abs.php. Specifically, the search functionality is vulnerable. An attacker can manipulate the search field to inject malicious SQL code. This injected code is then interpreted and…
-
Overview CVE-2025-63534 identifies a critical cross-site scripting (XSS) vulnerability found in Blood Bank Management System version 1.0. This vulnerability allows attackers to inject malicious JavaScript code into the application, potentially compromising user accounts, stealing sensitive data, and performing unauthorized actions. The vulnerable component is the login.php page, where user-supplied input is not properly sanitized or encoded. Technical Details The vulnerability exists within the login.php component of Blood Bank Management System 1.0. The application fails to adequately sanitize or encode user input before rendering it in the response. Specifically, the msg and error parameters are susceptible to XSS injection. An attacker…
-
Overview A critical cross-site scripting (XSS) vulnerability, identified as CVE-2025-63533, has been discovered in the Blood Bank Management System version 1.0. This vulnerability allows attackers to inject malicious JavaScript code into vulnerable parameters, potentially compromising user accounts and sensitive data. The vulnerability resides within the `updateprofile.php` and `rprofile.php` components of the application. Technical Details The vulnerability stems from the application’s failure to properly sanitize or encode user-supplied input before rendering it in the HTTP response. Specifically, the following parameters are susceptible to XSS injection: `rname` (Profile Name) `remail` (Profile Email) `rpassword` (Profile Password) `rphone` (Profile Phone Number) `rcity` (Profile City)…
-
Overview A critical SQL injection vulnerability, identified as CVE-2025-63532, has been discovered in the Blood Bank Management System version 1.0. This flaw resides within the `cancel.php` component and allows a remote attacker to execute arbitrary SQL commands by manipulating user-supplied input to bypass authentication mechanisms. Technical Details The vulnerability stems from insufficient input sanitization in the `cancel.php` file. Specifically, the application fails to properly escape or validate user-provided data used within SQL queries. An attacker can inject malicious SQL code through the search field, leading to unauthorized data access, modification, or even complete database compromise. The injection point lies within…