CVE-2025-48990

NeKernal is a free and open-source operating system stack. Version 0.0.2 has a 1-byte heap overflow in rtcopymemory, which unconditionally wrote a null terminator at dstlen. When len equals the size of the destination buffer 256 bytes, that extra '\0' write overruns the buffer by one byte. To avo...

CVE-2025-5278

A flaw was found in GNU Coreutils. The sort utility's begfield function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafted command using the traditional key format. A malicious input could lead to a crash or leak sensitiv...

RHEL 9 : php (RHSA-2023:5926)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:5926 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: XML loading external entity witho...

PHP < 8.0.28, 8.1.x < 8.1.16, 8.2.x < 8.2.3 Security Update - Windows

PHP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...

Nginx Plus < R24 P1 1-Byte Memory Overwrite RCE

According to it's self reported version, the installed version of Nginx Plus prior to R24 P1. It is, therefore, affected by a remote code execution vulnerability. A security issue in nginx resolver was identified, which might allow an unauthenticated remote attacker to cause 1-byte memory overwri...

Huawei EulerOS: Security Advisory for libxcursor (EulerOS-SA-2018-1437)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for libXcursor (EulerOS-SA-2019-1191)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2018-1000221

pkgconf version 1.5.0 to 1.5.2 contains a Buffer Overflow vulnerability in dequote that can result in dequote function returns 1-byte allocation if initial length is 0, leading to buffer overflow. This attack appear to be exploitable via specially crafted .pc file. This vulnerability appears to...

CVE-2019-11579

dhcp.c in dhcpcd before 7.2.1 contains a 1-byte read overflow with DHOOPTSOVERLOADED...

CVE-2019-11579

dhcp.c in dhcpcd before 7.2.1 contains a 1-byte read overflow with DHOOPTSOVERLOADED...

CVE-2019-11579

CVE-2019-11579 affects the dhcpcd DHCP client (dhcpcd) before 7.2.1. It is caused by a 1-byte read overflow in the DHO_OPTSOVERLOADED handling in dhcp.c. The documented remediation is to upgrade to version 7.2.1 or apply vendor patches that address this issue.

EulerOS Virtualization 2.5.4 : libXcursor (EulerOS-SA-2019-1191)

According to the version of the libXcursor package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - libxcursor: 1-byte heap-based overflow in XcursorThemeInherits function in library.c CVE-2015-9262 Note that Tenable Network...

EulerOS 2.0 SP2 : libxcursor (EulerOS-SA-2018-1437)

According to the version of the libxcursor packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - libxcursor: 1-byte heap-based overflow in XcursorThemeInherits function in library.c CVE-2015-9262 Note that Tenable Network Security has...

EulerOS 2.0 SP3 : libxcursor (EulerOS-SA-2018-1438)

According to the version of the libxcursor packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - libxcursor: 1-byte heap-based overflow in XcursorThemeInherits function in library.c CVE-2015-9262 Note that Tenable Network Security has...

Scientific Linux Security Update : X.org X11 on SL7.x x86_64 (20181030)

Security Fixes : - libxcursor: 1-byte heap-based overflow in XcursorThemeInherits function in library.c CVE-2015-9262 The SL Team added a fix for upstream bug 1650634 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid119178;...

CVE-2018-19535

In Exiv2 0.26 and previous versions, PngChunk::readRawProfile in pngchunkint.cpp may cause a denial of service application crash due to a heap-based buffer over-read via a crafted PNG file...

CVE-2018-1000221

pkgconf version 1.5.0 to 1.5.2 contains a Buffer Overflow vulnerability in dequote that can result in dequote function returns 1-byte allocation if initial length is 0, leading to buffer overflow. This attack appear to be exploitable via specially crafted .pc file. This vulnerability appears to...

OracleVM 3.3 / 3.4 : openssl (OVMSA-2016-0049) (SLOTH)

The remote OracleVM system is missing necessary patches to address critical security updates : - fix CVE-2016-2105 - possible overflow in base64 encoding - fix CVE-2016-2106 - possible overflow in EVPEncryptUpdate - fix CVE-2016-2107 - padding oracle in stitched AES-NI CBC-MAC - fix CVE-2016-2108...

Shellcode Checksum Routine

Shellcode Checksum Routine. Shellcode exploit for win32 platform ;Exploit Title: Shellcode Checksum Routine ;Date: Sept 1 2010 ;Author: dijital1 ;Software Link: http://www.ciphermonk.net/code/exploits/shellcode-checksum.asm ;Tested on: Omelet Hunter Shellcode in MSF...

xmeasy-port-dos.txt

!/usr/bin/python XM Easy Personal FTP Server 5.4.0 PORT DoS 1 byte DoS! Elhamdulillahi Rabbil-alemin! EAX BAADF00D - bad food? : ECX BAADF00D bt ./sploit.py + Saljemo zli bafer : + Booooooooom!!!! + Finito! bt I wasn't smoking crack, ryujin gave me the red pill! : Vulnerability discovered and cod...