CVE-2019-17455

Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse read and write operations, as demonstrated by a stack-based buffer over-read in buildSmbNtlmAuthRequest in smbutil.c for a crafted NTLM request...

libntlm -- buffer overflow vulnerability

NVD reports: Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse read and write operations, as demonstrated by a stack-based buffer over-read in buildSmbNtlmAuthRequest in smbutil.c for a crafted NTLM request...

Cisco Small Business 220 Series - Multiple Vulnerabilities

!/usr/bin/python2.7 """ Subject Realtek Managed Switch Controller RTL83xx PoC 2019 bashis https://www.realtek.com/en/products/communications-network-ics/category/managed-switch-controller Brief description 1. Boa/Hydra suffer of exploitable stack overflow with a 'one byte read-write loop' w/o...

CVE-2018-10621

Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior utilizes a fixed-length stack buffer where a value larger than the buffer can be read from a .dpa file into the buffer, causing the buffer to be overwritten. This may allow remote code execution or cause the applicati...

[FAQ]: Is ICA or CGP recommended on high latency links when traffic is being optimized?

Question: Is ICA or CGP recommended on high latency links when traffic is being optimized? Answer: CGP is recommended on high latency links because CGP has a fixed buffer size on the server and on long latency links, despite CB TCP optimizations, the server won’t send data faster its waiting for ...

grep security and bug fix update

2.20-2 - Fixed invalid UTF-8 byte sequence error in PCRE mode by pcre-backported-fixes patch Resolves: rhbz1217080 - Fixed buffer overrun for grep -F Resolves: CVE-2015-1345 - Fixed \w and \W behaviour in multibyte locales Resolves: rhbz1159012 - Documented --fixed-regexp option Resolves:...

Important: nfs-utils-lib security update

1.0.8-7.2.z2 - Updated libnfsidmap to -17 to fix a security issue bz 254041 1.0.8-7.2.z1 - Fixed RPC library buffer overflow bz 265061...

IBM Tivoli Storage Manager多个缓冲区溢出漏洞

IBM Tivoli Storage Manager是一款用于系统备份和恢复的解决方案。 IBM Tivoli Storage Manager存在多个安全问题，远程攻击者可以利用漏洞对应用程序进行拒绝服务或缓冲区溢出攻击。 问题一： 初始化sign-on请求包含指定语言的字段，在一般情况下字符串是dscenu.txt，通常情况下服务器验证的语言字符串不超过0x100字节，但是，如果语言字符串第一个字节为0x18，那么这个检查将不发生，而造成固定的缓冲区被溢出。 问题二和三：...

qpopper.fgets.txt

Topic: unsafe fgets using in qpopper Software affected: qpopper 3.0 fc2, qpopper 2.53 and probably others Description: malicious user can remotely post message with spoofed or incorrect headers including "Received:" one and in some cases bypass virus checking. This can be used for sending trojans...