CVE-2026-42859

A flaw was found in neatvnc, a VNC server library. An unauthenticated remote attacker who can reach the VNC listening socket can send a crafted handshake with an oversized client RSA public key. This action causes a pre-authentication stack buffer overflow, leading to a denial of service due to a...

EUVD-2019-20124

HTML5 Video Player 1.2.5 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by supplying an oversized key code string. Attackers can craft a malicious payload exceeding 997 bytes and paste it into the KEY CODE field in the Help Register dialog to trigge...

CVE-2019-25689 HTML5 Video Player 1.2.5 Local Buffer Overflow Non-SEH

HTML5 Video Player 1.2.5 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by supplying an oversized key code string. Attackers can craft a malicious payload exceeding 997 bytes and paste it into the KEY CODE field in the Help Register dialog to trigge...

CVE-2019-25689 HTML5 Video Player 1.2.5 Local Buffer Overflow Non-SEH

HTML5 Video Player 1.2.5 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by supplying an oversized key code string. Attackers can craft a malicious payload exceeding 997 bytes and paste it into the KEY CODE field in the Help Register dialog to trigge...

CVE-2019-25689

CVE-2019-25689 affects HTML5 Video Player version 1.2.5. The vulnerability is a local buffer overflow triggered by an oversized key code string entered into the KEY CODE field in the Help Register dialog, enabling arbitrary code execution and allowing an attacker to spawn a calculator process. Do...

CVE-2020-37206

CVE-2020-37206 affects ShareAlarmPro Advanced Network Access Control. The vulnerability is a denial-of-service triggered by an oversized registration key, with documented proof-of-concept payloads around a 1000-character buffer that can crash the application when pasted into the registration key ...

CVE-2020-37206 ShareAlarmPro Advanced Network Access Control - 'Key' Denial of Service

ShareAlarmPro contains a denial of service vulnerability that allows attackers to crash the application by supplying an oversized registration key. Attackers can generate a 1000-character buffer payload to trigger an application crash when pasted into the registration key field...

CVE-2020-37202 NetworkSleuth 3.0.0.0 - 'Key' Denial of Service

NetworkSleuth 3.0.0.0 contains a denial of service vulnerability that allows attackers to crash the application by supplying an oversized registration key. Attackers can generate a 1000-character buffer payload and paste it into the registration key field to trigger an application crash...

CVE-2020-37202

CVE-2020-37202 affects NetworkSleuth 3.0.0.0 and is a denial-of-service vulnerability caused by an oversized registration key. A 1000-character buffer payload pasted into the registration key field can crash the application. The CVSS metrics indicate a network-accessible, low-attack-complexity vu...

CVE-2020-37180

CVE-2020-37180 affects GTalk Password Finder 2.2.1. A denial-of-service can crash the application by supplying an oversized Key payload (1000 characters). Exploitation details: the payload is entered into the Key field to trigger the crash; CVSS metrics show Network attack vector (3.1) with high ...

PT-2026-7704

ShareAlarmPro contains a denial of service vulnerability that allows attackers to crash the application by supplying an oversized registration key. Attackers can generate a 1000-character buffer payload to trigger an application crash when pasted into the registration key field...

PT-2026-7700

NetworkSleuth 3.0.0.0 contains a denial of service vulnerability that allows attackers to crash the application by supplying an oversized registration key. Attackers can generate a 1000-character buffer payload and paste it into the registration key field to trigger an application crash...

SUSE CVE-2018-19497

In The Sleuth Kit TSK through 4.6.4, hfscattraverse in tsk/fs/hfs.c does not properly determine when a key length is too large, which allows attackers to cause a denial of service SEGV on unknown address with READ memory access in a tskgetu16 call in hfsdiropenmetacb in tsk/fs/hfsdent.c...

DEBIAN-CVE-2018-19497

In The Sleuth Kit TSK through 4.6.4, hfscattraverse in tsk/fs/hfs.c does not properly determine when a key length is too large, which allows attackers to cause a denial of service SEGV on unknown address with READ memory access in a tskgetu16 call in hfsdiropenmetacb in tsk/fs/hfsdent.c...

PT-2016-7991

Name of the Vulnerable Software and Affected Versions iSelect version 1.4.0-2+b1 Description A local buffer overflow occurs when an oversized value is supplied to the -k/--key parameter. This allows local attackers to overflow a 1024-byte stack buffer using a malicious argument containing a NOP...

Apache Santuario library buffer overflow

Buffer overflow on oversized key...