43 matches found
tftpd_file.c in atftp through 0.7.4 has a buffer overflow because buffer-size handling does not properly consider the combination of data OACK and other options.
...
CVE-2021-30129
A vulnerability in sshd-core of Apache Mina SSHD allows an attacker to overflow the server causing an OutOfMemory error. This issue affects the SFTP and port forwarding features of Apache Mina SSHD version 2.0.0 and later versions. It was addressed in Apache Mina SSHD 2.7.0...
CVE-2021-30129
A vulnerability in sshd-core of Apache Mina SSHD allows an attacker to overflow the server causing an OutOfMemory error. This issue affects the SFTP and port forwarding features of Apache Mina SSHD version 2.0.0 and later versions. It was addressed in Apache Mina SSHD 2.7.0...
CVE-2021-30129
A vulnerability in sshd-core of Apache Mina SSHD allows an attacker to overflow the server causing an OutOfMemory error. This issue affects the SFTP and port forwarding features of Apache Mina SSHD version 2.0.0 and later versions. It was addressed in Apache Mina SSHD 2.7.0...
Apache MINA 安全漏洞
Apache MINA is the United States Apache Apache Foundation of a web application framework. It is primarily used to develop high-performance and highly scalable web applications. Apache MINA has a security vulnerability that originates from a vulnerability in SSHD -core of Apache MINA SSHD. An...
CVE-2021-33535
In Weidmueller Industrial WLAN devices in multiple versions an exploitable format string vulnerability exists in the iwconsole coniowritestr functionality. A specially crafted time server entry can cause an overflow of the time server buffer, resulting in remote code execution. An attacker can se...
The vulnerability of the CODESYS V2.3 web server component of the CODESYS industrial automation software suite allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the CODESYS V2.3 web server component of the CODESYS industrial automation software system arises due to an overflow in the buffer in the dynamic memory. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of...
CVE-2020-29659
A buffer overflow in the web server of Flexense DupScout Enterprise 10.0.18 allows a remote anonymous attacker to execute code as SYSTEM by overflowing the sid parameter via a GET /settings&sid= attack...
CVE-2020-6989
In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 series firmware, Version 3.9 or lower, a buffer overflow in the web server allows remote attackers to cause a denial-of-service condition or execute arbitrary code...
3S-Smart Software Solutions CODESYS V3 web server buffer overflow vulnerability
3S-Smart Software Solutions CODESYS V3 web server is a web server used in CODESYS products from 3S-Smart Software Solutions, Germany. A buffer overflow vulnerability exists in 3S-Smart Software Solutions CODESYS V3 web server versions prior to 3.5.14.10, which can be exploited by an attacker to...
CVE-2018-18709
An issue was discovered on Tenda AC7 V15.03.06.44CN, AC9 V15.03.05.196318CN, AC10 V15.03.06.23CN, AC15 V15.03.05.19CN, and AC18 V15.03.05.196318CN devices. It is a buffer overflow vulnerability in the router's web server -- httpd. When processing the "firewallEn" parameter for a post request, the...
CVE-2018-14598
An issue was discovered in XListExtensions in ListExt.c in libX11 through 1.6.5. A malicious server can send a reply in which the first string overflows, causing a variable to be set to NULL that will be freed later on, leading to DoS segmentation fault...
UBUNTU-CVE-2018-14598
An issue was discovered in XListExtensions in ListExt.c in libX11 through 1.6.5. A malicious server can send a reply in which the first string overflows, causing a variable to be set to NULL that will be freed later on, leading to DoS segmentation fault...
Fortigate Firewall Remote HTTPD Cookie Overflow Vulnerability
FortiGate Fita Firewall is a network firewall product from Fortinet Fita for defense against attacks such as network and malicious code at the network and content layers. A remote HTTPD cookie overflow vulnerability exists in Fortigate Firewall. An attacker could exploit the vulnerability by...
The vulnerability of Siemens Ruggedcom WIN72 series microprogrammed software allows a intruder to execute arbitrary code.
The vulnerability of Siemens Ruggedcom WIN52 microprogramming software is related to a buffer overflow error in the embedded web server. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...
Buffer Overflow Vulnerability in Multiple Siemens Ruggedcom Products
Siemens Ruggedcom WIN51xx, WIN52xx, WIN70xx and WIN72xx are broadband wireless base station products from Siemens, Germany. A buffer overflow vulnerability exists in the integrated web server of multiple Siemens Ruggedcom products. A remote attacker could exploit this vulnerability to execute...
McAfee ePolicy Orchestrator / ProtectionPilot Overflow
No description provided by source. $Id: mcafeeepolicysource.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and term...
IBM Informix Dynamic Server DBINFO Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Informix Database Server. SQL query execution privileges are required to exploit this vulnerability. The specific flaw exists when processing the arguments to the DBINFO keyword in a SQL query...
BigAnt Server 2.52 Overflow
!/usr/bin/python import socket, sys BigAnt version 2.52 0day Tested on XPSP2 & Win2k3 SP2 Discovered by Lincoln Thanks to muts & remote-exploit 650 or so bytes available after seh, easier to jump back root@BT4VM: ./bigant.py 192.168.87.130 Exploit sent! Connect to remote host on port 4444...
DEBIAN-CVE-2008-2360
Integer overflow in the AllocateGlyph function in the Render extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to execute arbitrary code via unspecified request fields that are used to calculate a heap buffer size, which triggers a heap-based buffer overflow...