43 matches found
EUVD-2025-200234
Stack-based buffer overflow vulnerability in Circutor SGE-PLC1000/SGE-PLC50 v9.0.2. The 'ShowDownload' function uses “sprintf” to format a string that includes the user-controlled input of 'GetParametermeter' in the fixed-size buffer 'acStack4c' 64 bytes without checking the length. An attacker c...
PT-2025-48674
Name of the Vulnerable Software and Affected Versions Circutor SGE-PLC1000/SGE-PLC50 version 9.0.2 Description A stack-based buffer overflow exists in Circutor SGE-PLC1000/SGE-PLC50 version 9.0.2. The ShowMeterDatabase function copies user-controlled input into a fixed-size buffer using sprintf...
EUVD-2021-21237
Malware in sbrugna...
EUVD-2021-30629
Malicious code in bioql PyPI...
DLINK-DIR600LAx-Vulnerability
DLINK-DIR600LAx-Vulnerability - 01: - 02: - 03: - 04: - 0...
The vulnerability of the sprintf() function in Linux operating system kernels, which allows a hacker to cause a service failure
The vulnerability of the sprintf function in Linux operating system kernels is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...
D-Link多款产品 命令注入漏洞
D-Link DNS-320 and others are products of China-based AUO D-Link.D-Link DNS-320 is a NAS Network Attached Storage device.D-Link DNS-120 is a network storage adapter.D-Link DNS-315L is a network attached storage. A command injection vulnerability exists in various D-Link products. The vulnerabilit...
The vulnerability of the sprintf function in D-LINK GO-RT-AC750 router software allows a hacker to execute arbitrary commands.
The vulnerability of the sprintf function in D-LINK GO-RT-AC750 router microprogramming software is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...
Milesight UR32L 缓冲区错误漏洞
The Milesight UR32L is a 4G industrial router from China-based Milesight. A security vulnerability exists in the Milesight UR32L version v32.3.0.5, which stems from the use of an insecure sprintf pattern. An attacker could exploit the vulnerability to cause a buffer overflow via a specially craft...
TP-Link Archer AX10(EU)_V1.2_230220 Buffer Overflow Vulnerability
Exploit Title: Buffer Overflow in TP-Link Archer AX10EUV1.2230220 Exploit Author: Giuseppe Compare CVE: CVE-2023-34832 Vendor Homepage: https://www.tp-link.com/ Version: TP-Link Archer AX10EUV1.2230220 Buffer Overflow There is a buffer overflow in the FUN131e8 function due to using sprintf...
The vulnerability of the sprintf function in the GNU C library (glibc) allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the sprintf function in the GNU C library glibc is caused by buffer overflow. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...
SUSE CVE-2011-0524
Multiple buffer overflows in the NMEA parser nmea-gen.c in gypsy 0.8 allow local users to cause a denial of service crash via unspecified vectors related to the sprintf function...
CVE-2022-36587
In Tenda G3 USG3V3.0brV15.11.0.67663ENTDE, there is a buffer overflow vulnerability caused by sprintf in function in the httpd binary...
CVE-2022-36587
In Tenda G3 USG3V3.0brV15.11.0.67663ENTDE, there is a buffer overflow vulnerability caused by sprintf in function in the httpd binary...
The vulnerability in the implementation of the sprintf() function in the microprogramming software for DIR-890L A1 allows a hacker to execute arbitrary code.
The vulnerability of the sprintf function implementation in the microprogramming-based router software DIR-890L A1 is related to incorrect checking of string lengths in HTTP headers. Exploiting this vulnerability could allow an attacker to execute arbitrary code by connecting through port 49152...
CVE-2021-34587
In Bender/ebee Charge Controllers in multiple versions a long URL could lead to webserver crash. The URL is used as input of an sprintf to a stack variable...
CVE-2021-34587
In Bender/ebee Charge Controllers in multiple versions a long URL could lead to webserver crash. The URL is used as input of an sprintf to a stack variable...
CVE-2019-5177
An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service ‘I/O-Check’ functionality of WAGO PFC 200 Firmware version 03.02.0214. The destination buffer sp+0x440 is overflowed with the call to sprintf for any domainname values that are greater than...
CVE-2020-5204
CVE-2020-5204 affects uftpd prior to 2.11. A buffer overflow exists in FTP PORT parsing (ftpcmd.c handle_PORT) where a 16-byte buffer can overflow when filling input with a format string like %d.%d.%d.%d using user input. The root cause is sprintf-based population of the IPv4-like string exceedin...
Advantech WebAccess dvs.ocx GetColor Buffer Overflow
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Advantech WebAccess dvs.ocx GetColor Buffer Overflow', 'Description' = %q This module exploits a buffer overflow vulnerability in...