13310 matches found
CVE-2013-10057
Synactis PDF In-The-Box ActiveX control (PDF_IN_1.ocx) contains a stack-based buffer overflow in the ConnectToSynactis method. A long string passed to populate ldCmdLine for WinExec can overwrite a saved TRegistry pointer on the stack, enabling remote code execution when a user visits a malicious...
CVE-2025-8472 Alpine iLX-507 vCard Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
Alpine iLX-507 vCard Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. User interaction is required to exploit this vulnerability in that the...
(0Day) (Pwn2Own) Alpine iLX-507 vCard Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. User interaction is required to exploit this vulnerability in that the target must connect to a malicious Bluetooth device. The specific flaw exists within the parsi...
CVE-2014-125122
CVE-2014-125122 affects Linksys WRT120N: a stack-based buffer overflow in the tmUnblock.cgi endpoint, triggered by a specially crafted POST with an overly long TM_Block_URL, allows an unauthenticated attacker to overwrite memory and temporarily reset the admin password to blank, gaining access to...
CVE-2013-10036 Beetel Connection Manager NetConfig.ini Stack-Based Buffer Overflow
A stack-based buffer overflow vulnerability exists in Beetel Connection Manager version PCWBTLINDV1.0.0B04 when parsing the UserName parameter in the NetConfig.ini configuration file. A crafted .ini file containing an overly long UserName value can overwrite the Structured Exception Handler SEH,...
CVE-2025-33092 IBM Db2 for Linux code execution
IBM Db2 for Linux 12.1.0, 12.1.1, and 12.1.2 is vulnerable to a stack-based buffer overflow in db2fm, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system...
CVE-2025-33092
IBM Db2 for Linux 12.1.0, 12.1.1, and 12.1.2 is vulnerable to a stack-based buffer overflow in db2fm, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system...
PT-2025-31248 · Ibm · Ibm Db2 For Linux
Name of the Vulnerable Software and Affected Versions: IBM Db2 for Linux versions 12.1.0 through 12.1.2 Description: IBM Db2 for Linux is susceptible to a stack-based buffer overflow within the db2fm component. This issue stems from inadequate bounds checking, potentially allowing a local user to...
CVE-2025-8184
A vulnerability was found in D-Link DIR-513 up to 1.10 and classified as critical. This issue affects the function formSetWanL2TPcallback of the file /goform/formSetWanL2TPtriggers of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack may be...
CVE-2025-8159
A vulnerability was found in D-Link DIR-513 1.0. It has been rated as critical. This issue affects the function formLanguageChange of the file /goform/formLanguageChange of the component HTTP POST Request Handler. The manipulation of the argument curTime leads to stack-based buffer overflow. The...
CVE-2025-8131
A vulnerability was found in Tenda AC20 16.03.08.05. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack can be launched remotely...
CVE-2025-8184
D-Link DIR-513 (versions up to 1.10) is affected by CVE-2025-8184. The stack-based buffer overflow occurs in the formSetWanL2TPcallback function within /goform/formSetWanL2TPtriggers of the HTTP POST Request Handler. It is remotely exploitable and has been disclosed publicly. Several sources desc...
CVE-2025-8184 D-Link DIR-513 HTTP POST Request formSetWanL2TPtriggers formSetWanL2TPcallback stack-based overflow
A vulnerability was found in D-Link DIR-513 up to 1.10 and classified as critical. This issue affects the function formSetWanL2TPcallback of the file /goform/formSetWanL2TPtriggers of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack may be...
CVE-2014-125117
CVE-2014-125117 : A stack-based buffer overflow in the my_cgi.cgi component of certain D‑Link devices, including DSP‑W215 v1.02, can be triggered by a crafted HTTP POST to /common/info.cgi, enabling unauthenticated remote code execution with system‑level privileges. Exploitation details indicate ...
CVE-2025-8159
CVE-2025-8159 affects D-Link DIR-513 (firmware 1.0). The vulnerability is in the HTTP POST Request Handler, specifically the formLanguageChange function in /goform/formLanguageChange. Manipulating the curTime argument triggers a stack-based buffer overflow, with remote exploitation possible. The ...
CVE-2025-8159 D-Link DIR-513 HTTP POST Request formLanguageChange stack-based overflow
A vulnerability was found in D-Link DIR-513 1.0. It has been rated as critical. This issue affects the function formLanguageChange of the file /goform/formLanguageChange of the component HTTP POST Request Handler. The manipulation of the argument curTime leads to stack-based buffer overflow. The...
CVE-2025-8159 D-Link DIR-513 HTTP POST Request formLanguageChange stack-based overflow
A vulnerability was found in D-Link DIR-513 1.0. It has been rated as critical. This issue affects the function formLanguageChange of the file /goform/formLanguageChange of the component HTTP POST Request Handler. The manipulation of the argument curTime leads to stack-based buffer overflow. The...
CVE-2025-8131
A vulnerability was found in Tenda AC20 16.03.08.05. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack can be launched remotely...
CVE-2025-8131 Tenda AC20 SetStaticRouteCfg stack-based overflow
A vulnerability was found in Tenda AC20 16.03.08.05. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack can be launched remotely...
CVE-2025-8131 Tenda AC20 SetStaticRouteCfg stack-based overflow
A vulnerability was found in Tenda AC20 16.03.08.05. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack can be launched remotely...