6902 matches found
CVE-2021-31758
Affected product: Tenda AC11 routers. Vulnerability: stack buffer overflow in /goform/setportList that allows arbitrary code execution via a crafted POST request. Impact: high likelihood of remote code execution on devices running firmware up to 02.03.01.104_CN or earlier. Notes: no remediation d...
CVE-2021-31756
CVE-2021-31756 affects Tenda AC11 devices running firmware up to 02.03.01.104_CN. A stack buffer overflow in the /gofrom/setwanType handler allows an attacker to execute arbitrary code via a crafted POST request, caused by copying a controlled input vector onto a stack variable. Public sources in...
Epic Games Rocket League 1.95 - Stack Buffer Overrun
Exploit Title: Epic Games Rocket League 1.95 - Stack Buffer Overrun Date: 25.04.2021 Exploit Author: LiquidWorm Vendor Homepage: https://www.epicgames.com https://www.rocketleague.com Epic Games Rocket League 1.95 AK::MemoryMgr::GetPoolName Stack Buffer Overrun Vendor: Epic Games Inc. | Psyonix,...
Epic Games Rocket League 1.95 - Stack Buffer Overrun Vulnerability
Exploit Title: Epic Games Rocket League 1.95 - Stack Buffer Overrun Exploit Author: LiquidWorm Vendor Homepage: https://www.epicgames.com https://www.rocketleague.com Epic Games Rocket League 1.95 AK::MemoryMgr::GetPoolName Stack Buffer Overrun Vendor: Epic Games Inc. | Psyonix, LLC Product web...
CVE-2020-28198
The 'id' parameter of IBM Tivoli Storage Manager Version 5 Release 2 Command Line Administrative Interface, dsmadmc.exe is vulnerable to an exploitable stack buffer overflow. Note: the vulnerability can be exploited when it is used in "interactive" mode while, cause of a max number characters...
Stack overflow
The 'id' parameter of IBM Tivoli Storage Manager Version 5 Release 2 Command Line Administrative Interface, dsmadmc.exe is vulnerable to an exploitable stack buffer overflow. Note: the vulnerability can be exploited when it is used in "interactive" mode while, cause of a max number characters...
CVE-2020-28198
The 'id' parameter of IBM Tivoli Storage Manager Version 5 Release 2 Command Line Administrative Interface, dsmadmc.exe is vulnerable to an exploitable stack buffer overflow. Note: the vulnerability can be exploited when it is used in "interactive" mode while, cause of a max number characters...
CVE-2020-28198
Summary: Multiple sources describe a stack buffer overflow in the IBM Tivoli Storage Manager components that expose the vulnerable behavior via the interactive use of the id parameter in dsmadmc.exe (Version 5 Release 2, and related IBM TSM/Operations Center variants). The flaw is triggered by an...
CVE-2020-28198
The 'id' parameter of IBM Tivoli Storage Manager Version 5 Release 2 Command Line Administrative Interface, dsmadmc.exe is vulnerable to an exploitable stack buffer overflow. Note: the vulnerability can be exploited when it is used in "interactive" mode while, cause of a max number characters...
CVE-2021-31616
Insufficient length checks in the ShapeShift KeepKey hardware wallet firmware before 7.1.0 allow a stack buffer overflow via crafted messages. The overflow in ethereumextractThorchainSwapData in ethereum.c can circumvent stack protections and lead to code execution. The vulnerable interface is...
CVE-2021-31616
CVE-2021-31616 affects ShapeShift KeepKey hardware wallet firmware prior to 7.1.0. The issue is a stack buffer overflow caused by insufficient length checks in the ethereum_extractThorchainSwapData() function within ethereum.c, which can be triggered by crafted messages and is reachable remotely ...
CVE-2021-31616
Insufficient length checks in the ShapeShift KeepKey hardware wallet firmware before 7.1.0 allow a stack buffer overflow via crafted messages. The overflow in ethereumextractThorchainSwapData in ethereum.c can circumvent stack protections and lead to code execution. The vulnerable interface is...
The vulnerability of Delta Industrial Automation’s COMMGR software, related to buffer overflow in the stack, allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the Delta Industrial Automation COMMGR communication management software is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...
Huawei EulerOS: Security Advisory for cairo (EulerOS-SA-2021-1769)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Parallels Desktop Stack Buffer Overflow Vulnerability
Parallels Desktop is a virtual machine software that runs on Mac computers. A stack buffer overflow vulnerability exists in the Toolgate component in Parallels Desktop version 16.1.0-48950. The vulnerability stems from not properly validating the length of user-supplied data before copying it to ...
Backdoor.Win32.Agent.kte Buffer Overflow
Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/7c92e59e776355734781bbf05571d0f0.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Agent.kte Vulnerability: Remote Stack Buffer Overflow UDP Datagram Description: The...
EulerOS 2.0 SP3 : cairo (EulerOS-SA-2021-1769)
According to the version of the cairo packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provide a crafted input file to...
CVE-2021-31438
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Studio Photo 3.6.6.931. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2021-20294
A flaw was found in binutils readelf 2.35 program. An attacker who is able to convince a victim using readelf to read a crafted file could trigger a stack buffer overflow, out-of-bounds write of arbitrary data supplied by the attacker. The highest impact of this flaw is to confidentiality,...
CVE-2021-20294
A flaw was found in binutils readelf 2.35 program. An attacker who is able to convince a victim using readelf to read a crafted file could trigger a stack buffer overflow, out-of-bounds write of arbitrary data supplied by the attacker. The highest impact of this flaw is to confidentiality,...