6903 matches found
HCL Notes 安全漏洞
HCL Notes is a local email client from HCL India. A stack buffer overflow vulnerability exists in the handling of input parameters in HCL Notes v9. An attacker can exploit this vulnerability to cause the program to crash or inject code into the system that will execute with the privileges of the...
Medium: tigervnc
Issue Overview: TigerVNC version prior to 1.10.1 is vulnerable to stack use-after-return, which occurs due to incorrect usage of stack memory in ZRLEDecoder. If decoding routine would throw an exception, ZRLEDecoder may try to access stack variable, which has been already freed during the process...
OSV-2020-2264 Stack-buffer-overflow in ot::IsValidUtf8String
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28682 Crash type: Stack-buffer-overflow READ 1 Crash state: ot::IsValidUtf8String ot::MeshCoP::NetworkNameTlv::IsValid ot::MeshCoP::Tlv::IsValid...
CVE-2020-14244
A vulnerability in the MIME message handling of the Domino server versions 9 and 10 could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the server or inject code into the system which would execute with th...
Stack overflow
A vulnerability in the MIME message handling of the Domino server versions 9 and 10 could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the server or inject code into the system which would execute with th...
Stack overflow
A vulnerability in the MIME message handling of the Notes client versions 9 and 10 could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the client or inject code into the system which would execute with the...
CVE-2020-14268
CVE-2020-14268 affects the Notes client (versions 9 and 10) and stems from a weakness in MIME message handling. The vulnerability could be exploited by an unauthenticated attacker to trigger a stack buffer overflow, potentially crashing the client or allowing code to execute with the client’s pri...
CVE-2020-14268
A vulnerability in the MIME message handling of the Notes client versions 9 and 10 could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the client or inject code into the system which would execute with the...
CVE-2020-14244
CVE-2020-14244 affects IBM Domino server (versions 9 and 10) with a MIME message handling flaw that can be exploited by an unauthenticated attacker to cause a stack buffer overflow. This could crash the server or allow code to be executed with server privileges. The connected sources confirm the ...
CVE-2020-14244
A vulnerability in the MIME message handling of the Domino server versions 9 and 10 could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the server or inject code into the system which would execute with th...
HCL Notes 缓冲区错误漏洞
HCL Notes is a local email client from HCL India. HCL Notes has a security vulnerability that originates from a flaw in MIME message handling that could be exploited by an unauthenticated attacker to cause a stack buffer overflow. A remote attacker could be allowed to exploit the vulnerability to...
OSV-2020-2259 Stack-buffer-overflow in ot::MeshCoP::ChannelMaskEntry::GetMask
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28556 Crash type: Stack-buffer-overflow READ 4 Crash state: ot::MeshCoP::ChannelMaskEntry::GetMask ot::MeshCoP::ChannelMaskTlv::GetChannelMask ot::MeshCoP::Dataset::ConvertTo...
OSV-2020-2247 Stack-buffer-overflow in ot::MeshCoP::ChannelMaskEntryBase::GetEntrySize
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28315 Crash type: Stack-buffer-overflow READ 1 Crash state: ot::MeshCoP::ChannelMaskEntryBase::GetEntrySize ot::MeshCoP::ChannelMaskEntryBase::GetNext ot::MeshCoP::ChannelMaskBaseTlv::IsValid...
QEMU Buffer Overflow Vulnerability (CNVD-2021-39774)
QEMU is a suite of analog processor software. QEMU suffers from a buffer overflow vulnerability. An attacker could exploit this vulnerability to cause a stack buffer over-read via a value obtained from a host controller driver...
OSV-2020-2178 Stack-buffer-overflow in insert_key
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=27719 Crash type: Stack-buffer-overflow READ 1 Crash state: insertkey detectnetkey scpkcs15emutcosinitex...
ImageMagick Stack Buffer Overflow and Unconditional Jump Vulnerability
ImageMagick is a software for creating, editing, and composing images that can read, convert, and write images in many formats. A stack buffer overflow and unconditional jump vulnerability exists in ReadXPMImage in coders/xpm.c in ImageMagick 7.0.10-7. No detailed vulnerability details are provid...
OSV-2020-2171 Stack-buffer-overflow in fp_read_unsigned_bin
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=27666 Crash type: Stack-buffer-overflow READ 8 Crash state: fpreadunsignedbin mpreadunsignedbin wcRsaPublicKeyDecodeRaw...
Trend Micro InterScan Web Security Virtual Appliance Stack Buffer Overflow Vulnerability
Trend Micro InterScan Web Security Virtual Appliance IWSVA is a Trend Micro Web security gateway that provides dynamic, integrated security for enterprise networks against Web-based threats. A stack buffer overflow vulnerability exists in Trend Micro InterScan Web Security Virtual Appliance 6.5...
RHEL 7 : cups (RHSA-2020:3864)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3864 advisory. The Common UNIX Printing System CUPS provides a portable printing layer for Linux, UNIX, and similar operating systems. Security Fixes: cups...
The vulnerability of the Adobe Animate software for creating multimedia and computer animations lies in buffer overflows in the stack, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Animate software for creating multimedia and computer animations is related to buffer overflow in the stack. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user, convincing the user to open a specially...