CVE-2021-38690 Stack Overflow Vulnerability in QVR Elite, QVR Pro and QVR Guard

A stack buffer overflow vulnerability has been reported to affect QNAP device running QVR Elite, QVR Pro, QVR Guard. If exploited, this vulnerability allows attackers to execute arbitrary code. We have already fixed this vulnerability in the following versions of QVR Elite, QVR Pro, QVR Guard: Qu...

CVE-2021-38689 Stack Overflow Vulnerability in QVR Elite, QVR Pro and QVR Guard

A stack buffer overflow vulnerability has been reported to affect QNAP device running QVR Elite, QVR Pro, QVR Guard. If exploited, this vulnerability allows attackers to execute arbitrary code. We have already fixed this vulnerability in the following versions of QVR Elite, QVR Pro, QVR Guard: Qu...

CVE-2021-38682 Stack Overflow Vulnerability in QVR Elite, QVR Pro and QVR Guard

A stack buffer overflow vulnerability has been reported to affect QNAP device running QVR Elite, QVR Pro, QVR Guard. If exploited, this vulnerability allows attackers to execute arbitrary code. We have already fixed this vulnerability in the following versions of QVR Elite, QVR Pro, QVR Guard: Qu...

CVE-2021-45258

A stack overflow vulnerability exists in gpac 1.1.0 via the gfbifsdecprotolist function, which causes a segmentation fault and application crash...

CVE-2021-33271

D-Link DIR-809 devices with firmware through DIR-809AxFW1.12WWB0320190410 were discovered to contain a stack buffer overflow vulnerability in the function sub80046EB4 in /formSetPortTr. This vulnerability is triggered via a crafted POST request...

CVE-2021-33481

A stack-based buffer overflow vulnerability was discovered in gocr through 0.53-20200802 in trytodivideboxes in pgm2asc.c...

Libsixel缓冲区错误漏洞

libsixel is a package that provides encoding/decoding implementations for DEC SIXEL graphics and other converter programs. libsixel suffers from a stack buffer overflow vulnerability, for which no details of the vulnerability are currently available...

CVE-2021-28606 Adobe After Effects Stack Overflow vulnerability could lead to arbitrary code execution

Adobe After Effects version 18.2 and earlier is affected by a Stack-based Buffer Overflow vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this...

NETGEAR R6400 缓冲区错误漏洞

The Netgear NETGEAR R6400 is a wireless router from Netgear, Inc. A security vulnerability exists in the NETGEAR R6400 versions prior to 1.0.1.70 that allows an authenticated user to trigger a stack-based buffer overflow...

Huawei Smartphone 缓冲区错误漏洞

Huawei Emui is an Android-based mobile operating system. Huawei Magic UI is the operating system for Honor phones. Huawei EMUI/Magic UI has a stack overflow vulnerability that can be exploited by attackers to cause a system reset...

SUSE-SU-2021:14749-1 Security update for apache2

This update for apache2 fixes the following issues: - fixed CVE-2021-30641 bsc1187174: MergeSlashes regression - fixed CVE-2020-35452 bsc1186922: Single zero byte stack overflow in modauthdigest...

SUSE: Security Advisory (SUSE-SU-2019:14117-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Cesanta MJS Stack Overflow Vulnerability

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A stack overflow vulnerability exists in parsearray in Cesanta MJS version 1.20.1...

Cesanta MJS stack overflow vulnerability (CNVD-2021-38647)

Cesanta MJS is an embedded JavaScript engine for C/C++, designed for resource-constrained microcontrollers. A stack overflow vulnerability exists in parsestatementlist in Cesanta MJS version 1.20.1. An attacker can exploit this vulnerability via a specially crafted file to cause a denial of servi...

CVE-2020-36367

CVE-2020-36367 describes a stack overflow in Cesanta MJS 1.20.1’s parse_block. The vulnerability allows a DoS via a crafted file, as stated across multiple sources (e.g., CNVD, NVD, Red Hat). Affected software: Cesanta MJS 1.20.1 (embedded JavaScript engine for C/C++). Underlying cause: stack ove...

Cesanta MJS 缓冲区错误漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++, designed for microcontrollers with limited resources. A stack overflow vulnerability exists in parsestatement in Cesanta MJS version 1.20.1. An attacker can exploit this vulnerability via specially crafted files to cause a denial of service...

PT-2021-3346 · 3S Smart Software Solutions · Codesys V2 Runtime System

Name of the Vulnerable Software and Affected Versions: CODESYS V2 runtime system SP versions prior to 2.4.7.55 Description: The issue is a stack-based buffer overflow in the CODESYS V2 runtime system SP. This can be exploited by a remote attacker to impact the confidentiality, integrity, and...

Adobe Photoshop suffers from a stack overflow vulnerability

Adobe Photoshop is an image processing software developed and distributed by Adobe. Adobe Photoshop suffers from a stack overflow vulnerability. An attacker could exploit this vulnerability to cause the program to crash...

SUSE: Security Advisory (SUSE-SU-2017:1587-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2017:2782-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...