SUSE: Security Advisory (SUSE-SU-2017:2780-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Stack overflow vulnerability in the se*** interface of the Tenda 11AC 1200MBPS wireless panelized AP (CNVD-2021-25917)

hereinafter referred to as "Tengda" was founded in 1999, is a professional supplier of network communication equipment and solutions, but also the research and development, production, supply, sales and service in one of the high-tech enterprises. A stack overflow vulnerability exists in the se...

Siemens SCALANCE and RuggedCmd Device Stack Overflow Vulnerability

SCALANCE SC-600 devices SC622-2C, SC632-2C, SC636-2C, SC642-2C, SC646-2C are used to protect trusted industrial networks from untrusted networks. SCALANCE M-800/S615 industrial routers are used for secure remote access to plants via mobilenetworks such as GPRS or UMTS for secure remote access to...

Stack Overflow Vulnerability in EasyBuilder Pro

EasyBuilder Pro is a configuration software developed by Wyland. A stack overflow vulnerability exists in EasyBuilder Pro. An attacker could exploit this vulnerability to cause the program to crash...

CVE-2020-1896

A stack overflow vulnerability in Facebook Hermes 'builtin apply' prior to commit 86543ac47e59c522976b5632b8bf9a2a4583c7d2 https://github.com/facebook/hermes/commit/86543ac47e59c522976b5632b8bf9a2a4583c7d2 allows attackers to potentially execute arbitrary code via crafted JavaScript. Note that th...

CVE-2020-25782

An issue was discovered on Accfly Wireless Security IR Camera 720P System with software versions v3.10.73 through v4.15.77. There is an unauthenticated stack-based buffer overflow in the function CNetClientManage::ServerIPProtoSet during incoming message handling...

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

Stack Overflow Vulnerability in Rexchip Microelectronics Corporation's Rexchip Microchip

Rexchip Microelectronics has a R&D team specializing in system-on-chip design and algorithm research, and provides professional chip solutions for high-end intelligent hardware, cell phone peripherals, tablet PCs, TV set-top boxes, industrial control, and many other fields. Rexchip Microelectroni...

Stack Overflow Vulnerability in CAJViewer

CAJviewer is a specialized full-text format reader for China Journal Network CJN, which supports TEB, NH, CAJ, KDH and PDF files of CJN. CAJViewer suffers from a stack overflow vulnerability that can be exploited by an attacker to cause a denial of service...

CVE-2020-3293 Cisco Small Business RV Series Routers Stack Overflow Arbitrary Code Execution Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV320 and RV325 Series Routers and Cisco Small Business RV016, RV042, and RV082 Routers could allow an authenticated, remote attacker with administrative privileges to execute arbitrary code on an affected...

CVE-2020-14074

TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action kickbanwifimacallow with a sufficiently long qcawifi.wifi0vap0.maclist key...

Adobe Bridge Stack Overflow Vulnerability

Adobe Bridge is a free digital asset management application from Adobe. A stack overflow vulnerability exists in Adobe Bridge. An attacker can exploit the vulnerability to execute arbitrary code...

PT-2020-11989 · Tsk +1 · The Sleuth Kit +1

Name of the Vulnerable Software and Affected Versions: The Sleuth Kit TSK versions 4.8.0 and earlier Description: A stack buffer overflow issue exists in the YAFFS file timestamp parsing logic within the yaffsfs istat function in fs/yaffs.c. Recommendations: For versions 4.8.0 and earlier, at the...

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2018-1344)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Redir 3.3 - Denial of Service (PoC)

Exploit Title: Redir 3.3 - Denial of Service PoC Date: 2020-01-14 Exploit Author: hieubl from HPT Cyber Security Vendor Homepage: https://github.com/troglobit/redir Software Link: https://github.com/troglobit/redir Version: 3.3 Tested on: Kali GNU/Linux Rolling 2019.4 CVE : if applicable The sour...

OPENSUSE-SU-2019:2247-1 Security update for mosquitto

This update for mosquitto fixes the following issues: - CVE-2019-11779: Fixed insufficient parsing of SUBSCRIBE packets that could lead to a stack overflow bsc1151494. This update was imported from the openSUSE:Leap:15.1:Update update project...

OPENSUSE-SU-2019:2206-1 Security update for mosquitto

This update for mosquitto fixes the following issues: - CVE-2019-11779: Fixed insufficient parsing of SUBSCRIBE packets that could lead to a stack overflow bsc1151494...

OPENSUSE-SU-2019:1767-1 Security update for zeromq

This update for zeromq fixes the following issues: - CVE-2019-13132: An unauthenticated remote attacker could have exploited a stack overflow vulnerability on a server that is supposed to be protected by encryption and authentication to potentially gain a remote code execution. bsc1140255 -...

Stack Overflow Vulnerability in Juniper Firewall System

Juniper Networks is a leading global provider of networking and security solutions. A stack overflow vulnerability exists in the Juniper firewall system that can be exploited by an attacker to cause a denial of service to a server...

SUSE SLED12 Security Update : zeromq (SUSE-SU-2019:1785-1)

This update for zeromq fixes the following issues : - CVE-2019-13132: An unauthenticated remote attacker could have exploited a stack overflow vulnerability on a server that is supposed to be protected by encryption and authentication to potentially gain a remote code execution. bsc1140255 Note...