CVE-2022-27783 Adobe After Effects Stack Buffer Overflow Could Lead To RCE

Adobe After Effects versions 22.2.1 and earlier and 18.4.5 and earlier are affected by a stack overflow vulnerability due to insecure handling of a crafted file, potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a...

Stack buffer overflow in RTSP packet parsing

Description A malicious RTSP server can trigger a stack buffer overflow via an RTSP packet with an excessively long content-length due to no bounds check when copying into a fixed sized buffer. Proof of Concept poc.py is available here terminal 1 python3 poc.py 31337 terminal 2 ./configure...

OSV-2022-380 Stack-buffer-overflow in sc_asn1_read_tag

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47035 Crash type: Stack-buffer-overflow READ 1 Crash state: scasn1readtag scasn1findtag cardoslistfiles...

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in buffer overflows in the stack, allowing attackers to execute arbitrary code.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code on the target system using a specially crafted file...

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in buffer overflows in the stack, allowing attackers to execute arbitrary code.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code on the target system using a specially crafted file...

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in buffer overflows in the stack, allowing attackers to execute arbitrary code.

The vulnerability of Adobe After Effects video and dynamic image editing software is related to buffer overflow in the stack. Exploiting this vulnerability allows a malicious actor to execute arbitrary code on the target system using a specially crafted file...

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in buffer overflows in the stack, allowing attackers to execute arbitrary code.

The vulnerability of Adobe After Effects’ video and dynamic image editing software relates to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

SKALE Network: Stack Buffer Overflow via `gmp_sprintf`in `BLSSignature` and `BLSSigShare`

A security researcher identified a stack buffer overflow vulnerability in libBLS. While the risk was very low and nothing directly exploitable through the Network or Adjacent Network the vulnerability requires local access to a machine and subsequent code changes to libBLS, the security team went...

Slackware: Security Advisory (SSA:2018-067-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Hackers Exploiting Recently Reported Windows Print Spooler Vulnerability in the Wild

A security flaw in the Windows Print Spooler component that was patched by Microsoft in February is being actively exploited in the wild, the U.S. Cybersecurity and Infrastructure Security Agency CISA has warned. To that end, the agency has added the shortcoming to its Known Exploited...

Multiple Adobe products stack buffer overflow vulnerabilities

Adobe Acrobat is a set of PDF file editing and conversion tools. The software is used to print, sign and annotate PDFs.Several Adobe products are vulnerable to stack buffer overflow, which can be exploited by attackers to execute arbitrary code in the context of the current user...

The vulnerability of the /cloud_config/router_post/register function in TP-LINK’s WR-886N router software allows a attacker to execute arbitrary code.

The vulnerability of the /cloudconfig/routerpost/register function in TP-LINK’s WR-886N router software arises due to buffer overflow in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code through a specially crafted request...

AZL-9485 CVE-2021-42782 affecting package opensc for versions less than 0.22.0-1

Stack buffer overflow issues were found in Opensc before version 0.22.0 in various places that could potentially crash programs using the library...

Stack overflow

Stack buffer overflow issues were found in Opensc before version 0.22.0 in various places that could potentially crash programs using the library...

CVE-2021-42782

Stack buffer overflow issues were found in Opensc before version 0.22.0 in various places that could potentially crash programs using the library...

OSV-2022-345 Stack-buffer-overflow in sc_hsm_list_files

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46679 Crash type: Stack-buffer-overflow READ Crash state: schsmlistfiles sclistfiles fuzzcard.c...

HackTool.Win32.IpcScan.c Buffer Overflow

Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/8f44374d587eb1657d25da9628cb2b87.txt Contact: [email protected] Media: twitter.com/malvuln Threat: HackTool.Win32.IpcScan.c Vulnerability: Local Stack Buffer Overflow Description: Loading a specially...

Debian: Security Advisory (DLA-2974-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-1355

A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : opensc (SUSE-SU-2022:1156-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1156-1 advisory. Security issues fixed: - CVE-2021-42782: Stack buffer overflow issues in various places...