CVE-2020-9555

Adobe Bridge versions 10.0.1 and earlier version have a stack-based buffer overflow vulnerability. Successful exploitation could lead to arbitrary code execution...

OSV-2020-253 Stack-buffer-overflow in mrb_str_len_to_dbl

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19902 Crash type: Stack-buffer-overflow WRITE 1 Crash state: mrbstrlentodbl mrbstrlentoinum mrbstrtoi...

Netgear httpd upgrade_check.cgi stack buffer overflow

Overview Multiple Netgear devices contain a stack buffer overflow in the httpd web server's handling of upgradecheck.cgi, which may allow for unauthenticated remote code execution with root privileges. Description Many Netgear devices contain an embedded web server, which is provided by the httpd...

OSV-2020-209 Stack-buffer-overflow in coolkey_rsa_op

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22392 Crash type: Stack-buffer-overflow READ Crash state: coolkeyrsaop coolkeycomputecrypt scdecipher...

OSV-2020-189 Stack-buffer-overflow in tvb_get_ipv4_addr_with_prefix_len

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21718 Crash type: Stack-buffer-overflow READ 4 Crash state: tvbgetipv4addrwithprefixlen dissectlspextipreachabilityclv isisdissectclvs...

OSV-2020-164 Stack-buffer-overflow in ot::NetworkData::NetworkData::FindService

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21762 Crash type: Stack-buffer-overflow READ Crash state: ot::NetworkData::NetworkData::FindService ot::NetworkData::Leader::Validate ot::NetworkData::Leader::RegisterNetworkData...

OSV-2020-124 Dynamic-stack-buffer-overflow in RetrieveFPForSig

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21758 Crash type: Dynamic-stack-buffer-overflow WRITE 4 Crash state: RetrieveFPForSig DetectSetFastPatternAndItsId SigGroupBuild...

OSV-2020-85 Dynamic-stack-buffer-overflow in janus_rtcp_incoming_transport_cc

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20529 Crash type: Dynamic-stack-buffer-overflow READ 2 Crash state: janusrtcpincomingtransportcc janusrtcpfixssrc rtcpfuzzer.c...

OSV-2020-62 Stack-buffer-overflow in tvb_get_ipv4_addr_with_prefix_len

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21715 Crash type: Stack-buffer-overflow READ 4 Crash state: tvbgetipv4addrwithprefixlen decodepathprefix4 decodeprefixMP...

OSV-2020-55 Stack-buffer-overflow in tcos_decipher

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22967 Crash type: Stack-buffer-overflow WRITE Crash state: tcosdecipher scdecipher usekey...

OSV-2020-57 Stack-buffer-overflow in ot::NetworkData::PrefixTlv::GetPrefixLength

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=23267 Crash type: Stack-buffer-overflow READ 1 Crash state: ot::NetworkData::PrefixTlv::GetPrefixLength ot::NetworkData::NetworkData::FindPrefix ot::NetworkData::Leader::Validate...

OSV-2020-14 Stack-buffer-overflow in fmt_setup

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22507 Crash type: Stack-buffer-overflow WRITE 1 Crash state: fmtsetup mrbstrformat mrbfsprintf...

LanSpy 2.0.1.159 Stack Buffer Overflow

""" Exploit title: LanSpy v.2.0.1.159 - Stack Buffer Overflow Exploit Author: Paolo Stagno aka VoidSec - [email protected] - https://voidsec.com Vendor Homepage: https://lizardsystems.com/ Download: https://www.exploit-db.com/apps/70a780b78ee7dbbbbc99852259f75d53-lanspysetup2.0.1.159.exe Versio...

imagemagick:ping_tiff_fuzzer: Stack-buffer-overflow in _TIFFVGetField

Detailed Report: https://oss-fuzz.com/testcase?key=5456669504176128 Project: imagemagick Fuzzing Engine: libFuzzer Fuzz Target: pingtifffuzzer Job Type: libfuzzerasani386imagemagick Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 4 Crash Address: 0xffa45c90 Crash State: TIFFVGetField...

skia:svg_dom: Stack-buffer-overflow in SkParse::FindNamedColor

Project: https://skia.googlesource.com/skia.git Detailed Report: https://oss-fuzz.com/testcase?key=5132315302035456 Project: skia Fuzzing Engine: honggfuzz Fuzz Target: svgdom Job Type: honggfuzzasanskia Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 4 Crash Address: 0x7fad59a57330...

Netgear Zero-Day Allows Full Takeover of Dozens of Router Models

UPDATED Researchers this week said they discovered an unpatched, zero-day vulnerability in firmware for Netgear routers that put 79 device models at risk for full takeover, they said. Netgear has since issued several hot fixes, available here. The flaw, a memory-safety issue present in the...

The vulnerability of the software for working with animations in Adobe Character Animator 2020, related to buffer overflow in the stack, allows a hacker to execute arbitrary code.

The vulnerability of the software for working with animations in Adobe Character Animator 2020 is related to buffer overflow in the stack. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user, using a specially crafted PDF file as a...

minizip:unzip_fuzzer: Stack-buffer-overflow in crc32_z

Project: https://github.com/nmoinvaz/minizip.git Detailed Report: https://oss-fuzz.com/testcase?key=5766806240493568 Project: minizip Fuzzing Engine: libFuzzer Fuzz Target: unzipfuzzer Job Type: libfuzzerasani386minizip Platform Id: linux Crash Type: Stack-buffer-overflow READ 4 Crash Address:...

minizip:unzip_fuzzer: Stack-buffer-overflow in crc32_z

Project: https://github.com/nmoinvaz/minizip.git Detailed Report: https://oss-fuzz.com/testcase?key=5737646432452608 Project: minizip Fuzzing Engine: afl Fuzz Target: unzipfuzzer Job Type: aflasanminizip Platform Id: linux Crash Type: Stack-buffer-overflow READ 4 Crash Address: 0x7ffe99ff1360 Cra...

binutils:fuzz_disassemble: Stack-buffer-overflow in bfd_put_bits

Detailed Report: https://oss-fuzz.com/testcase?key=5685956790452224 Project: binutils Fuzzing Engine: honggfuzz Fuzz Target: fuzzdisassemble Job Type: honggfuzzasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 1 Crash Address: 0x7fc07017e864 Crash State: bfdputbits...