6725 matches found
Microsoft Plug and Play Service Registry Overflow
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft Plug and Play Service Registry Overflow', 'Description' = %q This module triggers a stack buffer overflow in the Windows Plug and Play...
QNAP NAS/NVR Administrator Hash Disclosure
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'QNAP NAS/NVR Administrator Hash Disclosure', 'Description' = %q This module exploits combined heap and stack buffer overflows for QNAP NAS and NV...
Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
TOTOLINK EX1200L cstecgi.cgi file setLanguageCfg function stack buffer overflow vulnerability
The TOTOLINK EX1200L is a wireless repeater from China's Gion Electronics TOTOLINK. The TOTOLINK EX1200L suffers from a stack buffer overflow vulnerability that originates from the parameter langType of the setLanguageCfg function of the file /www/cgi-bin/cstecgi.cgi, which can lead to a...
OSV-2024-1029 Stack-buffer-overflow in gf_hevc_parse_nalu_bs
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=71146 Crash type: Stack-buffer-overflow WRITE 4 Crash state: gfhevcparsenalubs gfinspectdumpnaluinternal inspectprocess...
OSV-2024-999 Stack-buffer-overflow in filter_apply_chain
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68846 Crash type: Stack-buffer-overflow READ 4 Crash state: filterapplychain filterapplychain readin...
OSV-2024-978 Stack-buffer-overflow in narrow_conv_backprop
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=42537498 Crash type: Stack-buffer-overflow WRITE 4 Crash state: narrowconvbackprop narrowconvbackprop narrowconvbackprop...
OSV-2024-965 Stack-buffer-overflow in FLAC__stream_encoder_init_ogg_file
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=42537419 Crash type: Stack-buffer-overflow READ 13 Crash state: FLACstreamencoderinitoggfile EncoderSessioninitencoder flacencodefile...
SUSE SLED12 / SLES12 Security Update : zziplib (SUSE-SU-2024:2926-1)
The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:2926-1 advisory. - CVE-2024-39134: Fixed a stack buffer overflow via the zzipfetchdisktrailer bsc1227178 Tenable has extracted the...
SUSE SLED15 / SLES15 Security Update : zziplib (SUSE-SU-2024:2925-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:2925-1 advisory. - CVE-2024-39134: Fixed a stack buffer overflow via the zzipfetchdisktrailer bsc1227178 Tenable has extracted the...
SUSE-SU-2024:2926-1 Security update for zziplib
This update for zziplib fixes the following issues: - CVE-2024-39134: Fixed a stack buffer overflow via the zzipfetchdisktrailer bsc1227178...
SUSE-SU-2024:2925-1 Security update for zziplib
This update for zziplib fixes the following issues: - CVE-2024-39134: Fixed a stack buffer overflow via the zzipfetchdisktrailer bsc1227178...
Delta Electronics DIAScreen Stack Buffer Vulnerability
Delta Electronics DIAScreen is an intelligent desktop builder from Delta Electronics in China. A stack buffer vulnerability exists in Delta Electronics DIAScreen, which can be exploited by an attacker to execute arbitrary code...
CVE-2023-50809
CVE-2023-50809 affects Sonos devices (Amp, Arc, Arc SL, Beam, Beam Gen 2, Beam SL, Five) due to a stack buffer overflow in the mt_7615.ko wireless driver during WPA2 four-way handshake negotiation. The root cause is improper validation of an information element, enabling remote code execution wit...
json-c: Buffer Overflow
Background json-c is a JSON implementation in C. Description Please review the CVE identifier referenced below for details. Impact A stack-buffer-overflow exists in the auxiliary sample program jsonparse which is located in the function parseit. Workaround There is no known workaround at this tim...
SUSE-SU-2024:2784-1 Security update for curl
This update for curl fixes the following issues: - CVE-2024-7264: Fixed ASN.1 date parser overread bsc1228535 - CVE-2024-6197: Fixed freeing stack buffer in utf8asn1str bsc1227888...
DEBIAN-CVE-2024-7538
oFono CUSD AT Command Stack-based Buffer Overflow Code Execution Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in order to exploit this...
OSV-2024-695 Stack-buffer-overflow in gf_vvc_parse_nalu_bs
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=70549 Crash type: Stack-buffer-overflow WRITE 4 Crash state: gfvvcparsenalubs gfinspectdumpnaluinternal inspectprocess...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : espeak-ng (SUSE-SU-2024:2632-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2632-1 advisory. - CVE-2023-49990: Fixed buffer overflow in SetUpPhonemeTable function at synthdata.c bsc1218010 ...
SUSE-SU-2024:2632-1 Security update for espeak-ng
This update for espeak-ng fixes the following issues: - CVE-2023-49990: Fixed buffer overflow in SetUpPhonemeTable function at synthdata.c bsc1218010 - CVE-2023-49991: Fixed stack-buffer-underflow exists in the function CountVowelPosition in synthdata.c bsc1218006 - CVE-2023-49992: Fixed...