6890 matches found
PoDoFo Stack Buffer Overflow Vulnerability
PoDoFo is a free, portable and easy to use PDF parsing, modification and creation library. A stack buffer overflow vulnerability exists in the PdfEncrypt::ComputeOwnerKey function in PdfEncrypt.cpp in PoDoFo version 0.9.7. The vulnerability stems from improper checking of the keyLength value. No...
CVE-2020-4839
IBM Host firmware for LC-class Systems is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A remote privileged attacker could exploit this vulnerability and cause a denial of service. IBM X-Force ID: 190037...
Trend Micro Bugs Threaten Home Network Security
Three security vulnerabilities have been found in Trend Micro’s Home Network Security systems, which can allow denial of service DoS, privilege escalation, code execution and authentication bypass. The Home Network Security Station is an all-in-one device that scans for vulnerabilities for...
The vulnerability of the webSettingProfileGeneral function in the embedded web server software is related to buffer overflows in the stack due to deficiencies in input data processing. This allows attackers to execute arbitrary code or cause service interruptions by exploiting this vulnerability.
The vulnerability of the webSettingProfileGeneral function in the embedded web server software is related to buffer overflows in the stack due to deficiencies in input data processing. Exploiting this vulnerability can allow an attacker to enhance their privileges, execute arbitrary code, or caus...
The vulnerability of the config_set function in the libconfig.so library of the web server’s embedded software is related to buffer overflows in the stack due to insufficient input data processing. This allows attackers to execute arbitrary code or cause service interruptions by exploiting this vulnerability.
The vulnerability of the configset function in the libconfig.so library, a built-in software library for web servers, is related to buffer overflows in the stack due to insufficient input handling. Exploiting this vulnerability can allow an attacker to enhance their privileges, execute arbitrary...
Stack-based Buffer Overflow in codeplea/tinyexpr
✍️ Description Whilst experimenting with repl built from commit 61af1d, with Clang 10 +ASan on Ubuntu 20.04.2 LTS, we discovered an expression containing 4 null characters after a newline which, due to insufficient bounds checking, triggers a stack-buffer-overflow. 🕵️♂️ Proof of Concept echo...
EulerOS 2.0 SP8 : grub2 (EulerOS-SA-2021-1875)
According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in grub2 in versions prior to 2.06. Setparamprefix in the menu rendering code performs a length calculation on the assumption th...
Siemens Solid Edge Stack Buffer Overflow Vulnerability
Siemens Solid Edge is a 3D CAD software from Siemens, Germany. A stack buffer overflow vulnerability exists in Siemens Solid Edge, which can be exploited by an attacker to execute code in the context of the current process...
Backdoor.Win32.Agent.oda Buffer Overflow
Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/380ff48c4a28ac25f5efb630883eeb17.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Agent.oda Vulnerability: Remote Stack Buffer Overflow UDP Description: The malware...
OSV-2021-769 Stack-buffer-overflow in TranslateClause
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34332 Crash type: Stack-buffer-overflow READ 16 Crash state: TranslateClause SpeakNextClause Synthesize...
OSV-2021-764 Stack-buffer-overflow in TranslateNumber_1
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34285 Crash type: Stack-buffer-overflow READ 1 Crash state: TranslateNumber1 TranslateNumber TranslateWord3...
Siemens Solid Edge 安全漏洞
Siemens Solid Edge is a 3D CAD software from Siemens, Germany. A stack buffer overflow vulnerability exists in Siemens Solid Edge, which can be exploited by an attacker to execute code in the context of the current process...
OSV-2021-739 Stack-buffer-overflow in flb_sds_cat
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34025 Crash type: Stack-buffer-overflow READ Crash state: flbsdscat flbratranslate recordacfuzzer.c...
Tenda AC11 Stack Buffer Overflow Vulnerability (CNVD-2021-33997)
The Tenda AC11 is an AC1200 dual-band Gigabit WiFi router. A stack buffer overflow vulnerability exists in /gofrom/setwanType in the Tenda AC11 02.03.01.104CN and earlier firmware. An attacker can exploit this vulnerability to execute arbitrary code on the system via a specially crafted post...
Tenda AC11 Stack Buffer Overflow Vulnerability (CNVD-2021-33998)
The Tenda AC11 is an AC1200 dual-band Gigabit WiFi router. A stack buffer overflow vulnerability exists in /goform/setmac in the Tenda AC11 02.03.01.104CN and earlier firmware. An attacker can exploit this vulnerability to execute arbitrary code on the system via a specially crafted post request...
Tenda AC11 Stack Buffer Overflow Vulnerability (CNVD-2021-34000)
The Tenda AC11 is an AC1200 dual-band Gigabit WiFi router. A stack buffer overflow vulnerability exists in /goform/setVLAN in the Tenda AC11 02.03.01.104CN and earlier firmware. An attacker can exploit this vulnerability to execute arbitrary code on the system via a specially crafted post request...
CVE-2021-31757
An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104CN. A stack buffer overflow vulnerability in /goform/setVLAN allows attackers to execute arbitrary code on the system via a crafted post request...
CVE-2021-31755
An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104CN. A stack buffer overflow vulnerability in /goform/setmac allows attackers to execute arbitrary code on the system via a crafted post request...
CVE-2021-31756
An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104CN. A stack buffer overflow vulnerability in /gofrom/setwanType allows attackers to execute arbitrary code on the system via a crafted post request. This occurs when input vector controlled by malicious attack get...
CVE-2021-31758
An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104CN. A stack buffer overflow vulnerability in /goform/setportList allows attackers to execute arbitrary code on the system via a crafted post request...