CVE-2020-24055

The CVE-2020-24055 entry applies to Verint 5620PTZ and Verint V4320 series (Firmwares: Verint_FW_0_42, V4320_FW_0_23, V4320_FW_0_31). An autodiscovery service in /usr/sbin/DM listens on TCP port 6666 and is vulnerable to a stack-based buffer overflow. The service requires no authentication, enabl...

The vulnerability of Moxa EDR-G902 and Moxa EDR-G903 router microprogramming software lies in buffer overflow in the stack, allowing attackers to execute arbitrary code.

The vulnerability of Moxa EDR-G902 and Moxa EDR-G903 router microprogramming software is related to buffer overflow in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted cookie file...

MSI Ambient Link Multiple Vulnerabilities

1. Advisory Information Title: MSI Ambient Link Multiple Vulnerabilities Advisory ID: CORE-2020-0012 Advisory URL: https://www.coresecurity.com/core-labs/advisories/msi-ambient-link-multiple-vulnerabilities Date published: 2020-08-19 Date of last update: 2020-08-19 Vendors contacted: MSI Release...

Stack overflow

Buffer overflows were discovered in Contiki-NG 4.4 through 4.5, in the SNMP bulk get request response encoding function. The function parsing the received SNMP request does not verify the input message's requested variables against the capacity of the internal SNMP engine buffer. When a bulk get...

The GNU C Library (aka glibc or libc6) before 2.32 could overflow an on-stack buffer during range reduction if an input to an 80-bit long double function contains a non-canonical bit pattern a seen when passing a 0x5d414141414141410000 value to sinl on x86 targets. This is related to sysdeps/ieee754/ldbl-96/e_rem_pio2l.c.

...

sleuthkit:sleuthkit_fls_iso9660_fuzzer: Stack-buffer-overflow in parse_susp

Detailed Report: https://oss-fuzz.com/testcase?key=5740954167017472 Project: sleuthkit Fuzzing Engine: afl Fuzz Target: sleuthkitflsiso9660fuzzer Job Type: aflasansleuthkit Platform Id: linux Crash Type: Stack-buffer-overflow READ Crash Address: 0x7ffc279b0520 Crash State: parsesusp...

Denial Of Service (DoS)

clamav is vulnerable to denial of service DoS. The vulnerability exists as a stack buffer overflow read. An attacker could exploit this vulnerability by sending a crafted PDF file to an affected device...

NETGEAR R6700 Stack Buffer Overflow Vulnerability

The NETGEAR R6700 is an AC1750 Smart WiFi Router. A stack buffer overflow vulnerability exists in the acsd service in the NETGEAR R6700 prior to version 1.0.4.98. The vulnerability stems from a failure to properly validate the length of user-supplied data before copying it to a fixed-length stack...

binutils:fuzz_bfd: Stack-buffer-overflow in bfd_getl32

Detailed Report: https://oss-fuzz.com/testcase?key=5389726430003200 Project: binutils Fuzzing Engine: honggfuzz Fuzz Target: fuzzbfd Job Type: honggfuzzasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow READ 1 Crash Address: 0x7fffa22fd740 Crash State: bfdgetl32 vmstraverseindex...

OSV-2020-1558 Stack-buffer-overflow in dst_print_s2k

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24538 Crash type: Stack-buffer-overflow READ 1 Crash state: dstprints2k streamdumppacketsraw streamdumppackets...

rdkit:mol_data_stream_to_mol_fuzzer: Stack-buffer-overflow in RDKit::ParseMolBlockProperties

Detailed Report: https://oss-fuzz.com/testcase?key=5068710860292096 Project: rdkit Fuzzing Engine: libFuzzer Fuzz Target: moldatastreamtomolfuzzer Job Type: libfuzzerasani386rdkit Platform Id: linux Crash Type: Stack-buffer-overflow READ 1 Crash Address: 0xffca746f Crash State:...

EulerOS 2.0 SP8 : squid (EulerOS-SA-2020-1828)

According to the versions of the squid package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in Squid through 4.7. When handling the tag esi:when when ESI is enabled, Squid calls ESIExpression::Evaluate. This functi...

assimp:assimp_fuzzer: Stack-buffer-overflow in std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<ch

Detailed Report: https://oss-fuzz.com/testcase?key=4847905282981888 Project: assimp Fuzzing Engine: libFuzzer Fuzz Target: assimpfuzzer Job Type: libfuzzerasanassimp Platform Id: linux Crash Type: Stack-buffer-overflow READ 8 Crash Address: 0x7ffc14401cd0 Crash State: std::1::basicstring,...

CVE-2020-13916

A stack buffer overflow in webs in Ruckus Wireless Unleashed through 200.7.10.102.92 allows a remote attacker to execute code via an unauthenticated crafted HTTP request. This affects C110, E510, H320, H510, M510, R320, R310, R500, R510 R600, R610, R710, R720, R750, T300, T301n, T301s, T310c,...

Stack overflow

A stack buffer overflow in webs in Ruckus Wireless Unleashed through 200.7.10.102.92 allows a remote attacker to execute code via an unauthenticated crafted HTTP request. This affects C110, E510, H320, H510, M510, R320, R310, R500, R510 R600, R610, R710, R720, R750, T300, T301n, T301s, T310c,...

CVE-2020-13916

The CVE-2020-13916 entry describes a stack buffer overflow in the Webs service of Ruckus Wireless Unleashed (through 200.7.10.102.92) that allows a remote attacker to execute code via an unauthenticated crafted HTTP request. Affected devices include C110, E510, H320, H510, M510, R320, R310, R500,...

CVE-2020-13916

A stack buffer overflow in webs in Ruckus Wireless Unleashed through 200.7.10.102.92 allows a remote attacker to execute code via an unauthenticated crafted HTTP request. This affects C110, E510, H320, H510, M510, R320, R310, R500, R510 R600, R610, R710, R720, R750, T300, T301n, T301s, T310c,...

OSV-2020-1435 Stack-buffer-overflow in void put_epel_hv_fallback<unsigned short>

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22174 Crash type: Stack-buffer-overflow READ 2 Crash state: void putepelhvfallback accelerationfunctions::puthevcepelhv void mcchroma...

OSV-2020-1397 Stack-buffer-overflow in _TIFFVGetField

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=23632 Crash type: Stack-buffer-overflow WRITE 4 Crash state: TIFFVGetField TIFFVGetField TIFFVGetFieldDefaulted...

rdkit:smiles_string_to_mol_fuzzer: Stack-buffer-overflow in bool SmilesParseOps::parser::read_int<std::__1::__wrap_iter<char const*> >

Detailed Report: https://oss-fuzz.com/testcase?key=6210527601360896 Project: rdkit Fuzzing Engine: afl Fuzz Target: smilesstringtomolfuzzer Job Type: aflasanrdkit Platform Id: linux Crash Type: Stack-buffer-overflow READ 1 Crash Address: 0x7fff0e6f2108 Crash State: bool...