OSV-2020-305 Stack-buffer-overflow in ot::NetworkData::Leader::SendCommissioningGetResponse

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17297 Crash type: Stack-buffer-overflow READ 1 Crash state: ot::NetworkData::Leader::SendCommissioningGetResponse ot::NetworkData::Leader::HandleCommissioningGet ot::Coap::CoapBase::ProcessReceivedRequest...

OSV-2020-289 Stack-buffer-overflow in ot::Message::Write

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17147 Crash type: Stack-buffer-overflow READ Crash state: ot::Message::Write ot::Message::Append ot::Mle::Mle::AppendNetworkData...

OSV-2020-258 Stack-buffer-overflow in ot::Message::Write

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19338 Crash type: Stack-buffer-overflow READ 11 Crash state: ot::Message::Write ot::Message::Append ot::Mle::Mle::AppendResponse...

libfdk-aac:aacDecoder_DecodeFrame: Stack-buffer-overflow in Pred_lt4

Detailed Report: https://oss-fuzz.com/testcase?key=5697795251240960 Project: libfdk-aac Fuzzing Engine: libFuzzer Fuzz Target: aacDecoderDecodeFrame Job Type: libfuzzerasani386libfdk-aac Platform Id: linux Crash Type: Stack-buffer-overflow READ 4 Crash Address: 0xfffcb3d4 Crash State: Predlt4...

DrayTek Vigor Stack Buffer Overflow (CVE-2020-10824; CVE-2020-10825)

A stack buffer overflow vulnerability exists in DrayTek Vigor. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

DrayTek Vigor Stack Buffer Overflow (CVE-2020-10823)

A stack buffer overflow vulnerability exists in DrayTek Vigor. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

DrayTek Vigor3900, Vigor2960 and Vigor300B Stack Buffer Overflow Vulnerability

DrayTek Vigor3900 and others are products of DrayTek Taiwan, China.DrayTek Vigor3900 is a broadband router/VPN gateway appliance.Vigor2960 is a load-balancing router and VPN gateway appliance.Vigor300B is a load-balancing router. A stack buffer overflow vulnerability exists in the DrayTek...

LanSpy 2.0.1.159 - Stack Buffer Overflow

LanSpy version 2.0.1.159 stack buffer overflow exploit that adds a user. """ Exploit title: LanSpy v.2.0.1.159 - Stack Buffer Overflow Exploit Author: Paolo Stagno aka VoidSec - email protected - https://voidsec.com Vendor Homepage: https://lizardsystems.com/ Download:...

CVE-2020-9555

Adobe Bridge versions 10.0.1 and earlier version have a stack-based buffer overflow vulnerability. Successful exploitation could lead to arbitrary code execution...

OSV-2020-253 Stack-buffer-overflow in mrb_str_len_to_dbl

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19902 Crash type: Stack-buffer-overflow WRITE 1 Crash state: mrbstrlentodbl mrbstrlentoinum mrbstrtoi...

Netgear httpd upgrade_check.cgi stack buffer overflow

Overview Multiple Netgear devices contain a stack buffer overflow in the httpd web server's handling of upgradecheck.cgi, which may allow for unauthenticated remote code execution with root privileges. Description Many Netgear devices contain an embedded web server, which is provided by the httpd...

OSV-2020-209 Stack-buffer-overflow in coolkey_rsa_op

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22392 Crash type: Stack-buffer-overflow READ Crash state: coolkeyrsaop coolkeycomputecrypt scdecipher...

OSV-2020-189 Stack-buffer-overflow in tvb_get_ipv4_addr_with_prefix_len

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21718 Crash type: Stack-buffer-overflow READ 4 Crash state: tvbgetipv4addrwithprefixlen dissectlspextipreachabilityclv isisdissectclvs...

OSV-2020-164 Stack-buffer-overflow in ot::NetworkData::NetworkData::FindService

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21762 Crash type: Stack-buffer-overflow READ Crash state: ot::NetworkData::NetworkData::FindService ot::NetworkData::Leader::Validate ot::NetworkData::Leader::RegisterNetworkData...

OSV-2020-124 Dynamic-stack-buffer-overflow in RetrieveFPForSig

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21758 Crash type: Dynamic-stack-buffer-overflow WRITE 4 Crash state: RetrieveFPForSig DetectSetFastPatternAndItsId SigGroupBuild...

OSV-2020-85 Dynamic-stack-buffer-overflow in janus_rtcp_incoming_transport_cc

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20529 Crash type: Dynamic-stack-buffer-overflow READ 2 Crash state: janusrtcpincomingtransportcc janusrtcpfixssrc rtcpfuzzer.c...

OSV-2020-57 Stack-buffer-overflow in ot::NetworkData::PrefixTlv::GetPrefixLength

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=23267 Crash type: Stack-buffer-overflow READ 1 Crash state: ot::NetworkData::PrefixTlv::GetPrefixLength ot::NetworkData::NetworkData::FindPrefix ot::NetworkData::Leader::Validate...

OSV-2020-55 Stack-buffer-overflow in tcos_decipher

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22967 Crash type: Stack-buffer-overflow WRITE Crash state: tcosdecipher scdecipher usekey...

OSV-2020-62 Stack-buffer-overflow in tvb_get_ipv4_addr_with_prefix_len

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21715 Crash type: Stack-buffer-overflow READ 4 Crash state: tvbgetipv4addrwithprefixlen decodepathprefix4 decodeprefixMP...

OSV-2020-14 Stack-buffer-overflow in fmt_setup

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22507 Crash type: Stack-buffer-overflow WRITE 1 Crash state: fmtsetup mrbstrformat mrbfsprintf...