Anviz CrossChex - Buffer Overflow (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Anviz CrossChex Buffer Overflow', 'Description' = %q Waits for broadcasts from Ainz CrossChex looking for new devices, and returns a custom...

PostgreSQL Database Password Change Stack Buffer Overflow (CVE-2019-10164)

A stack buffer overflow exists in PostgreSQL Database. The vulnerability is due to a stack buffer overflow when setting a password. A remote, authenticated attacker could send a crafted request in order to trigger the vulnerability. Successful exploitation will result in arbitrary code execution...

opensc:fuzz_pkcs15_reader: Stack-buffer-overflow in sc_pkcs15emu_gemsafeGPK_init

Project: https://github.com/OpenSC/OpenSC.git Detailed Report: https://oss-fuzz.com/testcase?key=5682366024777728 Project: opensc Fuzzing Engine: libFuzzer Fuzz Target: fuzzpkcs15reader Job Type: libfuzzerasanopensc Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 4 Crash Address:...

binutils:fuzz_disassemble: Stack-buffer-overflow in objdump_sprintf

Detailed Report: https://oss-fuzz.com/testcase?key=5763790471954432 Project: binutils Fuzzing Engine: libFuzzer Fuzz Target: fuzzdisassemble Job Type: libfuzzerasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow READ 1 Crash Address: 0x7ffe5f5bd160 Crash State: objdumpsprintf...

binutils:fuzz_disassemble: Stack-buffer-overflow in objdump_sprintf

Detailed Report: https://oss-fuzz.com/testcase?key=5648977540415488 Project: binutils Fuzzing Engine: libFuzzer Fuzz Target: fuzzdisassemble Job Type: libfuzzerasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow READ 1 Crash Address: 0x7fff90210240 Crash State: objdumpsprintf prt...

binutils:fuzz_disassemble: Stack-buffer-overflow in objdump_sprintf

Detailed Report: https://oss-fuzz.com/testcase?key=5660495032090624 Project: binutils Fuzzing Engine: libFuzzer Fuzz Target: fuzzdisassemble Job Type: libfuzzerasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow READ 1 Crash Address: 0x7ffe5f9deea0 Crash State: objdumpsprintf...

binutils:fuzz_disassemble: Stack-buffer-overflow in objdump_sprintf

Detailed Report: https://oss-fuzz.com/testcase?key=5073917066870784 Project: binutils Fuzzing Engine: libFuzzer Fuzz Target: fuzzdisassemble Job Type: libfuzzerasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow READ 1 Crash Address: 0x7ffd30c9ffa5 Crash State: objdumpsprintf...

binutils:fuzz_disassemble: Stack-buffer-overflow in objdump_sprintf

Detailed Report: https://oss-fuzz.com/testcase?key=5663200928595968 Project: binutils Fuzzing Engine: libFuzzer Fuzz Target: fuzzdisassemble Job Type: libfuzzerasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow READ 1 Crash Address: 0x7ffce0fe8ba2 Crash State: objdumpsprintf...

Security Bulletin: Aspera Web Application (Faspex, Console, Orchestrator, Shares) are affected by Apache vulnerabilities (CVE-2019-9517, CVE-2019-10097)

Summary Aspera Web Application Faspex, Console, Shares, Orchestrator have affected the following Apache vulnerabilities. Vulnerability Details CVEID: CVE-2019-9517 DESCRIPTION: Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially leading to a denial of...

janus-gateway:rtcp_fuzzer: Dynamic-stack-buffer-overflow in janus_rtcp_incoming_transport_cc

Project: https://github.com/meetecho/janus-gateway.git Detailed Report: https://oss-fuzz.com/testcase?key=5648598425665536 Project: janus-gateway Fuzzing Engine: afl Fuzz Target: rtcpfuzzer Job Type: aflasanjanus-gateway Platform Id: linux Crash Type: Dynamic-stack-buffer-overflow READ 2 Crash...

CVE-2020-6060

A stack buffer overflow vulnerability exists in the way MiniSNMPD version 1.4 handles multiple connections. A specially timed sequence of SNMP connections can trigger a stack overflow, resulting in a denial of service. To trigger this vulnerability, an attacker needs to simply initiate multiple...

CVE-2020-6060

Mini-SNMPD 1.4 is affected by a stack-based buffer overflow when handling multiple connections due to flawed socket list cleanup that can leave a -1 fd and trigger a process crash via FD_SET in select loops. TALOS advisories detail an exploit path and crash conditions, confirming the vulnerabilit...

Vulnerability Spotlight: Denial-of-service, information leak bugs in Mini-SNMPD

Aleksandar Nikolic of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw. Multiple vulnerabilities exist in Mini-SNMPD, a lightweight implementation of a Simple Network Management Protocol server. An attacker can exploit these bugs by providing a specially crafted SNMPD request to...

CVE-2014-8321

Stack-based buffer overflow in the gpstracker function in airodump-ng.c in Aircrack-ng before 1.2 RC 1 allows local users to execute arbitrary code or gain privileges via unspecified vectors...

ffmpeg:ffmpeg_BSF_HEVC_METADATA_fuzzer: Stack-buffer-overflow in cbs_h265_read_st_ref_pic_set

Project: https://git.ffmpeg.org/ffmpeg.git Detailed Report: https://oss-fuzz.com/testcase?key=5707770718584832 Project: ffmpeg Fuzzing Engine: afl Fuzz Target: ffmpegBSFHEVCMETADATAfuzzer Job Type: aflasanffmpeg Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 4 Crash Address:...

Stack overflow

HT Editor 2.0.20 has a Remote Stack Buffer Overflow Vulnerability...

CVE-2012-5867

HT Editor 2.0.20 has a Remote Stack Buffer Overflow Vulnerability...

CVE-2012-5867

HT Editor 2.0.20 is affected by a Remote Stack Buffer Overflow vulnerability (CVE-2012-5867). The available documents consistently identify HT Editor 2.0.20 as the vulnerable component and describe a remote stack overflow, but do not provide technical specifics about the root cause, vulnerable fu...

Huawei EulerOS: Security Advisory for 389-ds-base (EulerOS-SA-2018-1032)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1187)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...