openthread/cli-uart-received-fuzzer: Stack-buffer-overflow in ot::Ip6::Address::FromString

Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=5661048276779008 Project: openthread Fuzzer: libFuzzeropenthreadcli-uart-received-fuzzer Fuzz target binary: cli-uart-received-fuzzer Job Type: libfuzzerasanopenthread Platform Id: linux Crash...

Out-Of-Bounds Read

PHP is vulnerable to out-of-bounds reads. The vulnerability exists in mbcenclen during regular expression searching. reg-dmin in forwardsearchrange when not handled properly would result in an invalid pointer dereference as an out-of-bounds read from a stack buffer...

EulerOS Virtualization 3.0.1.0 : qemu (EulerOS-SA-2019-1444)

According to the versions of the qemu packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An integer overflow issue was found in the NE200 NIC emulation. It could occur while receiving packets from the network, if the siz...

EulerOS Virtualization 3.0.1.0 : dnsmasq (EulerOS-SA-2019-1423)

According to the versions of the dnsmasq packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A heap buffer overflow was discovered in dnsmasq in the IPv6 router advertisement RA handling code. An attacker on the local...

About the security content of Apple TV Software 7.3 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1498)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An integer overflow vulnerability was found in the ringbufferresize calculations in which a privileged user can adjust the size o...

EulerOS Virtualization 2.5.4 : qemu-kvm (EulerOS-SA-2019-1373)

According to the version of the qemu-kvm packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - An integer overflow issue was found in the NE200 NIC emulation. It could occur while receiving packets from the network, if the si...

EulerOS Virtualization 2.5.3 : qemu-kvm (EulerOS-SA-2019-1368)

According to the version of the qemu-kvm packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - An integer overflow issue was found in the NE200 NIC emulation. It could occur while receiving packets from the network, if the si...

Lotus Domino 8.5.3 - EXAMINE Stack Buffer Overflow DEPASLR Bypass (NSAs EMPHASISMINE)

Lotus Domino 8.5.3 - EXAMINE Stack Buffer Overflow DEPASLR Bypass NSAs EMPHASISMINE Here is a working version of the NSA's EMPHASISMINE for IMAP Server Lotus Domino 8.5.3 FP0 DEP/ASLR bypass Replace breakpoints with msfvenom payload ALPHANUMERIC I love you Alison Thompson OAM @ThirdWaveORG Author...

Critical Flaws Found in Eight Wireless Presentation Systems

Multiple wireless presentation systems have critical vulnerabilities – including a remote command-injection glitch and an unauthenticated remote stack buffer overflow flaw. Wireless presentation systems allow users to display their content directly from their laptop no network cable necessary by...

Arbitrary Code Execution

dnsmasq is vulnerable to stack buffer overflows. A remote attacker on the local network could send a crafted DHCPv6 request to dnsmasq which would cause a denial of service crash or execute arbitrary code...

ROP2Win

This is the solution for the ROPEmporium rop2win challenge RET2Win Solution by jSacco Description: :P from struct import pack db-peda$ checksec CANARY : disabled FORTIFY : disabled NX : ENABLED PIE : disabled RELRO : Partial gdb-peda$ i functions ... 0x0804857b main 0x080485f6 pwnme 0x08048659...

Stack overflow

The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 firmware 2.0.3.4, Teq AV IT WIPS710 firmware 1.1.0.7, SHARP PN-L703WA firmware 1.4.2.3, Optoma WPS-Pr...

CVE-2019-3930

The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 firmware 2.0.3.4, Teq AV IT WIPS710 firmware 1.1.0.7, SHARP PN-L703WA firmware 1.4.2.3, Optoma WPS-Pr...

CVE-2019-3930

CVE-2019-3930 affects Crestron AM-100/AM-101, Barco wePresent WiPG-1000P/ WiPG-1600W (pre-2.4.1.19), Extron ShareLink 200/250, Teq AV IT WIPS710, SHARP PN-L703WA, Optoma WPS-Pro, Blackbox HD WPS, InFocus LiteShow3/4. Root cause: stack buffer overflow in libAwgCgi.so PARSERtoCHAR. Vulnerability al...

CVE-2019-3930

The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 firmware 2.0.3.4, Teq AV IT WIPS710 firmware 1.1.0.7, SHARP PN-L703WA firmware 1.4.2.3, Optoma WPS-Pr...

CVE-2019-11542

In Pulse Secure Pulse Connect Secure version 9.0RX before 9.0R3.4, 8.3RX before 8.3R7.1, 8.2RX before 8.2R12.1, and 8.1RX before 8.1R15.1 and Pulse Policy Secure version 9.0RX before 9.0R3.2, 5.4RX before 5.4R7.1, 5.3RX before 5.3R12.1, 5.2RX before 5.2R12.1, and 5.1RX before 5.1R15.1, an...

Stack overflow

In Pulse Secure Pulse Connect Secure version 9.0RX before 9.0R3.4, 8.3RX before 8.3R7.1, 8.2RX before 8.2R12.1, and 8.1RX before 8.1R15.1 and Pulse Policy Secure version 9.0RX before 9.0R3.2, 5.4RX before 5.4R7.1, 5.3RX before 5.3R12.1, 5.2RX before 5.2R12.1, and 5.1RX before 5.1R15.1, an...

PT-2019-12365 · Pulse · Pulse Policy Secure +1

Name of the Vulnerable Software and Affected Versions: Pulse Connect Secure versions 9.0RX before 9.0R3.4 Pulse Connect Secure versions 8.3RX before 8.3R7.1 Pulse Connect Secure versions 8.2RX before 8.2R12.1 Pulse Connect Secure versions 8.1RX before 8.1R15.1 Pulse Policy Secure versions 9.0RX...

OPENSUSE-SU-2019:1272-1 Security update for GraphicsMagick

This update for GraphicsMagick fixes the following issues: - CVE-2019-11005: Fixed a stack-based buffer overflow in SVGStartElement of coders/svg.c that allowed attackers to cause DOS or an unspecified impact boo1132058 - CVE-2019-11006: Fixed a heap-based buffer over-read in the function...