206024 matches found
CVE-2020-37049
CVE-2020-37049 affects Frigate 3.36.0.9. The vulnerability is a local buffer overflow in the Command Line input field that can allow an attacker to execute arbitrary code, bypass DEP, and run commands (e.g., calc.exe) via a specially crafted input sequence. Exploitation details and a PoC exist in...
CVE-2020-37040 Code Blocks 17.12 - 'File Name' Local Buffer Overflow
Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project...
CVE-2020-37040
Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project...
CVE-2020-37040 Code Blocks 17.12 - 'File Name' Local Buffer Overflow
Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project...
CVE-2020-37040
CVE-2020-37040 affects Code Blocks 17.12 and is caused by a local buffer overflow in the file-name handling. An attacker can trigger arbitrary code execution by pasting a specially crafted Unicode file name during project creation (e.g., commands like calc.exe). The vulnerability impact is descri...
CVE-2020-37040
Removed by vendor...
CVE-2020-37036 RM Downloader 2.50.60 2006.06.23 - 'Load' Local Buffer Overflow
RM Downloader 2.50.60 contains a local buffer overflow vulnerability in the 'Load' parameter that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious payload with an egg hunter technique to bypass memory protections and execute commands like launching...
CVE-2020-37036
RM Downloader 2.50.60 is affected by a local buffer overflow in the Load parameter that can allow arbitrary code execution by overwriting memory. The vulnerability is described as exploitable via a crafted payload using an egg hunter technique to bypass protections, potentially enabling commands ...
CVE-2020-37036 RM Downloader 2.50.60 2006.06.23 - 'Load' Local Buffer Overflow
RM Downloader 2.50.60 contains a local buffer overflow vulnerability in the 'Load' parameter that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious payload with an egg hunter technique to bypass memory protections and execute commands like launching...
CVE-2020-37036
RM Downloader 2.50.60 contains a local buffer overflow vulnerability in the 'Load' parameter that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious payload with an egg hunter technique to bypass memory protections and execute commands like launching...
CVE-2020-37029 FTPDummy 4.80 - Local Buffer Overflow
FTPDummy 4.80 contains a local buffer overflow vulnerability in its preference file handling that allows attackers to execute arbitrary code. Attackers can craft a malicious preference file with carefully constructed shellcode to trigger a structured exception handler overwrite and execute system...
CVE-2020-37031 Simple Startup Manager 1.17 - 'File' Local Buffer Overflow
Simple Startup Manager 1.17 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting memory through the 'File' input parameter. Attackers can craft a malicious payload with 268 bytes to trigger code execution, bypassing DEP and overwriting memo...
CVE-2020-37031 Simple Startup Manager 1.17 - 'File' Local Buffer Overflow
Simple Startup Manager 1.17 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting memory through the 'File' input parameter. Attackers can craft a malicious payload with 268 bytes to trigger code execution, bypassing DEP and overwriting memo...
CVE-2020-37029
FTPDummy 4.80 is affected by a local buffer overflow in the handling of its preference files, allowing an attacker to craft a malicious preference file that contains shellcode to overwrite a structured exception handler and execute system commands. The vulnerability affects FTPDummy version 4.80 ...
CVE-2020-37028
CVE-2020-37028 relates to Socusoft Photo to Video Converter Professional 8.07, which contains a local buffer overflow in the 'Output Folder' input field. The issue triggers a stack-based buffer overflow when a crafted payload is pasted into the output folder field, potentially enabling arbitrary ...
CVE-2020-37027
Sickbeard alpha contains a remote command injection vulnerability that allows unauthenticated attackers to execute arbitrary commands through the extra scripts configuration. Attackers can set malicious commands in the extra scripts field and trigger processing to execute remote code on the...
CVE-2020-37024 Nidesoft DVD Ripper 5.2.18 - Local Buffer Overflow
Nidesoft DVD Ripper 5.2.18 contains a local buffer overflow vulnerability in the License Code registration parameter that allows attackers to execute arbitrary code. Attackers can craft a malicious payload and paste it into the License Code field to trigger a stack-based buffer overflow and execu...
CVE-2020-37024 Nidesoft DVD Ripper 5.2.18 - Local Buffer Overflow
Nidesoft DVD Ripper 5.2.18 contains a local buffer overflow vulnerability in the License Code registration parameter that allows attackers to execute arbitrary code. Attackers can craft a malicious payload and paste it into the License Code field to trigger a stack-based buffer overflow and execu...
CVE-2019-25232 NetPCLinker 1.0.0.0 - Buffer Overflow
NetPCLinker 1.0.0.0 contains a buffer overflow vulnerability in the Clients Control Panel DNS/IP field that allows attackers to execute arbitrary shellcode. Attackers can craft a malicious payload in the DNS/IP input to overwrite SEH handlers and execute shellcode when adding a new client...
CVE-2026-25153 @backstage/plugin-techdocs-node vulnerable to arbitrary code execution via MkDocs hooks
Backstage is an open framework for building developer portals, and @backstage/plugin-techdocs-node provides common node.js functionalities for TechDocs. In versions of @backstage/plugin-techdocs-node prior to 1.13.11 and 1.14.1, when TechDocs is configured with runIn: local, a malicious actor who...