412 matches found
CVE-2018-20122
The web interface on FASTGate Fastweb devices with firmware through 0.00.47FW200Askey 2017-05-17 software through 1.0.1b exposed a CGI binary that is vulnerable to a command injection vulnerability that can be exploited to achieve remote code execution with root privileges. No authentication is...
Router exploitation of the Stack Overflow entry a-vulnerability warning-the black bar safety net
MIPS instruction set is mainly used in some embedded IOT devices, such as Router, camera. To these devices for binary vulnerability mining you need to have the MIPS to have a certain familiar. The MIPS instruction set of Stack Overflow and the x86 instruction set is different, so the exploits is...
A binary vulnerability exists in html5_video_player KeyCode.
html5videoplayer is a software for Mac OS. A binary vulnerability exists in html5videoplayer KeyCode. An attacker can exploit the vulnerability to cause a denial of service...
Binary Vulnerability in Hikvision Video Playback Library SDK
Hikvision Playback Library SDK is a secondary development kit related to playback of Hikvision embedded network DVRs, video servers, and supporting products for IP devices. A binary vulnerability exists in the Hikvision Video Playback Library SDK. An attacker can exploit the vulnerability to caus...
Binary vulnerability in the information technology examination practice system of Shincao Middle School
Xinkao Middle School Information Technology Exam Practice System is an information technology exam practice system developed by Jinan Kaoyuan Information Technology Co. There is a binary vulnerability in Xinkao Middle School Information Technology Exam Practice System that can be exploited by...
Binary vulnerability in the Information Technology Exam Practice System for Shincao Middle Schools (Middle Schools in Shandong Province)
Xinkao Middle School Information Technology Exam Practice System is an information technology exam practice system developed by Jinan Kaoyuan Information Technology Co. A binary vulnerability exists in Xinkao Middle School Information Technology Exam Practice System Middle School in Shandong...
Stack overflow
An issue in file was introduced in commit 9611f31313a93aa036389c5f3b15eea53510d4d1 Oct 2016 lets an attacker overwrite a fixed 20 bytes stack buffer with a specially crafted .notes section in an ELF binary. This was fixed in commit 35c94dc6acc418f1ad7f6241a6680e5327495793 Aug 2017...
SUSE-SU-2017:1621-1 Security update for glibc
This update for glibc fixes the following issues: - CVE-2017-1000366: Fix a potential privilege escalation vulnerability that allowed unprivileged system users to manipulate the stack of setuid binaries to gain special privileges. bsc1039357...
iTunes < 10.5 Multiple Vulnerabilities
Binary data 6037.prm...
Security advisory: LSF 5.1 local root exploit
Security Advisory 22 May 2003 Local root in LSF 5.1 Name: Load Sharing Facility version 5.1 Severity: High Vendor URL: http://www.platform.com Author: Tomasz Grabowski [email protected] Vendor notified: 25 Feb 2003 Vendor response: 25 Feb 2003 Vendor fix: 19 Mar 2003 Commercial: I'm looking for ...
xsoldier (FreeBSD 3.3/Linux Mandrake 7.0) - Local Buffer Overflow (2)
/ source: https://www.securityfocus.com/bid/871/info Certain versions of FreeBSD 3.3 Confirmed and Linux Mandrake confirmed ship with a vulnerable binary in their X11 games package. The binary/game in question, xsoldier, is a setuid root binary meant to be run via an X windows console. The binary...
Netscape Communicator 4.5/4.51/4.6/4.61/4.7/4.72/4.73 - '/tmp' Symlink
source: https://www.securityfocus.com/bid/1201/info Netscape Communicator version 4.73 and prior may be susceptible to a /tmp file race condition when importing certificates. Netscape creates a /tmp file which is world readable and writable in /tmp, without calling stat or fstat on the file. As...