TOTOLINK X5000R Stack Overflow Vulnerability

TOTOLINK X5000R is a router.TOTOLINK X5000R v9.1.0u.6118B20201102 is vulnerable to buffer error, which can be exploited by attackers to cause a denial of service DoS via eip, sip, and server parameters...

mruby 缓冲区错误漏洞

mruby is a lightweight implementation of the Ruby language. Homebrew mruby 3.2 suffers from an out-of-bounds read vulnerability, for which no detailed vulnerability details are currently available...

Stefanberger Swtpm 缓冲区错误漏洞

Stefanberger Swtpm is a Libtpms-based software emulator from the individual developer Stefanberger. The software supports sockets, character devices and the Linux CUSE interface. A buffer error vulnerability exists in Stefanberger Swtpm versions prior to 0.5.3, 0.6.2, and 0.7.1, which can be...

pcf2bdf 安全漏洞

Pcf2bdf is a font decompiler by the Japanese individual developer Nayuta Taga. It is used to convert X fonts from a portable compiled format to a bitmap distribution format. A buffer error vulnerability exists in pcf2bdf, which allows an attacker to trigger an unsafe memory access via a specially...

virglrenderer 缓冲区错误漏洞

virglrenderer is a VirGL virtual OpenGL renderer. A buffer error vulnerability exists in Virglrenderer that stems from a failure of the product's readtransferdata function to properly handle memory boundaries. An attacker could use this vulnerability to trigger a denial of service and possibly ru...

Core FTP 缓冲区错误漏洞

Core FTP is a file transfer server. Core FTP / SFTP Server v2 Build 725 suffers from a buffer error vulnerability that could allow an unauthenticated attacker to cause a denial of service DoS via a SSH service via a crafted packet...

Wasmtime 缓冲区错误漏洞

Wasmtime, a Bytecode Consortium project, is a standalone wasm-optimized runtime for WebAssembly and WASI only. Wasmtime suffers from a buffer error vulnerability that stems from a bug in Wasmtime's pooled instance allocator, where failure to instantiate an instance for a module that defines an...

mruby 缓冲区错误漏洞

mruby is a lightweight implementation of the Ruby language. mruby 3.2 previously had a security vulnerability that stemmed from the use of out-of-range pointer offsets. No detailed vulnerability details are currently available...

Mozilla Thunderbird 缓冲区错误漏洞

Mozilla Thunderbird is the United States Mozilla Foundation's set of independent from the Mozilla Application Suite e-mail client software. The software supports the IMAP and POP email protocols as well as the HTML email format. Mozilla Thunderbird suffers from a buffer error vulnerability that...

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security signature issue vulnerability that can be exploited by attackers to bypass security restrictions...

Artifex Software Artifex MuJS 缓冲区错误漏洞

Artifex Software Artifex MuJS is a lightweight JavaScript interpreter from Artifex Software, Inc. that is used to provide script execution capabilities when embedded in other software. A buffer error vulnerability exists in Artifex Mujs due to a heap buffer overflow caused by JumpList in the...

Android Automotive OS 缓冲区错误漏洞

Google Android Automotive Os is an operating system and platform from Google, Inc. that runs directly on in-vehicle hardware. Android Automotive OS suffers from a buffer error vulnerability that originates in startVideoStream, which may perform an OOB read in the heap when the size of the camera...

Schneider Electric Interactive Graphical SCADA System 缓冲区错误漏洞

The Schneider Electric Interactive Graphical SCADA System IGSS is a SCADA Data Acquisition and Supervisory System system for monitoring and controlling industrial processes from Schneider Electric, France. A buffer error vulnerability exists in the Schneider Electric Interactive Graphical SCADA...

Schneider Electric 多款产品缓冲区错误漏洞

Schneider Electric Modicon Quantum and Schneider Electric Modicon M340 are both products of Schneider Electric, a French company. Schneider Electric Modicon M340 is a medium-range PLC programmable logic controller for industrial processes and infrastructure. Send a specially crafted HTTP request ...

TP-LINK AC1750 缓冲区错误漏洞

The TP-LINK AC1750 is a wireless router from China P&L TP-LINK. A buffer error vulnerability exists in the TP-LINK AC1750 prior to version 211210, which stems from a lack of proper validation of user-supplied data, which could result in reading beyond the end of an allocated buffer. An attacker...

Foxit PDF Reader 缓冲区错误漏洞

Foxit PDF Reader is a PDF reader from Foxit China. Foxit PDF Reader has a security vulnerability that can be exploited by attackers to execute code in the context of the current process...

Interactive Graphical SCADA System Data Server 缓冲区错误漏洞

The Schneider Electric Interactive Graphical Scada System is a Scada system for monitoring industrial processes from Schneider Electric, France. An out-of-bounds read vulnerability exists in the Schneider Electric Interactive Graphical Scada System, which can be exploited by an attacker to cause ...

Siemens Simcenter Femap 缓冲区错误漏洞

Siemens Simcenter Femap is a cutting-edge engineering simulation application from Siemens, Germany. It is used to create, edit and import/reuse mesh-based finite element analysis models of complex products or systems. Siemens Simcenter Femap is vulnerable to file parsing, which can be exploited b...

Intel Trace Analyzer And Collector 缓冲区错误漏洞

Intel Trace Analyzer And Collector is a trace analyzer and collector from Intel USA. It is used to analyze Mpi behavior in parallel applications. Intel Trace Analyzer and Collector suffers from a buffer error vulnerability that stems from a potential security flaw in Intel Trace Analyzer and...

Intel Trace Analyzer And Collector 缓冲区错误漏洞

Intel Trace Analyzer And Collector is a trace analyzer and collector from Intel USA. It is used to analyze Mpi behavior in parallel applications. Intel Trace Analyzer and Collector suffers from a buffer error vulnerability that stems from a potential security flaw in Intel Trace Analyzer and...