13 matches found
EUVD-1999-0252
Malware in sbrugna...
EUVD-2022-44245
Malicious code in bioql PyPI...
CVE-2022-40999
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2024-36493
Affects Wavlink AC3000 M33A8.V5030.210505, specifically the wireless.cgi set_wifi_basic() function. The vulnerability is a stack-based buffer overflow caused by unsafely copying the POST parameter SSID2G (and related fields) to the heap and then to the stack via sprintf, enabling arbitrary comman...
CVE-2024-39359
CVE-2024-39359 describes a stack-based buffer overflow in the Wavlink AC3000 wireless.cgi DeleteMac() function (variant M33A8.V5030.210505). A specially crafted, authenticated HTTP request can trigger arbitrary code execution via uncontrolled copies in DeleteMac(), with evidence of an abuse chain...
CVE-2022-41027
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-41012
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-41011
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-41005
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-40998
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-40986
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
WolfPack Development XSHIPWARS 1.01.2.4 - Remote Buffer Overflow
WolfPack Development XSHIPWARS 1.01.2.4 - Remote Buffer Overflow / source: https://www.securityfocus.com/bid/863/info Xshipwars a graphical 'star battle' client/server based game which runs a variety of platforms. Certain versions of the server which facilitates this game versions before 1.25 had...
ISC BIND (Linux/BSD) - Remote Buffer Overflow (1)
/ source: https://www.securityfocus.com/bid/134/info A buffer overflow exists in certain versions of BIND, the nameserver daemon currently maintained by the Internet Software Consortium ISC. BIND fails to properly bound the data recieved when processing an inverse query. Upon a memory copy,...