CVE-2023-49992

A flaw was found in the espeak-ng package. A local attacker can use a specially crafted payload to trigger a buffer overflow condition, which may lead to an application crash or allow for arbitrary code execution. Mitigation Mitigation for this issue is either not available or the currently...

Stack overflow

CNCSoft: All versions prior to 1.01.32 does not properly sanitize input while processing a specific project file, allowing a possible stack-based buffer overflow condition...

Microsoft Windows cmd.exe Stack Buffer Overflow

Credits: John Page aka hyp3rlinx, malvuln + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MICROSOFT-WINDOWS-CMD.EXE-STACK-BUFFER-OVERFLOW.txt + twitter.com/hyp3rlinx + ISR: ApparitionSec Vendor www.microsoft.com Product cmd.exe is the default command-line...

Cisco Will Not Patch Critical RCE Flaw Affecting End-of-Life Business Routers

Networking equipment major Cisco Systems has said it does not plan to fix a critical security vulnerability affecting some of its Small Business routers, instead urging users to replace the devices. The bug, tracked as CVE-2021-1459, is rated with a CVSS score of 9.8 out of 10, and affects RV110W...

Omron CX-One

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low skill level to exploit Vendor: Omron Equipment: CX-One Vulnerabilities: Untrusted Pointer Dereference, Stack-based Buffer Overflow, Type Confusion 2. RISK EVALUATION Successful exploitation of these vulnerabilities could crash the device being...

Adobe Flash Player ShaderJob Buffer Overflow Exploit

This Metasploit module exploits a buffer overflow vulnerability related to the ShaderJob workings on Adobe Flash Player. The vulnerability happens when trying to apply a Shader setting up the same Bitmap object as src and destination of the ShaderJob. Modifying the "width" attribute of the...

Xinetd 2.1.8 - Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2840/info The possibility for a buffer overflow condition exists in the xinetd daemon. Xinetd provides the ability to log via identd the user-identities of clients connecting to specific services if the clients host...

EZHomeTech Ezserver 6.4 - Remote Stack Overflow

EZHomeTech Ezserver 6.4 - Remote Stack Overflow Exploit Title: Ezhometech EzServer =6.4 Stack Overflow Vulnerability Author: modpr0be Contact: researchatSpenteradotcom Platform: Windows Tested on: Windows XP SP3 OptIn, Windows 2003 SP2 OptIn Software Link: http://www.ezhometech.com/buyezserver.ht...

[SECURITY] [DSA 604-1] New hpsockd packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 604-1 [email protected] http://www.debian.org/security/ Martin Schulze December 3rd, 2004 http://www.debian.org/security/faq -...

Electrasoft 32Bit FTP 9.49.1 - Client Long Server Banner Buffer Overflow

source: https://www.securityfocus.com/bid/6764/info It has been reported that Electrasoft 32Bit FTP client may be prone to a buffer overflow condition. This issue is due to the client not implementing bounds checking on banner data copied into local memory buffers. It may be possible for remote...

GDAM123 0.9330.942 - Filename Buffer Overflow

GDAM123 0.9330.942 - Filename Buffer Overflow // source: https://www.securityfocus.com/bid/5578/info The GDAM123 command-line MP3 player is prone to a buffer overflow condition when handling overly long filenames. Under some circumstances, the player may be installed setuid root to allow...

3.3/4.0/4.2 MERCUR MailServer - Control-Service Buffer Overflow

// source: https://www.securityfocus.com/bid/5261/info // MERCUR Mailserver is prone to a remotely exploitable buffer overflow condition. The condition is due to insufficient bounds checking in the Control-Service component, which listens on TCP port 32000 by default. It is possible to corrupt...

Real Networks RealJukebox 1.0.2/RealOne 6.0.10 Player Gold - Skinfile Buffer Overflow

// source: https://www.securityfocus.com/bid/5217/info Real Software has announced a vulnerability in RealJukebox2 and Real Player Gold. A buffer overflow condition exists due to insufficient bounds checking of fields in skinfiles. There is an unchecked buffer for the "CONTROLnImage" field of the...

Sam Lantinga splitvt 1.6.3 - Local Buffer Overflow

Sam Lantinga splitvt 1.6.3 - Local Buffer Overflow // source: https://www.securityfocus.com/bid/1346/info A buffer overflow condition that could be exploited to obtain root exists in splitvt 1.6.3 and earlier. Splitvt is distributed with several Linux distributions. / Local exploit for Debian...