The vulnerability of the formSetCfm() function (/goform/setcfm) in the Tenda AC1206 router’s microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the formSetCfm function /goform/setcfm in the Tenda AC1206 router microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

CVE-2022-45720

IP-COM M50 V15.11.0.3310768 was discovered to contain multiple buffer overflows via the ip, mac, and remark parameters in the formIPMacBindModify function...

CVE-2021-37748

Multiple buffer overflows in the limited configuration shell /sbin/gsconfig on Grandstream HT801 devices before 1.0.29 allow remote authenticated users to execute arbitrary code as root via a crafted manageif setting, thus bypassing the intended restrictions of this shell and taking full control ...

CVE-2021-32968

Two buffer overflows in the built-in web server in Moxa NPort IAW5000A-I/O Series firmware version 2.2 or earlier may allow a remote attacker to cause a denial-of-service condition...

CVE-2020-25189

The affected product is vulnerable to three stack-based buffer overflows, which may allow an unauthenticated attacker to remotely execute arbitrary code on the IP150 firmware versions 5.02.09...

CVE-2010-3751

Multiple heap-based buffer overflows in an ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 allow remote attackers to execute arbitrary code via a long .smil argument to the 1 tfile, 2 pnmm, or 3 cdda protocol handler...

CVE-2010-3040

Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent Contact Manager ICM before 7.0 allow remote attackers to execute arbitrary code via a long parameter in a 1 HandleUpgradeAll, 2 AgentUpgrade, 3 HandleQueryNodeInfoReq, or 4 HandleUpgradeTrace TCP packet, aka...

CVE-2010-4712

Multiple stack-based buffer overflows in gwia.exe in GroupWise Internet Agent GWIA in Novell GroupWise before 8.02HP allow remote attackers to execute arbitrary code via a Content-Type header containing 1 multiple items separated by ; semicolon characters or 2 crafted string data...

CVE-2013-1179

Multiple buffer overflows in the 1 SNMP and 2 License Manager implementations in Cisco NX-OS on Nexus 7000 devices 4.x and 5.x before 5.25 and 6.x before 6.11 and MDS 9000 devices 4.x and 5.x before 5.25 allow remote authenticated users to execute arbitrary code via a crafted SNMP request, aka Bu...

CVE-2019-14062

Buffer overflows while decoding setup message from Network due to lack of check of IE message length received from network in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables ...

CVE-2011-5280

Multiple stack-based buffer overflows in BOINC 6.13.x allow remote attackers to cause a denial of service crash via a long trickle-up to 1 client/cstrickle.cpp or 2 db/dbbase.cpp...

CVE-2013-1178

Multiple buffer overflows in the Cisco Discovery Protocol CDP implementation in Cisco NX-OS on Nexus 7000 devices 4.x and 5.x before 5.24 and 6.x before 6.11, Nexus 5000 and 5500 devices 4.x and 5.x before 5.13N11, Nexus 4000 devices before 4.12E11h, Nexus 3000 devices 5.x before 5.03U31, Nexus...

CVE-2010-3110

Multiple buffer overflows in the Novell Client novfs module for the Linux kernel in SUSE Linux Enterprise 11 SP1 and openSUSE 11.3 allow local users to gain privileges via unspecified vectors...

CVE-2011-3493

Multiple stack-based buffer overflows in the DHOneSecondTick function in Cogent DataHub 7.1.1.63 and earlier allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via long 1 domain, 2 reportdomain, 3 registerdatahub, or 4 slave commands...

CVE-2010-0391

Multiple stack-based buffer overflows in Embarcadero Technologies InterBase SMP 2009 9.0.3.437 allow remote attackers to execute arbitrary code via unknown vectors involving crafted packets. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

CVE-2002-2225

SafeNet VPN client allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange IKE response packets, possibly involving buffer overflows using 1 a large Security Parameter Index SPI field, 2 a large number of payloads, or 3 a long...

CVE-2002-2120

Multiple buffer overflows in QNX RTOS 4.25 may allow attackers to execute arbitrary code via long filename arguments to 1 Watcom or 2 int10...

CVE-2005-4895

Multiple integer overflows in TCMalloc tcmalloc.cc in gperftools before 0.4 make it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large size value, which causes less memory to be allocated than expected...

CVE-2004-2710

Multiple buffer overflows in Gyach Enhanced Gyach-E before 1.0.3 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via vectors related to 1 sending certain typing statuses or 2 setting the chat room status bar to the current chat room name...

CVE-2005-3668

Multiple buffer overflows in multiple unspecified implementations of Internet Key Exchange version 1 IKEv1 have multiple unspecified attack vectors and impacts related to denial of service, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of information in the...