CVE-2026-10643

Zephyr's IP socket recvmsg implementation subsys/net/lib/sockets/socketsinet.c, insertpktinfo validated the user-supplied ancillary msgcontrol buffer using only the payload length msg-msgcontrollen pktinfolen before writing a full control message consisting of an aligned cmsg header plus the...

CVE-2026-10643

Zephyr CVE-2026-10643 affects the IP socket recvmsg() ancillary-data path (insert_pktinfo in subsys/net/lib/sockets/sockets_inet.c). A check only compared msg_controllen to pktinfo_len, omitting the cmsg header size, allowing an under-checked window (e.g., 16–27 bytes for IPv4 IP_PKTINFO on a 64‑...

CVE-2010-4742

Stack-based buffer overflow in a certain ActiveX control in MediaDBPlayback.DLL 2.2.0.5 in the Moxa ActiveX SDK allows remote attackers to execute arbitrary code via a long PlayFileName property value...

SUSE: Security Advisory (SUSE-SU-2022:3687-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

IBM SPSS SamplePower Vsflex8l ActiveX Control Buffer Overflow (CVE-2012-5945)

A code execution vulnerability exists in the VsVIEW6.ocxActiveX control, which is shipped as part of IBM SPSS SamplePower...

Tivoli Provisioning Manager Express ActiveX RunAndUploadFile vulnerability

Added: 04/13/2012 CVE: CVE-2012-0198 BID: 52252 OSVDB: 79735 Background Tivoli Provisioning Manager Express for Software Distribution is a software inventory and distribution solution. Problem A buffer overflow vulnerability in the RunAndUploadFile method in the Isig.isigCtl.1 ActiveX control...

CA eTrust PestPatrol - ActiveX Control Buffer Overflow (Metasploit)

$Id: etrustpestscan.rb 10998 2010-11-11 22:43:22Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...

IBM Access Support - ActiveX Control Buffer Overflow (Metasploit)

$Id: ibmegathgetxmlvalue.rb 10998 2010-11-11 22:43:22Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

FlipViewer FViewerLoading ActiveX Control Buffer Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'FlipViewer...

CentOS Update for kernel CESA-2008:0211 centos3 i386

Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2008:0211 centos3 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

WeOnlyDo! COM Ftp DELUXE ActiveX Control Buffer Overflow Vulnerability

AUTHOR Komrade [email protected] http://unsecure.altervista.org DATE 22/11/2004 PRODUCT WodFtpDLX is an ActiveX component that supports encrypted and non-encrypted FTP access to the servers for transferring files. It can be used in various programs, scripts, web applications to connect to F...

Microsoft Internet Explorer Install Engine Control Buffer Overflow

Peter Winter-Smith of NGSSoftware has discovered a high risk vulnerability in the Microsoft Internet Explorer Install Engine control. Versions of Internet Explorer which are affected include: Microsoft Internet Explorer 5.x Microsoft Internet Explorer 6.x This vulnerability has now been fixed by...

Microsoft Windows XP/2000/NT 4.0 - Help Facility ActiveX Control Buffer Overflow

// source: https://www.securityfocus.com/bid/5874/info The ActiveX control that provides much of the functionality for the Windows Help Center contains an unchecked buffer. Successful exploitation could result in execution of arbitrary code in the security context of the current user. / By...