Yokogawa Centum Improper Restriction of Operations within the Bounds of a Memory Buffer

Stack-based buffer overflow in BKHOdeq.exe in Yokogawa CENTUM CS 3000 R3.09.50 and earlier allows remote attackers to execute arbitrary code via a crafted TCP packet. File data ot500040.nasl...

Rockwellautomation 1766-l32bxba Improper Restriction of Operations within the Bounds of a Memory Buffer

A Buffer Overflow issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1400 Controllers, Series B and C Versions 21.002 and earlier. The stack-based buffer overflow vulnerability has been identified, which may allow remote code execution. File data ot500213.nasl...

Rockwellautomation Ethernet\/ip Improper Restriction of Operations within the Bounds of a Memory Buffer

Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier; GuardLogix 18 and...

Rockwellautomation Micrologix Improper Restriction of Operations within the Bounds of a Memory Buffer

Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allow remote attackers to cause a denial of service memory corruption and device crash via a crafted HTTP request. File data ot500089.nasl...

Rockwellautomation Rslinx Improper Restriction of Operations within the Bounds of a Memory Buffer

Buffer overflow in RSEds.dll in RSHWare.exe in the EDS Hardware Installation Tool 1.0.5.1 and earlier in Rockwell Automation RSLinx Classic before 2.58 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a malformed .eds file...

Rockwellautomation Micrologix Improper Restriction of Operations within the Bounds of a Memory Buffer

Stack-based buffer overflow on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices through B FRN 15.003 allows remote attackers to execute arbitrary code via unspecified vectors. File data ot500134.nasl...

Yokogawa B\/m9000cs Improper Restriction of Operations within the Bounds of a Memory Buffer

Stack-based buffer overflow in BKESimmgr.exe in the Expanded Test Functions package in Yokogawa CENTUM CS 1000, CENTUM CS 3000 Entry Class R3.09.50 and earlier, CENTUM VP R5.03.00 and earlier, CENTUM VP Entry Class R5.03.00 and earlier, Exaopc R3.71.02 and earlier, B/M9000CS R5.05.01 and earlier,...

Rockwellautomation Controllogix Improper Restriction of Operations within the Bounds of a Memory Buffer

Buffer overflow in Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier...

Rockwellautomation Rslinx Improper Restriction of Operations within the Bounds of a Memory Buffer

Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. This vulnerability may allow a remote threat actor to intentionally send a malformed CIP packet to Port 44818, causing the software application to stop responding and crash. This vulnerability also has the potential to exploit a buffe...

Windriver Vxworks Improper Restriction of Operations within the Bounds of a Memory Buffer

Wind River VxWorks 6.7 though 6.9 and vx7 has a Buffer Overflow in the TCP component issue 3 of 4. This is an IPNET security vulnerability: TCP Urgent Pointer state confusion during connect to a remote host. File data ot500203.nasl...

Schneider-electric Modicon Improper Restriction of Operations within the Bounds of a Memory Buffer

A CWE-501: Trust Boundary Violation vulnerability on connection to the Controller exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum and Modicon Premium which could cause unauthorized access by conducting a brute force attack on Modbus protocol to the controller. File data...

Rockwellautomation Ab Improper Restriction of Operations within the Bounds of a Memory Buffer

Stack-based buffer overflow on Rockwell Automation Allen-Bradley MicroLogix 1100 devices A through 15.000 and B before 15.002 allows remote attackers to execute arbitrary code via a crafted web request. File data ot500167.nasl...

Schneider-electric Modicon Improper Restriction of Operations within the Bounds of a Memory Buffer

Multiple buffer overflows in Schneider Electric Modicon Quantum PLC allow remote attackers to cause a denial of service via malformed requests to the 1 FTP server or 2 HTTP server. File data ot500027.nasl...

Siemens Simatic Improper Restriction of Operations within the Bounds of a Memory Buffer

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service defect-mode transition and control outage via crafted packets to UDP port 161 aka the SNMP port. File data ot500144.nasl...

Siemens Simatic Improper Restriction of Operations within the Bounds of a Memory Buffer

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service defect-mode transition and control outage via crafted packets to TCP port 102 aka the ISO-TSAP port. File data ot500131.nasl...

The vulnerability of the Hotspot component in Oracle Java SE software allows a perpetrator to gain unauthorized access to protected data or cause service failures.

The vulnerability of the Oracle Java SE software platform’s hotspot component arises from an operation that occurs outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected data or cause service failures...

The vulnerability of the tftp_receive_packet() function in the libcurl library, related to the issue of outputting operations beyond the buffer in memory, allows a attacker to cause a service failure or execute arbitrary code.

The vulnerability of the tftpreceivepacket function in the libcurl library is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure or execute arbitrary code...

The vulnerability in the web interface for managing microprogrammed software in Cisco SPA100 Series IP phones allows a perpetrator to execute arbitrary code with elevated privileges.

The vulnerability in the web interface for managing Microprogramming software in Cisco SPA100 Series IP phones is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with elevated privileges using a...

PT-2019-5982 · Adobe · Media Encoder

Name of the Vulnerable Software and Affected Versions: Adobe Media Encoder versions 13.1 and earlier Description: The issue is related to an out-of-bounds read in the memory buffer. Successful exploitation could lead to information disclosure. This is a result of a vulnerability in the...

PT-2019-6025 · Adobe · Media Encoder

Name of the Vulnerable Software and Affected Versions: Adobe Media Encoder versions 13.1 and earlier Description: The issue is related to an out-of-bounds read in the memory buffer. Successful exploitation could lead to information disclosure, allowing a remote attacker to gain unauthorized acces...