Mageia: Security Advisory (MGASA-2025-0057)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-1164

CVE-2025-1164 affects code-projects’ Police FIR Record Management System 1.0, specifically the Add Record Handler component. A stack-based buffer overflow vulnerability has been reported, requiring local access to exploit. The linked PT-2025-6103 entry confirms the vulnerability scenario and note...

CVE-2017-16311

Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...

CVE-2020-27247

A specially crafted document can cause the document parser to copy data from a particular record type into a static-sized buffer within an object that is smaller than the size used for the copy, which will cause a heap-based buffer overflow. In version/Instance 0x0002, an attacker can entice the...

CVE-2024-10194

A vulnerability was found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. It has been classified as critical. Affected is the function Gotochidx of the file login.cgi of the component Front-End Authentication Page. The manipulation of the argument wlanUrl leads to stack-based buffer...

CVE-2024-2806

A vulnerability classified as critical has been found in Tenda AC15 15.03.05.18/15.03.20multi. This affects the function addWifiMacFilter of the file /goform/addWifiMacFilter. The manipulation of the argument deviceId/deviceMac leads to stack-based buffer overflow. It is possible to initiate the...

CVE-2024-0532

A vulnerability was found in Tenda A15 15.13.07.13. It has been declared as critical. This vulnerability affects the function setrepeat5 of the file /goform/WifiExtraSet of the component Web-based Management Interface. The manipulation of the argument wpapskcrypto24g/wpapskcrypto5g leads to...

Advisory ROSA-SA-2025-2571

software: ghostscript 9.56.1 OS: ROSA-CHROME packageevrstring: ghostscript-9.56.1-1 CVE-ID: CVE-2024-46956 BDU-ID: 2024-09737 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the psi/zfile.c component of the Ghostscript document processing, conversion, and generation software suite involves reading...

Exploit for Stack-based Buffer Overflow in Ivanti Connect_Secure

PoC exploit for CVE-2025-0282, a remote unauthenticated stack-ba...

PT-2025-1027

Name of the Vulnerable Software and Affected Versions Ivanti Connect Secure versions prior to 22.7R2.5 Ivanti Policy Secure versions prior to 22.7R1.2 Ivanti Neurons for ZTA gateways versions prior to 22.7R2.3 Description A stack-based buffer overflow exists in Ivanti Connect Secure, Ivanti Polic...

CVE-2024-12185 code-projects Hotel Management System Administrator Login Password stack-based overflow

A vulnerability has been found in code-projects Hotel Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the component Administrator Login Password Handler. The manipulation of the argument Str2 leads to stack-based buffer overflow. An attack has to be...

Adobe Framemaker Buffer Overflow Vulnerability (CNVD-2024-27546)

Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. A security vulnerability exists in Adobe Framemaker, which is caused by improper boundary checking. An attacker...

PT-2024-24493 · Tenda · Tenda Fh1202

Name of the Vulnerable Software and Affected Versions: Tenda FH1202 version 1.2.0.14408 Description: The issue is a stack overflow vulnerability that can be exploited via the PPW parameter in the fromWizardHandle function. This vulnerability may allow attackers to execute arbitrary code on the...

OpenEX Buffer Overflow Vulnerability

OpenEXR is an open standard for high dynamic range image HDR file formats. A buffer overflow vulnerability exists in OpenEXR 3.2.1 and prior versions that stems from an inability to validate the number of scanline samples that contain deep scanline data. An attacker could exploit this vulnerabili...

PT-2023-6345 · Rockwell Automation · Factorytalk Linx

Name of the Vulnerable Software and Affected Versions: FactoryTalk Linx versions affected versions not specified Description: The issue allows an unauthenticated threat actor to read data from memory via crafted malicious packets, resulting in an information disclosure. If the size of the packet ...

Exploit for Classic Buffer Overflow in Cisco Pix_Firewall_Software

This is a PoC exploit for CVE-2016-6366, a remote code execution vulnerability in Cisco ASA. The repository contains improvements to the EXTRABACON exploit, which was written by the Equation Group NSA and leaked by the Shadow Brokers. The exploit targets various versions of Cisco ASA, including 8...

CVE-2023-34832

TP-Link Archer AX10EUV1.2230220 was discovered to contain a buffer overflow via the function FUN131e8 - 0x132B4...

CVE-2023-23302

The Toybox.GenericChannel.setDeviceConfig API method in CIQ API version 1.2.0 through 4.1.7 does not validate its parameter, which can result in buffer overflows when copying various attributes. A malicious application could call the API method with specially crafted object and hijack the executi...

Grand Theft Auto III/Vice City Skin File v1.1 - Buffer Overflow Exploit

Exploit Title: Grand Theft Auto III/Vice City Skin File v1.1 - Buffer Overflow Discovered and Written by: Knursoft Vendor Homepage: https://www.rockstargames.com/ Version: v1.1 Tested on: Windows XP SP2/SP3, 7, 10 21H2 CVE : N/A 1 - Run this python script to generate "evil.bmp" file. 2 - Copy it ...

CVE-2023-26337 ZDI-CAN-20285: Adobe Dimension USDA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

Adobe Dimension versions 3.4.7 and earlier is affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...