CVE-2026-42795 Symlink Following in Hex Package Export Allows Embedding Files Outside Project Root

Symlink following vulnerability in Gleam's Hex package export allows files outside the project root to be embedded in the generated package tarball. The file collection helpers gleamfiles, nativefiles, privatefiles in compiler-cli/src/fs.rs use followlinkstrue when walking publishable directories...

Microsoft Class Package Export Tool 5.0.2752 0 Clspack.exe Local Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20561/info Microsoft Class Package Export Tool 'clspack.exe' is prone to a local buffer-overflow vulnerability because the application fails to properly size attacker-supplied data before copying it into an insuficiently...

CVE-2006-5395

Buffer overflow in Microsoft Class Package Export Tool aka clspack.exe allows context-dependent attackers to execute arbitrary code via a long string. NOTE: the provenance of this information is unknown; the details are obtained from third party information...

CVE-2006-5395

Buffer overflow in Microsoft Class Package Export Tool aka clspack.exe allows context-dependent attackers to execute arbitrary code via a long string. NOTE: the provenance of this information is unknown; the details are obtained from third party information...

Microsoft Class Package Export Tool 5.0.2752 - Clspack.exe Local Buffer Overflow (PoC)

Microsoft Class Package Export Tool 5.0.2752 - Clspack.exe Local Buffer Overflow PoC source: https://www.securityfocus.com/bid/20561/info Microsoft Class Package Export Tool 'clspack.exe' is prone to a local buffer-overflow vulnerability because the application fails to properly size...