CVE-2018-25296 P10 Central Management Software 1.4.13 Denial of Service

P10 Central Management Software 1.4.13 contains a buffer overflow vulnerability in the login password field that allows local attackers to crash the application by submitting an oversized input string. Attackers can paste a 2000-byte payload into the password field and click login to trigger an...

PT-2026-29009

Name of the Vulnerable Software and Affected Versions Navicat for Oracle version 12.1.15 Description Navicat for Oracle version 12.1.15 contains a denial of service issue that allows local attackers to crash the application. This occurs by providing an excessively long string in the password fiel...

CVE-2025-71263

In UNIX Fourth Research Edition v4, the su command is vulnerable to a buffer overflow due to the 'password' variable having a fixed size of 100 bytes. A local user can exploit this to gain root privileges. It is unlikely that UNIX v4 is running anywhere outside of a very small number of lab...

CVE-2019-25598

HeidiSQL Portable 10.1.0.5464 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the password field. Attackers can paste a buffer overflow payload into the password input during Microsoft SQL Server login to...

EUVD-2019-19852

CEWE PHOTO SHOW 6.4.3 contains a denial of service vulnerability that allows attackers to crash the application by submitting an excessively long buffer to the password field. Attackers can paste a large string of repeated characters into the password input during the upload process to trigger an...

CEWE PHOTO SHOW 安全漏洞

CEWE PHOTO SHOW is a photo display software developed by the British company CEWE. Version 6.4.3 of CEWE PHOTO SHOW contains a security vulnerability. This vulnerability stems from an overly long buffer for password fields. Attackers could exploit this to cause the application to crash by enterin...

PT-2026-26897

CEWE PHOTO SHOW 6.4.3 contains a denial of service vulnerability that allows attackers to crash the application by submitting an excessively long buffer to the password field. Attackers can paste a large string of repeated characters into the password input during the upload process to trigger an...

EUVD-2025-208655

In UNIX Fourth Research Edition v4, the su command is vulnerable to a buffer overflow due to the 'password' variable having a fixed size of 100 bytes. A local user can exploit this to gain root privileges. It is unlikely that UNIX v4 is running anywhere outside of a very small number of lab...

CVE-2025-71263

In UNIX Fourth Research Edition v4, the su command is vulnerable to a buffer overflow due to the 'password' variable having a fixed size of 100 bytes. A local user can exploit this to gain root privileges. It is unlikely that UNIX v4 is running anywhere outside of a very small number of lab...

CVE-2025-71263

CVE-2025-71263 : In UNIX Fourth Research Edition (v4), the su command is vulnerable to a buffer overflow due to a fixed 100-byte password buffer. This allows a local user to escalate to root privileges. The CVSS score is 7.4 (HIGH) with LOCAL attack vector, HIGH impact on confidentiality, integri...

CVE-2025-71263

In UNIX Fourth Research Edition v4, the su command is vulnerable to a buffer overflow due to the 'password' variable having a fixed size of 100 bytes. A local user can exploit this to gain root privileges. It is unlikely that UNIX v4 is running anywhere outside of a very small number of lab...

CVE-2025-71263

In UNIX Fourth Research Edition v4, the su command is vulnerable to a buffer overflow due to the 'password' variable having a fixed size of 100 bytes. A local user can exploit this to gain root privileges. It is unlikely that UNIX v4 is running anywhere outside of a very small number of lab...

CVE-2025-71263

In UNIX Fourth Research Edition v4, the su command is vulnerable to a buffer overflow due to the 'password' variable having a fixed size of 100 bytes. A local user can exploit this to gain root privileges. It is unlikely that UNIX v4 is running anywhere outside of a very small number of lab...

PT-2026-25349

Name of the Vulnerable Software and Affected Versions UNIX Fourth Research Edition version v4 Description The su command contains a buffer overflow issue because the password variable has a fixed size of 100 bytes. A local user can exploit this to gain root privileges. It is unlikely that UNIX v4...

Linux Kernel Security Vulnerabilities

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the smb3reconfigure function not releasing the password buffer when it fails, potentially leading...

EulerOS 2.0 SP12 : curl (EulerOS-SA-2025-1407)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : When asked to use a .netrc file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-t...

CVE-2004-2395

CVE-2004-2395 describes a memory leak in the passwd 0.68 utility that allows local users to cause a denial-of-service through a large number of failed read attempts from the password buffer. The issue is triggered by local access and results in memory consumption leading to potential service disr...

CVE-2004-2395

Memory leak in passwd 0.68 allows local users to cause a denial of service memory consumption via a large number of failed read attempts from the password buffer...

HPUX FTPd vulnerability

Hello, I have discovered HPUX ftpd remote vulnerability. The problem persists in using vsprintf without format string. Example: 220 xxx FTP server Version 1.7.212.2 Tue Apr 21 12:14:46 GMT 1998 ready. user ftp 331 Guest login ok, send ident as password. pass .1030d 230 Guest login ok, access...