PT-2024-22449 · Csapp Lab · Csapp Lab

Name of the Vulnerable Software and Affected Versions: CSAPP Lab affected versions not specified Description: The issue allows a remote attacker to execute arbitrary code via the lab3 of csapp, lab3/buflab-update.pl component. This is a Buffer Overflow vulnerability in CSAPP Lab CSAPP Lab3 15-213...

The vulnerability of the setSchedWifi()/goform.openSchedWifi function in the Tenda AC10U router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the setSchedWifi/goform.openSchedWifi function in the Tenda AC10U router software is related to buffer overflow in the stack. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected informati...

CVE-2024-2805

A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20multi. It has been rated as critical. Affected by this issue is the function formSetSpeedWan of the file /goform/SetSpeedWan. The manipulation of the argument speeddir leads to stack-based buffer overflow. The attack may be launched...

PT-2024-2468 · Tenda · Tenda Fh1205

Name of the Vulnerable Software and Affected Versions: Tenda FH1205 version 2.0.0.7775 Description: A critical issue affects the formQuickIndex function of the /goform/QuickIndex file, where manipulation of the PPPOEPassword argument leads to a stack-based buffer overflow. This can be exploited...

PT-2024-2406 · Tenda · Tenda Ac15

Name of the Vulnerable Software and Affected Versions: Tenda AC15 versions 15.03.05.18 through 15.03.20 multi Description: A critical issue affects the function formSetSpeedWan of the file /goform/SetSpeedWan. The manipulation of the argument speed dir leads to a stack-based buffer overflow. This...

CVE-2024-2331

A vulnerability was found in SourceCodester Tourist Reservation System 1.0. It has been declared as critical. This vulnerability affects the function adwritedata of the file System.cpp. The manipulation of the argument adcode leads to buffer overflow. The attack can be initiated remotely. The...

PCMan FTP Server 2.0 - (pwd) Remote Buffer Overflow Vulnerability

Exploit Title: PCMan FTP Server 2.0 - 'pwd' Remote Buffer Overflow Exploit Author: Waqas Ahmed Faroouqi ZEROXINN Vendor Homepage: http://pcman.openfoundry.org/ Software Link: https://www.exploit-db.com/apps/9fceb6fefd0f3ca1a8c36e97b6cc925d-PCMan.7z Version: 2.0 Tested on: Windows XP SP3...

PT-2024-1316 · Totolink · Totolink N200Re

Name of the Vulnerable Software and Affected Versions: Totolink N200RE version 9.3.5u.6139 B20201216 Description: A critical issue affects the setParentalRules function of the /cgi-bin/cstecgi.cgi file, where manipulation of the eTime argument leads to a stack-based buffer overflow. This can be...

PT-2024-1174 · Totolink · Totolink Lr1200Gb

Name of the Vulnerable Software and Affected Versions: Totolink LR1200GB version 9.1.0u.6619 B20230130 Description: A critical issue affects the setIpPortFilterRules function in the /cgi-bin/cstecgi.cgi file, where manipulation of the sPort argument leads to a stack-based buffer overflow. This ca...

CVE-2023-7222

A vulnerability was found in Totolink X2000R 1.0.0-B20221212.1452. It has been declared as critical. This vulnerability affects the function formTmultiAP of the file /bin/boa of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The atta...

CVE-2023-7221

A vulnerability was found in Totolink T6 4.1.9cu.5241B20210923. It has been classified as critical. This affects the function main of the file /cgi-bin/cstecgi.cgi?action=login of the component HTTP POST Request Handler. The manipulation of the argument v41 leads to buffer overflow. It is possibl...

CVE-2023-6906

A vulnerability, which was classified as critical, was found in Totolink A7100RU 7.4cu.2313B20191024. Affected is the function main of the file /cgi-bin/cstecgi.cgi?action=login of the component HTTP POST Request Handler. The manipulation of the argument flag with the input ie8 leads to buffer...

PT-2023-4736 · Tenda · Tenda Ac8

Name of the Vulnerable Software and Affected Versions: Tenda AC8 version 16.03.34.06 cn TDC01 Description: A critical vulnerability was found in the function formSetDeviceName, which leads to a stack-based buffer overflow. This issue can be exploited remotely, potentially allowing an attacker to...

Siemens SCALANCE W1750D Classic Buffer Overflow (CVE-2021-25149)

A remote buffer overflow vulnerability was discovered in some Aruba Instant Access Point IAP products in versions: Aruba Instant 6.4.x: 6.4.4.8-4.2.4.17 and below; Aruba Instant 6.5.x: 6.5.4.16 and below; Aruba Instant 8.3.x: 8.3.0.12 and below; Aruba Instant 8.5.x: 8.5.0.6 and below; Aruba Insta...

The vulnerability of the extract_name function in the Dnsmasq DNS server allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the extractname function in the Dnsmasq DNS server is related to buffer overflow attacks. Exploiting this vulnerability can allow a remote attacker to access sensitive data, compromise its integrity, and cause service interruptions...

PT-2023-1599 · Microsoft · Odbc Driver +1

Name of the Vulnerable Software and Affected Versions: Microsoft ODBC Driver affected versions not specified Description: The issue is related to a buffer overflow in memory, allowing a remote attacker to execute arbitrary code. This can affect the system, potentially leading to unauthorized acce...

The vulnerability of the dsi_writeinit function in the implementation of the Apple Filing Protocol Netatalk allows a hacker to execute arbitrary code in the context of the root user.

The vulnerability of the dsiwriteinit function in the Apple Filing Protocol Netatalk implementation is related to the possibility of buffer overflow attacks. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the root user remotely...

CVE-2023-0617

A vulnerability was found in TRENDNet TEW-811DRU 1.0.10.0. It has been classified as critical. This affects an unknown part of the file /wireless/guestnetwork.asp of the component httpd. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has bee...

CVE-2022-4856

A vulnerability has been found in Modbus Tools Modbus Slave up to 7.5.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file mbslave.exe of the component mbs File Handler. The manipulation leads to buffer overflow. The attack can be launched remotely...

The vulnerability of the xrdp_sec_process_mcs_data_CS_CORE() function on the XRDP server allows a hacker to gain unauthorized access to protected information or cause service failures.

The vulnerability of the xrdpsecprocessmcsdataCSCORE function on the XRDP server is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information or cause service...