119 matches found
3S-Smart Software Solutions CODESYS V2 Web-Server Buffer Overflow Vulnerability (CNVD-2021-37668)
3S-Smart Software Solutions CODESYS V2 Web-Server is an application from 3S-Smart Software Solutions, Germany. A web server. A buffer overflow vulnerability exists in 3S-Smart Software Solutions CODESYS V2 Web-Server versions prior to 1.1.9.20, which can be exploited by an attacker with the help ...
CVE-2019-5143
An exploitable format string vulnerability exists in the iwconsole coniowritestr functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted time server entry can cause an overflow of the time server buffer, resulting in remote code execution. An attacker can send commands whil...
Format string
An exploitable format string vulnerability exists in the iwconsole coniowritestr functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted time server entry can cause an overflow of the time server buffer, resulting in remote code execution. An attacker can send commands whil...
CVE-2019-5143
An exploitable format string vulnerability exists in the iwconsole coniowritestr functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted time server entry can cause an overflow of the time server buffer, resulting in remote code execution. An attacker can send commands whil...
Moxa AWK-3131A iw_console conio_writestr Remote Code Execution Vulnerability
Summary An exploitable format string vulnerability exists in the iwconsole coniowritestr functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted time server entry can cause an overflow of the time server buffer, resulting in remote code execution. An attacker can send...
CVE-2018-18756
Local Server 1.0.9 has a Buffer Overflow via crafted data on Port 4008...
CVE-2018-12422
addressbook/backends/ldap/e-book-backend-ldap.c in Evolution-Data-Server in GNOME Evolution through 3.29.2 might allow attackers to trigger a Buffer Overflow via a long query that is processed by the strcat function. NOTE: the software maintainer disputes this because "the code had computed the...
CVE-2017-15118
A stack-based buffer overflow vulnerability was found in NBD server implementation in qemu before 2.11 allowing a client to request an export name of size up to 4096 bytes, which in fact should be limited to 256 bytes, causing an out-of-bounds stack write in the qemu process. If NBD server requir...
AT-TFTP <= 1.9 (Long Filename) Remote Buffer Overflow PoC
No description provided by source. !/usr/bin/python SUMMARY: AT-TFTP Server is a Freeware TFTP server for Windows 9x/NT/XP. http://www.alliedtelesyn.co.uk/en-gb/support/downloads/tools.asp It provides an implementation of the TFTPv2 protocol. A vulnerability has been identified in TFTP Server...
BigAnt Server 2.50 SP1 - (ZIP File) Local Buffer Overflow PoC
No description provided by source. !/usr/bin/env python BigAnt Server 2.50 SP1 Local Buffer Overflow PoC Found By: DrIDE Tested: XPSP3 Usage: Open BigAnt Console, Go to Update, Browse to zip, Boom. buff = \x41 10000 f1 = openBigAntUpdate.zip,w f1.writebuff f1.close milw0rm.com 2009-09-16...
Cisco Aironet AP1x00 Malformed HTTP GET Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8290/info Cisco Aironet AP1x00 series devices are prone to a denial of service vulnerability upon receipt of a malformed HTTP GET request. Such a request will cause the device to reload. !/usr/bin/perl Cisco Global...
CVE-2013-1988
Multiple integer overflows in X.org libXRes 1.0.6 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the 1 XResQueryClients and 2 XResQueryClientResources functions...
Open and Compact FTP Server Long Password Buffer Overflow
Added: 03/22/2010 Background Open and Compact FTP Server Open-FTPD is a Windows-based compact FTP server. Problem A buffer overflow vulnerability allows command execution as a result of an overly long password. Resolution Upgrade to a version newer than 1.2 when it becomes available, or use a...
TFTP Server Buffer Overflow
!/usr/bin/env python This vuln is already owned by Muts , but i want to add the second methode Note: we don't have more space for shellcode or Skape egghunter 23 bytes only after SEH option I used the jumpback because is the best and easiest way for exploiting a SEH overwrite option Reference:...
Hummingbird STR service / EMC Documentum eRoom / OpenText Search Server buffer overflow
Buffer overflow on TCP/10500 traffic parsing...
Dnsmasq < 2.50 Heap Overflow & Null pointer Dereference Vulns
Exploit for unknown platform in category dos / poc ============================================================= Dnsmasq 2.50 Heap Overflow & Null pointer Dereference Vulns ============================================================= -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security...
CVE-2009-1959
Off-by-one error in the eventwallops function in fe-common/irc/fe-events.c in irssi 0.8.13 allows remote IRC servers to cause a denial of service crash via an empty command, which triggers a one-byte buffer under-read and a one-byte buffer underflow...
Buffer overflow
libgadu before 1.8.2 allows remote servers to cause a denial of service crash via a contact description with a large length, which triggers a buffer over-read...
Insomnia : ISVA-080709.1 - Microsoft SQL Server - Corrupt Backup File Heap Overflow
Insomnia Security Vulnerability Advisory: ISVA-080709.1 Name: Microsoft SQL Server - Corrupt Backup File Heap Overflow Released: 09 July 2008 Vendor Link: http://www.microsoft.com/sql/default.mspx Affected Products: MS SQL Server 2005, possibly previous versions Original Advisory:...
Microsoft SQL Server Distributed Management Objects BoF Exploit
Exploit for unknown platform in category remote exploits =============================================================== Microsoft SQL Server Distributed Management Objects BoF Exploit =============================================================== Code Execute + Tested Operating System: Windows ...