CVE-2026-42485

CVE-2026-42485 affects AGL agl-service-can-low-level, specifically the uds-c library. The send_diagnostic_request function in uds.c allocates a 6-byte stack buffer (MAX_DIAGNOSTIC_PAYLOAD_SIZE) but copies up to 7 bytes (MAX_UDS_REQUEST_PAYLOAD_LENGTH) via memcpy at an offset of 1+pid_length, caus...

FiberHome AN5506-04-F和FiberHome HG6245D 安全漏洞

FiberHome AN5506-04-F and FiberHome HG6245D are both routers from FiberHome, a Chinese company. A security vulnerability exists in the FiberHome AN5506-04-F and FiberHome HG6245D that stems from a stack buffer overflow issue in the HTTP service, which could lead to a crash or perform flow control...

EUVD-2016-7434

Malware in sbrugna...

CVE-2025-45587

A stack overflow in the FTP service of Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to cause a Denial of Service DoS via a crafted input...

Linux Distros Unpatched Vulnerability : CVE-2022-40152

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Those using Woodstox to parse XML data may be vulnerable to Denial of Service attacks DOS if DTD support is enabled. If the parser is running on user supplied...

CVE-2025-24328

CVE-2025-24328 affects Nokia Single RAN baseband OAM service component; a crafted SOAP "set" operation in the MNO internal RAN management network can trigger a stack overflow, causing the OAM service component to restart on software versions earlier than 24R1-SR 1.0 MP. The issue has been fixed i...

Ubuntu 22.04 LTS / 24.04 LTS / 24.10 : GNU Chess vulnerability (USN-7336-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 24.10 host has a package installed that is affected by a vulnerability as referenced in the USN-7336-1 advisory. Michael Vaughan discovered an overflow vulnerability in GNU Chess that occurs when reading a specially crafted Portable Game Notation PGN file...

CVE-2023-35726

D-Link DAP-2622 DDP User Verification Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this...

Milesight UR32L 缓冲区错误漏洞

The Milesight UR32L is a 4G industrial router from China's Milesight. A buffer overflow vulnerability exists in the Milesight UR32L setqos function, which can be exploited by an attacker to cause a buffer overflow and execute arbitrary code on the system, or cause an application to crash...

CVE-2020-15635

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 V1.0.4.8410.0.58 routers with firmware 1.0.4.8410.0.58. Authentication is not required to exploit this vulnerability. The specific flaw exists within the acsd service, which...

CVE-2016-0799

The fmtstr function in crypto/bio/bprint.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g improperly calculates string lengths, which allows remote attackers to cause a denial of service overflow and out-of-bounds read or possibly have unspecified other impact via a long string, as...

SimplePlayer 0.2 - '.wav' Overflow Denial of Service

!/usr/bin/python Title: SimplePlayer v0.2 0day .wav overflow DOS Exploit Found by: mrme seeleymagic at hotmail dot com Greetz to: Corelan Security Team::corelanc0d3r/EdiStrosar/Rick2600/MarkoT Tested on: Windows XP SP3 Happy New Year! POC: crash = "x41" 36000; overwrite the buffer at 262 bytes tr...

SimplePlayer 0.2 - .wav Overflow Denial of Service

SimplePlayer 0.2 - .wav Overflow Denial of Service !/usr/bin/python Title: SimplePlayer v0.2 0day .wav overflow DOS Exploit Found by: mrme seeleymagic at hotmail dot com Greetz to: Corelan Security Team::corelanc0d3r/EdiStrosar/Rick2600/MarkoT Tested on: Windows XP SP3 Happy New Year! POC: crash ...

Immunity Canvas: MS06_040

Name| ms06040 ---|--- CVE| CVE-2006-3439 Exploit Pack| CANVAS Description| Windows Server Service Overflow MS06-040 Notes| References: http://www.microsoft.com/technet/security/Bulletin/MS06-040.mspx CVE Name: CVE-2006-3439 VENDOR: Microsoft MSADV: MS06-040 Repeatability: Infinite Note: Due to th...

MailEnable HTTPMail Service Content-Length Header Overflow

The target is running at least one instance of MailEnable that has a flaw in the HTTPMail service MEHTTPS.exe in the Professional and Enterprise Editions. The flaw can be exploited by issuing an HTTP GET with an Content-Length header exceeding 100 bytes, which causes a fixed-length buffer to...

MS Windows 2000/XP Workstation Service Overflow (MS03-049)

No description provided by source. / Proof of concept for MS03-049. This code was tested on a Win2K SP4 with FAT32 file system, and is supposed to work only with that it will probably crash the the other 2Ks, no clue about XPs. To be compiled with lcc-win32 hint link mpr.lib ... I will not improv...

MS Windows 2000/XP Workstation Service Overflow (MS03-049)

Exploit for unknown platform in category remote exploits ========================================================== MS Windows 2000/XP Workstation Service Overflow MS03-049 ========================================================== / Proof of concept for MS03-049. This code was tested on a Win2K...

Immunity Canvas: OPENVIEW_TRACE

Name| openviewtrace ---|--- CVE| CVE-2007-1676 Exploit Pack| CANVAS Description| HP OpenView Trace Service Overflow Notes| CVE Name: CVE-2007-1676 VENDOR: HP VersionsAffected: Repeatability: References: http://dvlabs.tippingpoint.com/advisory/TPTI-07-14 CVE Url:...