8440 matches found
NewStart CGSL CORE 5.05 / MAIN 5.05 : ntp Vulnerability (NS-SA-2019-0255)
The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has ntp packages installed that are affected by a vulnerability: - Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 allows an attacker to achieve code execution or escalate to higher privileges via a long...
NewStart CGSL CORE 5.04 / MAIN 5.04 : tcpdump Vulnerability (NS-SA-2019-0266)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has tcpdump packages installed that are affected by a vulnerability: - In tcpdump 4.9.2, a stack-based buffer over-read exists in the printprefix function of print-hncp.c via crafted packet data because of missing initializatio...
Buffer Over-read
libmatio.so is vulnerable to buffer over-read vulnerability. The vulnerability exists because a stack-based buffer overflow occurs in the function ReadNextCell in mat5.c during the reading of an invalid next cell of the cell array...
CVE-2019-20018
A stack-based buffer over-read was discovered in ReadNextCell in mat5.c in matio 1.5.17...
CVE-2019-20020
A stack-based buffer over-read was discovered in ReadNextStructField in mat5.c in matio 1.5.17...
CVE-2019-20017
A stack-based buffer over-read was discovered in MatVarReadNextInfo5 in mat5.c in matio 1.5.17...
CVE-2019-20020
CVE-2019-20020 affects matio 1.5.17 with a stack-based buffer over-read in ReadNextStructField (mat5.c). This is the concrete root cause and function/file implicated; no explicit exploit details are provided in the connected documents. The available references confirm the vulnerability presence b...
Stack overflow
libESMTP through 1.0.6 mishandles domain copying into a fixed-size buffer in ntlmbuildtype2 in ntlm/ntlmstruct.c, as demonstrated by a stack-based buffer over-read...
WECON PLC Editor
1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low skill level to exploit Vendor: WECON Equipment: PLC Editor Vulnerability: Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation could allow an attacker to execute code under the privileges of the application. 3. TECHNICAL DETAILS...
Security Bulletin: Multiple vulnerabilities in the IBM i HTTP Server affect IBM i.
Summary HTTP Server is supported by IBM i. IBM i has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2019-9517 DESCRIPTION: Multiple vendors are vulnerable to a denial of service, caused by an Internal Data Buffering attack. By opening the HTTP/2 window so the peer can send withou...
EulerOS 2.0 SP3 : pcre (EulerOS-SA-2019-2646)
According to the versions of the pcre packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - pcregrep in PCRE before 8.38 mishandles the -q option for binary files, which might allow remote attackers to obtain sensitive information via a...
EulerOS 2.0 SP3 : quagga (EulerOS-SA-2019-2657)
According to the versions of the quagga package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - It was discovered that the zebra daemon in Quagga before 1.0.20161017 suffered from a stack-based buffer overflow when processing IPv6 Neighbor...
EulerOS 2.0 SP3 : openjpeg (EulerOS-SA-2019-2639)
According to the versions of the openjpeg package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A stack-based buffer overflow was discovered in the pgxtoimage function in bin/jp2/convert.c in OpenJPEG 2.2.0. The vulnerability causes an...
EulerOS 2.0 SP3 : squashfs-tools (EulerOS-SA-2019-2665)
According to the versions of the squashfs-tools package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - 1 unsquash-1.c, 2 unsquash-2.c, 3 unsquash-3.c, and 4 unsquash-4.c in Squashfs and sasquatch allow remote attackers to cause a denial of...
CVE-2019-19847
Libspiro through 20190731 has a stack-based buffer overflow in the spirotobpath0 function in spiro.c...
CVE-2019-16736
CVE-2019-16736 describes a stack-based buffer overflow in processCommandUploadSnapshot within libcommon.so used by Petwant PF-103 firmware (4.22.2.42) and Petalk AI (3.2.2.30). The flaw can allow remote attackers, without authentication or user interaction, to trigger denial of service or execute...
CVE-2019-16736
A stack-based buffer overflow in processCommandUploadSnapshot in libcommon.so in Petwant PF-103 firmware 4.22.2.42 and Petalk AI 3.2.2.30 allows remote attackers to cause denial of service or run arbitrary code as the root user...
CVE-2019-16735
A stack-based buffer overflow in processCommandUploadLog in libcommon.so in Petwant PF-103 firmware 4.22.2.42 and Petalk AI 3.2.2.30 allows remote attackers to cause denial of service or run arbitrary code as the root user...
CVE-2019-19787
ATasm 1.06 has a stack-based buffer overflow in the getsignedexpression function in setparse.c via a crafted .m65 file...
CVE-2019-19785
ATasm 1.06 is affected by CVE-2019-19785 due to a stack-based buffer overflow in the to_comma() function (asm.c) triggered by a crafted .m65 file. The issue is confirmed in Fedora advisories referencing CVE-2019-19785 and related CVEs (19786, 19787) with downstream updates in Fedora: ATasm 1.09 p...