5910 matches found
(0Day) WebGate eDVR Manager WESPMonitor.WESPMonitorCtrl.1 LoadImage Stack Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of WebGate eDVR Manager. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
(0Day) WebGate eDVR Manager WESPPlayback.WESPPlaybackCtrl.1 SiteChannel Property Stack Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of WebGate eDVR Manager. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Medium: postgresql93
Issue Overview: A stack-buffer overflow flaw was found in PostgreSQL's pgcrypto module. An authenticated database user could use this flaw to cause PostgreSQL to crash or, potentially, execute arbitrary code with the permissions of the user running PostgreSQL. CVE-2015-0243 A flaw was found in wa...
RPM Package Manager CPIO Header NameSize Integer Overflow (CVE-2014-8118)
A code execution vulnerability exists in RPM package manager. The vulnerability is due to an integer overflow when parsing the CPIO header in the payload section of an RPM file, leading to a stack buffer overflow. A remote attacker can exploit this vulnerability by enticing a user to install a...
Achat 0.150 beta7 - Remote Buffer Overflow (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Achat v0.150 beta7 Buffer Overflow', 'Description' = %q This module exploits an unicode SEH based stack buffer overflow in Achat...
SuSE 11.3 Security Update : binutils (SAT Patch Number 10214)
binutils has been updated to fix eight security issues : - Lack of range checking leading to controlled write in bfdelfsetupsections. CVE-2014-8485 - Invalid read flaw in libbfd. CVE-2014-8484 - Write to uninitialized memory in the PE parser. CVE-2014-8501 - Crash in the PE parser. CVE-2014-8502 ...
Ubuntu: Security Advisory (USN-2465-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-2466-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-2468-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Attachmate Reflection FTP Client Stack Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Attachmate Reflection FTP client. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw manifests whi...
Sim Editor 6.6 - Local Stack Buffer Overflow
include include include define SIZE 65536 / Title: Sim Editor v6.6 Stack Based Buffer Overflow Version: 6.6 Tested on: Windows XP sp2 en, Windows 8 64-bit Date: 16-01-2015 Author: Osanda Malith Jayathissa E-Mail: osandacatunseen.is Website: OsandaMalith.wordpress.com CVE: CVE-2015-1171 / const ch...
Ubuntu 14.04 LTS : Linux kernel (Utopic HWE) vulnerabilities (USN-2467-1)
The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2467-1 advisory. A null pointer dereference flaw was discovered in the the Linux kernel's SCTP implementation when ASCONF is used. A remote attacker could exploit this fl...
Ubuntu 14.04 LTS : Linux kernel vulnerabilities (USN-2466-1)
The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2466-1 advisory. A null pointer dereference flaw was discovered in the the Linux kernel's SCTP implementation when ASCONF is used. A remote attacker could exploit this fl...
Advantech ADAMView Conditional Bitmap Remote Code Execution (CVE-2014-8386)
A stack-buffer overflow has been reported in Advantech ADAMView. The vulnerability is due to insufficient validation of conditional bitmaps from a file...
USN-2467-1: Linux kernel (Utopic HWE) vulnerabilities
A null pointer dereference flaw was discovered in the the Linux kernel's SCTP implementation when ASCONF is used. A remote attacker could exploit this flaw to cause a denial of service system crash via a malformed INIT chunk. CVE-2014-7841 A race condition with MMIO and PIO transactions in the KV...
Palringo 2.8.1 - Local Stack Buffer Overflow
Palringo 2.8.1 - Local Stack Buffer Overflow !/use/bin/perl Exploit Title: palringo stack buffer overflow Date: 10 January 2015 Vulnerability discovered by: Mr.ALmfL9 Vendor Homepage: http://www.palringo.com/ Software Link: http://www.palringo.com/ar/sa/download/?get=winpc Version: 2.8.1 Tested...
Advantech WebAccess Vulnerabilities
OVERVIEW This advisory is a follow-up to the original advisory titled “ICSA-14-079-03P Advantech WebAccess Vulnerabilities” that was posted to the US-CERT secure Portal library March 20, 2014. Researchers working with HP’s Zero Day Initiative ZDI, Andrea Micalizzi, aka rgod, Tom Gallagher, and an...
[USN-2441-1] Linux kernel vulnerabilities
========================================================================== Ubuntu Security Notice USN-2441-1 December 12, 2014 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
USN-2444-1: Linux kernel (OMAP4) vulnerabilities
Rabin Vincent, Robert Swiecki, Russell King discovered that the ftrace subsystem of the Linux kernel does not properly handle private syscall numbers. A local user could exploit this flaw to cause a denial of service OOPS. CVE-2014-7826 Rabin Vincent, Robert Swiecki, Russell Kinglaw discovered a...
USN-2442-1: Linux kernel (EC2) vulnerabilities
An information leak in the Linux kernel was discovered that could leak the high 16 bits of the kernel stack address on 32-bit Kernel Virtual Machine KVM paravirt guests. A user in the guest OS could exploit this leak to obtain information that could potentially be used to aid in attacking the...