5905 matches found
Stack Buffer Overflow Vulnerability in Several Tenda AC Routers
Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment. A number of Tengda AC routers have stack buffer overflow vulnerability, which can be exploited by attackers to cause denial-of-servic...
CVE-2010-3843
The GTK version of ettercap uses a global settings file at /tmp/.ettercapgtk and does not verify ownership of this file. When parsing this file for settings in gtkuiconfread src/interfacesgtk/ecgtkconf.c, an unchecked sscanf call allows a maliciously placed settings file to overflow a...
CVE-2021-20236
A flaw was found in the ZeroMQ server in versions before 4.3.3. This flaw allows a malicious client to cause a stack buffer overflow on the server by sending crafted topic subscription requests and then unsubscribing. The highest threat from this vulnerability is to confidentiality, integrity, as...
CVE-2021-20236
A flaw was found in the ZeroMQ server in versions before 4.3.3. This flaw allows a malicious client to cause a stack buffer overflow on the server by sending crafted topic subscription requests and then unsubscribing. The highest threat from this vulnerability is to confidentiality, integrity, as...
CVE-2021-20236
A flaw was found in the ZeroMQ server in versions before 4.3.3. This flaw allows a malicious client to cause a stack buffer overflow on the server by sending crafted topic subscription requests and then unsubscribing. The highest threat from this vulnerability is to confidentiality, integrity, as...
CVE-2021-20236
A flaw was found in the ZeroMQ server in versions before 4.3.3. This flaw allows a malicious client to cause a stack buffer overflow on the server by sending crafted topic subscription requests and then unsubscribing. The highest threat from this vulnerability is to confidentiality, integrity, as...
OSV-2021-807 Stack-buffer-overflow in DecodeSingleResponse
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34713 Crash type: Stack-buffer-overflow WRITE Crash state: DecodeSingleResponse DecodeResponseData DecodeBasicOcspResponse...
OSV-2021-802 Stack-buffer-overflow in InterpretCondition
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34692 Crash type: Stack-buffer-overflow READ 1 Crash state: InterpretCondition InterpretPhoneme MakePhonemeList...
PoDoFo Stack Buffer Overflow Vulnerability
PoDoFo is a free, portable and easy to use PDF parsing, modification and creation library. A stack buffer overflow vulnerability exists in the PdfEncrypt::ComputeOwnerKey function in PdfEncrypt.cpp in PoDoFo version 0.9.7. The vulnerability stems from improper checking of the keyLength value. No...
CVE-2020-4839
IBM Host firmware for LC-class Systems is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A remote privileged attacker could exploit this vulnerability and cause a denial of service. IBM X-Force ID: 190037...
Trend Micro Bugs Threaten Home Network Security
Three security vulnerabilities have been found in Trend Micro’s Home Network Security systems, which can allow denial of service DoS, privilege escalation, code execution and authentication bypass. The Home Network Security Station is an all-in-one device that scans for vulnerabilities for...
The vulnerability of the webSettingProfileGeneral function in the embedded web server software is related to buffer overflows in the stack due to deficiencies in input data processing. This allows attackers to execute arbitrary code or cause service interruptions by exploiting this vulnerability.
The vulnerability of the webSettingProfileGeneral function in the embedded web server software is related to buffer overflows in the stack due to deficiencies in input data processing. Exploiting this vulnerability can allow an attacker to enhance their privileges, execute arbitrary code, or caus...
The vulnerability of the config_set function in the libconfig.so library of the web server’s embedded software is related to buffer overflows in the stack due to insufficient input data processing. This allows attackers to execute arbitrary code or cause service interruptions by exploiting this vulnerability.
The vulnerability of the configset function in the libconfig.so library, a built-in software library for web servers, is related to buffer overflows in the stack due to insufficient input handling. Exploiting this vulnerability can allow an attacker to enhance their privileges, execute arbitrary...
Stack-based Buffer Overflow in codeplea/tinyexpr
✍️ Description Whilst experimenting with repl built from commit 61af1d, with Clang 10 +ASan on Ubuntu 20.04.2 LTS, we discovered an expression containing 4 null characters after a newline which, due to insufficient bounds checking, triggers a stack-buffer-overflow. 🕵️♂️ Proof of Concept echo...
Siemens Solid Edge Stack Buffer Overflow Vulnerability
Siemens Solid Edge is a 3D CAD software from Siemens, Germany. A stack buffer overflow vulnerability exists in Siemens Solid Edge, which can be exploited by an attacker to execute code in the context of the current process...
Backdoor.Win32.Agent.oda Buffer Overflow
Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/380ff48c4a28ac25f5efb630883eeb17.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Agent.oda Vulnerability: Remote Stack Buffer Overflow UDP Description: The malware...
OSV-2021-769 Stack-buffer-overflow in TranslateClause
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34332 Crash type: Stack-buffer-overflow READ 16 Crash state: TranslateClause SpeakNextClause Synthesize...
OSV-2021-764 Stack-buffer-overflow in TranslateNumber_1
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34285 Crash type: Stack-buffer-overflow READ 1 Crash state: TranslateNumber1 TranslateNumber TranslateWord3...
Siemens Solid Edge 安全漏洞
Siemens Solid Edge is a 3D CAD software from Siemens, Germany. A stack buffer overflow vulnerability exists in Siemens Solid Edge, which can be exploited by an attacker to execute code in the context of the current process...
OSV-2021-739 Stack-buffer-overflow in flb_sds_cat
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34025 Crash type: Stack-buffer-overflow READ Crash state: flbsdscat flbratranslate recordacfuzzer.c...