CVE-2017-9026

Stack buffer overflow in vshttpd aka ioos in HooToo Trip Mate 6 TM6 firmware 2.000.030 and earlier allows remote unauthenticated attackers to control the program counter via a specially crafted fname parameter of a GET request...

CVE-2017-9026

CVE-2017-9026 affects the HooToo Trip Mate 6 (TM6) with vshttpd (ioos) in firmware up to version 2.000.030 and earlier. The vulnerability is a stack buffer overflow in vshttpd triggered by a specially crafted fname parameter in a GET request, allowing remote unauthenticated attackers to control t...

gdal: Stack-buffer-overflow in OGRTigerDataSource::Open

Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=5658450124079104 Project: gdal Fuzzer: libFuzzergdalmitabtabfuzzer Fuzz target binary: mitabtabfuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Stack-buffer-overflow WRITE Crash Address:...

ffmpeg: Stack-buffer-overflow in color_string_to_rgba

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5961584419536896 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDXPMfuzzer Fuzz target binary: ffmpegAVCODECIDXPMfuzzer Job Type: libfuzzerasanffmpeg Platform Id: linux Crash Type: Stack-buffer-overflow...

ALLPlayer M3U File Stack Buffer Overflow (CVE-2013-7409)

A stack buffer overflow vulnerability exists in ALLPlayer. The vulnerability is due to insufficient bounds checking on a M3U file. A remote attacker could exploit this vulnerability by enticing a victim to open a specially crafted M3U file. Successful exploitation could lead to arbitrary code...

CVE-2017-8399

PCRE2 before 10.30 has an out-of-bounds write caused by a stack-based buffer overflow in pcre2match.c, related to a "pattern with very many captures."...

Foxit PDF Reader Title Stack Buffer Overflow

A stack buffer overflow vulnerability has been reported in Foxit PDF Reader. The vulnerability is due to mishandling of an overly long string in the Title field. A remote, unauthenticated attacker can exploit this vulnerability by enticing a user to open a specially crafted pdf file...

Zinf Audio Player PLS File Stack Buffer Overflow (CVE-2004-0964)

A stack buffer overflow vulnerability exists in Zinf Audio Player 2.2.1. The vulnerability is due to insufficient bounds checking on a PLS file. A remote attacker could exploit this vulnerability by enticing a victim to open a specially crafted PLS file. Successful exploitation could lead to...

IBM Lotus Domino Server Stack Buffer Overflow Vulnerability

IBM Lotus Domino Server is prone to a stack-based buffer overflow vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Rockwell Automation Logix Controller Stack Buffer Overflow (CVE-2016-9343)

A stack buffer overflow vulnerability exists in Rockwell Automation Logix Controllers. The vulnerability is due to insufficient bounds checking. A successful exploitation could lead to arbitrary code execution...

RHEL 7 : firefox (RHSA-2017:1106)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2017:1106 advisory. Mozilla Firefox is an open source web browser. This update upgrades Firefox to version 52.1.0 ESR. Security Fixes: Multiple flaws were found...

shopify-scripts: mirb only: stack-buffer-overflow (OOB write) in main()

Triggered in 7e28510 7 April 2017 with mirb only. cat test013.rb | mirb ==17976==ERROR: AddressSanitizer: stack-buffer-overflow on address 0x7fffeb477fb0 at pc 0x408c21 bp 0x7fffeb477a90 sp 0x7fffeb477a88 WRITE of size 1 at 0x7fffeb477fb0 thread T0 0 0x408c20 in main...

dlplibs: Stack-buffer-overflow in StarWriterStruct::DatabaseName::read

Detailed report: https://oss-fuzz.com/testcase?key=5177092629069824 Project: dlplibs Fuzzer: libFuzzerdlplibssdwfuzzer Fuzz target binary: sdwfuzzer Job Type: libfuzzerasandlplibs Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 4 Crash Address: 0x7f3a03d7f378 Crash State:...

Even the WiFi can also be black? iOS 10.3 to the presence of high-risk vulnerabilities, please everyone rushed to upgrade! - Vulnerability warning-the black bar safety net

iOS 10.3 update soon, Apple launched iOS 10.3.1, according to Apple provides the iOS version, the iOS 10.3 official version of the total repair more than one hundred security vulnerabilities, and to achieve a certain extent of safety improvement. And in the version released after less than a week...

CommVault Edge 11 SP6 - Stack Buffer Overflow (PoC) Exploit

Exploit for windows platform in category dos / poc import socket import binascii import time import struct s = socket.socketsocket.AFINET, socket.SOCKSTREAM s.settimeout1 s.connect"10.101.0.85", 8400 def srp=None, r=None: if p: print "sending %d bytes: %s " % lenp/2,p payl = binascii.a2bhexp...

Stack overflow

On the Broadcom Wi-Fi HardMAC SoC with fbt firmware, a stack buffer overflow occurs when handling an 802.11r FT authentication response, leading to remote code execution via a crafted access point that sends a long R0KH-ID field in a Fast BSS Transition Information Element FT-IE...

Stack overflow

Wi-Fi in Apple iOS before 10.3.1 does not prevent CVE-2017-6956 stack buffer overflow exploitation via a crafted access point. NOTE: because an operating system could potentially isolate itself from CVE-2017-6956 exploitation without patching Broadcom firmware functions, there is a separate CVE I...

CVE-2017-6975

Wi-Fi in Apple iOS before 10.3.1 does not prevent CVE-2017-6956 stack buffer overflow exploitation via a crafted access point. NOTE: because an operating system could potentially isolate itself from CVE-2017-6956 exploitation without patching Broadcom firmware functions, there is a separate CVE I...

CVE-2017-6956

On the Broadcom Wi-Fi HardMAC SoC with fbt firmware, a stack buffer overflow occurs when handling an 802.11r FT authentication response, leading to remote code execution via a crafted access point that sends a long R0KH-ID field in a Fast BSS Transition Information Element FT-IE...

CVE-2017-6956

The CVE-2017-6956 entry concerns the Broadcom Wi‑Fi HardMAC SoC with fbt firmware. The issue is a stack buffer overflow in the FT (802.11r) authentication response handling, exploitable via a crafted AP that sends a long R0KH-ID in the FT‑IE, leading to remote code execution. Affected component i...