CURL-CVE-2024-6197 freeing stack buffer in utf8asn1str

libcurl's ASN1 parser has this utf8asn1str function used for parsing an ASN.1 UTF-8 string. It can detect an invalid field and return error. Unfortunately, when doing so it also invokes free on a 4 byte local stack buffer. Most modern malloc implementations detect this error and immediately abort...

CVE-2024-6874 macidn punycode buffer overread

libcurl's URL API function curlurlget offers punycode conversions, to and from IDN. Asking to convert a name that is exactly 256 bytes, libcurl ends up reading outside of a stack based buffer when built to use the macidn IDN backend. The conversion function then fills up the provided buffer exact...

CVE-2024-6874

libcurl's URL API function curlurlget offers punycode conversions, to and from IDN. Asking to convert a name that is exactly 256 bytes, libcurl ends up reading outside of a stack based buffer when built to use the macidn IDN backend. The conversion function then fills up the provided buffer exact...

CVE-2024-6197 freeing stack buffer in utf8asn1str

libcurl's ASN1 parser has this utf8asn1str function used for parsing an ASN.1 UTF-8 string. Itcan detect an invalid field and return error. Unfortunately, when doing so it also invokes free on a 4 byte localstack buffer. Most modern malloc implementations detect this error and immediately abort...

CVE-2024-6197 freeing stack buffer in utf8asn1str

libcurl's ASN1 parser has this utf8asn1str function used for parsing an ASN.1 UTF-8 string. Itcan detect an invalid field and return error. Unfortunately, when doing so it also invokes free on a 4 byte localstack buffer. Most modern malloc implementations detect this error and immediately abort...

CVE-2024-6197

CVE-2024-6197 affects libcurl’s ASN.1 parser (utf8asn1str) where freeing a 4-byte local stack buffer on error can corrupt nearby stack memory depending on the malloc implementation; outcome most often is a crash, with remote exploitation not detailed in the provided documents. Connected sources c...

Internet Bug Bounty: curl: stack-buffer overread during punycode conversions

The vulnerability in libcurl's URL API function curlurlget was discovered, where it performed punycode conversions. When converting a 256-byte domain name, the function read outside of a stack-based buffer, potentially leaking adjacent stack memory as part of the converted string. The flaw was...

Internet Bug Bounty: libcurl: freeing stack buffer during x509 certificate parsing

The libcurl's ASN1 parser had a vulnerability in the utf8asn1str function used for parsing an ASN.1 UTF-8 string. The function could detect an invalid field and return an error, which would trigger a free of a 4-byte local stack buffer. This could lead to a crash or potential memory corruption,...

CVE-2024-6197

libcurl's ASN1 parser has this utf8asn1str function used for parsing an ASN.1 UTF-8 string. Itcan detect an invalid field and return error. Unfortunately, when doing so it also invokes free on a 4 byte localstack buffer. Most modern malloc implementations detect this error and immediately abort...

CVE-2024-6874

libcurl's URL API function curlurlget offers punycode conversions, to and from IDN. Asking to convert a name that is exactly 256 bytes, libcurl ends up reading outside of a stack based buffer when built to use the macidn IDN backend. The conversion function then fills up the provided buffer exact...

The vulnerability of the microprogrammed software of AutomationDirect P3-550E, related to buffer overflow in the stack, allows a hacker to execute arbitrary code.

The vulnerability of the microprogrammed software in AutomationDirect P3-550E controllers is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the microprogrammed software of AutomationDirect P3-550E, related to buffer overflow in the stack, allows a hacker to execute arbitrary code.

The vulnerability of the microprogrammed software in AutomationDirect P3-550E controllers is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

Tenda AX1806 sub_519F4 function stack buffer overflow vulnerability

The Tenda AX1806 is a WiFi6 wireless router from Tenda, a Chinese company. A stack buffer overflow vulnerability exists in the Tenda AX1806 sub519F4 function, which originates when /goform/SetStaticRouteCfg fails to properly validate the length and size of the input data, and can be exploited by ...

NETGEAR RAX30 Stack Buffer Overflow Vulnerability (CNVD-2024-33904)

The NETGEAR RAX30 is a dual-band wireless router from NETGEAR. The NETGEAR RAX30 suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code...

PDF-XChange Editor stack buffer overflow vulnerability (CNVD-2024-33502)

PDF-XChange Editor is a PDF-XChange company running on Microsoft Windows systems in the PDF file viewer software. PDF-XChange Editor suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code...

TP-LINK Tapo C210 Stack Buffer Overflow Vulnerability

TP-LINK Tapo C210 is a webcam device from China P&L TP-LINK. The TP-LINK Tapo C210 suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code on an affected device...

D-Link DAP-1325 Stack Buffer Overflow Vulnerability (CNVD-2024-33901)

The D-Link DAP-1325 is a wireless access point/bridge from China's AUO D-Link, which is primarily used to provide wireless network coverage and has a bridging function that allows you to convert a wired network to a wireless network or connect two wireless networks together. The D-Link DAP-1325...

The vulnerability of the fromNatlimit function (/goform/Natlimit) in the Tenda F1202 router microprogramming system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the fromNatlimit function /goform/Natlimit in the Tenda F1202 router microprogramming system is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected informatio...

D-Link DAP-1325 SetAPLanSettings Stack Buffer Overflow Vulnerability

D-Link DAP-1325 is a wireless access point/bridge made by D-Link, which is mainly used to extend the wireless network coverage, support the conversion of wired network to wireless network or connect to different wireless networks. The D-Link DAP-1325 suffers from a stack buffer overflow...

Nintendo: [Switch, PIA/MK8DX] Stack buffer overflow and potential RCE in PIA (LAN/LDN, possibly NEX) room info deserialization

The vulnerability was a stack buffer overflow and potential remote code execution issue in the LAN/LDN and possibly NEX room information deserialization process of the PIA application on the Nintendo Switch. The vulnerability could have been exploited by an attacker in a LAN/LDN or NEX room...