Lucene search
K

6913 matches found

Prion
Prion
added 2022/05/11 6:15 p.m.22 views

Buffer overflow

Tenda AX1803 v1.0.0.12890 is vulnerable to Buffer Overflow. The vulnerability lies in rootfs In / goform / setsystimecfg of / bin / tdhttpd in ubif file system, attackers can access http://ip/goform/SetSysTimeCfg, and by setting the ntpserve parameter, the stack buffer overflow can be caused to...

5CVSS7.7AI score0.01844EPSS
Exploits1References2Affected Software1
Metasploit
Metasploit
added 2022/05/11 5:43 p.m.182 views

Cisco RV340 SSL VPN Unauthenticated Remote Code Execution

This module exploits a stack buffer overflow in the Cisco RV series routers SSL VPN functionality. The default SSL VPN configuration is exploitable, with no authentication required and works over the Internet! The stack is executable and no ASLR is in place, which makes exploitation easier...

10CVSS9.8AI score0.72458EPSS
Exploits7
Packet Storm
Packet Storm
added 2022/05/11 12:0 a.m.616 views

Cisco RV340 SSL VPN Unauthenticated Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco RV340 SSL VPN Unauthenticated Remote Code Execution', 'Description' = %q This module exploits a stack buffer overflow in the Cisco RV serie...

10CVSS0.6AI score0.72458EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.51 views

Ubuntu 16.04 ESM : Cairo vulnerabilities (USN-5407-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5407-1 advisory. Gustavo Grieco, Alberto Garcia, Francisco Oca, Suleman Ali, and others discovered that Cairo incorrectly handled certain files. An attacker could possibl...

7.8CVSS6.7AI score0.03463EPSS
Exploits1References5
CNVD
CNVD
added 2022/05/07 12:0 a.m.17 views

Secomea SiteManager Stack Buffer Overflow Vulnerability

Secomea SiteManager is a Danish Secomea application that provides a remote maintenance function for industrial equipment. Secomea SiteManager is vulnerable to a stack buffer overflow vulnerability that can be exploited by attackers to cause arbitrary code execution...

7.2CVSS7.7AI score0.00919EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/05/06 5:24 p.m.33 views

CVE-2022-27784 Adobe After Effects Stack Buffer Overflow Could Lead To RCE

Adobe After Effects versions 22.2.1 and earlier and 18.4.5 and earlier are affected by a stack overflow vulnerability due to insecure handling of a crafted file, potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a...

7.8CVSS8AI score0.03682EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/05/06 5:24 p.m.5 views

CVE-2022-27784 Adobe After Effects Stack Buffer Overflow Could Lead To RCE

Adobe After Effects versions 22.2.1 and earlier and 18.4.5 and earlier are affected by a stack overflow vulnerability due to insecure handling of a crafted file, potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a...

7.8CVSS7.8AI score0.03682EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/05/06 5:23 p.m.6 views

CVE-2022-27783 Adobe After Effects Stack Buffer Overflow Could Lead To RCE

Adobe After Effects versions 22.2.1 and earlier and 18.4.5 and earlier are affected by a stack overflow vulnerability due to insecure handling of a crafted file, potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a...

7.8CVSS7.8AI score0.03682EPSS
Exploits0References1
Huntr
Huntr
added 2022/05/01 4:21 p.m.12 views

Stack buffer overflow in RTSP packet parsing

Description A malicious RTSP server can trigger a stack buffer overflow via an RTSP packet with an excessively long content-length due to no bounds check when copying into a fixed sized buffer. Proof of Concept poc.py is available here terminal 1 python3 poc.py 31337 terminal 2 ./configure...

2.3AI score
Exploits0
OSV
OSV
added 2022/04/27 12:1 a.m.9 views

OSV-2022-380 Stack-buffer-overflow in sc_asn1_read_tag

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47035 Crash type: Stack-buffer-overflow READ 1 Crash state: scasn1readtag scasn1findtag cardoslistfiles...

7.2AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/04/25 12:0 a.m.4 views

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in buffer overflows in the stack, allowing attackers to execute arbitrary code.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code on the target system using a specially crafted file...

7.8CVSS8.2AI score0.03803EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/04/25 12:0 a.m.4 views

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in buffer overflows in the stack, allowing attackers to execute arbitrary code.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code on the target system using a specially crafted file...

7.8CVSS8.2AI score0.02332EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/04/25 12:0 a.m.5 views

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in buffer overflows in the stack, allowing attackers to execute arbitrary code.

The vulnerability of Adobe After Effects’ video and dynamic image editing software relates to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

7.8CVSS8AI score0.03682EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/04/25 12:0 a.m.7 views

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in buffer overflows in the stack, allowing attackers to execute arbitrary code.

The vulnerability of Adobe After Effects video and dynamic image editing software is related to buffer overflow in the stack. Exploiting this vulnerability allows a malicious actor to execute arbitrary code on the target system using a specially crafted file...

7.8CVSS8.2AI score0.03803EPSS
Exploits0References3Affected Software1
Hacker One
Hacker One
added 2022/04/21 2:2 p.m.20 views

SKALE Network: Stack Buffer Overflow via `gmp_sprintf`in `BLSSignature` and `BLSSigShare`

A security researcher identified a stack buffer overflow vulnerability in libBLS. While the risk was very low and nothing directly exploitable through the Network or Adjacent Network the vulnerability requires local access to a machine and subsequent code changes to libBLS, the security team went...

2.7AI score
Exploits0
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.33 views

Slackware: Security Advisory (SSA:2018-067-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.87883EPSS
Exploits3References2
The Hacker News
The Hacker News
added 2022/04/20 2:54 a.m.252 views

Hackers Exploiting Recently Reported Windows Print Spooler Vulnerability in the Wild

A security flaw in the Windows Print Spooler component that was patched by Microsoft in February is being actively exploited in the wild, the U.S. Cybersecurity and Infrastructure Security Agency CISA has warned. To that end, the agency has added the shortcoming to its Known Exploited...

9.8CVSS8AI score0.39166EPSS
Exploits6
CNVD
CNVD
added 2022/04/19 12:0 a.m.13 views

Multiple Adobe products stack buffer overflow vulnerabilities

Adobe Acrobat is a set of PDF file editing and conversion tools. The software is used to print, sign and annotate PDFs.Several Adobe products are vulnerable to stack buffer overflow, which can be exploited by attackers to execute arbitrary code in the context of the current user...

6.3AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2022/04/19 12:0 a.m.6 views

The vulnerability of the /cloud_config/router_post/register function in TP-LINK’s WR-886N router software allows a attacker to execute arbitrary code.

The vulnerability of the /cloudconfig/routerpost/register function in TP-LINK’s WR-886N router software arises due to buffer overflow in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code through a specially crafted request...

10CVSS8.6AI score0.02413EPSS
Exploits1References4
OSV
OSV
added 2022/04/18 5:15 p.m.5 views

AZL-9485 CVE-2021-42782 affecting package opensc for versions less than 0.22.0-1

Stack buffer overflow issues were found in Opensc before version 0.22.0 in various places that could potentially crash programs using the library...

5.3CVSS6.9AI score0.02598EPSS
Exploits0References1
Rows per page
Query Builder