6913 matches found
Buffer overflow
Tenda AX1803 v1.0.0.12890 is vulnerable to Buffer Overflow. The vulnerability lies in rootfs In / goform / setsystimecfg of / bin / tdhttpd in ubif file system, attackers can access http://ip/goform/SetSysTimeCfg, and by setting the ntpserve parameter, the stack buffer overflow can be caused to...
Cisco RV340 SSL VPN Unauthenticated Remote Code Execution
This module exploits a stack buffer overflow in the Cisco RV series routers SSL VPN functionality. The default SSL VPN configuration is exploitable, with no authentication required and works over the Internet! The stack is executable and no ASLR is in place, which makes exploitation easier...
Cisco RV340 SSL VPN Unauthenticated Remote Code Execution
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco RV340 SSL VPN Unauthenticated Remote Code Execution', 'Description' = %q This module exploits a stack buffer overflow in the Cisco RV serie...
Ubuntu 16.04 ESM : Cairo vulnerabilities (USN-5407-1)
The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5407-1 advisory. Gustavo Grieco, Alberto Garcia, Francisco Oca, Suleman Ali, and others discovered that Cairo incorrectly handled certain files. An attacker could possibl...
Secomea SiteManager Stack Buffer Overflow Vulnerability
Secomea SiteManager is a Danish Secomea application that provides a remote maintenance function for industrial equipment. Secomea SiteManager is vulnerable to a stack buffer overflow vulnerability that can be exploited by attackers to cause arbitrary code execution...
CVE-2022-27784 Adobe After Effects Stack Buffer Overflow Could Lead To RCE
Adobe After Effects versions 22.2.1 and earlier and 18.4.5 and earlier are affected by a stack overflow vulnerability due to insecure handling of a crafted file, potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a...
CVE-2022-27784 Adobe After Effects Stack Buffer Overflow Could Lead To RCE
Adobe After Effects versions 22.2.1 and earlier and 18.4.5 and earlier are affected by a stack overflow vulnerability due to insecure handling of a crafted file, potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a...
CVE-2022-27783 Adobe After Effects Stack Buffer Overflow Could Lead To RCE
Adobe After Effects versions 22.2.1 and earlier and 18.4.5 and earlier are affected by a stack overflow vulnerability due to insecure handling of a crafted file, potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a...
Stack buffer overflow in RTSP packet parsing
Description A malicious RTSP server can trigger a stack buffer overflow via an RTSP packet with an excessively long content-length due to no bounds check when copying into a fixed sized buffer. Proof of Concept poc.py is available here terminal 1 python3 poc.py 31337 terminal 2 ./configure...
OSV-2022-380 Stack-buffer-overflow in sc_asn1_read_tag
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47035 Crash type: Stack-buffer-overflow READ 1 Crash state: scasn1readtag scasn1findtag cardoslistfiles...
The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in buffer overflows in the stack, allowing attackers to execute arbitrary code.
The vulnerability of Adobe After Effects video and dynamic image editing software relates to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code on the target system using a specially crafted file...
The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in buffer overflows in the stack, allowing attackers to execute arbitrary code.
The vulnerability of Adobe After Effects video and dynamic image editing software relates to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code on the target system using a specially crafted file...
The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in buffer overflows in the stack, allowing attackers to execute arbitrary code.
The vulnerability of Adobe After Effects’ video and dynamic image editing software relates to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...
The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in buffer overflows in the stack, allowing attackers to execute arbitrary code.
The vulnerability of Adobe After Effects video and dynamic image editing software is related to buffer overflow in the stack. Exploiting this vulnerability allows a malicious actor to execute arbitrary code on the target system using a specially crafted file...
SKALE Network: Stack Buffer Overflow via `gmp_sprintf`in `BLSSignature` and `BLSSigShare`
A security researcher identified a stack buffer overflow vulnerability in libBLS. While the risk was very low and nothing directly exploitable through the Network or Adjacent Network the vulnerability requires local access to a machine and subsequent code changes to libBLS, the security team went...
Slackware: Security Advisory (SSA:2018-067-02)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Hackers Exploiting Recently Reported Windows Print Spooler Vulnerability in the Wild
A security flaw in the Windows Print Spooler component that was patched by Microsoft in February is being actively exploited in the wild, the U.S. Cybersecurity and Infrastructure Security Agency CISA has warned. To that end, the agency has added the shortcoming to its Known Exploited...
Multiple Adobe products stack buffer overflow vulnerabilities
Adobe Acrobat is a set of PDF file editing and conversion tools. The software is used to print, sign and annotate PDFs.Several Adobe products are vulnerable to stack buffer overflow, which can be exploited by attackers to execute arbitrary code in the context of the current user...
The vulnerability of the /cloud_config/router_post/register function in TP-LINK’s WR-886N router software allows a attacker to execute arbitrary code.
The vulnerability of the /cloudconfig/routerpost/register function in TP-LINK’s WR-886N router software arises due to buffer overflow in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code through a specially crafted request...
AZL-9485 CVE-2021-42782 affecting package opensc for versions less than 0.22.0-1
Stack buffer overflow issues were found in Opensc before version 0.22.0 in various places that could potentially crash programs using the library...