6912 matches found
imagemagick:crop_fuzzer: Stack-buffer-overflow in ReadICCProfile
Project: https://github.com/imagemagick/imagemagick.git Detailed Report: https://oss-fuzz.com/testcase?key=5741266359025664 Project: imagemagick Fuzzing Engine: honggfuzz Fuzz Target: cropfuzzer Job Type: honggfuzzasanimagemagick Platform Id: linux Crash Type: Stack-buffer-overflow READ 13 Crash...
karchive:karchive_fuzzer: Stack-buffer-overflow in KTar::KTarPrivate::readHeader
Project: git://anongit.kde.org/karchive Detailed Report: https://oss-fuzz.com/testcase?key=5632739014606848 Project: karchive Fuzzing Engine: honggfuzz Fuzz Target: karchivefuzzer Job Type: honggfuzzasankarchive Platform Id: linux Crash Type: Stack-buffer-overflow READ Crash Address: 0x7ffff7f75a...
The vulnerability of the i2c_ddc functions in the QEMU hardware emulation software allows a hacker to disclose protected information.
The vulnerability of the i2cddc function hw/i2c/i2c-ddc.c in the QEMU hardware emulation software is related to reading data beyond the buffer limit 128 bytes of stack memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security...
ABB IDAL HTTP Server Stack Buffer Overflow (CVE-2019-7232)
A stack buffer overflow vulnerability exists in ABB IDAL HTTP Server. A remote unauthenticated attacker could exploit this vulnerability by sending a crafted request to the vulnerable server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on...
EulerOS 2.0 SP8 : httpd (EulerOS-SA-2020-1155)
According to the versions of the httpd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Apache HTTP Server 2.4.32-2.4.39, when modremoteip was configured to use a trusted intermediary proxy server using the 'PROXY' protocol, a...
EulerOS 2.0 SP5 : cups (EulerOS-SA-2020-1096)
According to the versions of the cups packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - cups: stack-buffer-overflow in libcups's asn1gettype function.CVE-2019-8675 - cups: stack-buffer-overflow in libcups's asn1gettype...
Huawei EulerOS: Security Advisory for cups (EulerOS-SA-2020-1096)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
imagemagick:encoder_radial-gradient_fuzzer: Stack-buffer-overflow in ReadGRADIENTImage
Project: https://github.com/imagemagick/imagemagick.git Detailed Report: https://oss-fuzz.com/testcase?key=5659238976454656 Project: imagemagick Fuzzing Engine: libFuzzer Fuzz Target: encoderradial-gradientfuzzer Job Type: libfuzzerasanimagemagick Platform Id: linux Crash Type:...
openthread:ip6-send-fuzzer: Stack-buffer-overflow in ot::ExtendedTlv::GetLength
Project: https://github.com/openthread/openthread.git Detailed Report: https://oss-fuzz.com/testcase?key=5751684162912256 Project: openthread Fuzzing Engine: honggfuzz Fuzz Target: ip6-send-fuzzer Job Type: honggfuzzasanopenthread Platform Id: linux Crash Type: Stack-buffer-overflow READ 2 Crash...
Easy File Sharing Web Server 7.2 Buffer Overflow
!/usr/bin/python Exploit Title: Easy File Sharing Web Server v7.2 - POST 'Email' Unauthenticated Remote Buffer Overflow Exploit Author: boku aka Bobby Cooke Date: February 7th, 2020 Vendor Homepage: http://www.sharing-file.com/ Software Link: http://www.sharing-file.com/efssetup.exe Version: 7.2...
Anviz CrossChex - Buffer Overflow (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Anviz CrossChex Buffer Overflow', 'Description' = %q Waits for broadcasts from Ainz CrossChex looking for new devices, and returns a custom...
PostgreSQL Database Password Change Stack Buffer Overflow (CVE-2019-10164)
A stack buffer overflow exists in PostgreSQL Database. The vulnerability is due to a stack buffer overflow when setting a password. A remote, authenticated attacker could send a crafted request in order to trigger the vulnerability. Successful exploitation will result in arbitrary code execution...
opensc:fuzz_pkcs15_reader: Stack-buffer-overflow in sc_pkcs15emu_gemsafeGPK_init
Project: https://github.com/OpenSC/OpenSC.git Detailed Report: https://oss-fuzz.com/testcase?key=5682366024777728 Project: opensc Fuzzing Engine: libFuzzer Fuzz Target: fuzzpkcs15reader Job Type: libfuzzerasanopensc Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 4 Crash Address:...
binutils:fuzz_disassemble: Stack-buffer-overflow in objdump_sprintf
Detailed Report: https://oss-fuzz.com/testcase?key=5763790471954432 Project: binutils Fuzzing Engine: libFuzzer Fuzz Target: fuzzdisassemble Job Type: libfuzzerasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow READ 1 Crash Address: 0x7ffe5f5bd160 Crash State: objdumpsprintf...
binutils:fuzz_disassemble: Stack-buffer-overflow in objdump_sprintf
Detailed Report: https://oss-fuzz.com/testcase?key=5648977540415488 Project: binutils Fuzzing Engine: libFuzzer Fuzz Target: fuzzdisassemble Job Type: libfuzzerasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow READ 1 Crash Address: 0x7fff90210240 Crash State: objdumpsprintf prt...
binutils:fuzz_disassemble: Stack-buffer-overflow in objdump_sprintf
Detailed Report: https://oss-fuzz.com/testcase?key=5660495032090624 Project: binutils Fuzzing Engine: libFuzzer Fuzz Target: fuzzdisassemble Job Type: libfuzzerasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow READ 1 Crash Address: 0x7ffe5f9deea0 Crash State: objdumpsprintf...
binutils:fuzz_disassemble: Stack-buffer-overflow in objdump_sprintf
Detailed Report: https://oss-fuzz.com/testcase?key=5073917066870784 Project: binutils Fuzzing Engine: libFuzzer Fuzz Target: fuzzdisassemble Job Type: libfuzzerasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow READ 1 Crash Address: 0x7ffd30c9ffa5 Crash State: objdumpsprintf...
binutils:fuzz_disassemble: Stack-buffer-overflow in objdump_sprintf
Detailed Report: https://oss-fuzz.com/testcase?key=5663200928595968 Project: binutils Fuzzing Engine: libFuzzer Fuzz Target: fuzzdisassemble Job Type: libfuzzerasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow READ 1 Crash Address: 0x7ffce0fe8ba2 Crash State: objdumpsprintf...
Security Bulletin: Aspera Web Application (Faspex, Console, Orchestrator, Shares) are affected by Apache vulnerabilities (CVE-2019-9517, CVE-2019-10097)
Summary Aspera Web Application Faspex, Console, Shares, Orchestrator have affected the following Apache vulnerabilities. Vulnerability Details CVEID: CVE-2019-9517 DESCRIPTION: Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially leading to a denial of...
janus-gateway:rtcp_fuzzer: Dynamic-stack-buffer-overflow in janus_rtcp_incoming_transport_cc
Project: https://github.com/meetecho/janus-gateway.git Detailed Report: https://oss-fuzz.com/testcase?key=5648598425665536 Project: janus-gateway Fuzzing Engine: afl Fuzz Target: rtcpfuzzer Job Type: aflasanjanus-gateway Platform Id: linux Crash Type: Dynamic-stack-buffer-overflow READ 2 Crash...