Lucene search
K

6912 matches found

Hacker One
Hacker One
added 2020/01/20 9:46 p.m.43 views

Internet Bug Bounty: Squid as reverse proxy RCE and data leak

Summary: This was a very difficult experience as Squid maintainers took a long time to answer. I tried getting help from HackerOne support, Dropbox support and the Internet Bug Bounty never e-mailed me back to no avail. What could have taken a few days took months. The vulnerability concerns a...

7.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/01/20 12:0 a.m.61 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : thunderbird Multiple Vulnerabilities (NS-SA-2020-0003)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has thunderbird packages installed that are affected by multiple vulnerabilities: - In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive...

8.8CVSS8.4AI score0.06643EPSS
Exploits6References15
Debian
Debian
added 2020/01/18 4:38 a.m.183 views

[SECURITY] [DLA 2068-1] linux security update

Package : linux Version : 3.16.81-1 CVE ID : CVE-2019-2215 CVE-2019-10220 CVE-2019-14895 CVE-2019-14896 CVE-2019-14897 CVE-2019-14901 CVE-2019-15098 CVE-2019-15217 CVE-2019-15291 CVE-2019-15505 CVE-2019-16746 CVE-2019-17052 CVE-2019-17053 CVE-2019-17054 CVE-2019-17055 CVE-2019-17056 CVE-2019-1713...

10CVSS7.6AI score0.72105EPSS
Exploits34
RedhatCVE
RedhatCVE
added 2020/01/13 6:39 a.m.28 views

CVE-2019-15695

TigerVNC version prior to 1.10.1 is vulnerable to stack buffer overflow, which could be triggered from CMsgReader::readSetCursor. This vulnerability occurs due to insufficient sanitization of PixelFormat. Since remote attacker can choose offset from start of the buffer to start writing his values...

7.2CVSS5.5AI score0.04485EPSS
Exploits1References3
ossfuzz
ossfuzz
added 2020/01/13 3:55 a.m.18 views

binutils:fuzz_disassemble: Stack-buffer-overflow in buffer_read_memory

Detailed Report: https://oss-fuzz.com/testcase?key=5720058865385472 Project: binutils Fuzzing Engine: afl Fuzz Target: fuzzdisassemble Job Type: aflasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow WRITE Crash Address: 0x7fff2240d888 Crash State: bufferreadmemory fetchdata...

6.8AI score
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2020/01/09 12:0 a.m.29 views

openSUSE: Security Advisory for MozillaFirefox, MozillaFirefox-branding-SLE (openSUSE-SU-2019:2451-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.06643EPSS
Exploits3References2
OSV
OSV
added 2020/01/08 8:15 p.m.3 views

DEBIAN-CVE-2019-11759

An attacker could have caused 4 bytes of HMAC output to be written past the end of a buffer stored on the stack. This could be used by an attacker to execute arbitrary code or more likely lead to a crash. This vulnerability affects Firefox 70, Thunderbird 68.2, and Firefox ESR 68.2...

8.8CVSS9.3AI score0.01799EPSS
Exploits0References1
OSV
OSV
added 2020/01/08 8:15 p.m.7 views

CVE-2019-11760

A fixed-size stack buffer could overflow in nrappkit when doing WebRTC signaling. This resulted in a potentially exploitable crash in some instances. This vulnerability affects Firefox 70, Thunderbird 68.2, and Firefox ESR 68.2...

8.8CVSS8.4AI score
Exploits0References6
Prion
Prion
added 2020/01/08 8:15 p.m.23 views

Buffer overflow

An attacker could have caused 4 bytes of HMAC output to be written past the end of a buffer stored on the stack. This could be used by an attacker to execute arbitrary code or more likely lead to a crash. This vulnerability affects Firefox 70, Thunderbird 68.2, and Firefox ESR 68.2...

6.8CVSS8.3AI score0.01799EPSS
Exploits0References6Affected Software4
AlpineLinux
AlpineLinux
added 2020/01/08 7:48 p.m.51 views

CVE-2019-11759

An attacker could have caused 4 bytes of HMAC output to be written past the end of a buffer stored on the stack. This could be used by an attacker to execute arbitrary code or more likely lead to a crash. This vulnerability affects Firefox 70, Thunderbird 68.2, and Firefox ESR 68.2...

8.8CVSS8.7AI score0.01799EPSS
Exploits0
CVE
CVE
added 2020/01/08 7:48 p.m.284 views

CVE-2019-11759

CVE-2019-11759 describes a stack buffer overflow in the HKDF output that could allow code execution or a crash. Affected products include Firefox < 70, Thunderbird < 68.2, and Firefox ESR

8.8CVSS8.5AI score0.01799EPSS
Exploits0References6Affected Software3
NVD
NVD
added 2020/01/08 4:15 p.m.19 views

CVE-2014-2072

Dassault Systemes Catia V5-6R2013: Stack Buffer Overflow due to inadequate boundary checks...

9.8CVSS9.5AI score0.07429EPSS
Exploits2References3
Prion
Prion
added 2020/01/08 4:15 p.m.18 views

Stack overflow

Dassault Systemes Catia V5-6R2013: Stack Buffer Overflow due to inadequate boundary checks...

7.5CVSS7.1AI score0.07429EPSS
Exploits2References3Affected Software1
CVE
CVE
added 2020/01/08 3:42 p.m.56 views

CVE-2014-2072

CVE-2014-2072 affects Dassault Systemes Catia V5-6R2013. The issue is a Stack Buffer Overflow in CATIA V5-6R2013 due to inadequate boundary checks, reported as a network-based vulnerability with high to critical impact (CVSS2: 7.5, CVSS3.1: 9.8). Public references indicate exploitation resources ...

9.8CVSS9.3AI score0.07429EPSS
Exploits2References3Affected Software1
Prion
Prion
added 2020/01/08 2:15 p.m.12 views

Stack overflow

centurystar 7.12 ActiveX Control has a Stack Buffer Overflow...

10CVSS7.2AI score0.01473EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/01/08 1:51 p.m.46 views

CVE-2014-1598

The CVE-2014-1598 entry concerns the CenturyStar 7.12 ActiveX Control and is documented as a Stack Buffer Overflow vulnerability. The connected sources confirm the affected component (CenturyStar 7.12 ActiveX Control) and describe the root cause as a stack-based overflow. According to the NVD ent...

10CVSS9.4AI score0.01473EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/01/08 1:51 p.m.21 views

CVE-2014-1598

centurystar 7.12 ActiveX Control has a Stack Buffer Overflow...

9.6AI score0.01473EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2020/01/08 12:0 a.m.53 views

Ruckus Unleashed Multiple Vulnerabilities (Jan 2020) - Active Check

Ruckus Unleashed is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS7.5AI score0.2436EPSS
Exploits10References2
ossfuzz
ossfuzz
added 2020/01/07 4:38 p.m.15 views

mruby:mruby_fuzzer: Stack-buffer-overflow in mrb_str_len_to_dbl

Project: https://github.com/mruby/mruby.git Detailed Report: https://oss-fuzz.com/testcase?key=6269063261323264 Project: mruby Fuzzing Engine: libFuzzer Fuzz Target: mrubyfuzzer Job Type: libfuzzerasanmruby Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 1 Crash Address: 0x7ffcba6b3046...

6.8AI score
Exploits0Affected Software1
NVD
NVD
added 2019/12/26 4:15 p.m.17 views

CVE-2019-15695

TigerVNC version prior to 1.10.1 is vulnerable to stack buffer overflow, which could be triggered from CMsgReader::readSetCursor. This vulnerability occurs due to insufficient sanitization of PixelFormat. Since remote attacker can choose offset from start of the buffer to start writing his values...

7.2CVSS7.4AI score0.04485EPSS
Exploits1References4
Rows per page
Query Builder