Lucene search
K

6912 matches found

NVD
NVD
added 2019/12/26 4:15 p.m.17 views

CVE-2019-15695

TigerVNC version prior to 1.10.1 is vulnerable to stack buffer overflow, which could be triggered from CMsgReader::readSetCursor. This vulnerability occurs due to insufficient sanitization of PixelFormat. Since remote attacker can choose offset from start of the buffer to start writing his values...

7.2CVSS7.4AI score0.04485EPSS
Exploits1References4
Prion
Prion
added 2019/12/26 4:15 p.m.19 views

Stack overflow

TigerVNC version prior to 1.10.1 is vulnerable to stack buffer overflow, which could be triggered from CMsgReader::readSetCursor. This vulnerability occurs due to insufficient sanitization of PixelFormat. Since remote attacker can choose offset from start of the buffer to start writing his values...

6.5CVSS7.1AI score0.04485EPSS
Exploits1References4Affected Software2
UbuntuCve
UbuntuCve
added 2019/12/26 4:15 p.m.25 views

CVE-2019-15695

TigerVNC version prior to 1.10.1 is vulnerable to stack buffer overflow, which could be triggered from CMsgReader::readSetCursor. This vulnerability occurs due to insufficient sanitization of PixelFormat. Since remote attacker can choose offset from start of the buffer to start writing his values...

7.2CVSS7.2AI score0.04485EPSS
Exploits1References6
CVE
CVE
added 2019/12/26 3:24 p.m.162 views

CVE-2019-15695

CVE-2019-15695 affects TigerVNC before 1.10.1. The vulnerability is a stack buffer overflow triggered in CMsgReader::readSetCursor due to insufficient sanitization of PixelFormat, allowing a remote attacker to write arbitrary values and potentially execute code. Exploitation is described as explo...

7.2CVSS7.3AI score0.04485EPSS
Exploits1References4Affected Software1
Debian CVE
Debian CVE
added 2019/12/26 3:24 p.m.15 views

CVE-2019-15695

TigerVNC version prior to 1.10.1 is vulnerable to stack buffer overflow, which could be triggered from CMsgReader::readSetCursor. This vulnerability occurs due to insufficient sanitization of PixelFormat. Since remote attacker can choose offset from start of the buffer to start writing his values...

7.2CVSS7.3AI score0.04485EPSS
Exploits1
Mageia
Mageia
added 2019/12/25 7:8 p.m.91 views

Updated apache packages fix security vulnerabilities

The updated packages fix security vulnerabilities: Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially leading to a denial of service. The attacker opens the HTTP/2 window so the peer can send without constraint; however, they leave the TCP window close...

9.1CVSS0.81466EPSS
Exploits6References5
NVD
NVD
added 2019/12/18 9:15 p.m.35 views

CVE-2019-5075

An exploitable stack buffer overflow vulnerability exists in the command line utility getcouplerdetails of WAGO PFC200 Firmware versions 03.01.0713 and 03.00.3912, and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets sent to the iocheckd service "I/O-Check" can cause a...

10CVSS9.9AI score0.03866EPSS
Exploits1References1
Prion
Prion
added 2019/12/18 9:15 p.m.22 views

Stack overflow

An exploitable stack buffer overflow vulnerability exists in the command line utility getcouplerdetails of WAGO PFC200 Firmware versions 03.01.0713 and 03.00.3912, and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets sent to the iocheckd service "I/O-Check" can cause a...

10CVSS9.8AI score0.03866EPSS
Exploits1References1Affected Software2
Cvelist
Cvelist
added 2019/12/18 8:51 p.m.37 views

CVE-2019-5075

An exploitable stack buffer overflow vulnerability exists in the command line utility getcouplerdetails of WAGO PFC200 Firmware versions 03.01.0713 and 03.00.3912, and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets sent to the iocheckd service "I/O-Check" can cause a...

9.9AI score0.03866EPSS
Exploits1References1
CVE
CVE
added 2019/12/18 8:51 p.m.67 views

CVE-2019-5075

WAGO PFC200/PFC100 devices are affected by CVE-2019-5075 due to a stack buffer overflow in the iocheckd service’s get_coupler_details/getcouplerdetails utility. The root cause is an incorrect buffer length when copying data (MARKING/WAGONR fields) into a stack buffer, enabling remote code executi...

10CVSS9.8AI score0.03866EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2019/12/18 8:15 p.m.3 views

CVE-2019-5074

An exploitable stack buffer overflow vulnerability exists in the iocheckd service ''I/O-Check'' functionality of WAGO PFC200 Firmware version 03.01.0713, WAGO PFC200 Firmware version 03.00.3912 and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a stack buffe...

9.8CVSS7.6AI score
Exploits0References1
NVD
NVD
added 2019/12/18 8:15 p.m.26 views

CVE-2019-5074

An exploitable stack buffer overflow vulnerability exists in the iocheckd service ''I/O-Check'' functionality of WAGO PFC200 Firmware version 03.01.0713, WAGO PFC200 Firmware version 03.00.3912 and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a stack buffe...

10CVSS9.8AI score0.0328EPSS
Exploits0References1
Prion
Prion
added 2019/12/18 8:15 p.m.20 views

Stack overflow

An exploitable stack buffer overflow vulnerability exists in the iocheckd service ''I/O-Check'' functionality of WAGO PFC200 Firmware version 03.01.0713, WAGO PFC200 Firmware version 03.00.3912 and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a stack buffe...

10CVSS9.7AI score0.0328EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2019/12/18 7:30 p.m.28 views

CVE-2019-5074

An exploitable stack buffer overflow vulnerability exists in the iocheckd service ''I/O-Check'' functionality of WAGO PFC200 Firmware version 03.01.0713, WAGO PFC200 Firmware version 03.00.3912 and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a stack buffe...

9.8AI score0.0328EPSS
Exploits0References1
CVE
CVE
added 2019/12/18 7:30 p.m.56 views

CVE-2019-5074

The CVE-2019-5074 vulnerability affects WAGO PFC200/PFC100 iocheckd "I/O-Check" service. Root cause: iocheckd copies QS-STRING into a small stack buffer due to incorrect length handling, enabling a stack overflow that can lead to remote code execution via unauthenticated packets. Affected firmwar...

10CVSS9.7AI score0.0328EPSS
Exploits0References1Affected Software1
ossfuzz
ossfuzz
added 2019/12/17 8:46 p.m.16 views

opensc:fuzz_pkcs15_reader: Stack-buffer-overflow in pgp_parse_algo_attr_blob

Project: https://github.com/OpenSC/OpenSC.git Detailed Report: https://oss-fuzz.com/testcase?key=6329203163398144 Project: opensc Fuzzing Engine: honggfuzz Fuzz Target: fuzzpkcs15reader Job Type: honggfuzzasanopensc Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 4 Crash Address:...

6.4AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2019/12/17 4:57 p.m.16 views

ndpi:fuzz_process_packet: Stack-buffer-overflow in getTLScertificate

Project: https://github.com/ntop/nDPI.git Detailed Report: https://oss-fuzz.com/testcase?key=5117057716977664 Project: ndpi Fuzzing Engine: libFuzzer Fuzz Target: fuzzprocesspacket Job Type: libfuzzerasanndpi Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 6 Crash Address: 0x7ffd947a7e...

6.8AI score
Exploits0Affected Software1
Talos
Talos
added 2019/12/16 12:0 a.m.61 views

WAGO PFC200 iocheckd service "I/O-Check" BC_ProductLabel remote code execution vulnerability

Summary An exploitable stack buffer overflow vulnerability exists in the iocheckd service “I/O-Check” functionality of WAGO PFC 200. A specially crafted set of packets can cause a stack buffer overflow, resulting in code execution. An attacker can send unauthenticated packets to trigger this...

10CVSS9.9AI score0.0328EPSS
Exploits0
Talos
Talos
added 2019/12/16 12:0 a.m.87 views

WAGO PFC200 iocheckd service "I/O-Check" get_coupler_details remote code execution vulnerability

Summary An exploitable stack buffer overflow vulnerability exists in the command line utility getcouplerdetails of the WAGO PFC 200. A specially crafted set of packets sent to the iocheckd service “I/O-Check” can cause a stack buffer overflow in the sub-process getcouplerdetails, resulting in cod...

10CVSS10AI score0.03866EPSS
Exploits1
ossfuzz
ossfuzz
added 2019/12/13 5:19 a.m.14 views

binutils:fuzz_disassemble: Stack-buffer-overflow in buffer_read_memory

Detailed Report: https://oss-fuzz.com/testcase?key=5715112182939648 Project: binutils Fuzzing Engine: libFuzzer Fuzz Target: fuzzdisassemble Job Type: libfuzzerasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 16 Crash Address: 0x7ffcabe23898 Crash State: bufferreadmemory...

6.8AI score
Exploits0Affected Software1
Rows per page
Query Builder