6912 matches found
CVE-2019-15695
TigerVNC version prior to 1.10.1 is vulnerable to stack buffer overflow, which could be triggered from CMsgReader::readSetCursor. This vulnerability occurs due to insufficient sanitization of PixelFormat. Since remote attacker can choose offset from start of the buffer to start writing his values...
Stack overflow
TigerVNC version prior to 1.10.1 is vulnerable to stack buffer overflow, which could be triggered from CMsgReader::readSetCursor. This vulnerability occurs due to insufficient sanitization of PixelFormat. Since remote attacker can choose offset from start of the buffer to start writing his values...
CVE-2019-15695
TigerVNC version prior to 1.10.1 is vulnerable to stack buffer overflow, which could be triggered from CMsgReader::readSetCursor. This vulnerability occurs due to insufficient sanitization of PixelFormat. Since remote attacker can choose offset from start of the buffer to start writing his values...
CVE-2019-15695
CVE-2019-15695 affects TigerVNC before 1.10.1. The vulnerability is a stack buffer overflow triggered in CMsgReader::readSetCursor due to insufficient sanitization of PixelFormat, allowing a remote attacker to write arbitrary values and potentially execute code. Exploitation is described as explo...
CVE-2019-15695
TigerVNC version prior to 1.10.1 is vulnerable to stack buffer overflow, which could be triggered from CMsgReader::readSetCursor. This vulnerability occurs due to insufficient sanitization of PixelFormat. Since remote attacker can choose offset from start of the buffer to start writing his values...
Updated apache packages fix security vulnerabilities
The updated packages fix security vulnerabilities: Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially leading to a denial of service. The attacker opens the HTTP/2 window so the peer can send without constraint; however, they leave the TCP window close...
CVE-2019-5075
An exploitable stack buffer overflow vulnerability exists in the command line utility getcouplerdetails of WAGO PFC200 Firmware versions 03.01.0713 and 03.00.3912, and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets sent to the iocheckd service "I/O-Check" can cause a...
Stack overflow
An exploitable stack buffer overflow vulnerability exists in the command line utility getcouplerdetails of WAGO PFC200 Firmware versions 03.01.0713 and 03.00.3912, and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets sent to the iocheckd service "I/O-Check" can cause a...
CVE-2019-5075
An exploitable stack buffer overflow vulnerability exists in the command line utility getcouplerdetails of WAGO PFC200 Firmware versions 03.01.0713 and 03.00.3912, and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets sent to the iocheckd service "I/O-Check" can cause a...
CVE-2019-5075
WAGO PFC200/PFC100 devices are affected by CVE-2019-5075 due to a stack buffer overflow in the iocheckd service’s get_coupler_details/getcouplerdetails utility. The root cause is an incorrect buffer length when copying data (MARKING/WAGONR fields) into a stack buffer, enabling remote code executi...
CVE-2019-5074
An exploitable stack buffer overflow vulnerability exists in the iocheckd service ''I/O-Check'' functionality of WAGO PFC200 Firmware version 03.01.0713, WAGO PFC200 Firmware version 03.00.3912 and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a stack buffe...
CVE-2019-5074
An exploitable stack buffer overflow vulnerability exists in the iocheckd service ''I/O-Check'' functionality of WAGO PFC200 Firmware version 03.01.0713, WAGO PFC200 Firmware version 03.00.3912 and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a stack buffe...
Stack overflow
An exploitable stack buffer overflow vulnerability exists in the iocheckd service ''I/O-Check'' functionality of WAGO PFC200 Firmware version 03.01.0713, WAGO PFC200 Firmware version 03.00.3912 and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a stack buffe...
CVE-2019-5074
An exploitable stack buffer overflow vulnerability exists in the iocheckd service ''I/O-Check'' functionality of WAGO PFC200 Firmware version 03.01.0713, WAGO PFC200 Firmware version 03.00.3912 and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a stack buffe...
CVE-2019-5074
The CVE-2019-5074 vulnerability affects WAGO PFC200/PFC100 iocheckd "I/O-Check" service. Root cause: iocheckd copies QS-STRING into a small stack buffer due to incorrect length handling, enabling a stack overflow that can lead to remote code execution via unauthenticated packets. Affected firmwar...
opensc:fuzz_pkcs15_reader: Stack-buffer-overflow in pgp_parse_algo_attr_blob
Project: https://github.com/OpenSC/OpenSC.git Detailed Report: https://oss-fuzz.com/testcase?key=6329203163398144 Project: opensc Fuzzing Engine: honggfuzz Fuzz Target: fuzzpkcs15reader Job Type: honggfuzzasanopensc Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 4 Crash Address:...
ndpi:fuzz_process_packet: Stack-buffer-overflow in getTLScertificate
Project: https://github.com/ntop/nDPI.git Detailed Report: https://oss-fuzz.com/testcase?key=5117057716977664 Project: ndpi Fuzzing Engine: libFuzzer Fuzz Target: fuzzprocesspacket Job Type: libfuzzerasanndpi Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 6 Crash Address: 0x7ffd947a7e...
WAGO PFC200 iocheckd service "I/O-Check" BC_ProductLabel remote code execution vulnerability
Summary An exploitable stack buffer overflow vulnerability exists in the iocheckd service “I/O-Check” functionality of WAGO PFC 200. A specially crafted set of packets can cause a stack buffer overflow, resulting in code execution. An attacker can send unauthenticated packets to trigger this...
WAGO PFC200 iocheckd service "I/O-Check" get_coupler_details remote code execution vulnerability
Summary An exploitable stack buffer overflow vulnerability exists in the command line utility getcouplerdetails of the WAGO PFC 200. A specially crafted set of packets sent to the iocheckd service “I/O-Check” can cause a stack buffer overflow in the sub-process getcouplerdetails, resulting in cod...
binutils:fuzz_disassemble: Stack-buffer-overflow in buffer_read_memory
Detailed Report: https://oss-fuzz.com/testcase?key=5715112182939648 Project: binutils Fuzzing Engine: libFuzzer Fuzz Target: fuzzdisassemble Job Type: libfuzzerasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 16 Crash Address: 0x7ffcabe23898 Crash State: bufferreadmemory...