Advantech WebAccess/SCADA

1. EXECUTIVE SUMMARY CVSS v3 7.3 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Advantech Equipment: WebAccess/SCADA Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could cause a stack buffer overflow condition. 3...

GNU inetutils 1.9.4 telnet.c Overflows

GNU inetutils = 1.9.4 telnet.c multiple overflows ================================================== GNU inetutils is vulnerable to a stack overflow vulnerability in the client-side environment variable handling which can be exploited to escape restricted shells on embedded devices. Most modern...

GNU inetutils < 1.9.4 - 'telnet.c' Multiple Overflows (PoC)

GNU inetutils = 1.9.4 telnet.c multiple overflows ================================================== GNU inetutils is vulnerable to a stack overflow vulnerability in the client-side environment variable handling which can be exploited to escape restricted shells on embedded devices. Most modern...

wireshark/fuzzshark_ip_proto-udp: Stack-buffer-overflow in cdma2k_message_HANDOFF_DIR

Project: https://code.wireshark.org/review/wireshark Detailed report: https://oss-fuzz.com/testcase?key=5742878135943168 Project: wireshark Fuzzer: aflwiresharkfuzzsharkipproto-udp Fuzz target binary: fuzzsharkipproto-udp Job Type: aflasanwireshark Platform Id: linux Crash Type:...

CVE-2018-1897

IBM DB2 for Linux, UNIX and Windows 9.7, 10.1, 10.5., and 11.1 db2pdcfg is vulnerable to a stack based buffer overflow, caused by improper bounds checking which could allow an attacker to execute arbitrary code. IBM X-Force ID: 152462...

CyberLink LabelPrint 2.5 Stack Buffer Overflow

This module exploits a stack buffer overflow in CyberLink LabelPrint 2.5 and below. The vulnerability is triggered when opening a .lpp project file containing overly long string characters via open file menu. This results in overwriting a structured exception handler record and take over the...

Oracle Linux 7 : kernel (ELSA-2018-3651)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-3651 advisory. - net rtnetlink: give a user socket to gettargetnet Jiri Benc 1639635 1630694 CVE-2018-14646 - net Add variants of capable for use on on sockets Jiri...

Rockwell Automation RSLinx Classic ENGINE.dll Stack Buffer Overflow

Binary data scadarslinxclassiccve-2018-14829.nbin...

Freeware Advanced Audio Decoder 2 Buffer Overflow Vulnerability

Freeware Advanced Audio Decoder 2 FAAD2 is a free advanced audio encoder. A stack buffer overflow vulnerability exists in the 'calculategain' function in the libfaad/sbrhfadj.c file in FAAD2 version 2.8.1, which can be exploited by an attacker to cause a denial of service or code execution...

CVE-2018-19519

In tcpdump 4.9.2, a stack-based buffer over-read exists in the printprefix function of print-hncp.c via crafted packet data because of missing initialization...

libaom/av1_dec_fuzzer: Stack-buffer-overflow in highbd_dr_prediction_z1_64xN_avx2

Detailed report: https://oss-fuzz.com/testcase?key=5759400271151104 Project: libaom Fuzzer: afllibaomav1decfuzzer Fuzz target binary: av1decfuzzer Job Type: aflasanlibaom Platform Id: linux Crash Type: Stack-buffer-overflow READ 16 Crash Address: 0x7f0cdb2dc3f1 Crash State:...

CVE-2009-5153

In Novell NetWare before 6.5 SP8, a stack buffer overflow in processing of CALLIT RPC calls in the NFS Portmapper daemon in PKERNEL.NLM allowed remote unauthenticated attackers to execute code, because a length field was incorrectly trusted...

CVE-2009-5153

CVE-2009-5153 affects Novell NetWare prior to 6.5 SP8. A stack buffer overflow occurs in the processing of CALLIT RPC calls within the PKERNEL.NLM NFS Portmapper daemon. The overflow is triggered by trusting a length field, allowing remote, unauthenticated attackers to execute code. This is the r...

EulerOS Virtualization 2.5.2 : kernel (EulerOS-SA-2018-1382)

According to the version of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - A security flaw was found in the chapservercomputemd5 function in the ISCSI target code in the Linux kernel in a way an authenticati...

Debian DLA-1582-1 : liblivemedia security update

A stack based buffer overflow vulnerability was found in liblivemedia, the LIVE555 RTSP server library. This issue might be leveraged by remote attackers to cause code execution, by sending a crafted packet. For Debian 8 'Jessie', this problem has been fixed in version 2014.01.13-1+deb8u1. We...

CVE-2018-6069

Removed by vendor...

Rockwell Automation RSLinx Classic Stack Buffer Overflow (CVE-2018-14829)

A stack buffer overflow vulnerability exists in Rockwell Automation RSLinx Classic. The vulnerability is due to incorrect handling of malformed EtherNet/IP packets. A successful exploitation of the vulnerability could lead to a system crash...

IOBit Malware Fighter stack buffer overflow vulnerability (CNVD-2018-23265)

IObit Malware Fighter is an anti-malware and antivirus program for Microsoft Windows operating systems designed to remove and protect against malware, including trojans, rootkits and ransomware. A buffer overflow vulnerability in the stack exists in RegFilter.sys in IOBit Malware Fighter 6.2. An...

MGASA-2018-0440 Updated iniparser packages fix security vulnerability

A flaw was found in iniparser version prior to 4.1. A stack buffer underflow in the function iniparserload in iniparser.c file which can be triggered by parsing a file that containing a zero-byte. This vulnerability may allow an attacker to cause a Denial of Service DoS...

Updated iniparser packages fix security vulnerability

A flaw was found in iniparser version prior to 4.1. A stack buffer underflow in the function iniparserload in iniparser.c file which can be triggered by parsing a file that containing a zero-byte. This vulnerability may allow an attacker to cause a Denial of Service DoS...