CVE-2023-31284

illumos illumos-gate before 676abcb has a stack buffer overflow in /dev/net, leading to privilege escalation via a stat on a long file name in /dev/net...

CVE-2023-31284

illumos illumos-gate before 676abcb has a stack buffer overflow in /dev/net, leading to privilege escalation via a stat on a long file name in /dev/net...

PT-2023-23271 · Illumos · Illumos

Name of the Vulnerable Software and Affected Versions: illumos illumos-gate versions before 676abcb Description: The issue is a stack buffer overflow in /dev/net, which can lead to privilege escalation. This can be achieved via a stat on a long file name in /dev/net. Recommendations: For versions...

CVE-2023-31284

CVE-2023-31284 describes a stack buffer overflow in illumos illumos-gate’s /dev/net, allowing privilege escalation via a stat on a long file name in /dev/net. The issue affects illumos-gate before commit 676abcb. Red Hat entry and Oracle Solaris references align the CVE as equivalent to CVE-2023-...

GLSA-202305-01 : AtomicParsley: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202305-01 AtomicParsley: Multiple Vulnerabilities - A stack-buffer-overflow occurs in Atomicparsley 20210124.204813.840499f through AParreadX in src/util.cpp while parsing a crafted mp4 file because of the missing boundary check...

GLSA-202305-21 : Cairo: Buffer Overflow Vulnerability

The remote host is affected by the vulnerability described in GLSA-202305-21 Cairo: Buffer Overflow Vulnerability - A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor for...

OSV-2023-353 Stack-buffer-overflow in pdfi_read_cff_dict

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=58405 Crash type: Stack-buffer-overflow WRITE 1 Crash state: pdfireadcffdict pdfireadcffdict pdfireadcfffont...

PT-2023-35801 · Git +1 · Ghostscript

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-overflow crash. Technical details about the crash include the crash type being a Stack-buffer-overflow WRITE 1. Th...

CVE-2023-27910

A user may be tricked into opening a malicious FBX file that may exploit a stack buffer overflow vulnerability in Autodesk® FBX® SDK 2020 or prior which may lead to code execution...

CVE-2023-27910

A user may be tricked into opening a malicious FBX file that may exploit a stack buffer overflow vulnerability in Autodesk® FBX® SDK 2020 or prior which may lead to code execution...

CVE-2023-27910

A user may be tricked into opening a malicious FBX file that may exploit a stack buffer overflow vulnerability in Autodesk® FBX® SDK 2020 or prior which may lead to code execution...

Stack overflow

A maliciously crafted XB file when parsed through Autodesk® AutoCAD® 2023 can be used to write beyond the allocated buffer causing a Stack Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or read sensitive data or execute arbitrary code in the context of the...

PT-2023-21414 · Autodesk · Autodesk Autocad

Name of the Vulnerable Software and Affected Versions: Autodesk AutoCAD version 2023 Description: A maliciously crafted X B file can be used to write beyond the allocated buffer, causing a Stack Buffer Overflow when parsed through Autodesk AutoCAD. This can be leveraged by a malicious actor to...

CVE-2023-27914

Autodesk AutoCAD 2023 is affected by CVE-2023-27914 due to parsing a malicious X_B file, which can cause a stack buffer overflow. The underlying issue is a write beyond the allocated buffer, leading to crashes, potential data leakage, or arbitrary code execution within the process context. The pu...

CVE-2023-26383

Adobe Substance 3D Stager version 2.0.1 and earlier is affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

Rocket Software Unidata udadmin_server Stack Buffer Overflow in Password

This modlue exploits an authentication bypass vulnerability in the Linux version of udadminserver, which is an RPC service that comes with the Rocket Software UniData server, which runs as root. This vulnerability affects UniData versions 8.2.4 build 3003 and earlier for Linux, but this module...

CVE-2023-28488

client.c in gdhcp in ConnMan through 1.41 could be used by network-adjacent attackers operating a crafted DHCP server to cause a stack-based buffer overflow and denial of service, terminating the connman process...

Rocket Software Unidata 8.2.4 Build 3003 Buffer Overflow

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule The amount of padding required to overwrite the return addr 'offset' = 0x2b8, This returns to "mov rdi, rsp / call system", which means the...

OSV-2023-285 Stack-buffer-overflow in fn_ElIn_evaluate

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=57745 Crash type: Stack-buffer-overflow WRITE 4 Crash state: fnElInevaluate pdfisetblackgeneration GSBG...

PT-2023-35759 · Git +1 · Ghostscript

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-overflow crash, specifically a WRITE 4 operation. The crash occurs in the fn ElIn evaluate function, which is call...