Foxit Reader and PhantomPDF Competitive Conditions Vulnerability (CNVD-2021-04397)

Foxit Reader and Foxit PhantomPDF are both Chinese Foxit Foxit company a PDF document reader. A security vulnerability exists in Foxit Reader and PhantomPDF. An attacker could exploit the vulnerability to cause a stack buffer overflow or out-of-bounds read...

Foxit Reader and PhantomPDF Competitive Conditions Vulnerability (CNVD-2021-04398)

Foxit Reader and Foxit PhantomPDF are both Chinese Foxit Foxit company a PDF document reader. A security vulnerability exists in Foxit Reader and PhantomPDF. An attacker could exploit the vulnerability to cause a stack buffer overflow or out-of-bounds read...

Foxit Reader and PhantomPDF 竞争条件问题漏洞

Foxit Reader and Foxit PhantomPDF are both Chinese Foxit Foxit company a PDF document reader. A security vulnerability exists in Foxit Reader and PhantomPDF. An attacker could exploit the vulnerability to cause a stack buffer overflow or out-of-bounds read...

OSV-2021-16 Stack-buffer-overflow in JS::Heap::gather_conservative_roots

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=29266 Crash type: Stack-buffer-overflow READ 8 Crash state: JS::Heap::gatherconservativeroots JS::Heap::gatherroots JS::Heap::collectgarbage...

Fortinet FortiWeb 缓冲区错误漏洞

Fortinet FortiWeb is a Web application layer firewall from the U.S. company Fita Fortinet, which can block threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks to ensure the security of Web applications and protect sensitive database content. A...

Fortinet FortiWeb 缓冲区错误漏洞

FortiWeb is a Web Application Firewall WAF that protects hosted web applications from attacks targeting known and unknown vulnerabilities. FortiWeb suffers from a stack buffer overflow vulnerability. An attacker can exploit the vulnerability by sending a specially crafted request with a large...

Backdoor.Win32.Zombam.k Stack Buffer Overflow

Discovery / credits: malvuln - Malvuln.com c 2021 Original source: https://malvuln.com/advisory/79d9908b6769e64f922e74a090f5ceeb.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Zombam.k Vulnerability: Remote String Dereference Stack Buffer Overflow Description:...

Trojan.Win32.Barjac Remote Stack Buffer Overflow

Discovery / credits: malvuln - Malvuln.com c 2021 Original source: http://malvuln.com/advisory/62ad686f97faaa68f580d32d25333f51.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan.Win32.Barjac Vulnerability: Remote Stack Buffer Overflow. Description: Trojan.Win32.Barjac mak...

Backdoor.Win32.Zombam.j Remote Stack Buffer Overflow

Discovery / credits: malvuln - Malvuln.com c 2021 Original source: http://malvuln.com/advisory/a4212f23e1cc3bb34b0dfe15b2ad323e.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Zombam.j Vulnerability: Remote Stack Buffer Overflow Description: Listens on TCP port...

IBM HTTP Server 6.1.0.0 <= 6.1.0.47 / 7.0.0.0 < 7.0.0.39 / 8.0.0.0 < 8.0.0.12 / 8.5.0.0 < 8.5.5.7 Stack Buffer Overflow (536441)

The version of IBM HTTP Server running on the remote host is affected by a stack-based buffer overflow in the Administration Server in IBM HTTP Server 6.1.0.x through 6.1.0.47, 7.0.0.x before 7.0.0.39, 8.0.0.x before 8.0.0.12, and 8.5.x before 8.5.5.7, as used in WebSphere Application Server and...

CVE-2020-35492

A flaw was found in cairo's image-compositor.c. This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor for example, by convincing a user to open a file in an application using cairo, or if an application uses cairo on untrusted input to cause a stack buffer...

CVE-2020-14231

A vulnerability in the input parameter handling of HCL Client Application Access v9 could potentially be exploited by an authenticated attacker resulting in a stack buffer overflow. This could allow the attacker to crash the program or inject code into the system which would execute with the...

Stack overflow

A vulnerability in the input parameter handling of HCL Client Application Access v9 could potentially be exploited by an authenticated attacker resulting in a stack buffer overflow. This could allow the attacker to crash the program or inject code into the system which would execute with the...

CVE-2020-14231

CVE-2020-14231 describes a buffer overflow vulnerability in the input parameter handling of HCL Client Application Access v9 . The underlying issue is in handling of input parameters, leading to a stack buffer overflow. It could be exploited by an authenticated attacker (network-facing) to crash ...

CVE-2020-14231

A vulnerability in the input parameter handling of HCL Client Application Access v9 could potentially be exploited by an authenticated attacker resulting in a stack buffer overflow. This could allow the attacker to crash the program or inject code into the system which would execute with the...

Arbitrary Code Execution

chromium is vulnerable to arbitrary code execution. The vulnerability exists through a stack buffer overflow in WebRTC caused by a crafted WebRTC packet...

OSV-2020-2273 Stack-buffer-overflow in perfetto::trace_processor::MemoryTrackerSnapshotParser::EmitRows

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28766 Crash type: Stack-buffer-overflow READ 4 Crash state: perfetto::traceprocessor::MemoryTrackerSnapshotParser::EmitRows perfetto::traceprocessor::MemoryTrackerSnapshotParser::GenerateGraphFromRawNode...

CVE-2020-14224

A vulnerability in the MIME message handling of the HCL Notes v9 client could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the Notes application or inject code into the system which would execute with the...

Stack overflow

A vulnerability in the MIME message handling of the HCL Notes v9 client could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the Notes application or inject code into the system which would execute with the...

CVE-2020-14224

A vulnerability in the MIME message handling of the HCL Notes v9 client could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the Notes application or inject code into the system which would execute with the...