MatrixSSL 4.0.2 - Stack Buffer Overflow Verifying x.509 Certificates

MatrixSSL 4.0.2 - Stack Buffer Overflow Verifying x.509 Certificates I happened to notice that a public X.509 certificate testcase for CVE-2014-1569 caused a stack buffer overflow in MatrixSSL. I cleaned up the testcase a bit, to make a better demonstration. You can test it with the certValidate...

file 'readelf.c' stack buffer out-of-bounds read vulnerability

file is a command-line tool used on Unix-like systems to view file information. A stack buffer out-of-bounds read vulnerability exists in docorenote in the readelf.c file of the libmagic.a static link library in file version 5.35. The vulnerability allows remote attackers to submit a special file...

file stack buffer out-of-bounds read vulnerability

file is a command-line tool used on Unix-like systems to view file information. A stack buffer out-of-bounds read vulnerability exists in dobidnote in the readelf.c file of the libmagic.a static link library in file version 5.35. This allows remote attackers to exploit the vulnerability by...

Oracle GoldenGate Manager Command Stack Buffer Overflow (CVE-2018-2913)

A stack-based buffer overflow exists in Oracle GoldenGate Manager. The vulnerability is due an input validation error when processing overly long command name. Successful exploitation could lead to arbitrary code execution...

UBUNTU-CVE-2019-6454

An issue was discovered in sd-bus in systemd 239. busprocessobject in libsystemd/sd-bus/bus-objects.c allocates a variable-length stack buffer for temporarily storing the object path of incoming D-Bus messages. An unprivileged local user can exploit this by sending a specially crafted message to...

EulerOS 2.0 SP5 : kernel (EulerOS-SA-2019-1028)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bounds write and a denial of service or unspecified oth...

HPE Intelligent Management Center Stack Buffer Overflow (CVE-2018-7115)

A stack-based buffer overflow exists in the component of HPE Intelligent Management Center. The vulnerability is due to a lack of proper validation. Successful exploitation of this vulnerability could result in execution of arbitrary code on the target server...

capstone/fuzz_disasmnext: Stack-buffer-overflow in SStream_concat

Detailed report: https://oss-fuzz.com/testcase?key=5639352435081216 Project: capstone Fuzzer: aflcapstonefuzzdisasmnext Fuzz target binary: fuzzdisasmnext Job Type: aflasancapstone Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 5 Crash Address: 0x7f4820a63634 Crash State: SStreamconca...

SUSE-SU-2019:0249-1 Security update for curl

This update for curl fixes the following issues: Security issues fixed: - CVE-2019-3823: Fixed a heap out-of-bounds read in the code handling the end-of-response for SMTP bsc1123378. - CVE-2019-3822: Fixed a stack based buffer overflow in the function creating an outgoing NTLM type-3 message...

SUSE-SU-2019:0248-1 Security update for curl

This update for curl fixes the following issues: Security issues fixed: - CVE-2019-3823: Fixed a heap out-of-bounds read in the code handling the end-of-response for SMTP bsc1123378. - CVE-2019-3822: Fixed a stack based buffer overflow in the function creating an outgoing NTLM type-3 message...

VLC (European Commission - DIGIT): VLC 4.0.0 - Stack Buffer Overflow (SEH)

Summary: Incorrect calculation of Buffer Size in rist module for VLC leading to Stack Overflow with SEH chain overwrite. The modules/access/rist module has an incorrect calculation of buffer size giving an attacker the possibility to set the buffer size of a local variable by sending a maliciousl...

openthread/cli-uart-received-fuzzer: Stack-buffer-overflow in ot::Cli::Interpreter::ProcessService

Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=5663316146388992 Project: openthread Fuzzer: aflopenthreadcli-uart-received-fuzzer Fuzz target binary: cli-uart-received-fuzzer Job Type: aflasanopenthread Platform Id: linux Crash Type:...

GattLib 0.2 - Stack Buffer Overflow

Exploit Title: stack-based overflow Date: 2019-11-21 Exploit Author: Dhiraj Mishra Vendor Homepage: http://labapart.com/ Software Link: https://github.com/labapart/gattlib/issues/81 Version: 0.2 Tested on: Linux 4.15.0-38-generic CVE: CVE-2019-6498 References:...

GattLib 0.2 - Stack Buffer Overflow

GattLib 0.2 - Stack Buffer Overflow Exploit Title: stack-based overflow Date: 2019-11-21 Exploit Author: Dhiraj Mishra Vendor Homepage: http://labapart.com/ Software Link: https://github.com/labapart/gattlib/issues/81 Version: 0.2 Tested on: Linux 4.15.0-38-generic CVE: CVE-2019-6498 References:...

openthread/ncp-uart-received-fuzzer: Stack-buffer-overflow in ot::NetworkData::PrefixTlv::Init

Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=5139750002884608 Project: openthread Fuzzer: aflopenthreadncp-uart-received-fuzzer Fuzz target binary: ncp-uart-received-fuzzer Job Type: aflasanopenthread Platform Id: linux Crash Type:...

Notepad++: Security check failure or stack buffer overrun (crash)

poc.py 1 Run poc.py 2 Open notepad++.exe 3 Go to "Define language..." 4 Use tab "Comment and Number" 5 Open 1stfield.txt and copy content to clipboard 6 Paste clipboard on "Comment line style in field Open" 7 Open 2ndfield.txt and copy content to clipboard 8 Paste clipboard on "Comment line style...

Notepad++: Stack overflow affecting "ext" field on stylers.xml configuration file

Summary: A stack buffer overflow vulnerability affects "ext" field into "stylers.xml" configuration file. "isInList" function doesn't check boundaries on word64 array. Description: Vulnerability src file: notepad-plus-plus/PowerEditor/src/MISC/Common/Common.cpp Vulnerability line: line 329 Variab...

Denial Of Service (DoS) Through Stack Buffer Underflow

libarchive.so is vulnerable to denial of service DoS. The vulnerability exists due to a possible stack buffer underflow issue when parsing the ar header...

libarchive/libarchive_fuzzer: Stack-buffer-overflow in parse_tables

Project: https://github.com/libarchive/libarchive.git Detailed report: https://oss-fuzz.com/testcase?key=5700900719427584 Project: libarchive Fuzzer: afllibarchivefuzzer Fuzz target binary: libarchivefuzzer Job Type: aflasanlibarchive Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 7...

The vulnerability of the /goform/form2userconfig.cgi component in D-Link DIR-816 router software allows a hacker to execute arbitrary code.

The vulnerability of the /goform/form2userconfig.cgi component in D-Link DIR-816 router microprogramming software is caused by an overflow in the stack buffer. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...