CVE-2017-15406

CVE-2017-15406 describes a stack buffer overflow in V8 used by Google Chrome prior to 62.0.3202.75, enabling a remote attacker to trigger an out-of-bounds memory read via a crafted HTML page. Affected product: Google Chrome (V8 component); the vulnerability stems from a memory-safety flaw in V8, ...

CVE-2017-15406

Removed by vendor...

CVE-2017-15406

A stack buffer overflow in V8 in Google Chrome prior to 62.0.3202.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...

CVE-2017-15398

Removed by vendor...

CVE-2017-15398

A stack buffer overflow in the QUIC networking stack in Google Chrome prior to 62.0.3202.89 allowed a remote attacker to gain code execution via a malicious server...

CVE-2017-15398

Chromium (Chrome) before version 62.0.3202.89 is affected by CVE-2017-15398 and CVE-2017-15399 per the connected Arch Linux advisory. The issue for CVE-2017-15398 is a stack-based buffer overflow in the QUIC component, enabling remote code execution. CVE-2017-15399 is a use-after-free in the V8 J...

CVE-2017-15396

Removed by vendor...

CVE-2017-15396

CVE-2017-15396 is described in the connected IBM ICU bulletin as a stack buffer overflow in ICU’s NumberingSystem (C/C++) that could allow a remote attacker to trigger heap corruption via a crafted HTML page. The description in the initial document notes ICU for C/C++ before 60.2 (used in V8/Chro...

graphicsmagick/coder_MVG_fuzzer: Stack-buffer-overflow in TranslateTextEx

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=5158172004712448 Project: graphicsmagick Fuzzer: aflgraphicsmagickcoderMVGfuzzer Fuzz target binary: coderMVGfuzzer Job Type: aflasangraphicsmagick Platform Id: linux Crash Type:...

CVE-2018-15572

An issue was found in the way modern x86 microprocessor designs have implemented speculative execution of instructions a commonly used performance optimization and prediction of return addresses via Return Stack Buffer RSB. RSB is a small on chip structure that holds list of return addresses, use...

MikroTik RouterOS Multiple Vulnerabilities (Aug 2018)

MikroTik RouterOS is prone to multiple vulnerabilitites. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:mikrotik:routeros"; if...

CVE-2018-1156

Mikrotik RouterOS before 6.42.7 and 6.40.9 is vulnerable to stack buffer overflow through the license upgrade interface. This vulnerability could theoretically allow a remote authenticated attacker execute arbitrary code on the system...

CVE-2018-1156

CVE-2018-1156 affects MikroTik RouterOS prior to 6.42.7 and 6.40.9. It is a stack buffer overflow via the license upgrade interface, potentially enabling a remote authenticated attacker to execute code on the device. The vulnerability is mitigated by MikroTik RouterOS updates released to address ...

CVE-2018-3912

On Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17, the video-core process insecurely extracts the fields from the "shard" table of its SQLite database, leading to a buffer overflow on the stack. The strcpy call overflows the destination buffer, which has a size of 128...

DEBIAN-CVE-2018-15572

The spectrev2selectmitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context switch, which makes it easier for attackers to conduct userspace-userspace spectreRSB attacks...

UBUNTU-CVE-2018-15572

The spectrev2selectmitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context switch, which makes it easier for attackers to conduct userspace-userspace spectreRSB attacks...

mupdf/pdf_fuzzer: Stack-buffer-underflow in ps_index

Project: git://git.ghostscript.com/mupdf.git Detailed report: https://oss-fuzz.com/testcase?key=6241403096006656 Project: mupdf Fuzzer: aflmupdfpdffuzzer Fuzz target binary: pdffuzzer Job Type: aflasanmupdf Platform Id: linux Crash Type: Stack-buffer-underflow READ 8 Crash Address: 0x7fde52864418...

Delta Electronics CNCSoft and ScreenEditor Stack Buffer Overflow Vulnerability

Delta Electronics CNCSoft and ScreenEditor are products of Delta Electronics, a CNC machine simulation system software and ScreenEditor, a HMI programming software. A stack buffer overflow vulnerability exists in Delta Electronics CNCSoft version 1.00.83 and earlier and ScreenEditor version...

Cloudme 1.9 - Buffer Overflow (DEP) Учздщше

Exploit for windows platform in category local exploits Exploit Title: Cloudme 1.9 - Buffer Overflow DEP Metasploit Date: 2018-08-13 Exploit Author: Raymond Wellnitz Vendor Homepage: https://www.cloudme.com Version: 1.8.x/1.9.x Tested on: Windows 7 x64 CVE : 2018-6892 This module requires...

Computerinsel Photoline Stack Buffer Overflow Vulnerability

Computerinsel Photoline is a suite of image editing software. A stack buffer overflow vulnerability exists in the PSD parsing feature in Computerinsel Photoline version 20.54. An attacker can exploit this vulnerability by sending a specially crafted PSD image to overwrite arbitrary data and execu...