14 matches found
EUVD-2019-19963
MiniFtp contains a buffer overflow vulnerability in the parseconfloadsetting function that allows local attackers to execute arbitrary code by supplying oversized configuration values. Attackers can craft a miniftpd.conf file with values exceeding 128 bytes to overflow stack buffers and overwrite...
CLSA-2026-1772013351 glibc: Fix of CVE-2026-0915
CVE-2026-0915: prevent leak of stack contents to configured DNS resolver when getnetbyaddr or getnetbyaddrr query a zero-valued network with DNS backend in nsswitch.conf; sanitize stack buffers and add input validation; eliminate exposure of uninitialized data...
CVE-2025-41730
An unauthenticated remote attacker can abuse unsafe sscanf calls within the checkaccount function to write arbitrary data into fixed-size stack buffers which leads to full device compromise...
CVE-2025-41732
An unauthenticated remote attacker can abuse unsafe sscanf calls within the checkcookie function to write arbitrary data into fixed-size stack buffers which leads to full device compromise...
EUVD-2025-202414
An unauthenticated remote attacker can abuse unsafe sscanf calls within the checkcookie function to write arbitrary data into fixed-size stack buffers which leads to full device compromise...
EUVD-2025-202415
An unauthenticated remote attacker can abuse unsafe sscanf calls within the checkaccount function to write arbitrary data into fixed-size stack buffers which leads to full device compromise...
PT-2025-50320
Name of the Vulnerable Software and Affected Versions versions prior to 2025-41732 Description An unauthenticated remote attacker can exploit unsafe sscanf calls within the check cookie function to write arbitrary data into fixed-size stack buffers, potentially leading to full device compromise...
PT-2025-50319
Name of the Vulnerable Software and Affected Versions versions prior to 2.3 Description An unauthenticated remote attacker can exploit unsafe sscanf calls within the check account function to write arbitrary data into fixed-size stack buffers, potentially leading to full device compromise. The...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987378)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987378 advisory. In the Linux kernel, the following vulnerability has been resolved: comedi: dt9812: fix DMA buffers on stack USB transfer buffers are typically mapped for DMA and mu...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the recursive use of stack buffers in XE migrations that could lead to a stack overflow...
UBUNTU-CVE-2021-47477
In the Linux kernel, the following vulnerability has been resolved: comedi: dt9812: fix DMA buffers on stack USB transfer buffers are typically mapped for DMA and must not be allocated on the stack or transfers will fail. Allocate proper transfer buffers in the various command helpers and return ...
EVE OS Security Vulnerability
EVE OS is a general-purpose, open Linux-based operating system for distributed edge computing open-sourced by IF Edge. EVE OS suffers from a security vulnerability that stems from allowing an attacker to use data from a socket to freely allocate buffers on the stack, which could cause a system...
ZDI-11-111: (0Day) Hewlett-Packard Virtual SAN Appliance hydra.exe Login Request Remote Code Execution Vulnerability
ZDI-11-111: 0Day Hewlett-Packard Virtual SAN Appliance hydra.exe Login Request Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-111 March 23, 2011 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Hewlett-Packard -- Affected Products: Hewlett-Packa...
Buffer-overflow in CoolPlayer 217
Luigi Auriemma Application: CoolPlayer http://coolplayer.sourceforge.net Versions: = 217 Platforms: Windows Bug: buffer-overflow in CPLIReadTagOGG Exploitation: local Date: 28 Dec 2007 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bug 3 The Code 4 Fix...