Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read via the SQFuncState::PopTarget function in the file sqfuncstate.cpp. An attacker can cause an out-of-bounds read by manipulating the targetstack argument during local execution. Remediation There is no fixed version f...

CVE-2026-2659

The vulnerability CVE-2026-2659 affects Squirrel up to version 3.2. It resides in SQFuncState::PopTarget within src/squirrel/squirrel/sqfuncstate.cpp, where manipulating the _target_stack can cause an out-of-bounds read during local execution. Publicly disclosed exploits exist per the sources, an...

CVE-2026-2659

A vulnerability was determined in Squirrel up to 3.2. Affected by this vulnerability is the function SQFuncState::PopTarget of the file src/squirrel/squirrel/sqfuncstate.cpp. Executing a manipulation of the argument targetstack can lead to out-of-bounds read. It is possible to launch the attack o...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002996)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002996 advisory. The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to mor...

EUVD-2010-3086

Malware in sbrugna...

EUVD-2017-1525

Malware in sbrugna...

CVE-2010-20115

Vulnerability CVE-2010-20115 affects Vermillion FTP Daemon (vftpd) up to and including version 1.31. Root cause: memory corruption from an out-of-bounds array access during parsing of the FTP PORT command. Impact: potential arbitrary code execution with high confidentiality/integrity/availability...

CVE-2025-51060

An issue was discovered in CPUID cpuz.sys 1.0.5.4. An attacker can use DeviceIoControl with the unvalidated parameters 0x9C402440 and 0x9C402444 as IoControlCodes to perform RDMSR and WRMSR, respectively. Through this process, the attacker can modify MSRLSTAR and hook KiSystemCall64. Afterward,...

CVE-2025-51060

An issue was discovered in CPUID cpuz.sys 1.0.5.4. An attacker can use DeviceIoControl with the unvalidated parameters 0x9C402440 and 0x9C402444 as IoControlCodes to perform RDMSR and WRMSR, respectively. Through this process, the attacker can modify MSRLSTAR and hook KiSystemCall64. Afterward,...

CVE-2025-51060

An issue was discovered in CPUID cpuz.sys 1.0.5.4. An attacker can use DeviceIoControl with the unvalidated parameters 0x9C402440 and 0x9C402444 as IoControlCodes to perform RDMSR and WRMSR, respectively. Through this process, the attacker can modify MSRLSTAR and hook KiSystemCall64. Afterward,...

gstreamer1-plugins-bad -- stack buffer overflow in H.266 video parser

GStreamer Security Center reports: It is possible for a malicious third party to trigger a buffer overflow that can result in a crash of the application and possibly also allow code execution through stack manipulation...

PT-2024-25417 · Aptiov · Aptiov

Name of the Vulnerable Software and Affected Versions: AptioV affected versions not specified Description: This issue affects certain modules, allowing privileged attackers to execute arbitrary code, manipulate stack memory, and leak information from SMRAM to kernel space, potentially leading to...

PYSEC-2024-39

Versions of the package fastecdsa before 2.3.2 are vulnerable to Use of Uninitialized Variable on the stack, via the curvemathmul function in src/curveMath.c, due to being used and interpreted as user-defined type. Depending on the variable's actual value it could be arbitrary free, arbitrary...

K20486351: glibc vulnerability CVE-2017-1000366

Security Advisory Description glibc contains a vulnerability that allows specially crafted LDLIBRARYPATH values to manipulate the heap/stack, causing them to alias, potentially resulting in arbitrary code execution. Please note that additional hardening changes have been made to glibc to prevent...

SUSE CVE-2017-1000379

The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack. Linux Kernel version 4.11.5 is affected...

Denial Of Service (DOS)

Linux Kernel is vulnerable to denial of service DOS attacks. This is because Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack...

TP-LINK TL-WR940N TL-WR941ND - Buffer Overflow

TP-LINK TL-WR940N TL-WR941ND - Buffer Overflow Author Grzegorz Wypych - h0rac TP-LINK TL-WR940N/TL-WR941ND buffer overflow remote shell exploit import requests import md5 import base64 import string import struct import socket password = md5.new'admin'.hexdigest cookie =...

Security Bulletin: A vulnerability in glibc affects IBM Flex System Manager (FSM) (CVE-2017-1000366)

Summary A vulnerability has been discovered in glibc that is embedded in FSM. This bulletin addresses that issue. Vulnerability Details CVEID: CVE-2017-1000366 DESCRIPTION: Glibc could allow a local attacker to execute arbitrary code on the system, caused by a vulnerability that allows specially...

F5 Networks BIG-IP : glibc vulnerability (K20486351)

glibc contains a vulnerability that allows specially crafted LDLIBRARYPATH values to manipulate the heap/stack, causing them to alias, potentially resulting in arbitrary code execution. Please note that additional hardening changes have been made to glibc to prevent manipulation of stack and heap...

CVE-2017-5132

CVE-2017-5132 —In Chrome/Chromium, an incorrect WebAssembly stack manipulation in the WebAssembly component before version 62.0.3202.62 can allow a remote attacker to trigger arbitrary code execution via a crafted HTML page. The issue is associated with a heap/stack manipulation flaw in the Chrom...