CVE-2026-5654

Wireshark is affected by CVE-2026-5654 due to a stack-based buffer overflow in the AMR-NB codec handling, leading to a denial of service. The vulnerability impacts Wireshark versions 4.6.0–4.6.4 and 4.4.0–4.4.14. The root cause and specific vulnerable component are described as an AMR-NB codec cr...

CVE-2026-6538

The CVE-2026-6538 entry describes a stack-based buffer overflow in Wireshark's BEEP protocol dissector that crashes Wireshark versions 4.6.0–4.6.4 and 4.4.0–4.4.14, leading to denial of service. Affected component: the BEEP dissector in Wireshark; root cause described as a stack-based overflow, b...

CVE-2026-6537 Stack-based Buffer Overflow in Wireshark

ZigBee protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

CVE-2026-6868

CVE-2026-6868 affects Wireshark 4.6.0–4.6.4 and 4.4.0–4.4.14, where the HTTP protocol dissector crashes when processing crafted HTTP data, leading to a denial of service. The Red Hat note frames this as a local user opening a specially crafted capture file that crashes Wireshark; SUSE and other s...

Exploit-Dev-Lab-Vulnserver-TRUN

Buffer Overflow Exploitation — Vulnserver TRUN Ty...

CVE-2026-7470

A flaw has been found in Tenda 4G300 US4G300V1.0MtV1.01.42CNTDC01. Affected is the function sub427C3C of the file /goform/SafeMacFilter. This manipulation of the argument page causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may...

SUSE CVE-2011-3175

Stack-based buffer overflow in the Preboot Service in Novell ZENworks Configuration Management ZCM 11.1 and 11.1a allows remote attackers to execute arbitrary code via an opcode 0x6c request...

CVE-2026-7470

This CVE affects Tenda 4G300 devices, specifically the SafeMacFilter function sub_427C3C in /goform/SafeMacFilter. The issue is a stack-based buffer overflow caused by manipulation of the page argument, enabling remote exploitation. The vulnerability is exploitable over the network, with no user ...

CVE-2026-7470 Tenda 4G300 SafeMacFilter sub_427C3C stack-based overflow

A flaw has been found in Tenda 4G300 US4G300V1.0MtV1.01.42CNTDC01. Affected is the function sub427C3C of the file /goform/SafeMacFilter. This manipulation of the argument page causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may...

CVE-2026-7470

A flaw has been found in Tenda 4G300 US4G300V1.0MtV1.01.42CNTDC01. Affected is the function sub427C3C of the file /goform/SafeMacFilter. This manipulation of the argument page causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may...

EUVD-2026-26307

A flaw has been found in Tenda 4G300 US4G300V1.0MtV1.01.42CNTDC01. Affected is the function sub427C3C of the file /goform/SafeMacFilter. This manipulation of the argument page causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may...

CVE-2026-7470 Tenda 4G300 SafeMacFilter sub_427C3C stack-based overflow

A flaw has been found in Tenda 4G300 US4G300V1.0MtV1.01.42CNTDC01. Affected is the function sub427C3C of the file /goform/SafeMacFilter. This manipulation of the argument page causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may...

Tenda 4G300 缓冲区错误漏洞

The Tenda 4G300 is a wireless router produced by the Chinese company Tenda. The Tenda 4G300 US4G300V1.0MtV1.01.42CNTDC01 version contains a buffer error vulnerability. This vulnerability stems from the operation of the parameter “page” in the function sub427C3C within the file/goform/SafeMacFilte...

FreeBSD 安全漏洞

FreeBSD is a Unix-like operating system developed by the FreeBSD Foundation. FreeBSD has security vulnerabilities; these vulnerabilities stem from incorrect packet validation, which leads to infinite recursion when parsing SCTP block parameters. This can result in stack overflows and crashes...

PT-2026-36037

A flaw has been found in Tenda 4G300 US 4G300V1.0Mt V1.01.42 CN TDC01. Affected is the function sub 427C3C of the file /goform/SafeMacFilter. This manipulation of the argument page causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published an...

Important: ngtcp2

Issue Overview: ngtcp2 is a C implementation of the IETF QUIC protocol. In versions prior to 1.22.1, ngtcp2qlogparameterssettransportparams serializes peer transport parameters into a fixed 1024-byte stack buffer without bounds checking. When qlog is enabled, a remote peer can send sufficiently...

Important: python3.11

Issue Overview: The fix for CVE-2026-0672, which rejected control characters in http.cookies.Morsel, was incomplete. The Morsel.update, |= operator, and unpickling paths were not patched, allowing control characters to bypass input validation. Additionally, BaseCookie.jsoutput lacked the output...

FreeBSD : FreeBSD -- pf can overflow the stack parsing crafted SCTP packets (225ba563-4435-11f1-bb07-bc241121aa0a)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 225ba563-4435-11f1-bb07-bc241121aa0a advisory. Incorrect packet validation allowed unbounded recursion parsing SCTP chunk parameters. This can...

CVE-2018-25303

Allok Video to DVD Burner 2.6.1217 is affected by a stack-based buffer overflow in the License Name field that enables local code execution via SEH overwrite. An input of ~780 junk bytes followed by SEH chain pointers and shellcode can be pasted into the License Name field during registration to ...

CVE-2018-25303 Allok Video to DVD Burner 2.6.1217 Buffer Overflow SEH

Allok Video to DVD Burner 2.6.1217 contains a stack-based buffer overflow vulnerability in the License Name field that allows local attackers to execute arbitrary code by triggering a structured exception handler SEH overwrite. Attackers can craft a malicious input string with 780 bytes of junk...