CVE-2023-6340

SonicWall Capture Client version 3.7.10, NetExtender client version 10.2.337 and earlier versions are installed with sfpmonitor.sys driver. The driver has been found to be vulnerable to Denial-of-Service DoS caused by Stack-based Buffer Overflow vulnerability...

CVE-2023-6340

SonicWall reports that Capture Client 3.7.10 and NetExtender Windows client 10.2.337 and earlier install with the sfpmonitor.sys driver. The driver has a stack-based buffer overflow that can be triggered by crafted queries, leading to Denial of Service and potentially kernel memory overwrite with...

CVE-2023-6340

SonicWall Capture Client version 3.7.10, NetExtender client version 10.2.337 and earlier versions are installed with sfpmonitor.sys driver. The driver has been found to be vulnerable to Denial-of-Service DoS caused by Stack-based Buffer Overflow vulnerability...

Hitachi Energy RTU500 Stack-Based Buffer Overflow (CVE-2022-2081)

A vulnerability exists in the HCI Modbus TCP function included in the product versions listed above. If the HCI Modbus TCP is enabled and configured, an attacker could exploit the vulnerability by sending a specially crafted message to the RTU500 in a high rate, causing the targeted RTU500 CMU to...

Stack overflow

A vulnerability classified as critical has been found in Totolink LR1200GB 9.1.0u.6619B20230130. Affected is the function UploadCustomModule of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument File leads to stack-based buffer overflow. It is possible to launch the attack remotely...

CVE-2024-0577

Totolink LR1200GB, version 9.1.0u.6619_B20230130, contains a stack-based buffer overflow in the setLanguageCfg function (/lang parameter) in /cgi-bin/cstecgi.cgi. Exploitation is possible remotely and publicly disclosed; impact is arbitrary code execution or a denial of service. CVE-2024-0577 is ...

CVE-2024-0576

Totolink LR1200GB (firmware 9.1.0u.6619_B20230130) is affected by a stack-based buffer overflow in the setIpPortFilterRules function of /cgi-bin/cstecgi.cgi. The vulnerability stems from improper validation of the sPort argument, allowing remote exploitation. The advisory notes the vulnerability ...

CVE-2024-0575

A vulnerability was found in Totolink LR1200GB 9.1.0u.6619B20230130. It has been classified as critical. This affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument command leads to stack-based buffer overflow. It is possible to initiate the attac...

CVE-2024-0574

A vulnerability was found in Totolink LR1200GB 9.1.0u.6619B20230130 and classified as critical. Affected by this issue is the function setParentalRules of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument sTime leads to stack-based buffer overflow. The attack may be launched remotel...

CVE-2024-0573

A vulnerability has been found in Totolink LR1200GB 9.1.0u.6619B20230130 and classified as critical. Affected by this vulnerability is the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ip leads to stack-based buffer overflow. The attack can be launche...

Stack overflow

A vulnerability has been found in Totolink LR1200GB 9.1.0u.6619B20230130 and classified as critical. Affected by this vulnerability is the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ip leads to stack-based buffer overflow. The attack can be launche...

Stack overflow

A vulnerability was found in Totolink LR1200GB 9.1.0u.6619B20230130. It has been classified as critical. This affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument command leads to stack-based buffer overflow. It is possible to initiate the attac...

Stack overflow

A vulnerability was found in Totolink LR1200GB 9.1.0u.6619B20230130 and classified as critical. Affected by this issue is the function setParentalRules of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument sTime leads to stack-based buffer overflow. The attack may be launched remotel...

CVE-2024-0575

CVE-2024-0575 affects Totolink LR1200GB (firmware 9.1.0u.6619_B20230130). The vulnerability is in the setTracerouteCfg function of /cgi-bin/cstecgi.cgi, where manipulating the command argument causes a stack-based buffer overflow. It can be exploited remotely over the network (attack vector: NETW...

CVE-2024-0574

The CVE-2024-0574 entry affects Totolink LR1200GB (firmware 9.1.0u.6619_B20230130). The vulnerability resides in the setParentalRules function of /cgi-bin/cstecgi.cgi, where manipulating the sTime argument causes a stack-based buffer overflow. The issue is exploitable remotely and has been public...

CVE-2024-0573

CVE-2024-0573 affects Totolink LR1200GB (version 9.1.0u.6619_B20230130). The vulnerability is in the setDiagnosisCfg function of /cgi-bin/cstecgi.cgi where manipulating the ip parameter causes a stack-based buffer overflow, allowing remote exploitation. Public exploit details exist; multiple sour...

CVE-2024-0571

A vulnerability, which was classified as critical, has been found in Totolink LR1200GB 9.1.0u.6619B20230130. This issue affects the function setSmsCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument text leads to stack-based buffer overflow. The attack may be initiated remotely...

Stack overflow

A vulnerability, which was classified as critical, has been found in Totolink LR1200GB 9.1.0u.6619B20230130. This issue affects the function setSmsCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument text leads to stack-based buffer overflow. The attack may be initiated remotely...

Stack overflow

A vulnerability, which was classified as critical, was found in Totolink LR1200GB 9.1.0u.6619B20230130. Affected is the function setOpModeCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument pppoeUser leads to stack-based buffer overflow. It is possible to launch the attack...

CVE-2024-0572 Totolink LR1200GB cstecgi.cgi setOpModeCfg stack-based overflow

A vulnerability, which was classified as critical, was found in Totolink LR1200GB 9.1.0u.6619B20230130. Affected is the function setOpModeCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument pppoeUser leads to stack-based buffer overflow. It is possible to launch the attack...