7301 matches found
CVE-2016-5681
Stack-based buffer overflow in dws/api/Login on D-Link DIR-850L B1 2.07 before 2.07WWB05, DIR-817 Ax, DIR-818LW Bx before 2.05b03beta03, DIR-822 C1 3.01 before 3.01WWb02, DIR-823 A1 1.00 before 1.00WWb05, DIR-895L A1 1.11 before 1.11WWb04, DIR-890L A1 1.09 before 1.09b14, DIR-885L A1 1.11 before...
CVE-2016-6318
Stack-based buffer overflow in the FascistGecosUser function in lib/fascist.c in cracklib allows local users to cause a denial of service application crash or gain privileges via a long GECOS field, involving longbuffer...
openSUSE Security Update : libarchive (openSUSE-2016-969)
libarchive was updated to fix 20 security issues. These security issues were fixed : - CVE-2015-8918: Overlapping memcpy in CAB parser bsc985698. - CVE-2015-8919: Heap out of bounds read in LHA/LZH parser bsc985697. - CVE-2015-8920: Stack out of bounds read in ar parser bsc985675. - CVE-2015-8921...
CVE-2016-5408
Stack-based buffer overflow in the mungeotherline function in cachemgr.cgi in the squid package before 3.1.23-16.el68.6 in Red Hat Enterprise Linux 6 allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: this vulnerability exists because of an incorrect fix for...
CVE-2016-5408
Stack-based buffer overflow in the mungeotherline function in cachemgr.cgi in the squid package before 3.1.23-16.el68.6 in Red Hat Enterprise Linux 6 allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: this vulnerability exists because of an incorrect fix for...
Wireshark 1.12.x < 1.12.13 Multiple Vulnerabilities
The version of Wireshark installed on the remote Windows host is prior to 1.12.13. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-1.12.13 advisory. - The NDS dissector could crash. It may be possible to make Wireshark crash by injecting a malformed packet on...
CVE-2016-2063
CVE-2016-2063 is a stack-based overflow in the MSM Thermal driver for the Linux kernel 3.x. The vulnerability resides in supply_lm_input_write within drivers/thermal/supply_lm_core.c and can be triggered by sending a large amount of data via the debugfs interface, enabling a local attacker to cau...
CVE-2016-6510
Off-by-one error in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service stack-based buffer overflow and application crash via a crafted packet...
CVE-2016-6510
Off-by-one error in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service stack-based buffer overflow and application crash via a crafted packet...
Integer overflow
Integer overflow in the virtualfileex function in TSRM/tsrmvirtualcwd.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 allows remote attackers to cause a denial of service stack-based buffer overflow or possibly have unspecified other impact via a crafted extract operation on a Z...
CVE-2016-6289
CVE-2016-6289 describes an integer overflow in the PHP TSRM/tsrm_virtual_cwd.c - virtual_file_ex function. A crafted extract operation on a ZIP archive can cause a denial of service via a stack-based buffer overflow, with potential unspecified other impact. Affected PHP versions include before 5....
CVE-2016-6297
Removed by vendor...
CVE-2016-6289
Integer overflow in the virtualfileex function in TSRM/tsrmvirtualcwd.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 allows remote attackers to cause a denial of service stack-based buffer overflow or possibly have unspecified other impact via a crafted extract operation on a Z...
Internet Bug Bounty: Stack-based buffer overflow vulnerability in virtual_file_ex
https://bugs.php.net/bug.php?id=72513...
CVE-2016-5781
The CVE-2016-5781 entry details a stack-based buffer overflow in WECON LeviStudio (an HMI programming software). A crafted file can trigger the overflow, enabling arbitrary code execution in the context of the affected process. Public sources (NVD/NVD-derived and ICS-CERT advisory) identify the v...
CVE-2016-5781
Stack-based buffer overflow in WECON LeviStudio allows remote attackers to execute arbitrary code via a crafted file...
CVE-2016-4512
Stack-based buffer overflow in ELCSimulator in Eaton ELCSoft 2.4.01 and earlier allows remote attackers to execute arbitrary code via a long packet...
CVE-2016-4512
The CVE-2016-4512 issue affects Eaton ELCSoft ELCSimulator (infecting the ELCSimulator.exe) in ELCSoft versions 2.4.01 and earlier. The root cause is a stack-based buffer overflow when processing network TCP input, allowing remote attackers to execute arbitrary code with the process’s privileges ...
CVE-2016-4519
CVE-2016-4519 affects Unitronics VisiLogic OPLC IDE (pre-9.8.30) via a stack-based buffer overflow in parsing the vlp/ZIP filename field. The root cause is copying into a fixed-length stack buffer without validating the filename length, enabling remote code execution. Exploitation details indicat...
FreeBSD : libarchive -- multiple vulnerabilities (4a0d9b53-395d-11e6-b3c8-14dae9d210b8)
Hanno Bock and Cisco Talos report : - Out of bounds heap read in RAR parser - Signed integer overflow in ISO parser - TALOS-2016-0152 CVE-2016-4300: 7-Zip readSubStreamsInfo Integer Overflow - TALOS-2016-0153 CVE-2016-4301: mtree parsedevice Stack Based Buffer Overflow - TALOS-2016-0154...