CVE-2014-9205

Stack-based buffer overflow in the PmBase64Decode function in an unspecified demonstration application in MICROSYS PROMOTIC stable before 8.2.19 and PROMOTIC development before 8.3.2 allows remote attackers to execute arbitrary code by providing a large amount of data...

Stack overflow

Stack-based buffer overflow in the PmBase64Decode function in an unspecified demonstration application in MICROSYS PROMOTIC stable before 8.2.19 and PROMOTIC development before 8.3.2 allows remote attackers to execute arbitrary code by providing a large amount of data...

Stack overflow

Stack-based buffer overflow in collectoragent.exe in Fortinet Single Sign On FSSO before build 164 allows remote attackers to execute arbitrary code via a large PROCESSHELLO message to the Message Dispatcher on TCP port 8000...

[CORE-2015-0006] - Fortinet Single Sign On Stack Overflow

Advisory Information Title: Fortinet Single Sign On Stack Overflow Advisory ID: CORE-2015-0006 Advisory URL: http://www.coresecurity.com/advisories/fortinet-single-sign-on-stack-overflow Date published: 2015-03-18 Date of last update: 2015-03-18 Vendors contacted: Fortinet Release mode:...

ettercap: multiple issues

CVE-2014-6395 arbitrary code execution Heap-based buffer overflow in the dissectorpostgresql function in dissectors/ecpostgresql.c allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted password length value that is inconsistent with the actual...

CVE-2014-9206

The vulnerability CVE-2014-9206 affects Schneider Electric Invensys SRD Control Valve Positioner DTM software (DTM 3.1.6 and earlier) used with SRD 960/991. It is a stack-based buffer overflow in a DLL that could allow a local attacker to gain privileges by loading a malformed DLL. Connected advi...

CVE-2015-2094

Stack-based buffer overflow in the WESPPlayback.WESPPlaybackCtrl.1 control in WebGate WinRDS allows remote attackers to execute arbitrary code via unspecified vectors to the 1 PrintSiteImage, 2 PlaySiteAllChannel, 3 StopSiteAllChannel, or 4 SaveSiteImage function...

Stack overflow

Stack-based buffer overflow in the Connect function in the WebGate WebEyeAudio ActiveX control allows remote attackers to execute arbitrary code via a crafted value...

CVE-2015-2094

Stack-based buffer overflow in the WESPPlayback.WESPPlaybackCtrl.1 control in WebGate WinRDS allows remote attackers to execute arbitrary code via unspecified vectors to the 1 PrintSiteImage, 2 PlaySiteAllChannel, 3 StopSiteAllChannel, or 4 SaveSiteImage function...

CVE-2015-2093

CVEs and affected component : CVE-2015-2093 describes a stack-based buffer overflow in the Connect function of the WebGate WebEyeAudio ActiveX control (OCX). The vulnerability enables remote code execution in the context of the vulnerable host when a crafted value is processed.Root cause : buffer...

CVE-2015-2094

CVE-2015-2094 affects WebGate WinRDS (WESPPlaybackCtrl.1) and involves a stack-based buffer overflow in the WESPPlaybackCtrl.1 control. Multiple functions are listed as vectors (PrintSiteImage, PlaySiteAllChannel, StopSiteAllChannel, SaveSiteImage). Exploitation could allow remote code execution,...

Moxa SoftCMS Buffer Overflow Vulnerability

OVERVIEW NCCIC/ICS-CERT received a report from HP’s Zero Day Initiative ZDI concerning a buffer overflow vulnerability in Moxa’s SoftCMS software package. This vulnerability was reported to ZDI by security researcher Ariele Caltabiano. Moxa has produced a new version that mitigates this...

CVE-2015-2052

Stack-based buffer overflow in the DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary code via a long string in a GetDeviceSettings action to the HNAP interface...

CVE-2015-2052

Affected : D-Link DIR-645 Wired/Wireless Router Rev. Ax, firmware 1.04b12 and earlier. Vulnerability : stack-based buffer overflow in the HNAP GetDeviceSettings action allows remote attackers to execute arbitrary code via a long string. Impact : remote code execution with full confidentiality, in...

CVE-2015-2052

Stack-based buffer overflow in the DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary code via a long string in a GetDeviceSettings action to the HNAP interface...

CVE-2014-6184

The CVE-2014-6184 issue concerns the IBM Tivoli Storage Manager (TSM) client, specifically the dsmtca module, which is affected by a stack-based buffer overflow. The vulnerability allows a local attacker to gain elevated privileges by exploiting a fault in dsmtca on UNIX, Linux, and OS X clients....

Debian DSA-3157-1 : ruby1.9.1 - security update

Multiple vulnerabilities were discovered in the interpreter for the Ruby language : - CVE-2014-4975 The encodes function in pack.c had an off-by-one error that could lead to a stack-based buffer overflow. This could allow remote attackers to cause a denial of service crash or arbitrary code...

Ubuntu 14.04 LTS : GNU binutils vulnerabilities (USN-2496-1)

"The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2496-1 advisory. Michal Zalewski discovered that the setupgroup function in libbfd in GNU binutils did not properly check group headers in ELF files. An attacker could u...

[SECURITY] [DSA 3157-1] ruby1.9.1 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3157-1 [email protected] http://www.debian.org/security/ Alessandro Ghedini February 09, 2015 http://www.debian.org/security/faq -...

Debian Security Advisory DSA 3157-1 (ruby1.9.1 - security update)

Multiple vulnerabilities were discovered in the interpreter for the Ruby language: CVE-2014-4975 The encodes function in pack.c had an off-by-one error that could lead to a stack-based buffer overflow. This could allow remote attackers to cause a denial of service crash or arbitrary code executio...