F5 Networks BIG-IP : Socat vulnerabilities (K14919)

CVE-2010-2799 Stack-based buffer overflow in the nestlex function in nestlex.c in Socat 1.5.0.0 through 1.7.1.2 and 2.0.0-b1 through 2.0.0-b3, when bidirectional data relay is enabled, allows context-dependent attackers to execute arbitrary code via long command-line arguments. CVE-2012-0219...

CVE-2014-5501

Stack-based buffer overflow in the diagnose service in the Sophos Cyberoam appliances with CyberoamOS before 10.6.1 GA allows remote attackers to execute arbitrary code via a crafted webpage or file...

PT-2014-25: Stack-Based Buffer Overflow in HP iLO

The specialists of the Positive Research center have detected a Stack-Based Buffer Overflow vulnerability in HP iLO. This vulnerability allows remote attackers to execute arbitrary code How to fix Update your software up to the latest version Advisory status 22.09.2014 - Vendor gets vulnerability...

Stack overflow

Stack-based buffer overflow in Advantech WebAccess formerly BroadWin WebAccess 7.2 allows remote attackers to execute arbitrary code via the UserName parameter...

CVE-2014-0985

Advantech WebAccess 7.2 contains multiple stack-based buffer overflow vulnerabilities (CVE-2014-0985 through CVE-2014-0992) in ActiveX/ parsing code (notably NodeName, GotoCmd, NodeName2, AccessCode, AccessCode2, UserName, projectname, and password parameters). According to Core Security CORE-201...

CVE-2014-3094

Stack-based buffer overflow in IBM DB2 9.7 through FP9a, 9.8 through FP5, 10.1 through FP4, and 10.5 before FP4 on Linux, UNIX, and Windows allows remote authenticated users to execute arbitrary code via a crafted ALTER MODULE statement...

CVE-2014-3094

CVE-2014-3094 affects IBM DB2 LUW, with a stack-based buffer overflow in ALTER MODULE handling. A remote authenticated user can overflow a buffer and execute arbitrary code or crash the server. Affected: DB2 9.7 (any FP up to FP9a), 9.8 (up to FP5), 10.1 (up to FP4), and 10.5 before FP4 on Linux/...

CVE-2013-2597

Stack-based buffer overflow in the acdbioctl function in audioacdb.c in the acdb audio driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allows attackers to gain privileges via an application that...

CVE-2013-2597

CVE-2013-2597 describes a stack-based buffer overflow in the acdb_ioctl function of the acdb audio driver (audio_acdb.c) in Linux kernel 2.6.x and 3.x, used in Qualcomm Code Aurora/QuIC Android contributions for MSM devices. The flaw allows privilege escalation when an attacker can access /dev/ms...

CVE-2014-4647

The CVE concerns the TSVisualization ActiveX control in Embarcadero ER/Studio Data Architect. A stack-based buffer overflow in the loadExtensionFactory method allows an attacker to execute arbitrary code on vulnerable installations. The explicit root cause is failure to validate the size of input...

D-Link HNAP Request Remote Buffer Overflow

This module exploits an anonymous remote code execution vulnerability on different D-Link devices. The vulnerability is due to a stack based buffer overflow while handling malicious HTTP POST requests addressed to the HNAP handler. This module has been successfully tested on D-Link DIR-505 in an...

CVE-2014-3888

Stack-based buffer overflow in BKFSimvhfd.exe in Yokogawa CENTUM CS 1000, CENTUM CS 3000 R3.09.50 and earlier, CENTUM VP R5.03.20 and earlier, Exaopc R3.72.00 and earlier, B/M9000CS R5.05.01 and earlier, and B/M9000 VP R7.03.01 and earlier, when FCS/Test Function is enabled, allows remote attacke...

Yokogawa CS3000 BKFSim_vhfd.exe Buffer Overflow

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::Remote::Udp def initializeinfo =...

CVE-2014-3100

Stack-based buffer overflow in the encodekey function in /system/bin/keystore in the KeyStore service in Android 4.3 allows attackers to execute arbitrary code, and consequently obtain sensitive key information or bypass intended restrictions on cryptographic operations, via a long key name...

CVE-2013-3662

Timbre SketchUp formerly Google SketchUp before 8 Maintenance 2 allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers a stack-based buffer overflow...

lftp <= 2.6.9 - Remote Stack based Overflow Exploit

No description provided by source. / lftp remote stack-based overflow exploit by Li0n7 voila fr Vulnerability discovered by Ulf Harnhammar Ulf.Harnhammar.9485 student uu se Lftp versions later than 2.6.10 are prone to a remotly exploitable stack-based overflow in trynetscapeproxy and trysquideplf...

Native Instruments Traktor Pro 1.2.6 Stack-based Buffer Overflow Vulnerability

No description provided by source. !/usr/local/bin/perl Native Instruments Traktor Pro 1.2.6 Stack-based Buffer Overflow Vulnerability Vendor: Native Instruments GmbH Product web page: http://www.native-instruments.com Affected version: 1.2.6.8491 Standalone Summary: TRAKTOR PRO is the new...

CCMPlayer 1.5 Stack based Buffer Overflow (.m3u)

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

RhinoSoft Serv-U FTP Server 3/4/5 MDTM Command Time Argument Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/9751/info Serv-U FTP Server has been reported prone to a remote stack based buffer overflow vulnerability when handling time zone arguments passed to the MDTM FTP command. The problem exists due to insufficient bounds...

Siemens FactoryLink 8 CSService Logging Path Param Buffer Overflow

No description provided by source. $Id: factorylinkcsservice.rb 13019 2011-06-25 00:54:18Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...