CVE-2007-0468

Stack-based buffer overflow in rcdll.dll in msdev.exe in Visual C++ MSVC in Microsoft Visual Studio 6.0 SP6 allows user-assisted remote attackers to execute arbitrary code via a long file path in the "1 TYPELIB MOVEABLE PURE" option in an RC file...

3Com TFTP Service (3CTftpSvc) 2.0.1 - Remote Buffer Overflow (Metasploit)

3Com TFTP Service 3CTftpSvc 2.0.1 - Remote Buffer Overflow Metasploit package Msf::Exploit::3comtftplongmode; use strict; use base "Msf::Exploit"; use Pex::Text; use IO::Socket; my $advanced = ; my $info = 'Name' = 'TFTP Server 3CTftpSvc Buffer Overflow Vulnerability', 'Version' = '$ 1.0 $',...

Stack overflow

Stack-based buffer overflow in mbse-bbs 0.70 and earlier allows local users to execute arbitrary code via a long string in the MBSEROOT environment variable...

CVE-2006-5171

Stack-based buffer overflow in the RPC interface in Mediasvr.exe in Computer Associates CA Brightstor ARCserve Backup 9.01 through 11.5, Enterprise Backup 10.5, and CA Protection Suites r2 allows remote attackers to execute arbitrary code via crafted SUNRPC packets, aka the "Mediasvr.exe Overflow...

CVE-2006-5172

Stack-based buffer overflow in the RPC interface in Mediasvr.exe in Computer Associates CA Brightstor ARCserve Backup 9.01 through 11.5, Enterprise Backup 10.5, and CA Protection Suites r2 allows remote attackers to execute arbitrary code via crafted SUNRPC packets, aka the "Mediasvr.exe String...

CVE-2007-0180

Stack-based buffer overflow in EF Commander 5.75 allows user-assisted attackers to execute arbitrary code via a crafted ISO file containing a file within several nested directories, which produces a large filename that triggers the overflow...

CVE-2006-4098

Stack-based buffer overflow in the CSRadius service in Cisco Secure Access Control Server ACS for Windows before 4.1 and ACS Solution Engine before 4.1 allows remote attackers to execute arbitrary code via a crafted RADIUS Accounting-Request packet...

CVE-2006-6488

Stack-based buffer overflow in the DoModal function in the Dialog Wrapper Module ActiveX control DlgWrapper.dll before 8.4.166.0, as used by ICONICS OPC Enabled Gauge, Switch, and Vessel ActiveX, allows remote attackers to execute arbitrary code via a long 1 FileName or 2 Filter argument...

CVE-2007-0016

Stack-based buffer overflow in MoviePlay 4.76 allows remote attackers to execute arbitrary code via a long filename in a LST file...

CVE-2006-6488

Stack-based buffer overflow in the DoModal function in the Dialog Wrapper Module ActiveX control DlgWrapper.dll before 8.4.166.0, as used by ICONICS OPC Enabled Gauge, Switch, and Vessel ActiveX, allows remote attackers to execute arbitrary code via a long 1 FileName or 2 Filter argument...

CVE-2006-6909

Stack-based buffer overflow in http.c in Karl Dahlke Edbrowse aka Command line editor browser 3.1.3 allows remote attackers to execute arbitrary code by operating an FTP server that sends directory listings with 1 long user names or 2 long group names...

CVE-2006-6761

Stack-based buffer overflow in the IMAP daemon IMAPD in Novell NetMail before 3.52e FTF2 allows remote authenticated users to execute arbitrary code via a long argument to the SUBSCRIBE command...

CVE-2006-6563

Stack-based buffer overflow in the prctrlsrecvrequest function in ctrls.c in the modctrls module in ProFTPD before 1.3.1rc1 allows local users to execute arbitrary code via a large reqarglen length value...

CVE-2006-5822

Stack-based buffer overflow in the NetBackup bpcd daemon bpcd.exe in Symantec Veritas NetBackup 5.0 before 5.0MP7, 5.1 before 5.1MP6, and 6.0 before 6.0MP4 allows remote attackers to execute arbitrary code via a long CONNECTOPTIONS request, a different issue than CVE-2006-6222...

CVE-2006-6495

Stack-based buffer overflow in ld.so.1 in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via large precision padding values in a format string specifier in the format parameter of the doprf function. NOTE: this issue normally does not cross privilege boundaries, except in...

CVE-2006-6444

Stack-based buffer overflow in Nostra DivX Player 2.1, 2.2.00.0, and possibly earlier, allows remote attackers to execute arbitrary code via a long string in an M3U file. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2006-6444

The CVE-2006-6444 issue affects Nostra DivX Player versions 2.1, 2.2.00.0 (and possibly earlier). It is caused by a stack-based buffer overflow triggered by a long string in an M3U file, which allows a remote attacker to execute arbitrary code. The vulnerability is exploitable remotely via crafte...

CVE-2006-6444

Stack-based buffer overflow in Nostra DivX Player 2.1, 2.2.00.0, and possibly earlier, allows remote attackers to execute arbitrary code via a long string in an M3U file. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2006-6442

Stack-based buffer overflow in the SetClientInfo function in the CDDBControlAOL.CDDBAOLControl ActiveX control cddbcontrol.dll, as used in America Online AOL 7.0 4114.563, 8.0 4129.230, and 9.0 Security Edition 4156.910, and possibly other products, allows remote attackers to execute arbitrary co...

CVE-2006-6385

CVE-2006-6385 describes a stack-based buffer overflow in Intel PRO Ethernet NDIS miniport drivers (PRO 10/100, PRO/1000, PRO/10GbE for PCI, PCI-X, PCIe) before 2006-12-05. The flaw allows a local attacker to execute arbitrary code with kernel-level privileges via an incorrect OID-handling functio...