8440 matches found
CVE-2017-16229
In the Ox gem 2.8.1 for Ruby, the process crashes with a stack-based buffer over-read in the readfromstr function in saxbuf.c when a crafted input is supplied to saxparse...
Disk Savvy Enterprise 10.4.18 Buffer Ovreflow
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Disk Savvy Enterprise v10.4.18', 'Description' = %q This module exploits a stack-based buffer overflow vulnerability in Disk Savvy Enterprise...
CloudMe Sync v1.10.9
This module exploits a stack-based buffer overflow vulnerability in CloudMe Sync v1.10.9 client application. This module has been tested successfully on Windows 7 SP1 x86. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framewo...
Debian: Security Advisory (DLA-1275-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-5475
The CVE-2018-5475 issue affects GE D60 Line Distance Relay devices running firmware version 7.11 and earlier. The vulnerability is described as a stack-based buffer overflow that could allow remote code execution. Related sources (ICS-CERT NCCIC advisory ICSA-18-046-02) confirm the impact and sta...
CVE-2018-7186
Leptonica before 1.75.3 does not limit the number of characters in a %s format argument to fscanf or sscanf, which allows remote attackers to cause a denial of service stack-based buffer overflow or possibly have unspecified other impact via a long string, as demonstrated by the gplotRead and...
CVE-2018-7186
Leptonica prior to 1.75.3 is vulnerable to a format-string flaw in fscanf/sscanf (%s argument) that can cause a stack-based buffer overflow in remote contexts, via gplotRead and ptaReadStream. Exploitation status is not detailed in the provided documents. Remediation: upgrade to Leptonica 1.75.3 ...
ImageMagick 7.0.7.22 DoS Vulnerability - Mac OS X
ImageMagick is prone to a Denial of Service vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
GE D60 Line Distance Relay
CVSS v3 9.8 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: GE Equipment: D60 Line Distance Relay Vulnerabilities: Stack-based Buffer Overflow, Improper Restriction of Operations within the Bounds of a Memory Buffer AFFECTED PRODUCTS The following versions of the D60 Line...
CVE-2018-6930
A stack-based buffer over-read in the ComputeResizeImage function in the MagickCore/accelerate.c file of ImageMagick 7.0.7-22 allows a remote attacker to cause a denial of service application crash via a maliciously crafted pict file...
CVE-2018-6876
The OLEProperty class in ole/oleprop.cpp in libfpx 1.3.1-10, as used in ImageMagick 7.0.7-22 Q16 and other products, allows remote attackers to cause a denial of service stack-based buffer under-read via a crafted bmp image...
CVE-2018-6930
A stack-based buffer over-read in the ComputeResizeImage function in the MagickCore/accelerate.c file of ImageMagick 7.0.7-22 allows a remote attacker to cause a denial of service application crash via a maliciously crafted pict file...
CVE-2018-6930
A stack-based buffer over-read in the ComputeResizeImage function in the MagickCore/accelerate.c file of ImageMagick 7.0.7-22 allows a remote attacker to cause a denial of service application crash via a maliciously crafted pict file...
Stack overflow
The OLEProperty class in ole/oleprop.cpp in libfpx 1.3.1-10, as used in ImageMagick 7.0.7-22 Q16 and other products, allows remote attackers to cause a denial of service stack-based buffer under-read via a crafted bmp image...
CVE-2018-6876
CVE-2018-6876: The OLEProperty class in ole/oleprop.cpp (libfpx 1.3.1-10), used by ImageMagick 7.0.7-22 Q16 and other products, can be triggered by a crafted BMP image to cause a remote stack-based buffer under-read, leading to denial of service. This vulnerability is documented in Nessus plugin ...
CVE-2018-1161
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.2.0.13. Authentication is not required to exploit this vulnerability. The specific flaw exists within nvwsworker.exe. When parsing the boundary header of a multipart reques...
CVE-2018-1161
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.2.0.13. Authentication is not required to exploit this vulnerability. The specific flaw exists within nvwsworker.exe. When parsing the boundary header of a multipart reques...
CVE-2018-6767
A stack-based buffer over-read in the ParseRiffHeaderConfig function of cli/riff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service attack or possibly have unspecified other impact via a maliciously crafted RF64 file...
CVE-2018-6767
A stack-based buffer over-read in the ParseRiffHeaderConfig function of cli/riff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service attack or possibly have unspecified other impact via a maliciously crafted RF64 file...
CVE-2018-6758
The uwsgiexpandpath function in core/utils.c in Unbit uWSGI through 2.0.15 has a stack-based buffer overflow via a large directory length...