8439 matches found
Critical Security Vulnerabilities Discovered in Netcomm and TP-Link Routers
Security vulnerabilities have been disclosed in Netcomm and TP-Link routers, some of which could be weaponized to achieve remote code execution. The flaws, tracked as CVE-2022-4873 and CVE-2022-4874, concern a case of stack-based buffer overflow and authentication bypass and impact Netcomm router...
CVE-2022-34401
Dell BIOS contains a stack based buffer overflow vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to send larger than expected input to a parameter in order to gain arbitrary code execution in SMRAM...
CVE-2023-21610
CVE-2023-21610 affects Adobe Acrobat Reader versions 22.003.20282 and earlier, 20.005.30418 and earlier. It is a stack-based buffer overflow that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction: the victim must open a malicious fil...
Microsoft Word SKP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Word. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP...
CVE-2023-21610 Adobe Acrobat Reader Stack-based Buffer Overflow Arbitrary code execution
Adobe Acrobat Reader versions 22.003.20282 and earlier, 22.003.20281 and earlier and 20.005.30418 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user...
CVE-2023-21610 Adobe Acrobat Reader Stack-based Buffer Overflow Arbitrary code execution
Adobe Acrobat Reader versions 22.003.20282 and earlier, 22.003.20281 and earlier and 20.005.30418 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user...
CVE-2023-21604
Adobe Acrobat/Reader is affected by a stack-based buffer overflow (CVE-2023-21604) in versions 22.003.20282 and earlier, 22.003.20281 and earlier, and 20.005.30418 and earlier. The issue can lead to arbitrary code execution in the context of the current user and requires the victim to open a mali...
Ubuntu: Security Advisory (USN-5809-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2010-10005
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: It is a duplicate of CVE-2010-2799...
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to stack-based buffer overflow in GNU C Library (CVE-2022-23219)
Summary Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to stack-based buffer overflow in GNU C Library CVE-2022-23219. This is included as part of the base-image used in our Speech-to-Text and Text-to-Speech service components. Please see below fo...
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2023-1158)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Buffer overflow
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
Buffer overflow
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
Buffer overflow
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
Buffer overflow
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
CVE-2017-16334
CVE-2017-16334 concerns Insteon Hub, firmware 1012, with multiple stack-based buffer overflow vulnerabilities in the PubNub message handler for the “cc” channel. The root cause is unconstrained strcpy usage when parsing JSON fields (notably cmd and s_event/s_raw variants), allowing overflow of st...
CVE-2017-16326
CVE-2017-16326 affects Insteon Hub firmware 1012 via the PubNub PubNub pubnub_sonos-like message handler on channel cc. The vulnerability is a stack-based buffer overflow caused by unconstrained strcpy calls when parsing JSON fields (e.g., cmd, usr, pwd) in the pubnub handler, enabling data overw...
CVE-2017-16330
CVE-2017-16330 affects Insteon Hub (firmware 1012) through the PubNub PubNub message handler on channel cc. The vulnerability is a set of stack-based buffer overflows caused by unbounded strcpy calls when parsing JSON fields (e.g., s_event_group, usr, pwd, etc.). An attacker can trigger the overf...
CVE-2017-16309
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
CVE-2017-16286
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...