EulerOS 2.0 SP5 : poppler (EulerOS-SA-2021-1225)

According to the versions of the poppler packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Poppler 0.54.0, a memory leak vulnerability was found in the function gmalloc in gmem.cc, which allows attackers to cause a denial of servic...

EulerOS 2.0 SP5 : quagga (EulerOS-SA-2021-1227)

According to the versions of the quagga package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The bgpnlriparsevpnv4 function in bgpmplsvpn.c in the VPNv4 NLRI parser in bgpd in Quagga before 1.0.20160309, when a certain VPNv4 configuration...

Solaris 10 1/13 (SPARC) - (dtprintinfo) Local Privilege Escalation Exploit (1)

Exploit Title: Solaris 10 1/13 SPARC - 'dtprintinfo' Local Privilege Escalation Exploit Author: Marco Ivaldi Vendor Homepage: https://www.oracle.com/solaris/solaris10/ Version: Solaris 10 Tested on: Solaris 10 1/13 SPARC / raptordtprintcheckdirsparc.c - Solaris/SPARC FMT PoC Copyright c 2020 Marc...

CentOS 8 : sudo (CESA-2020:0487)

The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2020:0487 advisory. - sudo: Stack based buffer overflow when pwfeedback is enabled CVE-2019-18634 Note that Nessus has not tested for this issue but has instead relied only on the...

CentOS 8 : liblouis (CESA-2020:1708)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:1708 advisory. - liblouis: Segmentation fault in logging.c:loulogPrint CVE-2018-11577 - liblouis: Stack-based buffer overflow in function includeFile in...

EulerOS 2.0 SP8 : qemu (EulerOS-SA-2021-1169)

According to the version of the qemu package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - hw/usb/hcd-ohci.c in QEMU 5.0.0 has a stack-based buffer over-read via values obtained from the host controller driver.CVE-2020-25624 Note that Tenabl...

CentOS 8 : libyang (CESA-2019:4360)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2019:4360 advisory. - libyang: stack-based buffer overflow in makecanonical when bits leaf type is used CVE-2019-19333 - libyang: stack-based buffer overflow in...

Schneider Electric IGSS CGF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric IGSS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

CVE-2020-25782

An issue was discovered on Accfly Wireless Security IR Camera 720P System with software versions v3.10.73 through v4.15.77. There is an unauthenticated stack-based buffer overflow in the function CNetClientManage::ServerIPProtoSet during incoming message handling...

CVE-2021-22637

Multiple stack-based buffer overflow issues have been identified in the way the application processes project files, allowing an attacker to craft a special project file that may allow arbitrary code execution on the Tellus Lite V-Simulator and V-Server Lite versions prior to 4.0.10.0...

CVE-2021-22637

Multiple stack-based buffer overflow issues have been identified in the way the application processes project files, allowing an attacker to craft a special project file that may allow arbitrary code execution on the Tellus Lite V-Simulator and V-Server Lite versions prior to 4.0.10.0...

CVE-2021-22698

A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists in the EcoStruxure Power Build - Rapsody software V2.1.13 and prior that could allow a stack-based buffer overflow to occur which could result in remote code execution when a malicious SSD file is uploaded and...

Fuji Electric Tellus Lite V-Simulator and V-Server Lite

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low skill level to exploit Vendor: Fuji Electric Equipment: Tellus Lite V-Simulator and V-Server Lite Vulnerabilities: Stack-based Buffer Overflow, Out-of-Bounds Read, Out-of-Bounds Write, Access of Uninitialized Pointer, Heap-based Buffer Overflow 2...

CVE-2021-22698

A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists in the EcoStruxure Power Build - Rapsody software V2.1.13 and prior that could allow a stack-based buffer overflow to occur which could result in remote code execution when a malicious SSD file is uploaded and...

openSUSE Security Update : ImageMagick (openSUSE-2021-136)

This update for ImageMagick fixes the following issues : - CVE-2020-19667: Fixed a stack-based buffer overflow in XPM coder could result in a crash bsc1179103. - CVE-2020-25664: Fixed a heap-based buffer overflow in PopShortPixel bsc1179202. - CVE-2020-25665: Fixed a heap-based buffer overflow in...

CVE-2020-27221

In Eclipse OpenJ9 up to and including version 0.23, there is potential for a stack-based buffer overflow when the virtual machine or JNI natives are converting from UTF-8 characters to platform encoding...

CVE-2020-27221

In Eclipse OpenJ9 up to and including version 0.23, there is potential for a stack-based buffer overflow when the virtual machine or JNI natives are converting from UTF-8 characters to platform encoding...

EulerOS 2.0 SP3 : glibc (EulerOS-SA-2021-1069)

According to the version of the glibc packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Stack-based buffer overflow in the glob implementation in GNU C Library aka glibc before 2.24, when GLOBALTDIRFUNC is used, allows context-dependent...

Siemens Solid Edge Viewer PAR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Adobe Character Animator 3.0 < 3.3 Arbitrary code execution (APSB20-25)

The version of Adobe Character Animator installed on the remote Windows host is prior to 3.3. It is, therefore, affected by a vulnerability as referenced in the APSB20-25 advisory. - Adobe Character Animator versions 3.2 and earlier have a buffer overflow vulnerability. Successful exploitation...