Mandriva Linux Security Advisory : cifs-utils (MDVSA-2015:114)

Updated cifs-utils packages fix security vulnerability : Sebastian Krahmer discovered a stack-based buffer overflow flaw in cifscreds.c CVE-2014-2830. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Mandriva Linux...

CVE-2014-9205

Stack-based buffer overflow in the PmBase64Decode function in an unspecified demonstration application in MICROSYS PROMOTIC stable before 8.2.19 and PROMOTIC development before 8.3.2 allows remote attackers to execute arbitrary code by providing a large amount of data...

Stack overflow

Stack-based buffer overflow in the PmBase64Decode function in an unspecified demonstration application in MICROSYS PROMOTIC stable before 8.2.19 and PROMOTIC development before 8.3.2 allows remote attackers to execute arbitrary code by providing a large amount of data...

Stack overflow

Stack-based buffer overflow in collectoragent.exe in Fortinet Single Sign On FSSO before build 164 allows remote attackers to execute arbitrary code via a large PROCESSHELLO message to the Message Dispatcher on TCP port 8000...

[CORE-2015-0006] - Fortinet Single Sign On Stack Overflow

Advisory Information Title: Fortinet Single Sign On Stack Overflow Advisory ID: CORE-2015-0006 Advisory URL: http://www.coresecurity.com/advisories/fortinet-single-sign-on-stack-overflow Date published: 2015-03-18 Date of last update: 2015-03-18 Vendors contacted: Fortinet Release mode:...

ettercap: multiple issues

CVE-2014-6395 arbitrary code execution Heap-based buffer overflow in the dissectorpostgresql function in dissectors/ecpostgresql.c allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted password length value that is inconsistent with the actual...

CVE-2014-9206

The vulnerability CVE-2014-9206 affects Schneider Electric Invensys SRD Control Valve Positioner DTM software (DTM 3.1.6 and earlier) used with SRD 960/991. It is a stack-based buffer overflow in a DLL that could allow a local attacker to gain privileges by loading a malformed DLL. Connected advi...

CVE-2015-2094

Stack-based buffer overflow in the WESPPlayback.WESPPlaybackCtrl.1 control in WebGate WinRDS allows remote attackers to execute arbitrary code via unspecified vectors to the 1 PrintSiteImage, 2 PlaySiteAllChannel, 3 StopSiteAllChannel, or 4 SaveSiteImage function...

Stack overflow

Stack-based buffer overflow in the Connect function in the WebGate WebEyeAudio ActiveX control allows remote attackers to execute arbitrary code via a crafted value...

CVE-2015-2094

Stack-based buffer overflow in the WESPPlayback.WESPPlaybackCtrl.1 control in WebGate WinRDS allows remote attackers to execute arbitrary code via unspecified vectors to the 1 PrintSiteImage, 2 PlaySiteAllChannel, 3 StopSiteAllChannel, or 4 SaveSiteImage function...

CVE-2015-2093

CVEs and affected component : CVE-2015-2093 describes a stack-based buffer overflow in the Connect function of the WebGate WebEyeAudio ActiveX control (OCX). The vulnerability enables remote code execution in the context of the vulnerable host when a crafted value is processed.Root cause : buffer...

CVE-2015-2094

CVE-2015-2094 affects WebGate WinRDS (WESPPlaybackCtrl.1) and involves a stack-based buffer overflow in the WESPPlaybackCtrl.1 control. Multiple functions are listed as vectors (PrintSiteImage, PlaySiteAllChannel, StopSiteAllChannel, SaveSiteImage). Exploitation could allow remote code execution,...

Moxa SoftCMS Buffer Overflow Vulnerability

OVERVIEW NCCIC/ICS-CERT received a report from HP’s Zero Day Initiative ZDI concerning a buffer overflow vulnerability in Moxa’s SoftCMS software package. This vulnerability was reported to ZDI by security researcher Ariele Caltabiano. Moxa has produced a new version that mitigates this...

CVE-2015-0825

Stack-based buffer underflow in the mozilla::MP3FrameParser::ParseBuffer function in Mozilla Firefox before 36.0 allows remote attackers to obtain sensitive information from process memory via a malformed MP3 file that improperly interacts with memory allocation during playback...

Stack overflow

Stack-based buffer underflow in the mozilla::MP3FrameParser::ParseBuffer function in Mozilla Firefox before 36.0 allows remote attackers to obtain sensitive information from process memory via a malformed MP3 file that improperly interacts with memory allocation during playback...

CVE-2015-0825

Stack-based buffer underflow in the mozilla::MP3FrameParser::ParseBuffer function in Mozilla Firefox before 36.0 allows remote attackers to obtain sensitive information from process memory via a malformed MP3 file that improperly interacts with memory allocation during playback...

CVE-2015-0825

Stack-based buffer underflow in the mozilla::MP3FrameParser::ParseBuffer function in Mozilla Firefox before 36.0 allows remote attackers to obtain sensitive information from process memory via a malformed MP3 file that improperly interacts with memory allocation during playback...

CVE-2015-2052

Stack-based buffer overflow in the DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary code via a long string in a GetDeviceSettings action to the HNAP interface...

CVE-2015-2052

Affected : D-Link DIR-645 Wired/Wireless Router Rev. Ax, firmware 1.04b12 and earlier. Vulnerability : stack-based buffer overflow in the HNAP GetDeviceSettings action allows remote attackers to execute arbitrary code via a long string. Impact : remote code execution with full confidentiality, in...

CVE-2015-2052

Stack-based buffer overflow in the DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary code via a long string in a GetDeviceSettings action to the HNAP interface...