KLA10020 DoS vulnerability in Winamp

A stack-based buffer overflow was found in Winamp. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited from the network at a point related to Skin packages via a specially designed package. Original...

Fedora 20 : jbigkit-2.0-10.fc20 (2014-4948)

This update fixes a stack-based buffer overflow flaw. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

Updated jbigkit packages fix CVE-2013-6369

Updated jbigkit packages fix security vulnerability: Florian Weimer found a stack-based buffer overflow flaw in the libjbig library part of jbigkit. A specially-crafted image file read by libjbig could be used to cause a program linked to libjbig to crash or, potentially, to execute arbitrary cod...

CVE-2014-0787

Stack-based buffer overflow in WellinTech KingSCADA before 3.1.2.13 allows remote attackers to execute arbitrary code via a crafted packet...

CVE-2014-0767

An attacker may exploit this vulnerability by passing an overly long value from the AccessCode argument to the control. This will overflow the static stack buffer. The attacker may then execute code on the target device remotely...

CVE-2014-0770

By providing an overly long string to the UserName parameter, an attacker may be able to overflow the static stack buffer. The attacker may then execute code on the target device remotely...

CVE-2014-0767

CVE-2014-0767 is a buffer overflow in Advantech WebAccess’ webvact.ocx ActiveX control, triggered by an overly long AccessCode argument, enabling remote code execution via a crafted webpage. Affected product: Advantech WebAccess (WebAccess Webvact OCX). Root cause: stack-based overflow due to ins...

CVE-2014-0764

Advantech WebAccess is affected by CVE-2014-0764 due to a stack-based buffer overflow in the NodeName parameter parsing of the webvact.ocx ActiveX control. The advisory material from Core Security (CORE-2014-0005) and related sources indicate the vulnerability could allow remote code execution wh...

CVE-2014-0767 Advantech WebAccess Stack-based Buffer Overflow

An attacker may exploit this vulnerability by passing an overly long value from the AccessCode argument to the control. This will overflow the static stack buffer. The attacker may then execute code on the target device remotely...

CVE-2014-0787

WellinTech KingSCADA CVE-2014-0787 is a stack-based buffer overflow vulnerability affecting KingSCADA before 3.1.2.13. A crafted packet to the AlarmServer service (AEserver.exe) on TCP port 12401 can trigger a stack overflow via an improper size handling in packet parsing, allowing remote code ex...

CVE-2013-6369

Stack-based buffer overflow in the jbgdecin function in libjbig/jbig.c in JBIG-KIT before 2.1 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted image file...

CVE-2013-6369

Stack-based buffer overflow in the jbgdecin function in libjbig/jbig.c in JBIG-KIT before 2.1 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted image file...

BlackBerry Patches Remote Code Execution Security Vulnerability

BlackBerry’s Security Incident Response Team BBSIRT today released a security advisory resolving a remote code execution vulnerability in BlackBerry 10. The company says it has no knowledge of attacks actively exploiting this bug in the wild. “BlackBerry is committed to protecting customers from...

Microsoft Office Compatibility Pack Remote Code Execution Vulnerabilities (2949660)

This host is missing a critical security update according to Microsoft Bulletin MS14-017. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Office Word Remote Code Execution Vulnerabilities (2949660)

This host is missing a critical security update according to Microsoft Bulletin MS14-017. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Office Word Viewer Remote Code Execution Vulnerabilities (2949660)

This host is missing a critical security update according to Microsoft Bulletin MS14-017. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Office Word Viewer Remote Code Execution Vulnerabilities (2949660)

This host is missing a critical security update according to Microsoft Bulletin MS14-017. OpenVAS Vulnerability Test $Id: gbmswordviewms14-017.nasl 7000 2017-08-24 11:51:46Z teissa $ Microsoft Office Word Viewer Remote Code Execution Vulnerabilities 2949660 Authors: Antu Sanadi Copyright: Copyrig...

CVE-2014-1758

CVE-2014-1758 is a Word 2003 SP3 vulnerability described in the initial entry as a stack-based buffer overflow that allows remote code execution via a crafted document (Microsoft Word Stack Overflow Vulnerability). Connected advisories/entries (Kaspersky and OpenVAS) corroborate that multiple Mic...

BlazeDVD Pro Player 6.1 - Stack Based Buffer Overflow Jump ESP

Exploit for windows platform in category local exploits EDB Note, XPSP3 - my $eip = pack'V',0x7c868667; jmp ESP on kernel32.dll Date: Tue Apr 8 2014 Vendor link: http://www.blazevideo.com/download.htmm Software Link: http://www.blazevideo.com/download.php?product=BlazeDVDPro App Version: 6.1 Test...

CVE-2013-3930

Stack-based buffer overflow in Core FTP before 2.2 build 1785 allows remote FTP servers to execute arbitrary code via a crafted directory name in a CWD command reply...