Stack-based Buffer Overflow in vim/vim

...

CVE-2022-32960

HiCOS’ client-side citizen digital certificate component has a stack-based buffer overflow vulnerability when reading IC card due to insufficient parameter length validation for card number. An unauthenticated physical attacker can exploit this vulnerability to execute arbitrary code, manipulate...

python: Stack-based buffer overflow in PyCArg_repr in _ctypes/callproc.c

A flaw was found in python. A stack-based buffer overflow was discovered in the ctypes module provided within Python. Applications that use ctypes without carefully validating the input passed to it may be vulnerable to this flaw, which would allow an attacker to overflow a buffer on the stack an...

CVE-2019-25062 Sricam IP CCTV Camera Device Viewer stack-based overflow

A vulnerability was found in Sricam IP CCTV Camera and classified as critical. This issue affects some unknown processing of the component Device Viewer. The manipulation leads to memory corruption. An attack has to be approached locally. The exploit has been disclosed to the public and may be us...

CVE-2022-20105

In MM service, there is a possible out of bounds write due to a stack-based buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03330460; Issue ID: DTV03330460...

Avaya switches安全漏洞

Avaya switches is a switch from the French company Avaya. A security vulnerability exists in Avaya switches that originates. The vulnerability exists due to a boundary error when processing multi-part form data with strings that do not end in null. An unauthenticated, remote attacker could exploi...

多款MediaTek产品输入验证错误漏洞

MediaTek chips are a variety of chips from MediaTek, a division of China's MediaTek. A security vulnerability exists in various MediaTek products, which stems from a stack-based buffer overflow that may result in out-of-bounds writes and can be exploited by an attacker to cause an escalation of...

Accusoft ImageGear IGXMPXMLParser::parseDelimiter stack-based buffer overflow vulnerability

Summary A stack-based buffer overflow vulnerability exists in the IGXMPXMLParser::parseDelimiter functionality of Accusoft ImageGear 19.10. A specially-crafted PSD file can overflow a stack buffer, which could either lead to denial of service or, depending on the application, to an information...

CVE-2022-21228

The affected product is vulnerable to a stack-based buffer overflow, which may allow an attacker to execute arbitrary code...

Stack overflow

The affected product is vulnerable to a stack-based buffer overflow, which may allow an attacker to execute arbitrary code...

CVE-2022-1211

A vulnerability classified as critical has been found in tildearrow Furnace dev73. This affects the FUR to VGM converter in console mode which causes stack-based overflows and crashes. It is possible to initiate the attack remotely but it requires user-interaction. A POC has been disclosed to the...

CVE-2022-1211

CVE-2022-1211 concerns tildearrow Furnace. The vulnerability affects the FUR to VGM converter in console mode, enabling a remote-denial-of-service condition that requires user interaction to trigger. Multiple sources note this as an incomplete fix of the same issue and describe the impact as a de...

CVE-2022-1211 tildearrow Furnace FUR to VGM Converter stack-based overflow

A vulnerability classified as critical has been found in tildearrow Furnace dev73. This affects the FUR to VGM converter in console mode which causes stack-based overflows and crashes. It is possible to initiate the attack remotely but it requires user-interaction. A POC has been disclosed to the...

CVE-2022-1211 tildearrow Furnace FUR to VGM Converter stack-based overflow

A vulnerability classified as critical has been found in tildearrow Furnace dev73. This affects the FUR to VGM converter in console mode which causes stack-based overflows and crashes. It is possible to initiate the attack remotely but it requires user-interaction. A POC has been disclosed to the...

CVE-2022-26419 Rockwell Automation Studio 5000 Logix Designer Code Injection

Omron CX-Position versions 2.5.3 and prior is vulnerable to multiple stack-based buffer overflow conditions while parsing a specific project file, which may allow an attacker to locally execute arbitrary code...

Fuji Electric Alpha5 缓冲区错误漏洞

Fuji Electric Alpha5 is a servo amplifier from Fuji Electric, Japan. A security vulnerability exists in Fuji Electric Alpha5 that stems from the affected product being susceptible to a stack-based buffer overflow. An attacker could exploit the vulnerability to execute arbitrary code...

CVE-2022-25949

The kernel mode driver kwatch3 of KINGSOFT Internet Security 9 Plus Version 2010.06.23.247 fails to properly handle crafted inputs, leading to stack-based buffer overflow...

CVE-2022-24575

GPAC 1.0.1 is affected by a stack-based buffer overflow through MP4Box...

FATEK Automation FvDesigner 缓冲区错误漏洞

FATEK Automation FvDesigner is a human-computer interaction device from FATEK. A buffer overflow vulnerability exists in FATEK Automation FvDesigner, which stems from the fact that when processing project files, the affected product is susceptible to a stack-based buffer overflow that could be...

ALPINE-CVE-2022-24048

MariaDB CONNECT Storage Engine Stack-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the...