Stack overflow

TRENDnet TEW-827DRU with firmware up to and including 2.04B03 contains multiple stack-based buffer overflows when processing user input for the setup wizard, allowing an unauthenticated user to execute arbitrary code. The vulnerability can be exercised on the local intranet or remotely if remote...

openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2019:1583-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2018-6349

When receiving calls using WhatsApp for Android, a missing size check when parsing a sender-provided packet allowed for a stack-based overflow. This issue affects WhatsApp for Android prior to 2.18.248 and WhatsApp Business for Android prior to 2.18.132...

Stack overflow

When receiving calls using WhatsApp for iOS, a missing size check when parsing a sender-provided packet allowed for a stack-based overflow. This issue affects WhatsApp for iOS prior to v2.18.90.24 and WhatsApp Business for iOS prior to v2.18.90.24...

Stack overflow

When receiving calls using WhatsApp for Android, a missing size check when parsing a sender-provided packet allowed for a stack-based overflow. This issue affects WhatsApp for Android prior to 2.18.248 and WhatsApp Business for Android prior to 2.18.132...

CVE-2018-20655

WhatsApp for iOS prior to v2.18.90.24 and WhatsApp Business for iOS prior to v2.18.90.24 are affected by a stack-based overflow caused by a missing size check when parsing a sender-provided packet. Root cause: insufficient bounds checking in the parser for sender packets. Impact: described as a s...

CVE-2018-6349

CVE-2018-6349 affects WhatsApp for Android (and WhatsApp Business for Android) prior to 2.18.248 and 2.18.132, respectively. The issue is a stack-based overflow caused by a missing size check while parsing a sender-provided packet during call reception. Root cause: insufficient input validation i...

CVE-2018-20655

When receiving calls using WhatsApp for iOS, a missing size check when parsing a sender-provided packet allowed for a stack-based overflow. This issue affects WhatsApp for iOS prior to v2.18.90.24 and WhatsApp Business for iOS prior to v2.18.90.24...

CVE-2018-6349

When receiving calls using WhatsApp for Android, a missing size check when parsing a sender-provided packet allowed for a stack-based overflow. This issue affects WhatsApp for Android prior to 2.18.248 and WhatsApp Business for Android prior to 2.18.132...

EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1529)

According to the versions of the kernel packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - The ipxrecvmsg function in net/ipx/afipx.c in the Linux kernel before 3.12.4 updates a certain length value without...

EulerOS Virtualization 3.0.1.0 : ntp (EulerOS-SA-2019-1556)

According to the versions of the ntp packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was discovered in the NTP server's parsing of configuration directives. A remote, authenticated attacker could cause...

CVE-2018-18912

An issue was discovered in Easy File Sharing EFS Web Server 7.2. A stack-based buffer overflow vulnerability occurs when a malicious POST request has been made to forum.ghp upon creating a new topic in the forums, which allows remote attackers to execute arbitrary code...

Arbitrary Code Execution

jasper is vulnerable to arbitrary code execution. The vulnerability exists through a stack-based buffer overflow in jpcqmfb.c...

CVE-2019-11639

An issue was discovered in GNU recutils 1.8. There is a stack-based buffer overflow in the function rectypecheckenum at rec-types.c in librec.a...

CVE-2019-11639

An issue was discovered in GNU recutils 1.8. There is a stack-based buffer overflow in the function rectypecheckenum at rec-types.c in librec.a...

The vulnerability of the seamless_process function in the RDP-client rdesktop library, related to integer overflow, allows an attacker to execute arbitrary code by causing a stack-based buffer overflow.

The vulnerability of the seamlessprocess function in the RDP client rdesktop is related to a numerical overflow that causes a buffer overflow based on a queue. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

Forcepoint Email Security Buffer Overflow Vulnerability

Forcepoint Email Security is a suite of email protection solutions from US-based Forcepoint. The product includes features such as spam filtering, malware detection, phishing protection, and protection against intrusion BEC attacks. A stack-based buffer overflow vulnerability exists in Forcepoint...

CVE-2019-9134

Architectural Information System 1.0 and earlier versions have a Stack-based buffer overflow, allows remote attackers to execute arbitrary code...

openSUSE Security Update : ovmf (openSUSE-2019-1172)

This update for ovmf fixes the following issues : Security issues fixed : - CVE-2019-0160: Fixed multiple buffer overflows in UDF-related codes in MdeModulePkg\Universal\Disk\PartitionDxe\Udf.c and MdeModulePkg\Universal\Disk\UdfDxe bsc1130267. - CVE-2018-12181: Fixed a stack-based buffer overflo...

Debian DLA-1738-1 : gpsd security update

A security vulnerability was discovered in gpsd, the Global Positioning System daemon. A stack-based buffer overflow may allow remote attackers to execute arbitrary code via traffic on port 2947/TCP or crafted JSON inputs. For Debian 8 'Jessie', this problem has been fixed in version 3.11-3+deb8u...