Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2081 matches found

myhack58
myhack58added 2019/03/19 12:0 a.m.125 views

Through the Server Info in a buffer overflow to achieve the Steam client RCE-vulnerability warning-the black bar safety net

In Steam and other V social game such as CSGO, Half-Life, TF2, built-in a looking for a server browser server browser, and a game server. In order to obtain information about these server information, the server browser using a method called server query server queries a specific UDP communicatio...

0.7AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2019/02/15 12:0 a.m.74 views

openSUSE Security Update : curl (openSUSE-2019-173)

This update for curl fixes the following issues : Security issues fixed : - CVE-2019-3823: Fixed a heap out-of-bounds read in the code handling the end-of-response for SMTP bsc1123378. - CVE-2019-3822: Fixed a stack based buffer overflow in the function creating an outgoing NTLM type-3 message...

9.8CVSS6.6AI score0.18518EPSS
Exploits2References6
OSV
OSVadded 2019/01/28 8:29 p.m.0 views

UBUNTU-CVE-2019-6991

A classic Stack-based buffer overflow exists in the zmLoadUser function in zmuser.cpp of the zmu binary in ZoneMinder through 1.32.3, allowing an unauthenticated attacker to execute code via a long username...

9.8CVSS7.6AI score0.13529EPSS
Exploits1References5
0day.today
0day.todayadded 2019/01/21 12:0 a.m.50 views

GattLib 0.2 - Stack Buffer Overflow Exploit

Exploit Title: stack-based overflow Exploit Author: Dhiraj Mishra Vendor Homepage: http://labapart.com/ Software Link: https://github.com/labapart/gattlib/issues/81 Version: 0.2 Tested on: Linux 4.15.0-38-generic CVE: CVE-2019-6498 References: https://github.com/labapart/gattlib/issues/81...

8.8CVSS0.05961EPSS
Exploits5
0day.today
0day.todayadded 2018/12/01 12:0 a.m.31 views

HTML5 Video Player 1.2.5 - Buffer Overflow Exploit

Exploit for windows platform in category local exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'HTML5 Video Player 1.2.5 - Buffer Overflow SEH', 'Description' = %q This...

6.8AI score
Exploits0
RedHat Linux
RedHat Linuxadded 2018/10/30 9:54 a.m.3 views

zsh: Stack-based buffer overflow in exec.c:hashcmd()

zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the exec.c:hashcmd function. A local attacker could exploit this to cause a denial of service...

5.5CVSS6.2AI score0.00044EPSS
Exploits0References4
OSV
OSVadded 2018/10/11 10:29 p.m.0 views

CVE-2018-17929

In Delta Industrial Automation TPEditor, TPEditor Versions 1.90 and prior, multiple stack-based buffer overflow vulnerabilities may be exploited by processing specially crafted project files lacking user input validation before copying data from project files onto the stack and may allow an...

7.8CVSS6.3AI score
Exploits0References2
OPENSUSE Linux
OPENSUSE Linuxadded 2018/09/28 9:8 p.m.150 views

Security update for mgetty (important)

This update for mgetty fixes the following issues: - CVE-2018-16741: The function doactivate did not properly sanitize shell metacharacters to prevent command injection bsc1108752. - CVE-2018-16745: The mailto parameter was not sanitized, leading to a buffer overflow if long untrusted input reach...

2.3AI score0.00646EPSS
Exploits6References5
Prion
Prionadded 2018/09/13 4:29 p.m.15 views

Stack overflow

An issue was discovered in mgetty before 1.2.1. In contrib/scrts.c, a stack-based buffer overflow can be triggered via a command-line parameter...

4.6CVSS7.6AI score0.00063EPSS
Exploits2References1Affected Software1
CVE
CVEadded 2018/09/13 4:0 p.m.53 views

CVE-2018-16743

CVE-2018-16743 affects mgetty prior to 1.2.1. In contrib/next-login/login.c, the username command-line parameter is passed unsanitized to strcpy(), causing a stack-based buffer overflow. This is a local vulnerability with potential partial confidentiality/integrity/availability impact. Mitigation...

7.8CVSS7.3AI score0.00063EPSS
Exploits2References1Affected Software1
Packet Storm
Packet Stormadded 2018/08/28 12:0 a.m.51 views

SIPP 3.3 Stack-Based Overflow

Exploit Author: Juan Sacco - http://exploitpack.com Tested on: Kali i686 GNU/Linux Description: SIPP 3.3 is prone to a local unauthenticated stack-based overflow The vulnerability is due to an unproper filter of user supplied input while reading the configuration file and parsing the malicious...

0.6AI score
Exploits0
CVE
CVEadded 2018/08/23 3:0 p.m.58 views

CVE-2018-3867

CVE-2018-3867 describes a stack-based buffer overflow in Samsung SmartThings Hub (STH-ETH-250) video-core HTTP server. The vulnerability exists in the samsungWifiScan callback handling during camera discovery, where the hub constructs a POST to a callback URL using an unconstrained camera respons...

9.9CVSS9.6AI score0.00381EPSS
Exploits2References1Affected Software1
CVE
CVEadded 2018/08/23 3:0 p.m.67 views

CVE-2017-16337

The CVE-2017-16337 entry concerns Insteon Hub 2245-222 devices with firmware 1012, where PubNub message handling can trigger a stack-based buffer overflow via unconstrained strcpy calls when processing JSON fields such as cmd, usr, pwd, etc. The vulnerability arises from copying user-supplied val...

9CVSS9.2AI score0.00835EPSS
Exploits1References1Affected Software1
OSV
OSVadded 2018/08/01 7:29 p.m.5 views

CVE-2018-3847

Multiple exploitable buffer overflow vulnerabilities exist in image parsing functionality of the CFITSIO library version 3.42. Specially crafted images parsed via the library, can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this...

8.8CVSS9.2AI score
Exploits0References2
Talos
Talosadded 2018/07/10 12:0 a.m.47 views

Antenna House Office Server Document Converter vbputanld code execution vulnerability

Summary An exploitable out-of-bounds write exists in the Microsoft Word document conversion functionality of the Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 6,1,2018,0312. A crafted Microsoft Word DOC document can lead to an out-of-bounds write, resulting in...

8.8CVSS8.4AI score0.00773EPSS
Exploits1
0day.today
0day.todayadded 2018/06/26 12:0 a.m.48 views

PoDoFo 0.9.5 - Buffer Overflow Vulnerability

Exploit for irix platform in category dos / poc Exploit Title: PoDoFo 0.9.5 - Stack-Based Buffer Overflow PoC Software Link: https://sourceforge.net/projects/podofo/ Vuln Version: 0.9.5 CVE: cve-2018-8002 Vulnerability Details: https://bugzilla.redhat.com/showbug.cgi?id=1548930 Exploit Author:...

6.8CVSS0.5AI score0.05842EPSS
Exploits5
Positive Technologies
Positive Technologiesadded 2018/06/20 12:0 a.m.2 views

PT-2018-3864

Name of the Vulnerable Software and Affected Versions NTP version 4.2.8p11 Eltex ESR-200 affected versions not specified NTP affected versions not specified Description The issue is related to the implementation of the NTP protocol, which can lead to security restrictions being bypassed. An...

9.8CVSS7.9AI score0.32035EPSS
Exploits15References90
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/18 1:30 a.m.54 views

Security Bulletin: Multiple vulnerabilities in the GNU C Library (glibc) affect PowerKVM

Summary PowerKVM is affected by several vulnerabilities in GNU glibc. These vulnerabilities are now fixed. Vulnerability Details CVEID: CVE-2015-7547 DESCRIPTION: GNU C Library glibc is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the nssdns backend for the...

8.1CVSS1.2AI score0.93905EPSS
Exploits18Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/15 7:5 a.m.61 views

Security Bulletin: Vulnerability in GNU C Library(glibc) affects WebSphere DataPower XC10 Appliance(CVE-2015-7547) - Revised fix available

Summary A GNU C Libraryglibc vulnerability with a stack based overflow was addressed by WebSphere DataPower XC10 Appliance. On Friday March 11th 2016, a fix was published to resolve this security vulnerability. However, that fix needed revision. A corrected fix is now available. Vulnerability...

8.1CVSS2.2AI score0.93905EPSS
Exploits17Affected Software1
VulnCheck KEV
VulnCheck KEVadded 2018/06/07 12:0 a.m.1 views

VulnCheck KEV: CVE-2018-5002

Adobe Flash Player have a stack-based buffer overflow vulnerability that could lead to remote code execution...

10CVSS7.7AI score0.47145EPSS
Exploits0References1
Rows per page
Query Builder