SUSE SLES11 Security Update : php53 (SUSE-SU-2017:2522-1)

This update for php53 fixes the several issues. These security issues were fixed : - CVE-2017-12933: The finishnesteddata function in ext/standard/varunserializer.re was prone to a buffer over-read while unserializing untrusted data. Exploitation of this issue could have had an unspecified impact...

EMC AlphaStor Device Manager - Opcode 0x72 Buffer Overflow (Metasploit)

require 'msf/core' class MetasploitModule 'EMC AlphaStor Device Manager Opcode 0x72', 'Description' = %q This module exploits a stack based buffer overflow vulnerability found in EMC Alphastor Device Manager. The overflow is triggered when sending a specially crafted packet to the rrobotd.exe...

Sielco Sistemi Winlog 2.07.16 - Remote Buffer Overflow (Metasploit)

Sielco Sistemi Winlog 2.07.16 - Remote Buffer Overflow Metasploit require 'msf/core' class MetasploitModule 'Sielco Sistemi Winlog %q This module exploits a stack based buffer overflow found in Sielco Sistemi Winlog 'James Fitts' , 'License' = MSFLICENSE, 'Version' = '$Revision: $', 'References' ...

Poppler < 0.56.0 Multiple Vulnerabilities

The version of Poppler installed on the remote host is prior to 0.56.0. It is, therefore, affected by multiple vulnerabilities : - A stack-based overflow condition exists in the getColor function in GfxState.cc due to improper validation of user-supplied input. An unauthenticated, remote attacker...

ALPINE-CVE-2017-10684

In ncurses 6.0, there is a stack-based buffer overflow in the fmtentry function. A crafted input will lead to a remote arbitrary code execution attack...

CVE-2017-10684

In ncurses 6.0, there is a stack-based buffer overflow in the fmtentry function. A crafted input will lead to a remote arbitrary code execution attack...

Tenable SecurityCenter PHP < 5.6.27 Multiple Vulnerabilities

The Tenable SecurityCenter application installed on the remote host is missing a security patch. It is, therefore, affected by multiple vulnerabilities in the bundled version of PHP : - A use-after-free error exists in the unserialize function that allows an unauthenticated, remote attacker to...

CVE-2017-1274

IBM Domino 8.5.3, and 9.0 is vulnerable to a stack based overflow in the IMAP service that could allow an authenticated attacker to execute arbitrary code by specifying a large mailbox name. IBM X-Force ID: 124749...

CVE-2017-1274

CVE-2017-1274 affects IBM Domino 8.5.x (and 9.0) with a stack-based overflow in the IMAP EXAMINE handling, exploitable by an authenticated remote attacker via a specially crafted mailbox name. The vulnerability is described as a remote code execution risk when handling IMAP EXAMINE commands. Affe...

CVE-2017-1274

IBM Domino 8.5.3, and 9.0 is vulnerable to a stack based overflow in the IMAP service that could allow an authenticated attacker to execute arbitrary code by specifying a large mailbox name. IBM X-Force ID: 124749. Recent assessments: gwillcox-r7 at November 22, 2020 3:09am UTC reported: Reported...

CVE-2016-5798

CVE-2016-5798 affects Fatek Automation PM Designer V3 (version 2.1.2.2) and FV Designer (version 1.2.8.0). The issue is a stack-based buffer overflow triggered by sending additional valid packets, leading to a crash; a separate vulnerability could trigger a remote buffer overflow on the Fatek Com...

CVE-2016-9054

An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause a stack-based buffer overflow in the function assindexsimatchlistbysetbinid resulting in remote code execution. An attacker can...

Disk Savvy Enterprise - GET Buffer Overflow (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'DiskSavvy Enterprise GET Buffer Overflow', 'Description' = %q This module exploits a stack-based buffer overflow vulnerability ...

DEBIAN-CVE-2016-5318

Stack-based buffer overflow in the TIFFVGetField function in libtiff 4.0.6 and earlier allows remote attackers to crash the application via a crafted tiff...

Debian DSA-3766-1 : mapserver - security update

It was discovered that mapserver, a CGI-based framework for Internet map services, was vulnerable to a stack-based overflow. This issue allowed a remote user to crash the service, or potentially execute arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

Debian DLA-790-1 : mapserver security update

It was discovered that mapserver, a CGI-based framework for Internet map services, was vulnerable to a stack-based overflow. This issue allowed a remote user to crash the service, or potentially execute arbitrary code. For Debian 7 'Wheezy', these problems have been fixed in version...

[SECURITY] [DSA 3766-1] mapserver security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3766-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 19, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3766-1] mapserver security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3766-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 19, 2017 https://www.debian.org/security/faq -...

Debian Security Advisory DSA 3766-1 (mapserver - security update)

It was discovered that mapserver, a CGI-based framework for Internet map services, was vulnerable to a stack-based overflow. This issue allowed a remote user to crash the service, or potentially execute arbitrary code. OpenVAS Vulnerability Test $Id: deb3766.nasl 6607 2017-07-07 12:04:25Z cfische...

Debian: Security Advisory (DSA-3766-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...