RUSTSEC-2024-0020 Stack buffer overflow with whoami on several Unix platforms

With versions of the whoami crate = 0.5.3 and = 0.5.3 and 1.0.1, calling any of the above functions also leads to a stack buffer overflow on these platforms: - Bitrig - DragonFlyBSD - FreeBSD - NetBSD - OpenBSD This occurs because of an incorrect definition of the passwd struct on those platforms...

MikroTik RouterOS Out-of-bounds Write (CVE-2018-1156)

Mikrotik RouterOS before 6.42.7 and 6.40.9 is vulnerable to stack buffer overflow through the license upgrade interface. This vulnerability could theoretically allow a remote authenticated attacker execute arbitrary code on the system. This plugin only works with Tenable.ot. Please visit...

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : PHP vulnerabilities (USN-6305-2)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6305-2 advisory. USN-6305-1 fixed several vulnerabilities in PHP. This update provides the corresponding update for Ubuntu 16.04 LTS, Ubuntu 18.04...

CVE-2024-25751

A Stack Based Buffer Overflow vulnerability in Tenda AC9 v.3.0 with firmware version v.15.03.06.42multi allows a remote attacker to execute arbitrary code via the fromSetSysTime function...

Tenda AC23 schedStartTime Parameter Stack Buffer Overflow Vulnerability

Tenda AC23 is a dual-band wireless router from Tenda that supports 802.11acWave2 technology with dual-band concurrent transmission rates up to 2033Mbps, including up to 1733Mbps in the 5GHz band, which is suitable for high-bandwidth applications such as 4K video and online live streaming. The Ten...

CVE-2024-25751

The CVE-2024-25751 entry affects the Tenda AC9 router (v3.0) with firmware v15.03.06.42_multi. It is a Stack-Based Buffer Overflow in the fromSetSysTime function that enables a remote attacker to execute arbitrary code. The threat is described as remote code execution with a high impact; the CVSS...

CVE-2024-25753

Stack Based Buffer Overflow vulnerability in Tenda AC9 v.3.0 with firmware version v.15.03.06.42multi allows a remote attacker to execute arbitrary code via the formSetDeviceName function...

CVE-2024-25748

A Stack Based Buffer Overflow vulnerability in tenda AC9 AC9 v.3.0 with firmware version v.15.03.06.42multi allows a remote attacker to execute arbitrary code via the fromSetIpMacBind function...

CVE-2024-25748

A Stack Based Buffer Overflow vulnerability in tenda AC9 AC9 v.3.0 with firmware version v.15.03.06.42multi allows a remote attacker to execute arbitrary code via the fromSetIpMacBind function...

Tenda AC6 安全漏洞

Shenzhen Jixiang Tenda Technology Co., Ltd AC6 is a dual-band wireless router from Tenda Tenda, supporting IPv4 and IPv6 protocols, adopting 802.11ac/n wireless standard and providing 1167Mbps wireless transmission rate. Ltd. AC6 suffers from a stack buffer overflow vulnerability that originates...

Tenda AC23 安全漏洞

Tenda AC23 is a dual-band wireless router from Tenda that supports 802.11acWave2 technology with dual-band concurrent transmission rates up to 2033Mbps, including up to 1733Mbps in the 5GHz band, which is suitable for high-bandwidth applications such as 4K video and online live streaming. The Ten...

Advisory ROSA-SA-2024-2357

software: libvpx 1.10.0 OS: ROSA-CHROME packageevrstring: libvpx-1.10.0-4.src.rpm CVE-ID: CVE-2023-40474 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: The MXF file demultiplexer in GStreamer plugins has encountered a heap buffer overflow bug when processing distorted uncompressed video files. This iss...

GLSA-202402-26 : Mozilla Firefox: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202402-26 Mozilla Firefox: Multiple Vulnerabilities - An out of bounds write in ANGLE could have allowed an attacker to corrupt memory leading to a potentially exploitable crash. This vulnerability affects Firefox 122, Firefox ESR...

RICOH Multiple Products Stack Buffer Overflow (CVE-2021-33945)

RICOH Printer series SP products 320DN, SP 325DNw, SP 320SN, SP 320SFN, SP 325SNw, SP 325SFNw, SP 330SN, Aficio SP 3500SF, SP 221S, SP 220SNw, SP 221SNw, SP 221SF, SP 220SFNw, SP 221SFNw v1.06 were discovered to contain a stack buffer overflow in the file /etc/wpasupplicant.conf. This vulnerabili...

Rocky Linux 9 : php:8.1 (RLSA-2024:0387)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:0387 advisory. - In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, passwordverify function may accept some invalid Blowfish hashes as valid. If...

Stack-Buffer-Overflow

Vim is vulnerable of stack-buffer-overflow. The vulnerability due to use sprintfbuf to write into the error buffer using function didsetlangmap in map.c. It leads to call passed down to the option callback functions...

OSV-2024-80 Stack-buffer-overflow in line_join_points

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66455 Crash type: Stack-buffer-overflow WRITE 4 Crash state: linejoinpoints strokeaddcompat gxstrokepathonly...

PT-2024-40846 · Git +1 · Ghostscript

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-overflow crash. Technical details include a crash type of Stack-buffer-overflow WRITE 4, with the crash state...

CVE-2023-43520 Stack-based Buffer Overflow in WLAN HOST

Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE...

Stack Buffer Overflow

Firefox is vulnerable to Stack Buffer Overflow. The vulnerability is caused due to via the OscillatorNode object.An attacker can cause a potentially exploitable crash by exploiting this vulnerability...