5910 matches found
Unspecified Vulnerability in ZeroMQ
ZeroMQ is a lightweight distributed messaging engine core library . A security vulnerability exists in ZeroMQ server versions prior to 4.3.3, which stems from a vulnerability that allows a malicious client to cause a stack buffer overflow on the server by sending a carefully crafted topic...
CVE-2021-29665
IBM Security Verify Access 20.07 is vulnerable to a stack based buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system with elevated privileges...
Stack overflow
IBM Security Verify Access 20.07 is vulnerable to a stack based buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system with elevated privileges...
The vulnerability of the function DJVU::DjVuDocument::get_djvu_file() in the DjVuLibre library and utilities allows a perpetrator to execute arbitrary code.
The vulnerability of the function DJVU::DjVuDocument::getdjvufile in the DjVuLibre library and utilities is caused by buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
Stack Buffer Overflow Vulnerability in Several Tenda AC Routers
Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment. A number of Tengda AC routers have stack buffer overflow vulnerability, which can be exploited by attackers to cause denial-of-servic...
CVE-2010-3843
The GTK version of ettercap uses a global settings file at /tmp/.ettercapgtk and does not verify ownership of this file. When parsing this file for settings in gtkuiconfread src/interfacesgtk/ecgtkconf.c, an unchecked sscanf call allows a maliciously placed settings file to overflow a...
CVE-2021-20236
A flaw was found in the ZeroMQ server in versions before 4.3.3. This flaw allows a malicious client to cause a stack buffer overflow on the server by sending crafted topic subscription requests and then unsubscribing. The highest threat from this vulnerability is to confidentiality, integrity, as...
CVE-2021-20236
A flaw was found in the ZeroMQ server in versions before 4.3.3. This flaw allows a malicious client to cause a stack buffer overflow on the server by sending crafted topic subscription requests and then unsubscribing. The highest threat from this vulnerability is to confidentiality, integrity, as...
CVE-2021-20236
A flaw was found in the ZeroMQ server in versions before 4.3.3. This flaw allows a malicious client to cause a stack buffer overflow on the server by sending crafted topic subscription requests and then unsubscribing. The highest threat from this vulnerability is to confidentiality, integrity, as...
CVE-2021-20236
A flaw was found in the ZeroMQ server in versions before 4.3.3. This flaw allows a malicious client to cause a stack buffer overflow on the server by sending crafted topic subscription requests and then unsubscribing. The highest threat from this vulnerability is to confidentiality, integrity, as...
OSV-2021-807 Stack-buffer-overflow in DecodeSingleResponse
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34713 Crash type: Stack-buffer-overflow WRITE Crash state: DecodeSingleResponse DecodeResponseData DecodeBasicOcspResponse...
OSV-2021-802 Stack-buffer-overflow in InterpretCondition
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34692 Crash type: Stack-buffer-overflow READ 1 Crash state: InterpretCondition InterpretPhoneme MakePhonemeList...
PoDoFo Stack Buffer Overflow Vulnerability
PoDoFo is a free, portable and easy to use PDF parsing, modification and creation library. A stack buffer overflow vulnerability exists in the PdfEncrypt::ComputeOwnerKey function in PdfEncrypt.cpp in PoDoFo version 0.9.7. The vulnerability stems from improper checking of the keyLength value. No...
CVE-2020-4839
IBM Host firmware for LC-class Systems is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A remote privileged attacker could exploit this vulnerability and cause a denial of service. IBM X-Force ID: 190037...
Trend Micro Bugs Threaten Home Network Security
Three security vulnerabilities have been found in Trend Micro’s Home Network Security systems, which can allow denial of service DoS, privilege escalation, code execution and authentication bypass. The Home Network Security Station is an all-in-one device that scans for vulnerabilities for...
The vulnerability of the webSettingProfileGeneral function in the embedded web server software is related to buffer overflows in the stack due to deficiencies in input data processing. This allows attackers to execute arbitrary code or cause service interruptions by exploiting this vulnerability.
The vulnerability of the webSettingProfileGeneral function in the embedded web server software is related to buffer overflows in the stack due to deficiencies in input data processing. Exploiting this vulnerability can allow an attacker to enhance their privileges, execute arbitrary code, or caus...
The vulnerability of the config_set function in the libconfig.so library of the web server’s embedded software is related to buffer overflows in the stack due to insufficient input data processing. This allows attackers to execute arbitrary code or cause service interruptions by exploiting this vulnerability.
The vulnerability of the configset function in the libconfig.so library, a built-in software library for web servers, is related to buffer overflows in the stack due to insufficient input handling. Exploiting this vulnerability can allow an attacker to enhance their privileges, execute arbitrary...
Stack-based Buffer Overflow in codeplea/tinyexpr
✍️ Description Whilst experimenting with repl built from commit 61af1d, with Clang 10 +ASan on Ubuntu 20.04.2 LTS, we discovered an expression containing 4 null characters after a newline which, due to insufficient bounds checking, triggers a stack-buffer-overflow. 🕵️♂️ Proof of Concept echo...
Siemens Solid Edge Stack Buffer Overflow Vulnerability
Siemens Solid Edge is a 3D CAD software from Siemens, Germany. A stack buffer overflow vulnerability exists in Siemens Solid Edge, which can be exploited by an attacker to execute code in the context of the current process...
Backdoor.Win32.Agent.oda Buffer Overflow
Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/380ff48c4a28ac25f5efb630883eeb17.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Agent.oda Vulnerability: Remote Stack Buffer Overflow UDP Description: The malware...