CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Prion•added 2020/12/18 12:15 a.m.•15 views

Stack overflow

9CVSS8.7AI score0.00843EPSS

0day.today•added 2020/12/18 12:0 a.m.•222 views

Microsoft Office Word (2003/2007/2010/2013 +2016) Universal Silent 0day Exploit

Office 2016+2013+2010+2007+2003 versions are running smoothly. Combines your exe file with your word file. When word file is opened, your exe file opens quietly. This module exploits a stack buffer overflow in SCOMCTL.OCX. It uses a malicious RTF to embed the specially crafted...

4AI score

Exploits0

CVE•added 2020/12/17 11:59 p.m.•82 views

CVE-2020-14232

CVE-2020-14232 concerns HCL Notes v9 where the vulnerability arises from input parameter handling, leading to a stack buffer overflow. An authenticated attacker could crash the application or inject code executing with the privileges of the currently logged-in user. Affected component is the inpu...

9CVSS8.6AI score0.00843EPSS

Cvelist•added 2020/12/17 11:59 p.m.•20 views

CVE-2020-14232

8.8AI score0.00843EPSS

CNNVD•added 2020/12/17 12:0 a.m.•2 views

HCL Notes 安全漏洞

HCL Notes is a local email client from HCL India. A stack buffer overflow vulnerability exists in the handling of input parameters in HCL Notes v9. An attacker can exploit this vulnerability to cause the program to crash or inject code into the system that will execute with the privileges of the...

9CVSS7.6AI score0.00843EPSS

Exploits0References3

Amazon•added 2020/12/16 8:51 p.m.•26 views

Medium: tigervnc

Issue Overview: TigerVNC version prior to 1.10.1 is vulnerable to stack use-after-return, which occurs due to incorrect usage of stack memory in ZRLEDecoder. If decoding routine would throw an exception, ZRLEDecoder may try to access stack variable, which has been already freed during the process...

7.2CVSS4.8AI score0.08956EPSS

Exploits5

OSV•added 2020/12/16 12:0 a.m.•9 views

OSV-2020-2264 Stack-buffer-overflow in ot::IsValidUtf8String

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28682 Crash type: Stack-buffer-overflow READ 1 Crash state: ot::IsValidUtf8String ot::MeshCoP::NetworkNameTlv::IsValid ot::MeshCoP::Tlv::IsValid...

NVD•added 2020/12/14 4:15 p.m.•20 views

CVE-2020-14244

A vulnerability in the MIME message handling of the Domino server versions 9 and 10 could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the server or inject code into the system which would execute with th...

10CVSS9.7AI score0.01673EPSS

Prion•added 2020/12/14 4:15 p.m.•17 views

Stack overflow

Prion•added 2020/12/14 4:15 p.m.•14 views

Stack overflow

A vulnerability in the MIME message handling of the Notes client versions 9 and 10 could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the client or inject code into the system which would execute with the...

Cvelist•added 2020/12/14 3:49 p.m.•12 views

CVE-2020-14268

9.7AI score0.01673EPSS

CVE•added 2020/12/14 3:49 p.m.•53 views

CVE-2020-14268

CVE-2020-14268 affects the Notes client (versions 9 and 10) and stems from a weakness in MIME message handling. The vulnerability could be exploited by an unauthenticated attacker to trigger a stack buffer overflow, potentially crashing the client or allowing code to execute with the client’s pri...

Cvelist•added 2020/12/14 3:39 p.m.•14 views

CVE-2020-14244

9.7AI score0.01673EPSS

CVE•added 2020/12/14 3:39 p.m.•50 views

CVE-2020-14244

CVE-2020-14244 affects IBM Domino server (versions 9 and 10) with a MIME message handling flaw that can be exploited by an unauthenticated attacker to cause a stack buffer overflow. This could crash the server or allow code to be executed with server privileges. The connected sources confirm the ...

CNNVD•added 2020/12/14 12:0 a.m.•3 views

HCL Notes 缓冲区错误漏洞

HCL Notes is a local email client from HCL India. HCL Notes has a security vulnerability that originates from a flaw in MIME message handling that could be exploited by an unauthenticated attacker to cause a stack buffer overflow. A remote attacker could be allowed to exploit the vulnerability to...

10CVSS7.7AI score0.01673EPSS

Exploits0References3

OSV•added 2020/12/13 12:0 a.m.•18 views

OSV-2020-2259 Stack-buffer-overflow in ot::MeshCoP::ChannelMaskEntry::GetMask

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28556 Crash type: Stack-buffer-overflow READ 4 Crash state: ot::MeshCoP::ChannelMaskEntry::GetMask ot::MeshCoP::ChannelMaskTlv::GetChannelMask ot::MeshCoP::Dataset::ConvertTo...

OSV•added 2020/12/06 12:0 a.m.•9 views

OSV-2020-2247 Stack-buffer-overflow in ot::MeshCoP::ChannelMaskEntryBase::GetEntrySize

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28315 Crash type: Stack-buffer-overflow READ 1 Crash state: ot::MeshCoP::ChannelMaskEntryBase::GetEntrySize ot::MeshCoP::ChannelMaskEntryBase::GetNext ot::MeshCoP::ChannelMaskBaseTlv::IsValid...

OSV•added 2020/11/23 12:0 a.m.•15 views

OSV-2020-2178 Stack-buffer-overflow in insert_key

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=27719 Crash type: Stack-buffer-overflow READ 1 Crash state: insertkey detectnetkey scpkcs15emutcosinitex...