Fortinet FortiWeb 缓冲区错误漏洞

Fortinet FortiWeb is a Web application layer firewall from the U.S. company Fita Fortinet, which can block threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks to ensure the security of Web applications and protect sensitive database content. A...

Fortinet FortiWeb 缓冲区错误漏洞

FortiWeb is a Web Application Firewall WAF that protects hosted web applications from attacks targeting known and unknown vulnerabilities. FortiWeb suffers from a stack buffer overflow vulnerability. An attacker can exploit the vulnerability by sending a specially crafted request with a large...

Trojan.Win32.Barjac Remote Stack Buffer Overflow

Discovery / credits: malvuln - Malvuln.com c 2021 Original source: http://malvuln.com/advisory/62ad686f97faaa68f580d32d25333f51.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan.Win32.Barjac Vulnerability: Remote Stack Buffer Overflow. Description: Trojan.Win32.Barjac mak...

Backdoor.Win32.Zombam.j Remote Stack Buffer Overflow

Discovery / credits: malvuln - Malvuln.com c 2021 Original source: http://malvuln.com/advisory/a4212f23e1cc3bb34b0dfe15b2ad323e.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Zombam.j Vulnerability: Remote Stack Buffer Overflow Description: Listens on TCP port...

IBM HTTP Server 6.1.0.0 <= 6.1.0.47 / 7.0.0.0 < 7.0.0.39 / 8.0.0.0 < 8.0.0.12 / 8.5.0.0 < 8.5.5.7 Stack Buffer Overflow (536441)

The version of IBM HTTP Server running on the remote host is affected by a stack-based buffer overflow in the Administration Server in IBM HTTP Server 6.1.0.x through 6.1.0.47, 7.0.0.x before 7.0.0.39, 8.0.0.x before 8.0.0.12, and 8.5.x before 8.5.5.7, as used in WebSphere Application Server and...

CVE-2020-35492

A flaw was found in cairo's image-compositor.c. This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor for example, by convincing a user to open a file in an application using cairo, or if an application uses cairo on untrusted input to cause a stack buffer...

CVE-2020-14231

A vulnerability in the input parameter handling of HCL Client Application Access v9 could potentially be exploited by an authenticated attacker resulting in a stack buffer overflow. This could allow the attacker to crash the program or inject code into the system which would execute with the...

Stack overflow

A vulnerability in the input parameter handling of HCL Client Application Access v9 could potentially be exploited by an authenticated attacker resulting in a stack buffer overflow. This could allow the attacker to crash the program or inject code into the system which would execute with the...

CVE-2020-14231

A vulnerability in the input parameter handling of HCL Client Application Access v9 could potentially be exploited by an authenticated attacker resulting in a stack buffer overflow. This could allow the attacker to crash the program or inject code into the system which would execute with the...

CVE-2020-14231

CVE-2020-14231 describes a buffer overflow vulnerability in the input parameter handling of HCL Client Application Access v9 . The underlying issue is in handling of input parameters, leading to a stack buffer overflow. It could be exploited by an authenticated attacker (network-facing) to crash ...

Arbitrary Code Execution

chromium is vulnerable to arbitrary code execution. The vulnerability exists through a stack buffer overflow in WebRTC caused by a crafted WebRTC packet...

OSV-2020-2273 Stack-buffer-overflow in perfetto::trace_processor::MemoryTrackerSnapshotParser::EmitRows

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28766 Crash type: Stack-buffer-overflow READ 4 Crash state: perfetto::traceprocessor::MemoryTrackerSnapshotParser::EmitRows perfetto::traceprocessor::MemoryTrackerSnapshotParser::GenerateGraphFromRawNode...

CVE-2020-14224

A vulnerability in the MIME message handling of the HCL Notes v9 client could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the Notes application or inject code into the system which would execute with the...

Stack overflow

A vulnerability in the MIME message handling of the HCL Notes v9 client could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the Notes application or inject code into the system which would execute with the...

CVE-2020-14224

A vulnerability in the MIME message handling of the HCL Notes v9 client could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the Notes application or inject code into the system which would execute with the...

CVE-2020-14224

CVE-2020-14224 describes a stack buffer overflow in the MIME message handling of the HCL Notes v9 client. The vulnerability can be exploited by an unauthenticated, remote attacker to crash Notes or inject code that runs with the privileges of the current user. Public metrics indicate a critical i...

CVE-2020-14232

A vulnerability in the input parameter handling of HCL Notes v9 could potentially be exploited by an authenticated attacker resulting in a stack buffer overflow. This could allow the attacker to crash the program or inject code into the system which would execute with the privileges of the...

Stack overflow

A vulnerability in the input parameter handling of HCL Notes v9 could potentially be exploited by an authenticated attacker resulting in a stack buffer overflow. This could allow the attacker to crash the program or inject code into the system which would execute with the privileges of the...

Microsoft Office Word (2003/2007/2010/2013 +2016) Universal Silent 0day Exploit

Office 2016+2013+2010+2007+2003 versions are running smoothly. Combines your exe file with your word file. When word file is opened, your exe file opens quietly. This module exploits a stack buffer overflow in SCOMCTL.OCX. It uses a malicious RTF to embed the specially crafted...

CVE-2020-14232

CVE-2020-14232 concerns HCL Notes v9 where the vulnerability arises from input parameter handling, leading to a stack buffer overflow. An authenticated attacker could crash the application or inject code executing with the privileges of the currently logged-in user. Affected component is the inpu...