CVE-2019-5075

WAGO PFC200/PFC100 devices are affected by CVE-2019-5075 due to a stack buffer overflow in the iocheckd service’s get_coupler_details/getcouplerdetails utility. The root cause is an incorrect buffer length when copying data (MARKING/WAGONR fields) into a stack buffer, enabling remote code executi...

CVE-2019-5075

An exploitable stack buffer overflow vulnerability exists in the command line utility getcouplerdetails of WAGO PFC200 Firmware versions 03.01.0713 and 03.00.3912, and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets sent to the iocheckd service "I/O-Check" can cause a...

CVE-2019-5074

An exploitable stack buffer overflow vulnerability exists in the iocheckd service ''I/O-Check'' functionality of WAGO PFC200 Firmware version 03.01.0713, WAGO PFC200 Firmware version 03.00.3912 and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a stack buffe...

CVE-2019-5074

An exploitable stack buffer overflow vulnerability exists in the iocheckd service ''I/O-Check'' functionality of WAGO PFC200 Firmware version 03.01.0713, WAGO PFC200 Firmware version 03.00.3912 and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a stack buffe...

Stack overflow

An exploitable stack buffer overflow vulnerability exists in the iocheckd service ''I/O-Check'' functionality of WAGO PFC200 Firmware version 03.01.0713, WAGO PFC200 Firmware version 03.00.3912 and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a stack buffe...

CVE-2019-5074

An exploitable stack buffer overflow vulnerability exists in the iocheckd service ''I/O-Check'' functionality of WAGO PFC200 Firmware version 03.01.0713, WAGO PFC200 Firmware version 03.00.3912 and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a stack buffe...

CVE-2019-5074

The CVE-2019-5074 vulnerability affects WAGO PFC200/PFC100 iocheckd "I/O-Check" service. Root cause: iocheckd copies QS-STRING into a small stack buffer due to incorrect length handling, enabling a stack overflow that can lead to remote code execution via unauthenticated packets. Affected firmwar...

opensc:fuzz_pkcs15_reader: Stack-buffer-overflow in pgp_parse_algo_attr_blob

Project: https://github.com/OpenSC/OpenSC.git Detailed Report: https://oss-fuzz.com/testcase?key=6329203163398144 Project: opensc Fuzzing Engine: honggfuzz Fuzz Target: fuzzpkcs15reader Job Type: honggfuzzasanopensc Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 4 Crash Address:...

ndpi:fuzz_process_packet: Stack-buffer-overflow in getTLScertificate

Project: https://github.com/ntop/nDPI.git Detailed Report: https://oss-fuzz.com/testcase?key=5117057716977664 Project: ndpi Fuzzing Engine: libFuzzer Fuzz Target: fuzzprocesspacket Job Type: libfuzzerasanndpi Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 6 Crash Address: 0x7ffd947a7e...

WAGO PFC200 iocheckd service "I/O-Check" BC_ProductLabel remote code execution vulnerability

Summary An exploitable stack buffer overflow vulnerability exists in the iocheckd service “I/O-Check” functionality of WAGO PFC 200. A specially crafted set of packets can cause a stack buffer overflow, resulting in code execution. An attacker can send unauthenticated packets to trigger this...

WAGO PFC200 iocheckd service "I/O-Check" get_coupler_details remote code execution vulnerability

Summary An exploitable stack buffer overflow vulnerability exists in the command line utility getcouplerdetails of the WAGO PFC 200. A specially crafted set of packets sent to the iocheckd service “I/O-Check” can cause a stack buffer overflow in the sub-process getcouplerdetails, resulting in cod...

binutils:fuzz_disassemble: Stack-buffer-overflow in buffer_read_memory

Detailed Report: https://oss-fuzz.com/testcase?key=5715112182939648 Project: binutils Fuzzing Engine: libFuzzer Fuzz Target: fuzzdisassemble Job Type: libfuzzerasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 16 Crash Address: 0x7ffcabe23898 Crash State: bufferreadmemory...

openthread:ncp-uart-received-fuzzer: Stack-buffer-overflow in ot::MeshCoP::Commissioner::GeneratePskc

Project: https://github.com/openthread/openthread.git Detailed Report: https://oss-fuzz.com/testcase?key=5163475521503232 Project: openthread Fuzzing Engine: libFuzzer Fuzz Target: ncp-uart-received-fuzzer Job Type: libfuzzerasanopenthread Platform Id: linux Crash Type: Stack-buffer-overflow WRIT...

openthread:radio-receive-done-fuzzer: Stack-buffer-overflow in ot::Message::Write

Project: https://github.com/openthread/openthread.git Detailed Report: https://oss-fuzz.com/testcase?key=5110937602490368 Project: openthread Fuzzing Engine: afl Fuzz Target: radio-receive-done-fuzzer Job Type: aflasanopenthread Platform Id: linux Crash Type: Stack-buffer-overflow READ 11 Crash...

Advantech DiagAnywhere CVE-2019-18257 Multiple Stack Buffer Overflow Vulnerabilities

...

Integard Pro NoJs 2.2.0.9026 - Remote Buffer Overflow

Integard Pro NoJs 2.2.0.9026 - Remote Buffer Overflow Exploit Title: Integard Pro NoJs 2.2.0.9026 - Remote Buffer Overflow Date: 2019-09-22 Exploit Author: purpl3f0xsecur1ty Vendor Homepage: https://www.tucows.com/ Software Link: http://www.tucows.com/preview/519612/Integard-Home Version: Pro...

Integard Pro NoJs 2.2.0.9026 - Remote Buffer Overflow Exploit

Exploit Title: Integard Pro NoJs 2.2.0.9026 - Remote Buffer Overflow Exploit Author: purpl3f0xsecur1ty Vendor Homepage: https://www.tucows.com/ Software Link: http://www.tucows.com/preview/519612/Integard-Home Version: Pro 2.2.0.9026 / Home 2.0.0.9021 Tested on: Windows XP / Win7 / Win10 CVE:...

opensc:fuzz_pkcs15_reader: Stack-buffer-overflow in sc_pkcs15emu_object_add

Project: https://github.com/OpenSC/OpenSC.git Detailed Report: https://oss-fuzz.com/testcase?key=5181993696624640 Project: opensc Fuzzing Engine: honggfuzz Fuzz Target: fuzzpkcs15reader Job Type: honggfuzzasanopensc Platform Id: linux Crash Type: Stack-buffer-overflow READ Crash Address:...

Denial Of Service (DoS) Through Stack Buffer Overflow

library-go is vulnerable to denial of service DoS through stack-based buffer overflow attacks. The vulnerability exists in clientmetrics.go due to a possible infinite recursion when registering client controller metrics...

openSUSE: Security Advisory for cups (openSUSE-SU-2019:2573-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...