CVE-2024-6197 freeing stack buffer in utf8asn1str

libcurl's ASN1 parser has this utf8asn1str function used for parsing an ASN.1 UTF-8 string. Itcan detect an invalid field and return error. Unfortunately, when doing so it also invokes free on a 4 byte localstack buffer. Most modern malloc implementations detect this error and immediately abort...

Internet Bug Bounty: curl: stack-buffer overread during punycode conversions

The vulnerability in libcurl's URL API function curlurlget was discovered, where it performed punycode conversions. When converting a 256-byte domain name, the function read outside of a stack-based buffer, potentially leaking adjacent stack memory as part of the converted string. The flaw was...

Internet Bug Bounty: libcurl: freeing stack buffer during x509 certificate parsing

The libcurl's ASN1 parser had a vulnerability in the utf8asn1str function used for parsing an ASN.1 UTF-8 string. The function could detect an invalid field and return an error, which would trigger a free of a 4-byte local stack buffer. This could lead to a crash or potential memory corruption,...

CVE-2024-6197

libcurl's ASN1 parser has this utf8asn1str function used for parsing an ASN.1 UTF-8 string. Itcan detect an invalid field and return error. Unfortunately, when doing so it also invokes free on a 4 byte localstack buffer. Most modern malloc implementations detect this error and immediately abort...

CVE-2024-6874

libcurl's URL API function curlurlget offers punycode conversions, to and from IDN. Asking to convert a name that is exactly 256 bytes, libcurl ends up reading outside of a stack based buffer when built to use the macidn IDN backend. The conversion function then fills up the provided buffer exact...

The vulnerability of the microprogrammed software of AutomationDirect P3-550E, related to buffer overflow in the stack, allows a hacker to execute arbitrary code.

The vulnerability of the microprogrammed software in AutomationDirect P3-550E controllers is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the microprogrammed software of AutomationDirect P3-550E, related to buffer overflow in the stack, allows a hacker to execute arbitrary code.

The vulnerability of the microprogrammed software in AutomationDirect P3-550E controllers is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

D-Link DAP-1325 Stack Buffer Overflow Vulnerability (CNVD-2024-33901)

The D-Link DAP-1325 is a wireless access point/bridge from China's AUO D-Link, which is primarily used to provide wireless network coverage and has a bridging function that allows you to convert a wired network to a wireless network or connect two wireless networks together. The D-Link DAP-1325...

NETGEAR RAX30 Stack Buffer Overflow Vulnerability (CNVD-2024-33904)

The NETGEAR RAX30 is a dual-band wireless router from NETGEAR. The NETGEAR RAX30 suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code...

D-Link DAP-1325 SetAPLanSettings Stack Buffer Overflow Vulnerability

D-Link DAP-1325 is a wireless access point/bridge made by D-Link, which is mainly used to extend the wireless network coverage, support the conversion of wired network to wireless network or connect to different wireless networks. The D-Link DAP-1325 suffers from a stack buffer overflow...

PDF-XChange Editor stack buffer overflow vulnerability (CNVD-2024-33502)

PDF-XChange Editor is a PDF-XChange company running on Microsoft Windows systems in the PDF file viewer software. PDF-XChange Editor suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code...

TP-LINK Tapo C210 Stack Buffer Overflow Vulnerability

TP-LINK Tapo C210 is a webcam device from China P&L TP-LINK. The TP-LINK Tapo C210 suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code on an affected device...

Tenda AX1806 sub_519F4 function stack buffer overflow vulnerability

The Tenda AX1806 is a WiFi6 wireless router from Tenda, a Chinese company. A stack buffer overflow vulnerability exists in the Tenda AX1806 sub519F4 function, which originates when /goform/SetStaticRouteCfg fails to properly validate the length and size of the input data, and can be exploited by ...

The vulnerability of the fromNatlimit function (/goform/Natlimit) in the Tenda F1202 router microprogramming system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the fromNatlimit function /goform/Natlimit in the Tenda F1202 router microprogramming system is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected informatio...

Nintendo: [Switch, PIA/MK8DX] Stack buffer overflow and potential RCE in PIA (LAN/LDN, possibly NEX) room info deserialization

The vulnerability was a stack buffer overflow and potential remote code execution issue in the LAN/LDN and possibly NEX room information deserialization process of the PIA application on the Nintendo Switch. The vulnerability could have been exploited by an attacker in a LAN/LDN or NEX room...

Tenda AC18 Stack Buffer Overflow Vulnerability

Tenda AC18 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in July 2016, mainly for villas and large home users. Tenda AC18 suffers from a stack buffer overflow vulnerability, which stems from the discovery of a deviceMac parameter via ip/goform/addWifiMacFilter...

SUSE CVE-2024-40978

In the Linux kernel, the following vulnerability has been resolved: scsi: qedi: Fix crash while reading debugfs attribute The qedidbgdonotrecovercmdread function invokes sprintf directly on a user pointer, which results into the crash. To fix this issue, use a small local stack buffer for sprintf...

OSV-2024-655 Stack-buffer-overflow in UnrollChunkyBytes

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=70395 Crash type: Stack-buffer-overflow READ 1 Crash state: UnrollChunkyBytes CachedXFORM cmsDoTransform...

curl: CVE-2024-6874: macidn punycode buffer overread

The libcurl at commit 58772b0e082eda333e0a5fc8fb0bc7f17a3cd99c contained a stack-buffer overread in the function macidntoascii that could be triggered when the host of a URL was converted to punycode. The root cause was in the function uidnanameToASCIIUTF8, which left the output buffer unterminat...

Tenda AC18 安全漏洞

Tenda AC18 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in July 2016, mainly for villas and large home users. Tenda AC18 suffers from a stack buffer overflow vulnerability, which stems from the discovery of a deviceMac parameter via ip/goform/addWifiMacFilter...