Stack overflow

A stack buffer overflow flaw was found in the Quick Emulator QEMU before 2.9 built with the Network Block Device NBD client support. The flaw could occur while processing server's response to a 'NBDOPTLIST' request. A malicious NBD server could use this issue to crash a remote NBD client resultin...

CVE-2017-2630

CVE-2017-2630 describes a stack buffer overflow in QEMU prior to 2.9 when processing the server response to an NBD_OPT_LIST during NBD client negotiation. A malicious NBD server could trigger the overflow, crash the QEMU NBD client, or potentially cause arbitrary code execution in the QEMU proces...

The vulnerability of the InTouch HMI platform, caused by an overflow in the stack buffer, allows a malicious actor to execute arbitrary code.

The vulnerability of the InTouch HMI platform arises from an overflow in the buffer in the stack due to insufficient input data processing. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with privileges of the InTouch View process, using a specially crafted packa...

Google Chrome Stack Buffer Overflow Vulnerability

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A stack buffer overflow vulnerability exists in Skia in Google Chrome. An attacker can exploit to execute arbitrary code in the browser context...

Stack overflow

Dahua IP camera products using firmware versions prior to V2.400.0000.14.R.20170713 include a version of the Sonia web interface that may be vulnerable to a stack buffer overflow. Dahua IP camera products include an application known as Sonia /usr/bin/sonia that provides the web interface and oth...

CVE-2017-3223 Dahua IP camera products using firmware versions prior to V2.400.0000.14.R.20170713 include a version of the Sonia web interface that may be vulnerable to a stack buffer overflow

Dahua IP camera products using firmware versions prior to V2.400.0000.14.R.20170713 include a version of the Sonia web interface that may be vulnerable to a stack buffer overflow. Dahua IP camera products include an application known as Sonia /usr/bin/sonia that provides the web interface and oth...

CVE-2017-3223

CVE-2017-3223 affects Dahua IP cameras via the Sonia web interface (/usr/bin/sonia). Older firmware (pre V2.400.0000.14.R.20170713) does not validate input length for the password field, enabling a remote, unauthenticated attacker to send crafted POST requests that may trigger out-of-bounds memor...

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 42 security fixes in this release, including: 850350 High CVE-2018-6153: Stack buffer overflow in Skia. Reported by Zhen Zhou of NSFOCUS Security Team on 2018-06-07 848914 High CVE-2018-6154: Heap buffer overflow in WebGL. Reported by Omair on 2018-06-01 842265 Hig...

New Spectre-Level Flaw Targets Return Stack Buffer

Researchers have discovered yet another speculative execution side-channel flaw enabling attackers to access sensitive data at the CPU level. The new Spectre-class exploit, dubbed SpectreRSB, was detailed by researchers from the University of California at Riverside in a research paper on Friday...

imagemagick/encoder_tiff_fuzzer: Stack-buffer-overflow in _TIFFVGetField

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5646197065777152 Project: imagemagick Fuzzer: aflimagemagickencodertifffuzzer Fuzz target binary: encodertifffuzzer Job Type: aflasanimagemagick Platform Id: linux Crash Type:...

mupdf/mupdf_pdf_fuzzer: Stack-buffer-underflow in ps_index

Detailed report: https://oss-fuzz.com/testcase?key=5246375359938560 Project: mupdf Fuzzer: aflmupdfpdffuzzer Fuzz target binary: pdffuzzer Job Type: aflasanmupdf Platform Id: linux Crash Type: Stack-buffer-underflow READ 8 Crash Address: 0x7ff1ddc79818 Crash State: psindex psrun evalpostscriptfun...

Denial Of Service (DoS)

libsndfile.so is vulnerable to denial of service DoS attacks. The vulnerability exists in psfmemset of src/common.c due to the lack of sanity check on the value used in the memset function, allowing a stack buffer overflow to occur, causing a DoS attack...

EulerOS 2.0 SP2 : procps-ng (EulerOS-SA-2018-1198)

According to the versions of the procps-ng package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - procps-ng, procps: Integer overflows leading to heap overflow in file2strvec CVE-2018-1124 - procps-ng, procps: incorrect integer size in...

Delta Industrial Automation COMMGR 1.08 - Stack Buffer Overflow (PoC)

Exploit Title: Delta Electronics Delta Industrial Automation COMMGR - Remote STACK-BASED BUFFER OVERFLOW Date: 02.07.2018 Exploit Author: t4rkd3vilz Vendor Homepage: http://www.deltaww.com/ Software Link:...

Debian DLA-1397-1 : php5 security update

Several vulnerabilities were found in PHP, a widely-used open source general purpose scripting language : CVE-2018-7584 A stack-buffer-overflow while parsing HTTP response results in copying a large string and possible memory corruption and/or denial of service CVE-2018-10545 Dumpable FPM child...

CVE-2018-10594

Delta Industrial Automation COMMGR from Delta Electronics versions 1.08 and prior with accompanying PLC Simulators DVPSimulator EH2, EH3, ES2, SE, SS2 and AHSIM5x0, AHSIM5x1 utilize a fixed-length stack buffer where an unverified length value can be read from the network packets via a specific...

CVE-2018-10594

Delta Industrial Automation COMMGR from Delta Electronics versions 1.08 and prior with accompanying PLC Simulators DVPSimulator EH2, EH3, ES2, SE, SS2 and AHSIM5x0, AHSIM5x1 utilize a fixed-length stack buffer where an unverified length value can be read from the network packets via a specific...

CVE-2018-10594

CVE-2018-10594 — Delta Electronics COMMGR stack buffer overflow family: Delta Industrial Automation COMMGR (v1.08 and earlier) with PLC simulators (DVPSimulator EH2/EH3/ES2/SE/SS2 and AHSIM_5x0/5x1). Root cause: a fixed-length stack buffer is written when an unverified length value read from a ne...

Security Bulletin: Multiple vulnerabilities in IBM Cloud Orchestrator, IBM Cloud Orchestrator Enterprise, and products shipped with IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise

Summary Multiple vulnerabilities have been identified in IBM Cloud Orchestrator, IBM Cloud Orchestrator Enterprise, and in supporting products shipped with IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise. Vulnerability Details This security bulletin covers multiple vulnerabilities in...

Security Bulletin: Tivoli Storage Manager Stack-based Buffer Overflow Elevation of Privilege: CVE-2014-6184

Summary A vulnerability in the IBM Tivoli Storage Manager TSM client could allow a local user to gain elevated privileges due to a stack-based buffer overflow. Vulnerability Details CVEID: CVE-2014-6184 DESCRIPTION: IBM Tivoli Storage Manager is vulnerable to a stack buffer overflow. A local...