Milesight UR32L 缓冲区错误漏洞

The Milesight UR32L is an industrial router from China-based Milesight. A buffer overflow vulnerability exists in the Milesight UR32L setdmvpn function, which can be exploited by an attacker to cause a buffer overflow and execute arbitrary code on the system, or cause an application to crash...

CVE-2016-3887

providers/settings/SettingsProvider.java in Android 7.0 before 2016-09-01 does not properly enforce the DISALLOWCONFIGVPN setting, which allows attackers to bypass an intended always-on VPN state via a crafted application, aka internal bug 29899712...