PT-2026-8359

A weakness has been identified in Wavlink WL-NU516U1 20251208. Affected by this issue is the function sub 40785C of the file /cgi-bin/adm.cgi. This manipulation of the argument time zone causes stack-based buffer overflow. The attack can be initiated remotely. The attack is considered to have hig...

CVE-2024-2856

A vulnerability, which was classified as critical, has been found in Tenda AC10 16.03.10.13/16.03.10.20. Affected by this issue is the function fromSetSysTime of the file /goform/SetSysTimeCfg. The manipulation of the argument timeZone leads to stack-based buffer overflow. The attack may be...

CVE-2020-8624

In BIND 9.9.12 - 9.9.13, 9.10.7 - 9.10.8, 9.11.3 - 9.11.21, 9.12.1 - 9.16.5, 9.17.0 - 9.17.3, also affects 9.9.12-S1 - 9.9.13-S1, 9.11.3-S1 - 9.11.21-S1 of the BIND 9 Supported Preview Edition, An attacker who has been granted privileges to change a specific subset of the zone's content could abu...

V8: integer overflow leading to buffer overflow in Zone::New

An integer-overflow flaw was found in V8's Zone class when allocating new memory Zone::New and Zone::NewExpand. An attacker with the ability to manipulate a large zone could crash the application or, potentially, execute arbitrary code with the application privileges...

EulerOS 2.0 SP2 : bind (EulerOS-SA-2017-1141)

According to the versions of the bind packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way BIND handled TSIG authentication of AXFR requests. A remote attacker, able to communicate with an authoritative BIND...

ISC BIND Security Bypass Vulnerability - Active Check

A flaw was found in the way BIND handled TSIG authentication for dynamic updates. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progr...

CVE-2017-3143

A flaw was found in the way BIND handled TSIG authentication for dynamic updates. A remote attacker able to communicate with an authoritative BIND server could use this flaw to manipulate the contents of a zone, by forging a valid TSIG or SIG0 signature for a dynamic update request. Mitigation Th...

V8: integer overflow leading to buffer overflow in Zone::New

An integer-overflow flaw was found in V8's Zone class when allocating new memory Zone::New and Zone::NewExpand. An attacker with the ability to manipulate a large zone could crash the application or, potentially, execute arbitrary code with the application privileges...

CVE-2007-3550

Microsoft Internet Explorer 6.0 and 7.0 allows remote attackers to fill Zones with arbitrary domains using certain metacharacters such as wildcards via JavaScript, which results in a denial of service website suppression and resource consumption, aka "Internet Explorer Zone Domain Specification D...

CVE-2007-3550

Microsoft Internet Explorer 6.0 and 7.0 are identified as affected. The vulnerability allows remote attackers to manipulate Zone settings by injecting certain metacharacters (e.g., wildcards) via JavaScript to fill Zones with arbitrary domains, leading to a denial of service through website suppr...