Home
Bugtraq
Full List
Only Bugs
Only Tricks
Only Exploits
Only Dorks
Only CVE
Only CWE
Fake Notes
Ranking
CVEMAP
Full List
Show Vendors
Show Products
CWE Dictionary
Check CVE Id
Check CWE Id
Search
Bugtraq
CVEMAP
By author
CVE Id
CWE Id
By vendors
By products
RSS
Bugtraq
CVEMAP
CVE Products
Bugs
Exploits
Dorks
More
cIFrex
Facebook
Twitter
Donate
About
Submit
CWE
:
Topic
Date
Author
High
MikroTik RouterOS SMB Buffer Overflow
20.03.2018
Core Security Technolo...
High
Digital Canal Structural Wind Analysis 9.1 Buffer Overflow
02.07.2017
Karn Ganeshen
High
Linux XFBurn Stack-based Buffer Overflow
24.03.2017
Hosein Askari
High
Putty pscp <= 0.66 - Stack Buffer Overwrite
11.03.2016
tintinweb
High
VAMPSET 2.2.145 Stack / Heap Buffer Overflow
31.03.2015
CORE
Med.
Fortinet Single Sign On Stack Overflow
19.03.2015
CORE
High
GetGo Download Manager 4.x Stack Buffer Overflow
04.03.2014
RCE
High
VideoCharge Studio 2.12.3.685 Stack Buffer Overflow
20.02.2014
Julien Ahrens
High
Android Camera Driver Buffer Overflow / Memory Disclosure
22.10.2013
Jonathan Salwan
Med.
nss-pam-ldapd FD_SET array index error (stack-based buffer overflow)
18.02.2013
Garth Mollett
Low
Photodex ProShow Producer 5.0.3297 ExpandMacroFilename() Local Buffer Overflow
26.01.2013
Julien Ahrens
High
Sony PC Companion 2.1 (DownloadURLToFile()) Stack-based Buffer Overload
21.12.2012
Gjoko LiquidWorm Krsti...
High
Sony PC Companion 2.1 (Load()) Stack-based Buffer Overload
21.12.2012
Gjoko LiquidWorm Krsti...
High
Sony PC Companion 2.1 (CheckCompatibility()) Stack-based Buffer Overload
21.12.2012
Gjoko LiquidWorm Krsti...
High
Sony PC Companion 2.1 (Admin_RemoveDirectory()) Stack-based Buffer Overload
21.12.2012
Gjoko LiquidWorm Krsti...
High
Sound Editor Pro v7.5.1 Stack-based Buffer Overflow
17.09.2012
Julien Ahrens
High
Photodex ProShow Producer v5.0.3256 Local Buffer Overflow Vulnerability
03.07.2012
Inshell Security
High
Photodex ProShow Producer 5.0.3256 Buffer Overflow
03.07.2012
Julien Ahrens
CVEMAP Search Results
CVE
Details
Description
2024-04-23
CVE-2024-4065
Updating...
A vulnerability was found in Tenda AC8 16.03.34.09. It has been rated as critical. This issue affects the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-261791. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2024-4066
Updating...
A vulnerability classified as critical has been found in Tenda AC8 16.03.34.09. Affected is the function fromAdvSetMacMtuWan of the file /goform/AdvSetMacMtuWan. The manipulation of the argument wanMTU/wanSpeed/cloneType/mac/serviceName/serverName leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-261792. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2024-4064
Updating...
A vulnerability was found in Tenda AC8 16.03.34.09. It has been declared as critical. This vulnerability affects the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-261790 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
2024-04-17
CVE-2024-3906
Updating...
A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been declared as critical. This vulnerability affects the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-261142 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2024-3909
Updating...
A vulnerability classified as critical was found in Tenda AC500 2.0.1.9(1307). Affected by this vulnerability is the function formexeCommand of the file /goform/execCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-261145 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2024-3905
Updating...
A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been classified as critical. This affects the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-261141 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2024-3907
Updating...
A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been rated as critical. This issue affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-261143. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
2024-04-16
CVE-2024-3879
Updating...
A vulnerability, which was classified as critical, was found in Tenda W30E 1.0.1.25(633). This affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-260913 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2024-3874
Updating...
A vulnerability was found in Tenda W20E 15.11.0.6. It has been declared as critical. This vulnerability affects the function formSetRemoteWebManage of the file /goform/SetRemoteWebManage. The manipulation of the argument remoteIP leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-260908. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2024-3882
Updating...
A vulnerability was found in Tenda W30E 1.0.1.25(633). It has been classified as critical. Affected is the function fromRouteStatic of the file /goform/fromRouteStatic. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-260916. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Copyright
2024
, cxsecurity.com
Back to Top
