CWE:
 

Topic
Date
Author
High
PyroBatchFTP < 3.19 Buffer Overflow
13.01.2018
Manuel García Cárden...
High
LabF nfsAxe 3.7 FTP Client Stack Buffer Overflow
12.01.2018
Daniel Teixeira
High
Handy Password 4.9.3 Buffer Overflow
11.01.2018
Filipe
High
LabF nfsAxe 3.7 FTP Client Stack Buffer Overflow
11.01.2018
Daniel Teixeira
High
BarcodeWiz ActiveX Control Buffer Overflow
07.01.2018
hyp3rlinx
High
D3DGear 5.00 Build 2175 Buffer Overflow
03.01.2018
bzyo
High
NetTransport 2.96L Buffer Overflow (DEP Bypass)
29.12.2017
Aloyce J. Makalanga
High
ALLMediaServer 0.95 Buffer Overflow Metasploit
29.12.2017
Anurag Srivastava
High
GetGo Download Manager 5.3.0.2712 Buffer Overflow
25.12.2017
Aloyce J. Makalanga
High
Microsoft Windows Array.sort jscript.dll Heap Overflow
19.12.2017
ifratric
High
CDex 1.96 Stack Buffer Overflow
19.12.2017
bzyo
High
Zoom Linux Client 2.0.106600.0904 Buffer Overflow
18.12.2017
Gabriel Quadros, Ricar...
High
GNU C Library ld.so Memory Leak / Buffer Overflow
13.12.2017
Qualys
High
Advantech WebAccess 8.2 Stack Buffer Overflow
13.12.2017
mr_me
High
Axis Communications MPQT/PACS Heap Overflow / Information Leakage
04.12.2017
bashis
High
QEMU NBD Server Long Export Name Stack Buffer Overflow
30.11.2017
Eric Blake
High
VX Search 10.2.14 Proxy Buffer Overflow (SEH)
18.11.2017
wetw0rk
Med.
tic (GNU ncurses 6.0 library) Stack-based Buffer Overflow
18.11.2017
Hosein Askari
High
Vivotek IP Cameras Remote Stack Overflow
16.11.2017
bashis
High
Xlight FTP Server 3.8.8.5 Buffer Overflow
15.11.2017
bzyo
High
PHP 7.1.8 Heap-Based Buffer Overflow
15.11.2017
Wei Lei
High
Dup Scout Enterprise 10.0.18 Login Buffer Overflow
15.11.2017
sickness
High
Geutebrueck GCore GCoreServer.exe Buffer Overflow
09.11.2017
Maurice Popp
Med.
CoolPlayer+ Portable 2.19.6 Stack Overflow
07.11.2017
1N3@CrowdShield
High
Ipswitch WS_FTP Professional < 12.6.0.3 Local Buffer Overflow (SEH)
06.11.2017
Kevin McGuigan
High
SMPlayer 17.11.0 .m3u Buffer Overflow
06.11.2017
bzyo
High
GraphicsMagick Memory Disclosure / Heap Overflow
03.11.2017
Multiple
High
Tizen Studio 1.3 Smart Development Bridge <2.3.2 Buffer Overflow (PoC)
28.10.2017
Marcin Kopec
High
Easy MPEG/AVI/DIVX/WMV/RM To DVD Buffer Overflow
25.10.2017
Venkat Rajgor
High
binutils 2.29.51.20170921 read_1_byte Heap-Based Buffer Overflow
12.10.2017
Agostino Sarubbo
High
VX Search Enterprise 10.1.12 Buffer Overflow
11.10.2017
Revnic Vasile
Med.
ASX To MP3 Converter Stack Overflow
11.10.2017
Nitesh Shilpkar
High
PyroBatchFTP 3.17 Buffer Overflow
09.10.2017
Kevin McGuigan
High
DiskBoss Enterprise 8.4.16 Local Buffer Overflow
05.10.2017
C4t0ps1s
High
Oracle 9i XDB 9.2.0.1 HTTP PASS Buffer Overflow
26.09.2017
Charles Dardaman
High
Broadcom 802.11v WNM Sleep Mode Response Heap Overflow
26.09.2017
laginimaineb
High
CyberLink LabelPrint < 2.5 Buffer Overflow
25.09.2017
f3ci
High
Apple assembleBGScanResults Heap Overflow
24.09.2017
laginimaineb
High
Apple updateRateSetAsyncCallback Heap Overflow
24.09.2017
laginimaineb
High
Apple AppleBCMWLANCore Driver Heap Overflow
24.09.2017
laginimaineb
High
Apple setVendorIE Heap Overflow / Information Disclosure
24.09.2017
laginimaineb
High
Mongoose Embedded Web Server Library 6.8 Buffer Overflow
23.09.2017
Dobin Rutishauser
Med.
Linux Kernel <= 4.13.1 BlueTooth Buffer Overflow (PoC)
22.09.2017
Marcin Kozlowski
High
Disk Pulse Enterprise 9.9.16 GET Buffer Overflow
21.09.2017
Chance
High
Dameware Mini Remote Control 4.0 Username Stack Buffer Overflow
15.09.2017
james fitts
High
Disk Pulse Server 2.2.34 Buffer Overflow
15.09.2017
james fitts
High
VIPA Automation WinPLC7 5.0.45.5921 Buffer Overflow
15.09.2017
james fitts
High
KingScada AlarmServer 3.1.2.13 Buffer Overflow
15.09.2017
james fitts
Med.
PlugX Controller Stack Overflow
07.09.2017
Professor Plum
High
Gh0st Client Buffer Overflow
07.09.2017
Professor Plum
High
Dup Scout Enterprise 9.9.14 Input Directory Local Buffer Overflow
05.09.2017
Touhid M.Shaikh
High
OpenJPEG 'mqc.c' Heap-Based Buffer Overflow
02.09.2017
Ke Liu
High
Dup Scout Enterprise 9.9.14 Buffer Overflow
29.08.2017
Anurag Srivastava
High
VX Search Enterprise 10.0.14 Buffer Overflow
29.08.2017
Anurag Srivastava
High
DiskBoss Enterprise 8.3.12 Buffer Overflow
29.08.2017
Anurag Srivastava
High
Disk Savvy Enterprise 9.9.14 Buffer Overflow
29.08.2017
Nipun Jaswal & Anurag ...
High
Easy Video to iPod/MP4/PSP/3GP Converter 1.5.20 Buffer Overflow
25.08.2017
Anurag Srivastava
High
My Video Converter 1.5.24 Buffer Overflow
25.08.2017
Anurag Srivastava
High
Easy AVI DivX Converter 1.2.24 Buffer Overflow
25.08.2017
Anurag Srivastava
High
MP3 WAV to CD Burner 1.4.24 Buffer Overflow
25.08.2017
Anurag Srivastava
High
Sync Breeze Enterprise 9.9.16 Buffer Overflow
22.08.2017
Anurag Srivastava
High
Disk Pulse Enterprise 9.9.16 Buffer Overflow
22.08.2017
Anurag Srivastava
High
Disk Sorter Enterprise 9.9.12 Buffer Overflow
22.08.2017
Anurag Srivastava
High
MyDoomScanner 1.00 Local Buffer Overflow
21.08.2017
Anurag Srivastava
High
MessengerScan 1.05 Local Buffer Overflow
19.08.2017
Anurag Srivastava
High
DSScan 1.0 - Local Buffer Overflow
19.08.2017
Anurag Srivastava
High
Internet Download Manager 6.28 Build 17 Buffer Overflow (SEH Unicode)
16.08.2017
f3ci
High
ALLPlayer 7.4 Buffer Overflow (SEH Unicode)
16.08.2017
f3ci
High
DiskBoss Enterprise 8.2.14 Buffer Overflow
31.07.2017
Ahmad Mahfouz
High
GNU libiberty Buffer Overflow
29.07.2017
Marcel Böhme
High
AudioCoder 0.8.46 Local Buffer Overflow
28.07.2017
Muhann4d
High
WebKit WebCore::RenderSearchField::addSearchResult Heap Buffer Overflow
26.07.2017
ifratric
High
MAWK 1.3.3-17 Buffer Overflow
25.07.2017
Juan Sacco
High
Easy Chat Server User Registeration Buffer Overflow
22.07.2017
Marco
High
FTPGetter 5.89.0.85 Buffer Overflow
16.07.2017
Paul Purcell
High
Virtuozzo Power Panel (VZPP) 6.1.2 Buffer Over-Read
07.07.2017
Sipke Mellema
High
Digital Canal Structural Wind Analysis 9.1 Buffer Overflow
02.07.2017
Karn Ganeshen
Med.
LG MRA58K - 'ASFParser::SetMetaData' Stack Overflow
01.07.2017
Google Security Resear...
High
Flat Assembler 1.7.21 - Buffer Overflow
29.06.2017
Juan Sacco
High
FASM 1.7.21 Buffer Overflow
28.06.2017
Juan Sacco
High
IBM DB2 9.7 / 10.1 / 10.5 / 11.1 Command Line Processor Buffer Overflow
27.06.2017
Leon Juranic
High
Microsoft Skype 7.2 / 7.35 / 7.36 Buffer Overflow
26.06.2017
Vulnerability Lab
High
JAD 1.5.8e-1kali1 Buffer Overflow
26.06.2017
Juan Sacco
High
Easy File Sharing HTTP Server 7.2 POST Buffer Overflow
25.06.2017
Marco Rivoli
High
GNU binutils 'decode_pseudodbg_assert_0' Buffer Overflow
20.06.2017
Alexandre Adamski
High
GNU binutils 'disassemble_bytes' Heap Overflow
20.06.2017
Alexandre Adamski
High
GNU binutils 'bfd_get_string' Stack Buffer Overflow
20.06.2017
Alexandre Adamski
High
GNU binutils 'rx_decode_opcode' Buffer Overflow
20.06.2017
Alexandre Adamski
High
GNU binutils 'ieee_object_p' Stack Buffer Overflow
20.06.2017
Alexandre Adamski
Med.
netmask stack-based buffer overflow
20.06.2017
Hosein Askari
High
WebKit JSC Intl.getCanonicalLocales Heap Buffer Overflow
16.06.2017
lokihardt
High
VX Search Enterprise 9.7.18 - Local Buffer Overflow
16.06.2017
Greg Priest
High
Easy MOV Converter 1.4.24 Buffer Overflow
15.06.2017
abatchy17
High
Mapscrn 2.0.3 Buffer Overflow
13.06.2017
Exploit Pack
High
DNSTracer Stack-based Buffer Overflow
05.06.2017
Hosein Askari
High
reiserfstune 3.6.25 Buffer Overflow
03.06.2017
Nassim
High
TiEmu 2.08 Buffer Overflow
31.05.2017
Juan Sacco
High
Skia Graphics Library Heap Overflow
27.05.2017
ifratric
High
Dup Scout Enterprise 9.7.18 - '.xml' Local Buffer Overflow
25.05.2017
Greg Priest
High
HTTrack 3.x Stack Buffer Overflow
24.05.2017
Vulnerability Lab


CVEMAP Search Results

CVE
Details
Description
2018-01-05
Medium
CVE-2017-16724

Vendor: Advantech
Software: Webaccess
 

 
A Stack-based Buffer Overflow issue was discovered in Advantech WebAccess versions prior to 8.3. There are multiple instances of a vulnerability that allows too much data to be written to a location on the stack.

 
Medium
CVE-2018-5244

Updating...
 

 
In Xen 4.10, new infrastructure was introduced as part of an overhaul to how MSR emulation happens for guests. Unfortunately, one tracking structure isn't freed when a vcpu is destroyed. This allows guest OS administrators to cause a denial of service (host OS memory consumption) by rebooting many times.

 
Medium
CVE-2018-5248

Vendor: Imagemagick
Software: Imagemagick
 

 
In ImageMagick 7.0.7-17 Q16, there is a heap-based buffer over-read in coders/sixel.c in the ReadSIXELImage function, related to the sixel_decode function.

 
Medium
CVE-2018-5253

Vendor: Axiosys
Software: Bento4
 

 
The AP4_FtypAtom class in Core/Ap4FtypAtom.cpp in Bento4 1.5.1.0 has an Infinite loop via a crafted MP4 file that triggers size mishandling.

 
2018-01-04
Medium
CVE-2018-0103

Vendor: Cisco
Software: Webex busine...
 

 
A Buffer Overflow vulnerability in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) files could allow a local attacker to execute arbitrary code on the system of a user. The attacker could exploit this vulnerability by sending the user a link or email attachment with a malicious ARF file and persuading the user to follow the link or launch the file. Successful exploitation could allow the attacker to execute arbitrary code on the user's system. This vulnerability affects Cisco WebEx Business Suite meeting sites, Cisco WebEx Meetings sites, Cisco WebEx Meetings Server, and Cisco WebEx ARF players. Cisco Bug IDs: CSCvg78835, CSCvg78837, CSCvg78839.

 
Medium
CVE-2018-0753

Vendor: Microsoft
Software: Windows 10
 

 
Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allow a denial of service vulnerability due to the way objects are handled in memory, aka "Windows IPSec Denial of Service Vulnerability".

 
High
CVE-2018-0758

Vendor: Microsoft
Software: EDGE
 

 
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0762, CVE-2018-0768, CVE-2018-0769, CVE-2018-0770, CVE-2018-0772, CVE-2018-0773, CVE-2018-0774, CVE-2018-0775, CVE-2018-0776, CVE-2018-0777, CVE-2018-0778, and CVE-2018-0781.

 
High
CVE-2018-0762

Vendor: Microsoft
Software: EDGE
 

 
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0758, CVE-2018-0768, CVE-2018-0769, CVE-2018-0770, CVE-2018-0772, CVE-2018-0773, CVE-2018-0774, CVE-2018-0775, CVE-2018-0776, CVE-2018-0777, CVE-2018-0778, and CVE-2018-0781.

 
High
CVE-2018-0768

Vendor: Microsoft
Software: EDGE
 

 
Microsoft Edge in Windows 10 1709 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0758, CVE-2018-0762, CVE-2018-0769, CVE-2018-0770, CVE-2018-0772, CVE-2018-0773, CVE-2018-0774, CVE-2018-0775, CVE-2018-0776, CVE-2018-0777, CVE-2018-0778, and CVE-2018-0781.

 
High
CVE-2018-0769

Vendor: Microsoft
Software: EDGE
 

 
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0758, CVE-2018-0762, CVE-2018-0768, CVE-2018-0770, CVE-2018-0772, CVE-2018-0773, CVE-2018-0774, CVE-2018-0775, CVE-2018-0776, CVE-2018-0777, CVE-2018-0778, and CVE-2018-0781.

 

 


Copyright 2018, cxsecurity.com

 

Back to Top