CWE:
 

Topic
Date
Author
High
XAMPP Control Panel 3.2.2 Buffer Overflow
13.11.2018
Gionathan Reale
High
libIEC61850 Buffer Overflow
07.11.2018
Dhiraj Mishra
High
Morris Worm fingerd Stack Buffer Overflow
06.11.2018
wvu
High
Any Sound Recorder 2.93 Buffer Overflow Local (SEH) (Metasploit)
31.10.2018
d3ckx1
High
Modbus Slave PLC 7 Buffer Overflow
29.10.2018
Kagan Capar
High
Adult Filter 1.0 Buffer Overflow (SEH)
29.10.2018
AkkuS
High
EpiCentro Firmware 7.3.2+ Script Injection / Buffer Overflow
27.10.2018
Felix Schallock
High
Snes9K 0.0.9z Buffer Overflow
16.10.2018
Abdullah Alıç
High
Zahir Enterprise Plus 6 Stack Buffer Overflow
06.10.2018
modpr0be
High
Zahir Enterprise Plus 6 build 10b Buffer Overflow (SEH)
02.10.2018
SPARC
High
Zahir Enterprise Plus 6 Build 10b Buffer Overflow
01.10.2018
modpr0be
High
Faleemi Desktop Software 1.8.2 Device alias Local Buffer Overflow
26.09.2018
Gionathan John Reale
High
NICO-FTP 3.0.1.19 Buffer Overflow (SEH)
20.09.2018
Abdullah Alıç
High
NUUO NVRMini2 3.8 Buffer Overflow
19.09.2018
Jacob Baines
High
DVD Photo Slideshow Professional 8.07 Buffer Overflow
09.09.2018
T3jv1l
High
CuteFTP 5.0 Buffer Overflow
28.08.2018
Matteo Malvica
High
Project64 2.3.2 Buffer Overflow
23.08.2018
Shubham Singh
High
WebkitGTK+ 2.20.3 ImageBufferCairo::getImageData() Buffer Overflow (PoC)
16.08.2018
PeregrineX
High
Monitoring software iSmartViewPro 1.5 SavePath for ScreenShots Buffer Overflow
16.08.2018
Shubham Singh
High
iSmartViewPro 1.5 Device Alias Buffer Overflow
09.08.2018
Rodrigo Eduardo Rodrig...
High
reSIProcate 1.10.2 Heap Overflow
09.08.2018
Joachim De Zutter
High
Wedding Slideshow Studio 1.36 Buffer Overflow
03.08.2018
Achilles
High
Easy DVD Creator 2.5.11 Buffer Overflow
02.08.2018
Shubham Singh
High
Allok MOV Converter 4.6.1217 Buffer Overflow
31.07.2018
Shubham Singh
High
Splinterware System Scheduler Pro 5.12 Buffer Overflow (SEH)
26.07.2018
bzyo
Med.
GetGo Download Manager 6.2.1.3200 Buffer Overflow (Denial of Service)
25.07.2018
Nathu Nandwani
Med.
Poppler v0.62.0 Memory Corruption Vulnerability
21.07.2018
Hosein Askari
High
G DATA TOTAL SECURITY 25.4.0.3 Active-X Buffer Overflow
14.07.2018
Felipe Xavier Oliveira
High
Lenovo SU v5.07 - Buffer Overflow & Code Execution Vulnerability
13.07.2018
Vulnerability Lab
High
Linux Awk To Perl Translator Buffer Overflow
08.07.2018
Todor Donev
High
Core FTP LE 2.2 Buffer Overflow (PoC)
04.07.2018
Berk Cem Göksel
High
Boxoft WAV To MP3 Converter 1.1 Buffer Overflow
02.07.2018
Robbie Corley
High
SIPp 3.6 Buffer Overflow
02.07.2018
Fakhri Zulkifli
High
Delta Industrial Automation COMMGR 1.08 Stack Buffer Overflow
02.07.2018
t4rkd3vilz
High
PoDoFo 0.9.5 Buffer Overflow
27.06.2018
r4xis
High
ntp 4.2.8p11 Local Buffer Overflow
22.06.2018
Fakhri Zulkifli
High
Redis-cli Buffer Overflow
18.06.2018
Fakhri Zulkifli
High
Audiograbber 1.83 Buffer Overflow
18.06.2018
Dennis Herrmann
High
XiongMai uc-httpd 1.0.0 Buffer Overflow
12.06.2018
Andrew Watson
High
Apple macOS/iOS Kernel Heap Overflow Due to Lack of Lower Size Check in getvolattrlist
09.06.2018
Google Security Resear...
High
10-Strike Network Scanner 3.0 Local Buffer Overflow (SEH)
08.06.2018
Hashim Jawad
High
XNU Kernel Heap Overflow Due to Bad Bounds Checking in MPTCP
06.06.2018
Google Security Resear...
High
PHP 7.2.2 php_stream_url_wrap_http_ex Buffer Overflow
06.06.2018
Wei Lei and Liu Yang
High
10-Strike Network Inventory Explorer Standard 8.54 Buffer Overflow
05.06.2018
Hashim Jawad
High
Zip-n-Go 4.9 Buffer Overflow (SEH)
04.06.2018
Hashim Jawad
High
CloudMe Sync < 1.11.0 Buffer Overflow
29.05.2018
Juan Prescotto
High
ALFTP 5.31 Local Buffer Overflow (SEH Bypass)
28.05.2018
Gokul Babu
High
Easy MPEG To DVD Burner 1.7.11 Buffer Overflow
21.05.2018
Juan Prescotto
High
Prime95 29.4b8 Stack Buffer Overflow
19.05.2018
crash_manucoot
High
vcftools 0.1.15 Out-Of-Bounds Read / Denial Of Service / Buffer Overflow
17.05.2018
Webin Security Lab
High
gif2apng 1.9 .gif Stack Buffer Overflow
28.04.2018
Hamm3r.py
High
Allok Video To DVD Burner 2.6.1217 Buffer Overflow
25.04.2018
T3jv1l
High
R 3.4.4 Local Buffer Overflow
25.04.2018
bzyo
Med.
Easy File Sharing Web Server 7.2 UserID Buffer Overflow
25.04.2018
Hashim Jawad
Low
PRTG Network Monitor < 18.1.39.1648 Stack Overflow (Denial of Service)
24.04.2018
luriel
High
VX Search 10.6.18 Local Buffer Overflow
19.04.2018
Kevin McGuigan
High
VX Search 10.6.18 directory Local Buffer Overflow
19.04.2018
Kevin McGuigan
High
SysGauge Pro 4.6.12 Local Buffer Overflow
12.04.2018
Hashim Jawad
High
GoldWave 5.70 Local Buffer Overflow
10.04.2018
bzyo
High
Faleemi Windows Desktop Software (DDNS/IP) Local Buffer Overflow
31.03.2018
Himavanth Reddy
High
Advantech WebAccess < 8.1 webvrpcs DrawSrv.dll Path BwBuildPath Stack-Based Buffer Overflow
31.03.2018
Chris Lyne
High
Fast AVI MPEG Splitter 1.2 Buffer Overflow
27.03.2018
Velayutham Selvaraj
High
Allok Quicktime To AVI MPEG DVD Converter 4.6.1217 Buffer Overflow
24.03.2018
Velayutham Selvaraj
High
Easy CD DVD Copy 1.3.24 Buffer Overflow
24.03.2018
Hashim Jawad
High
Crashmail 1.6 Buffer Overflow
21.03.2018
Juan Sacco
High
MikroTik RouterOS SMB Buffer Overflow
20.03.2018
Core Security Technolo...
High
Android DRM Services Buffer Overflow
16.03.2018
Tamir Zahavi-Brunner
High
MikroTik RouterOS < 6.41.3/6.42rc27 SMB Buffer Overflow
16.03.2018
CoreLabs
High
SC 7.16 Buffer Overflow
13.03.2018
Juan Sacco
High
IrfanView 4.50 Email Plugin Buffer Overflow
02.03.2018
bzyo
High
IrfanView 4.44 Email Plugin Buffer Overflow
02.03.2018
bzyo
High
FTPShell Client v6.7 Buffer Overflow
01.03.2018
Ali Abdollahi
High
FreeBSD 10.2 x64 sendmsg Kernel Heap Overflow (PoC)
01.03.2018
CTurt
High
WebKitGTK 2.1.2 (Ubuntu 14.04) Heap based Buffer Overflow
01.03.2018
Ren Kimura
High
GetGo Download Manager 5.3.0.2712 Buffer Overflow
28.02.2018
bzyo
High
Disk Pulse Enterprise 10.4.18 Import Command Buffer Overflow (SEH)
22.02.2018
Daniel Teixeira
High
Disk Savvy Enterprise 10.4.18 Buffer Overflow (SEH)
22.02.2018
Daniel Teixeira
High
EChat Server 3.1 CHAT.ghp Buffer Overflow
22.02.2018
Juan Sacco
High
InfoZip UnZip 6.00 / 6.1c22 Buffer Overflow
08.02.2018
SEC Consult
High
BOCHS 2.6-5 Buffer Overflow
06.02.2018
Juan Sacco
High
Flexense SyncBreeze Enterprise 10.3.14 Buffer Overflow
03.02.2018
ryantzj
High
Geovision Inc. IP Camera Remote Command Execution / Stack Overflow
03.02.2018
bashis
High
Dup Scout Enterprise 10.4.16 Import Command Buffer Overflow
31.01.2018
Daniel Teixeira
High
Lorex LH300 Series ActiveX Buffer Overflow (PoC)
26.01.2018
Agile
High
Sync Breeze Enterprise 9.5.16 Import Command Buffer Overflow
24.01.2018
Daniel Teixeira
High
MixPad 5.00 Buffer Overflow
23.01.2018
bzyo
High
PyroBatchFTP < 3.19 Buffer Overflow
13.01.2018
Manuel García Cárden...
High
LabF nfsAxe 3.7 FTP Client Stack Buffer Overflow
12.01.2018
Daniel Teixeira
High
Handy Password 4.9.3 Buffer Overflow
11.01.2018
Filipe
High
LabF nfsAxe 3.7 FTP Client Stack Buffer Overflow
11.01.2018
Daniel Teixeira
High
BarcodeWiz ActiveX Control Buffer Overflow
07.01.2018
hyp3rlinx
High
D3DGear 5.00 Build 2175 Buffer Overflow
03.01.2018
bzyo
High
NetTransport 2.96L Buffer Overflow (DEP Bypass)
29.12.2017
Aloyce J. Makalanga
High
ALLMediaServer 0.95 Buffer Overflow Metasploit
29.12.2017
Anurag Srivastava
High
GetGo Download Manager 5.3.0.2712 Buffer Overflow
25.12.2017
Aloyce J. Makalanga
High
Microsoft Windows Array.sort jscript.dll Heap Overflow
19.12.2017
ifratric
High
CDex 1.96 Stack Buffer Overflow
19.12.2017
bzyo
High
Zoom Linux Client 2.0.106600.0904 Buffer Overflow
18.12.2017
Gabriel Quadros, Ricar...
High
GNU C Library ld.so Memory Leak / Buffer Overflow
13.12.2017
Qualys
High
Advantech WebAccess 8.2 Stack Buffer Overflow
13.12.2017
mr_me


CVEMAP Search Results

CVE
Details
Description
2018-10-16
Medium
CVE-2018-2913

Vendor: Oracle
Software: Goldengate
 

 
Vulnerability in the Oracle GoldenGate component of Oracle GoldenGate (subcomponent: Monitoring Manager). Supported versions that are affected are 12.1.2.1.0, 12.2.0.2.0 and 12.3.0.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via TCP to compromise Oracle GoldenGate. While the vulnerability is in Oracle GoldenGate, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Oracle GoldenGate. Note: For Linux and Windows platforms, the CVSS score is 9.0 with Access Complexity as High. For all other platforms, the cvss score is 10.0. CVSS 3.0 Base Score 10.0 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H).

 
2018-09-30
Medium
CVE-2018-17795

Vendor: Libtiff
Software: Libtiff
 

 
The function t2p_write_pdf in tiff2pdf.c in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file, a similar issue to CVE-2017-9935.

 
2018-09-26
High
CVE-2018-10602

Vendor: We-con
Software: Levistudiou
 

 
WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vulnerabilities that can be exploited when the application processes specially crafted project files.

 
High
CVE-2018-10606

Vendor: We-con
Software: Levistudiou
 

 
WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple heap-based buffer overflow vulnerabilities that can be exploited when the application processes specially crafted project files.

 
Medium
CVE-2018-14813

Vendor: Fujielectric
Software: V-server fir...
 

 
Fuji Electric V-Server 4.0.3.0 and prior, A heap-based buffer overflow vulnerability has been identified, which may allow remote code execution.

 
Medium
CVE-2018-14823

Vendor: Fujielectric
Software: V-server fir...
 

 
Fuji Electric V-Server 4.0.3.0 and prior, A stack-based buffer overflow vulnerability has been identified, which may allow remote code execution.

 
2018-09-24
Low
CVE-2018-17433

Vendor: Hdfgroup
Software: HDF5
 

 
A heap-based buffer overflow in ReadGifImageDesc() in gifread.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file.

 
Low
CVE-2018-17435

Vendor: Hdfgroup
Software: HDF5
 

 
A heap-based buffer over-read in H5O_attr_decode() in H5Oattr.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while converting an HDF file to GIF file.

 
Low
CVE-2018-17439

Vendor: Hdfgroup
Software: HDF5
 

 
An issue was discovered in the HDF HDF5 1.10.3 library. There is a stack-based buffer overflow in the function H5S_extent_get_dims() in H5S.c. Specifically, this issue occurs while converting an HDF5 file to a GIF file.

 
High
CVE-2018-14633

Vendor: Canonical
Software: Ubuntu linux
 

 
A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target's code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely. Kernel versions 4.18.x, 4.14.x and 3.10.x are believed to be vulnerable.

 

 


Copyright 2018, cxsecurity.com

 

Back to Top