CWE:
 

Topic
Date
Author
High
ntp 4.2.8p11 Local Buffer Overflow
22.06.2018
Fakhri Zulkifli
High
Redis-cli Buffer Overflow
18.06.2018
Fakhri Zulkifli
High
Audiograbber 1.83 Buffer Overflow
18.06.2018
Dennis Herrmann
High
XiongMai uc-httpd 1.0.0 Buffer Overflow
12.06.2018
Andrew Watson
High
Apple macOS/iOS Kernel Heap Overflow Due to Lack of Lower Size Check in getvolattrlist
09.06.2018
Google Security Resear...
High
10-Strike Network Scanner 3.0 Local Buffer Overflow (SEH)
08.06.2018
Hashim Jawad
High
XNU Kernel Heap Overflow Due to Bad Bounds Checking in MPTCP
06.06.2018
Google Security Resear...
High
PHP 7.2.2 php_stream_url_wrap_http_ex Buffer Overflow
06.06.2018
Wei Lei and Liu Yang
High
10-Strike Network Inventory Explorer Standard 8.54 Buffer Overflow
05.06.2018
Hashim Jawad
High
Zip-n-Go 4.9 Buffer Overflow (SEH)
04.06.2018
Hashim Jawad
High
CloudMe Sync < 1.11.0 Buffer Overflow
29.05.2018
Juan Prescotto
High
ALFTP 5.31 Local Buffer Overflow (SEH Bypass)
28.05.2018
Gokul Babu
High
Easy MPEG To DVD Burner 1.7.11 Buffer Overflow
21.05.2018
Juan Prescotto
High
Prime95 29.4b8 Stack Buffer Overflow
19.05.2018
crash_manucoot
High
vcftools 0.1.15 Out-Of-Bounds Read / Denial Of Service / Buffer Overflow
17.05.2018
Webin Security Lab
High
gif2apng 1.9 .gif Stack Buffer Overflow
28.04.2018
Hamm3r.py
High
Allok Video To DVD Burner 2.6.1217 Buffer Overflow
25.04.2018
T3jv1l
High
R 3.4.4 Local Buffer Overflow
25.04.2018
bzyo
Med.
Easy File Sharing Web Server 7.2 UserID Buffer Overflow
25.04.2018
Hashim Jawad
Low
PRTG Network Monitor < 18.1.39.1648 Stack Overflow (Denial of Service)
24.04.2018
luriel
High
VX Search 10.6.18 Local Buffer Overflow
19.04.2018
Kevin McGuigan
High
VX Search 10.6.18 directory Local Buffer Overflow
19.04.2018
Kevin McGuigan
High
SysGauge Pro 4.6.12 Local Buffer Overflow
12.04.2018
Hashim Jawad
High
GoldWave 5.70 Local Buffer Overflow
10.04.2018
bzyo
High
Faleemi Windows Desktop Software (DDNS/IP) Local Buffer Overflow
31.03.2018
Himavanth Reddy
High
Advantech WebAccess < 8.1 webvrpcs DrawSrv.dll Path BwBuildPath Stack-Based Buffer Overflow
31.03.2018
Chris Lyne
High
Fast AVI MPEG Splitter 1.2 Buffer Overflow
27.03.2018
Velayutham Selvaraj
High
Allok Quicktime To AVI MPEG DVD Converter 4.6.1217 Buffer Overflow
24.03.2018
Velayutham Selvaraj
High
Easy CD DVD Copy 1.3.24 Buffer Overflow
24.03.2018
Hashim Jawad
High
Crashmail 1.6 Buffer Overflow
21.03.2018
Juan Sacco
High
MikroTik RouterOS SMB Buffer Overflow
20.03.2018
Core Security Technolo...
High
Android DRM Services Buffer Overflow
16.03.2018
Tamir Zahavi-Brunner
High
MikroTik RouterOS < 6.41.3/6.42rc27 SMB Buffer Overflow
16.03.2018
CoreLabs
High
SC 7.16 Buffer Overflow
13.03.2018
Juan Sacco
High
IrfanView 4.50 Email Plugin Buffer Overflow
02.03.2018
bzyo
High
IrfanView 4.44 Email Plugin Buffer Overflow
02.03.2018
bzyo
High
FTPShell Client v6.7 Buffer Overflow
01.03.2018
Ali Abdollahi
High
FreeBSD 10.2 x64 sendmsg Kernel Heap Overflow (PoC)
01.03.2018
CTurt
High
WebKitGTK 2.1.2 (Ubuntu 14.04) Heap based Buffer Overflow
01.03.2018
Ren Kimura
High
GetGo Download Manager 5.3.0.2712 Buffer Overflow
28.02.2018
bzyo
High
Disk Pulse Enterprise 10.4.18 Import Command Buffer Overflow (SEH)
22.02.2018
Daniel Teixeira
High
Disk Savvy Enterprise 10.4.18 Buffer Overflow (SEH)
22.02.2018
Daniel Teixeira
High
EChat Server 3.1 CHAT.ghp Buffer Overflow
22.02.2018
Juan Sacco
High
InfoZip UnZip 6.00 / 6.1c22 Buffer Overflow
08.02.2018
SEC Consult
High
BOCHS 2.6-5 Buffer Overflow
06.02.2018
Juan Sacco
High
Flexense SyncBreeze Enterprise 10.3.14 Buffer Overflow
03.02.2018
ryantzj
High
Geovision Inc. IP Camera Remote Command Execution / Stack Overflow
03.02.2018
bashis
High
Dup Scout Enterprise 10.4.16 Import Command Buffer Overflow
31.01.2018
Daniel Teixeira
High
Lorex LH300 Series ActiveX Buffer Overflow (PoC)
26.01.2018
Agile
High
Sync Breeze Enterprise 9.5.16 Import Command Buffer Overflow
24.01.2018
Daniel Teixeira
High
MixPad 5.00 Buffer Overflow
23.01.2018
bzyo
High
PyroBatchFTP < 3.19 Buffer Overflow
13.01.2018
Manuel García Cárden...
High
LabF nfsAxe 3.7 FTP Client Stack Buffer Overflow
12.01.2018
Daniel Teixeira
High
Handy Password 4.9.3 Buffer Overflow
11.01.2018
Filipe
High
LabF nfsAxe 3.7 FTP Client Stack Buffer Overflow
11.01.2018
Daniel Teixeira
High
BarcodeWiz ActiveX Control Buffer Overflow
07.01.2018
hyp3rlinx
High
D3DGear 5.00 Build 2175 Buffer Overflow
03.01.2018
bzyo
High
NetTransport 2.96L Buffer Overflow (DEP Bypass)
29.12.2017
Aloyce J. Makalanga
High
ALLMediaServer 0.95 Buffer Overflow Metasploit
29.12.2017
Anurag Srivastava
High
GetGo Download Manager 5.3.0.2712 Buffer Overflow
25.12.2017
Aloyce J. Makalanga
High
Microsoft Windows Array.sort jscript.dll Heap Overflow
19.12.2017
ifratric
High
CDex 1.96 Stack Buffer Overflow
19.12.2017
bzyo
High
Zoom Linux Client 2.0.106600.0904 Buffer Overflow
18.12.2017
Gabriel Quadros, Ricar...
High
GNU C Library ld.so Memory Leak / Buffer Overflow
13.12.2017
Qualys
High
Advantech WebAccess 8.2 Stack Buffer Overflow
13.12.2017
mr_me
High
Axis Communications MPQT/PACS Heap Overflow / Information Leakage
04.12.2017
bashis
High
QEMU NBD Server Long Export Name Stack Buffer Overflow
30.11.2017
Eric Blake
High
VX Search 10.2.14 Proxy Buffer Overflow (SEH)
18.11.2017
wetw0rk
Med.
tic (GNU ncurses 6.0 library) Stack-based Buffer Overflow
18.11.2017
Hosein Askari
High
Vivotek IP Cameras Remote Stack Overflow
16.11.2017
bashis
High
Xlight FTP Server 3.8.8.5 Buffer Overflow
15.11.2017
bzyo
High
PHP 7.1.8 Heap-Based Buffer Overflow
15.11.2017
Wei Lei
High
Dup Scout Enterprise 10.0.18 Login Buffer Overflow
15.11.2017
sickness
High
Geutebrueck GCore GCoreServer.exe Buffer Overflow
09.11.2017
Maurice Popp
Med.
CoolPlayer+ Portable 2.19.6 Stack Overflow
07.11.2017
1N3@CrowdShield
High
Ipswitch WS_FTP Professional < 12.6.0.3 Local Buffer Overflow (SEH)
06.11.2017
Kevin McGuigan
High
SMPlayer 17.11.0 .m3u Buffer Overflow
06.11.2017
bzyo
High
GraphicsMagick Memory Disclosure / Heap Overflow
03.11.2017
Multiple
High
Tizen Studio 1.3 Smart Development Bridge <2.3.2 Buffer Overflow (PoC)
28.10.2017
Marcin Kopec
High
Easy MPEG/AVI/DIVX/WMV/RM To DVD Buffer Overflow
25.10.2017
Venkat Rajgor
High
binutils 2.29.51.20170921 read_1_byte Heap-Based Buffer Overflow
12.10.2017
Agostino Sarubbo
High
VX Search Enterprise 10.1.12 Buffer Overflow
11.10.2017
Revnic Vasile
Med.
ASX To MP3 Converter Stack Overflow
11.10.2017
Nitesh Shilpkar
High
PyroBatchFTP 3.17 Buffer Overflow
09.10.2017
Kevin McGuigan
High
DiskBoss Enterprise 8.4.16 Local Buffer Overflow
05.10.2017
C4t0ps1s
High
Oracle 9i XDB 9.2.0.1 HTTP PASS Buffer Overflow
26.09.2017
Charles Dardaman
High
Broadcom 802.11v WNM Sleep Mode Response Heap Overflow
26.09.2017
laginimaineb
High
CyberLink LabelPrint < 2.5 Buffer Overflow
25.09.2017
f3ci
High
Apple assembleBGScanResults Heap Overflow
24.09.2017
laginimaineb
High
Apple updateRateSetAsyncCallback Heap Overflow
24.09.2017
laginimaineb
High
Apple AppleBCMWLANCore Driver Heap Overflow
24.09.2017
laginimaineb
High
Apple setVendorIE Heap Overflow / Information Disclosure
24.09.2017
laginimaineb
High
Mongoose Embedded Web Server Library 6.8 Buffer Overflow
23.09.2017
Dobin Rutishauser
Med.
Linux Kernel <= 4.13.1 BlueTooth Buffer Overflow (PoC)
22.09.2017
Marcin Kozlowski
High
Disk Pulse Enterprise 9.9.16 GET Buffer Overflow
21.09.2017
Chance
High
Dameware Mini Remote Control 4.0 Username Stack Buffer Overflow
15.09.2017
james fitts
High
Disk Pulse Server 2.2.34 Buffer Overflow
15.09.2017
james fitts
High
VIPA Automation WinPLC7 5.0.45.5921 Buffer Overflow
15.09.2017
james fitts
High
KingScada AlarmServer 3.1.2.13 Buffer Overflow
15.09.2017
james fitts
Med.
PlugX Controller Stack Overflow
07.09.2017
Professor Plum


CVEMAP Search Results

CVE
Details
Description
2018-06-14
Medium
CVE-2018-8205

Vendor: Microsoft
Software: Windows 10
 

 
A denial of service vulnerability exists when Windows improperly handles objects in memory, aka "Windows Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.

 
High
CVE-2018-8251

Vendor: Microsoft
Software: Windows 10
 

 
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka "Media Foundation Memory Corruption Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.

 
2018-05-31
Medium
CVE-2018-11593

Updating...
 

 
Espruino before 1.99 allows attackers to cause a denial of service (application crash) and potential Information Disclosure with a user crafted input file via a Buffer Overflow during syntax parsing because strncpy is misused in jslex.c.

 
Low
CVE-2018-11594

Updating...
 

 
Espruino before 1.99 allows attackers to cause a denial of service (application crash) with a user crafted input file via a Buffer Overflow during syntax parsing of "VOID" tokens in jsparse.c.

 
Medium
CVE-2018-11595

Updating...
 

 
Espruino before 1.99 allows attackers to cause a denial of service (application crash) and a potential Escalation of Privileges with a user crafted input file via a Buffer Overflow during syntax parsing, because strncat is misused.

 
Low
CVE-2018-11596

Updating...
 

 
Espruino before 1.99 allows attackers to cause a denial of service (application crash) with a user crafted input file via a Buffer Overflow during syntax parsing because a check for '\0' is made for the wrong array element in jsvar.c.

 
Low
CVE-2018-11597

Updating...
 

 
Espruino before 1.99 allows attackers to cause a denial of service (application crash) with a user crafted input file via a Buffer Overflow during syntax parsing because of a missing check for stack exhaustion with many '{' characters in jsparse.c.

 
Medium
CVE-2018-11625

Vendor: Imagemagick
Software: Imagemagick
 

 
In ImageMagick 7.0.7-37 Q16, SetGrayscaleImage in the quantize.c file allows attackers to cause a heap-based buffer over-read via a crafted file.

 
2018-05-25
Medium
CVE-2018-1459

Vendor: IBM
Software: DB2
 

 
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is vulnerable to stack based buffer overflow, caused by improper bounds checking which could lead an attacker to execute arbitrary code. IBM X-Force ID: 140210.

 
Medium
CVE-2018-1488

Vendor: IBM
Software: DB2
 

 
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5 and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local attacker to execute arbitrary code on the system as root. IBM X-Force ID: 140973.

 

 


Copyright 2018, cxsecurity.com

 

Back to Top