Home
Bugtraq
Full List
Only Bugs
Only Tricks
Only Exploits
Only Dorks
Only CVE
Only CWE
Fake Notes
Ranking
CVEMAP
Full List
Show Vendors
Show Products
CWE Dictionary
Check CVE Id
Check CWE Id
Search
Bugtraq
CVEMAP
By author
CVE Id
CWE Id
By vendors
By products
RSS
Bugtraq
CVEMAP
CVE Products
Bugs
Exploits
Dorks
More
cIFrex
Facebook
Twitter
Donate
About
Submit
CWE
:
Topic
Date
Author
High
MikroTik RouterOS SMB Buffer Overflow
20.03.2018
Core Security Technolo...
High
Digital Canal Structural Wind Analysis 9.1 Buffer Overflow
02.07.2017
Karn Ganeshen
High
Linux XFBurn Stack-based Buffer Overflow
24.03.2017
Hosein Askari
High
Putty pscp <= 0.66 - Stack Buffer Overwrite
11.03.2016
tintinweb
High
VAMPSET 2.2.145 Stack / Heap Buffer Overflow
31.03.2015
CORE
Med.
Fortinet Single Sign On Stack Overflow
19.03.2015
CORE
High
GetGo Download Manager 4.x Stack Buffer Overflow
04.03.2014
RCE
High
VideoCharge Studio 2.12.3.685 Stack Buffer Overflow
20.02.2014
Julien Ahrens
High
Android Camera Driver Buffer Overflow / Memory Disclosure
22.10.2013
Jonathan Salwan
Med.
nss-pam-ldapd FD_SET array index error (stack-based buffer overflow)
18.02.2013
Garth Mollett
Low
Photodex ProShow Producer 5.0.3297 ExpandMacroFilename() Local Buffer Overflow
26.01.2013
Julien Ahrens
High
Sony PC Companion 2.1 (DownloadURLToFile()) Stack-based Buffer Overload
21.12.2012
Gjoko LiquidWorm Krsti...
High
Sony PC Companion 2.1 (Load()) Stack-based Buffer Overload
21.12.2012
Gjoko LiquidWorm Krsti...
High
Sony PC Companion 2.1 (CheckCompatibility()) Stack-based Buffer Overload
21.12.2012
Gjoko LiquidWorm Krsti...
High
Sony PC Companion 2.1 (Admin_RemoveDirectory()) Stack-based Buffer Overload
21.12.2012
Gjoko LiquidWorm Krsti...
High
Sound Editor Pro v7.5.1 Stack-based Buffer Overflow
17.09.2012
Julien Ahrens
High
Photodex ProShow Producer v5.0.3256 Local Buffer Overflow Vulnerability
03.07.2012
Inshell Security
High
Photodex ProShow Producer 5.0.3256 Buffer Overflow
03.07.2012
Julien Ahrens
CVEMAP Search Results
CVE
Details
Description
2024-07-22
CVE-2024-6962
Updating...
A vulnerability classified as critical was found in Tenda O3 1.0.0.10. This vulnerability affects the function formQosSet. The manipulation of the argument remark/ipRange/upSpeed/downSpeed/enable leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-272116. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2024-6963
Updating...
A vulnerability, which was classified as critical, has been found in Tenda O3 1.0.0.10. This issue affects the function formexeCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-272117 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2024-6964
Updating...
A vulnerability, which was classified as critical, was found in Tenda O3 1.0.0.10. Affected is the function fromDhcpSetSer. The manipulation of the argument dhcpEn/startIP/endIP/preDNS/altDNS/mask/gateway leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-272118 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2024-6965
Updating...
A vulnerability has been found in Tenda O3 1.0.0.10 and classified as critical. Affected by this vulnerability is the function fromVirtualSet. The manipulation of the argument ip/localPort/publicPort/app leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-272119. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
2024-07-15
CVE-2024-6744
Updating...
The SMTP Listener of Secure Email Gateway from Cellopoint does not properly validate user input, leading to a Buffer Overflow vulnerability. An unauthenticated remote attacker can exploit this vulnerability to execute arbitrary system commands on the remote server.
2024-07-09
CVE-2024-37997
Updating...
A vulnerability has been identified in JT Open (All versions < V11.5), PLM XML SDK (All versions < V7.1.0.014). The affected applications contain a stack based overflow vulnerability while parsing specially crafted XML files. This could allow an attacker to execute code in the context of the current process.
CVE-2024-39880
Updating...
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of the current process.
2024-07-08
CVE-2023-49867
Updating...
A stack-based buffer overflow vulnerability exists in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger this vulnerability.
CVE-2023-50330
Updating...
A stack-based buffer overflow vulnerability exists in the boa getInfo functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger this vulnerability.
CVE-2023-50244
Updating...
Two stack-based buffer overflow vulnerabilities exist in the boa formIpQoS functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This stack-based buffer overflow is related to the `entry_name` request's parameter.
Copyright
2024
, cxsecurity.com
Back to Top