In Iolo System Shield AntiVirus and AntiSpyware 5.0.0.136, the amp.sys driver file contains an Arbitrary Write vulnerability.
A Buffer Overflow exists when parsing .wav files. The vulnerability is caused due to a boundary error when handling a crafted .wav files.
ABB Panel Builder is prone to a Heap-Overflow when handling specially cracted .PBA files.
Opsview Web Management console allows to an authenticated administrator to test notifications that are triggered under certain configurable events.
The 'value' parameter is not properly sanitized, leading to an arbitrary command injection executed on the system with nagios user privileges.
The 'value' parameter is not properly sanitized, leading to an arbitrary command injection executed on the system with nagios user privileges.
The specific flaw exists within the handling of the m_pkg_LimitSize parameter provided to the tftpserver.
The specific flaw exists within the processing of a TLF file. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a stack-based buffer.
Oracle WebLogic Server is prone to a remote vulnerability due to deserialization of untrusted inputs, allowing attackers to instantiate arbitrary Java objects leading to remote code execution.
Sophos SafeGuard Enterprise before 8.00.5, SafeGuard Easy before 7.00.3, and SafeGuard LAN Crypt before 3.95.2 are vulnerable to Local Privilege Escalation via multiple IOCTLs.
SoftNAS Cloud is a software-defined NAS filer delivered as a virtual storage appliance that runs within public, private or hybrid clouds. SoftNAS Cloud provides enterprise-grade NAS capabilities, including encryption, snapshots, rapid rollbacks, and cross-zone high-availability with automatic failover.
A command injection vulnerability was found in the web administration console. In particular, snserv script did not sanitize some input parameters before executing a system command.
A command injection vulnerability was found in the web administration console. In particular, snserv script did not sanitize some input parameters before executing a system command.
The specific flaw exists within the handling of UMP files. When parsing the BgOnOffBitAddr element, the process does not properly validate the length of user-supplied data prior to copying it to a fixed-length buffer. An attacker can leverage this vulnerability to execute code under the context of Administrator