Lucene search
+L

143 matches found

Tenable Nessus
Tenable Nessus
added 2015/03/30 12:0 a.m.39 views

Mandriva Linux Security Advisory : tcpdump (MDVSA-2015:125)

Updated tcpdump package fixes security vulnerabilities : The Tcpdump program could crash when processing a malformed OLSR payload when the verbose output flag was set CVE-2014-8767. The application decoder for the Ad hoc On-Demand Distance Vector AODV protocol in Tcpdump fails to perform input...

7.5CVSS8.2AI score0.19028EPSS
Exploits10References10
Tenable Nessus
Tenable Nessus
added 2015/03/26 12:0 a.m.51 views

Debian DLA-174-1 : tcpdump security update

Several issues have been discovered with tcpdump in the way it handled some printer protocols. Those issues can lead to denial of service, or, potentially, execution of arbitrary code. CVE-2015-0261 Missing bounds checks in IPv6 Mobility printer CVE-2015-2154 Missing bounds checks in ISOCLNS...

7.5CVSS7.8AI score0.07815EPSS
Exploits0References5
CVE
CVE
added 2015/03/24 5:0 p.m.125 views

CVE-2015-2154

CVE-2015-2154 affects tcpdump prior to 4.7.2. The osi_print_cksum function in print-isoclns.c (ethernet printer) allows remote, unauthenticated targets to trigger a denial of service via crafted length, offset, or base pointer checksum values, potentially crashing the process due to an out-of-bou...

5CVSS8.7AI score0.04473EPSS
Exploits0References16Affected Software1
Kaspersky
Kaspersky
added 2015/03/24 12:0 a.m.86 views

KLA10498 Denial of service vulnerabilities in tcpdump

Multiple serious vulnerabilities have been found in tcpdump. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities 1. An unknown vulnerability can be exploited remotely via a specially designed packets and other unknown vectors; ...

7.5CVSS9.1AI score0.19028EPSS
Exploits5References2
OSV
OSV
added 2015/03/20 2:41 p.m.9 views

SUSE-RU-2015:0335-1 Security update for tcpdump

When running tcpdump, a remote unauthenticated user could have crashed the application or, potentially, execute arbitrary code by injecting crafted packages into the network. The following vulnerabilities in protocol printers have been fixed: IPv6 mobility printer remote DoS CVE-2015-0261,...

7.5CVSS10AI score0.06845EPSS
Exploits5References12
OSV
OSV
added 2015/03/20 2:41 p.m.7 views

SUSE-SU-2015:0692-1 Security update for tcpdump

When running tcpdump, a remote unauthenticated user could have crashed the application or, potentially, execute arbitrary code by injecting crafted packages into the network. The following vulnerabilities in protocol printers have been fixed: IPv6 mobility printer remote DoS CVE-2015-0261,...

7.5CVSS10AI score0.06845EPSS
Exploits5References12
Debian
Debian
added 2015/03/17 2:48 p.m.41 views

[SECURITY] [DSA 3193-1] tcpdump security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3193-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 17, 2015 http://www.debian.org/security/faq -...

7.5CVSS10AI score0.19028EPSS
Exploits5
Debian
Debian
added 2015/03/17 9:57 a.m.41 views

[SECURITY] [DLA 174-1] tcpdump security update

Package : tcpdump Version : tcpdump4.1.1-1+deb6u2 CVE ID : CVE-2015-0261 CVE-2015-2154 CVE-2015-2155 Several issues have been discovered with tcpdump in the way it handled some printer protocols. Those issues can lead to denial of service, or, potentially, execution of arbitrary code. CVE-2015-02...

7.5CVSS7.2AI score0.07815EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/03/17 12:0 a.m.35 views

Debian Security Advisory DSA 3193-1 (tcpdump - security update)

Several vulnerabilities have been discovered in tcpdump, a command-line network traffic analyzer. These vulnerabilities might result in denial of service application crash or, potentially, execution of arbitrary code. OpenVAS Vulnerability Test $Id: deb3193.nasl 6609 2017-07-07 12:05:59Z cfischer...

7.5CVSS0.1AI score0.19028EPSS
Exploits5References1
CVE
CVE
added 2014/04/23 10:0 a.m.54 views

CVE-2014-2154

Cisco ASA Software SIP inspection engine memory leak vulnerability (CVE-2014-2154) allows remote, unauthenticated attackers to exhaust memory and cause instability/DoS by sending crafted SIP packets. Root cause: improper SIP packet handling in the SIP inspection engine. Impact: partial DoS due to...

5CVSS6.8AI score0.01767EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2013/08/20 10:55 p.m.19 views

CVE-2013-2210

Heap-based buffer overflow in the XML Signature Reference functionality in Apache Santuario XML Security for C++ aka xml-security-c before 1.7.2 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via malformed XPointer expressions. NOTE: this...

7.5CVSS7.8AI score0.06018EPSS
Exploits1References6
NVD
NVD
added 2013/08/20 10:55 p.m.23 views

CVE-2013-2154

Stack-based buffer overflow in the XML Signature Reference functionality xsec/dsig/DSIGReference.cpp in Apache Santuario XML Security for C++ aka xml-security-c before 1.7.1 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via malformed...

7.5CVSS7.8AI score0.08031EPSS
Exploits1References7
OSV
OSV
added 2013/08/20 10:55 p.m.6 views

CVE-2013-2154

Stack-based buffer overflow in the XML Signature Reference functionality xsec/dsig/DSIGReference.cpp in Apache Santuario XML Security for C++ aka xml-security-c before 1.7.1 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via malformed...

7.5CVSS7.8AI score0.08031EPSS
Exploits1References7
Prion
Prion
added 2013/08/20 10:55 p.m.21 views

Heap overflow

Heap-based buffer overflow in the XML Signature Reference functionality in Apache Santuario XML Security for C++ aka xml-security-c before 1.7.2 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via malformed XPointer expressions. NOTE: this...

7.5CVSS8.2AI score0.08031EPSS
Exploits1References6Affected Software1
Debian CVE
Debian CVE
added 2013/08/20 10:0 p.m.52 views

CVE-2013-2154

Stack-based buffer overflow in the XML Signature Reference functionality xsec/dsig/DSIGReference.cpp in Apache Santuario XML Security for C++ aka xml-security-c before 1.7.1 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via malformed...

7.5CVSS6.5AI score0.08031EPSS
Exploits1
CVE
CVE
added 2013/08/20 10:0 p.m.83 views

CVE-2013-2154

The CVE-2013-2154 entry affects Apache Santuario XML Security for C++ (xml-security-c) before 1.7.1, with a stack-based buffer overflow in DSIGReference::getURIBaseTXFM potentially allowing denial of service and, in some cases, arbitrary code execution via malformed XPointer expressions. Related ...

7.5CVSS7.8AI score0.08031EPSS
Exploits1References7Affected Software1
securityvulns
securityvulns
added 2013/07/01 12:0 a.m.57 views

CVE-2013-2154: Apache Santuario C++ stack overflow vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 CVE-2013-2154: Apache Santuario XML Security for C++ contains a stack overflow during XPointer evaluation Severity: Critical Vendor: The Apache Software Foundation Versions Affected: Apache Santuario XML Security for C++ library versions prior to...

7.5CVSS0.6AI score0.08031EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2013/06/29 12:0 a.m.30 views

Debian DSA-2717-1 : xml-security-c - heap overflow

Jon Erickson of iSIGHT Partners Labs discovered a heap overflow in xml-security-c, an implementation of the XML Digital Security specification. The fix to address CVE-2013-2154 introduced the possibility of a heap overflow in the processing of malformed XPointer expressions in the XML Signature...

7.5CVSS5.9AI score0.08031EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2013/06/28 12:0 a.m.28 views

Debian Security Advisory DSA 2717-1 (xml-security-c - heap overflow)

Jon Erickson of iSIGHT Partners Labs discovered a heap overflow in xml-security-c, an implementation of the XML Digital Security specification. The fix to address CVE-2013-2154 introduced the possibility of a heap overflow in the processing of malformed XPointer expressions in the XML Signature...

7.5CVSS0.08031EPSS
Exploits1References1
OSV
OSV
added 2013/06/28 12:0 a.m.31 views

DSA-2717-1 xml-security-c - heap overflow

Bulletin has no description...

7.5CVSS6AI score0.06018EPSS
Exploits1
Rows per page
Query Builder