Lucene search
+L

44 matches found

ubuntucve
ubuntucve
added 2024/01/23 12:0 a.m.40 views

CVE-2023-40548

A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed from the PE binary being used by Shim. This value is further used for memory allocation operations, leading to a heap-based buffer overflow. This fl...

7.4CVSS7.1AI score0.00432EPSS
Exploits0References1
altlinux
altlinux
added 2022/11/22 12:0 a.m.92 views

Security fix for the ALT Linux 10 package samba version 4.16.7-alt1

Nov. 22, 2022 Evgeny Sinelnikov 4.16.7-alt1 - Update to maintenance release of Samba 4.16 Samba15203 - Security fixes: + CVE-2022-42898: Samba's Kerberos libraries and AD DC failed to guard against integer overflows when parsing a PAC on a 32-bit system, which allowed an attacker with a forged PA...

9.1AI score0.06419EPSS
Exploits1
veracode
veracode
added 2022/11/21 3:6 p.m.37 views

Denial Of Service (DoS)

samba is vulnerable to denial of service DoS attacks. The library fails to guard against integer overflows when parsing a PAC on a 32-bit system, which allows an attacker with a forged PAC to corrupt the heap...

8.8CVSS8.4AI score0.06419EPSS
Exploits1References12Affected Software4
mageia
mageia
added 2022/05/06 8:16 p.m.47 views

Updated lighttpd packages fix security vulnerability

In lighttpd 1.4.46 through 1.4.63, the modextforwardForwarded function of the modextforward plugin has a stack-based buffer overflow 4 bytes representing -1, as demonstrated by remote denial of service daemon crash in a non-default configuration. The non-default configuration requires handling of...

5.9CVSS1AI score0.08969EPSS
Exploits1References3
nessus
nessus
added 2022/02/03 12:0 a.m.41 views

openSUSE 15 Security Update : lighttpd (openSUSE-SU-2022:0024-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2022:0024-1 advisory. - In lighttpd 1.4.46 through 1.4.63, the modextforwardForwarded function of the modextforward plugin has a stack-based buffer overflow 4 bytes...

5.9CVSS6.3AI score0.08969EPSS
Exploits1References6
osv
osv
added 2022/01/22 11:3 a.m.3 views

OESA-2022-1491 lighttpd security update

Secure, fast, compliant and very flexible web-server which has been optimized for high-performance environments. It has a very low memory footprint compared to other webservers and takes care of cpu-load. Its advanced feature-set FastCGI, CGI, Auth, Output-Compression, URL-Rewriting and many more...

5.9CVSS7.3AI score0.08969EPSS
Exploits1References2
nvd
nvd
added 2022/01/06 6:15 a.m.18 views

CVE-2022-22707

In lighttpd 1.4.46 through 1.4.63, the modextforwardForwarded function of the modextforward plugin has a stack-based buffer overflow 4 bytes representing -1, as demonstrated by remote denial of service daemon crash in a non-default configuration. The non-default configuration requires handling of...

5.9CVSS0.08969EPSS
Exploits1References2
prion
prion
added 2022/01/06 6:15 a.m.150 views

Stack overflow

In lighttpd 1.4.46 through 1.4.63, the modextforwardForwarded function of the modextforward plugin has a stack-based buffer overflow 4 bytes representing -1, as demonstrated by remote denial of service daemon crash in a non-default configuration. The non-default configuration requires handling of...

4.3CVSS6AI score0.08969EPSS
Exploits1References2Affected Software2
ubuntucve
ubuntucve
added 2022/01/06 6:15 a.m.39 views

CVE-2022-22707

In lighttpd 1.4.46 through 1.4.63, the modextforwardForwarded function of the modextforward plugin has a stack-based buffer overflow 4 bytes representing -1, as demonstrated by remote denial of service daemon crash in a non-default configuration. The non-default configuration requires handling of...

5.9CVSS6.6AI score0.08969EPSS
Exploits1References3
osv
osv
added 2022/01/06 6:15 a.m.2 views

UBUNTU-CVE-2022-22707

In lighttpd 1.4.46 through 1.4.63, the modextforwardForwarded function of the modextforward plugin has a stack-based buffer overflow 4 bytes representing -1, as demonstrated by remote denial of service daemon crash in a non-default configuration. The non-default configuration requires handling of...

5.9CVSS6.2AI score0.08969EPSS
Exploits1References4
cvelist
cvelist
added 2022/01/06 5:55 a.m.38 views

CVE-2022-22707

In lighttpd 1.4.46 through 1.4.63, the modextforwardForwarded function of the modextforward plugin has a stack-based buffer overflow 4 bytes representing -1, as demonstrated by remote denial of service daemon crash in a non-default configuration. The non-default configuration requires handling of...

6.3AI score0.08969EPSS
Exploits1References2
alpinelinux
alpinelinux
added 2022/01/06 5:55 a.m.41 views

CVE-2022-22707

In lighttpd 1.4.46 through 1.4.63, the modextforwardForwarded function of the modextforward plugin has a stack-based buffer overflow 4 bytes representing -1, as demonstrated by remote denial of service daemon crash in a non-default configuration. The non-default configuration requires handling of...

5.9CVSS6.1AI score0.08969EPSS
Exploits1
debiancve
debiancve
added 2022/01/06 5:55 a.m.65 views

CVE-2022-22707

In lighttpd 1.4.46 through 1.4.63, the modextforwardForwarded function of the modextforward plugin has a stack-based buffer overflow 4 bytes representing -1, as demonstrated by remote denial of service daemon crash in a non-default configuration. The non-default configuration requires handling of...

5.9CVSS5.9AI score0.08969EPSS
Exploits1
cvelist
cvelist
added 2021/02/26 9:50 p.m.21 views

CVE-2021-21309 Integer overflow on 32-bit systems

Redis is an open-source, in-memory database that persists on disk. In affected versions of Redis an integer overflow bug in 32-bit Redis version 4.0 or newer could be exploited to corrupt the heap and potentially result with remote code execution. Redis 4.0 or newer uses a configurable limit for...

5.4CVSS9.3AI score0.047EPSS
Exploits0References4
debiancve
debiancve
added 2021/02/26 9:50 p.m.31 views

CVE-2021-21309

Redis is an open-source, in-memory database that persists on disk. In affected versions of Redis an integer overflow bug in 32-bit Redis version 4.0 or newer could be exploited to corrupt the heap and potentially result with remote code execution. Redis 4.0 or newer uses a configurable limit for...

8.8CVSS9.2AI score0.047EPSS
Exploits0
curl
curl
added 2019/09/11 8:0 a.m.10 views

FTP-KRB double free

libcurl can be told to use kerberos over FTP to a server, as set with the CURLOPTKRBLEVEL option. During such kerberos FTP data transfer, the server sends data to curl in blocks with the 32-bit size of each block first and then that amount of data immediately following. A malicious or broken serv...

9.8CVSS6.2AI score0.07266EPSS
Exploits0References1Affected Software2
hackerone
hackerone
added 2018/07/20 7:20 a.m.68 views

Internet Bug Bounty: Int Overflow lead to Heap OverFlow in exif_thumbnail_extract of exif.c

This bug was reported to PHP last month and a fix was public last week:https://bugs.php.net/bug.php?id=76423 Heap OverFlow in exifthumbnailextract of exif.c This vulnerability can be triggered by exifreaddata in any 32-bit system. exif.c:2947: if ImageInfo-Thumbnail.offset +...

5CVSS8.2AI score0.08975EPSS
Exploits1
exploitdb
exploitdb
added 2018/01/09 12:0 a.m.51 views

Microsoft Windows - 'nt!NtQueryInformationProcess (information class 76, QueryProcessEnergyValues)' Kernel Stack Memory Disclosure

/ We have discovered that the nt!NtQueryInformationProcess system call invoked with the 76 information class discloses portions of uninitialized kernel stack memory to user-mode clients. The specific information class is handled by an internal nt!PsQueryProcessEnergyValues function. While we don'...

7.4AI score
Exploits0
zdt
zdt
added 2018/01/09 12:0 a.m.60 views

Microsoft Windows - nt!NtQueryInformationProcess (information class 76, QueryProcessEnergyValues) Ke

Exploit for windows platform in category dos / poc / We have discovered that the nt!NtQueryInformationProcess system call invoked with the 76 information class discloses portions of uninitialized kernel stack memory to user-mode clients. The specific information class is handled by an internal...

1.9CVSS5.6AI score0.02867EPSS
Exploits1
kitploit
kitploit
added 2017/10/28 9:30 p.m.38 views

ASLRay - Linux ELF x32 and x64 ASLR bypass exploit with stack-spraying

Linux ELF x32 and x64 ASLR bypass exploit with stack-spraying. Properties: ASLR bypass Cross-platform Minimalistic Simplicity Unpatchable Dependencies: Linux 2.6.12+ - will work on any x86-64 Debian-based OS BASH - the whole script Limitations: Stack needs to be executable -z execstack Binary has...

7.8AI score
Exploits0References1
Rows per page
Query Builder