Lucene search
+L

48 matches found

CVE
CVE
added 2020/01/14 3:19 p.m.92 views

CVE-2015-8366

CVE-2015-8366 : In LibRaw, an array index error in the smal_decode_segment function prior to 0.17.1 can enable context-dependent attackers to trigger memory errors and possibly execute arbitrary code via index-related vectors. Several connected sources confirm the issue is tied to LibRaw before 0...

9.8CVSS9.4AI score0.04939EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2020/01/14 3:19 p.m.32 views

CVE-2015-8366

Array index error in smaldecodesegment function in LibRaw before 0.17.1 allows context-dependent attackers to cause memory errors and possibly execute arbitrary code via vectors related to indexes...

9.5AI score0.04939EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2020/01/14 3:19 p.m.88 views

CVE-2015-8366

Array index error in smaldecodesegment function in LibRaw before 0.17.1 allows context-dependent attackers to cause memory errors and possibly execute arbitrary code via vectors related to indexes...

9.8CVSS9.6AI score0.04939EPSS
Exploits0
Debian CVE
Debian CVE
added 2020/01/14 3:19 p.m.62 views

CVE-2015-8366

Array index error in smaldecodesegment function in LibRaw before 0.17.1 allows context-dependent attackers to cause memory errors and possibly execute arbitrary code via vectors related to indexes...

9.8CVSS9.4AI score0.04939EPSS
Exploits0
0day.today
0day.today
added 2018/10/11 12:0 a.m.62 views

Phoenix Contact WebVisit 6.40.00 - Password Disclosure Vulnerability

Exploit for hardware platform in category web applications Exploit Title: Phoenix Contact WebVisit 6.40.00 - Password Disclosure Exploit Author: Deneut Tijl Vendor Homepage: www.phoenixcontact.com Software Link:...

5CVSS7.2AI score0.05845EPSS
Exploits4
CVE
CVE
added 2018/09/13 12:0 a.m.65 views

CVE-2018-8366

CVE-2018-8366 is an information disclosure vulnerability in Microsoft Edge tied to the Fetch API mis-handling a filtered response type. Root cause: Edge Fetch API incorrectly handles certain filtered response types, enabling an attacker to read the URL of a cross-origin request. Affected product/...

3.1CVSS4.7AI score0.05046EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2018/04/05 4:0 p.m.69 views

CVE-2016-8366

CVE-2016-8366 affects Phoenix Contact ILC PLCs with WebVisit. The vulnerability arises from a password macro where credentials can be stored and transferred in clear text, enabling potential exposure of user passwords via the HMI protection mechanism. Connected documents confirm the issue is tied...

7.3CVSS7AI score0.05845EPSS
Exploits4References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/06/16 12:0 a.m.21 views

Fedora 24 : ettercap (2017-36c7e7ef06)

FIx for CVE-2017-8366 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenabl...

9.8CVSS8.2AI score0.01711EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2017/06/16 12:0 a.m.19 views

Fedora 25 : ettercap (2017-8722576148)

FIx for CVE-2017-8366 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenabl...

9.8CVSS8.2AI score0.01711EPSS
Exploits1References2
OSV
OSV
added 2017/06/14 3:52 p.m.6 views

MGASA-2017-0173 Updated ettercap packages fix security vulnerability

The strescape function in ecstrings.c in Ettercap 0.8.2 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted filter that is mishandled by etterfilter CVE-2017-8366...

9.8CVSS10AI score0.01711EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2017/06/12 12:0 a.m.40 views

Debian DSA-3874-1 : ettercap - security update

Agostino Sarubbo and AromalUllas discovered that ettercap, a network security tool for traffic interception, contains vulnerabilities that allowed an attacker able to provide maliciously crafted filters to cause a denial-of-service via application crash. %NASLMINLEVEL 70300 C Tenable Network...

9.8CVSS7.2AI score0.01972EPSS
Exploits3References6
Debian
Debian
added 2017/06/09 5:50 a.m.54 views

[SECURITY] [DSA 3874-1] ettercap security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3874-1 [email protected] https://www.debian.org/security/ Sebastien Delafond June 09, 2017 https://www.debian.org/security/faq -...

9.8CVSS8.3AI score0.01972EPSS
Exploits3
Debian
Debian
added 2017/06/09 5:50 a.m.69 views

[SECURITY] [DSA 3874-1] ettercap security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3874-1 [email protected] https://www.debian.org/security/ Sebastien Delafond June 09, 2017 https://www.debian.org/security/faq -...

7.5CVSS2.1AI score0.01972EPSS
Exploits3
OpenVAS
OpenVAS
added 2017/06/09 12:0 a.m.21 views

Debian Security Advisory DSA 3874-1 (ettercap - security update)

Agostino Sarubbo and AromalUllas discovered that ettercap, a network security tool for traffic interception, contains vulnerabilities that allowed an attacker able to provide maliciously crafted filters to cause a denial-of-service via application crash. OpenVAS Vulnerability Test $Id: deb3874.na...

7.5CVSS0.4AI score0.01972EPSS
Exploits3References1
OSV
OSV
added 2017/04/30 7:59 p.m.16 views

CVE-2017-8366

The strescape function in ecstrings.c in Ettercap 0.8.2 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted filter that is mishandled by etterfilter...

9.8CVSS7.9AI score
Exploits0References2
CVE
CVE
added 2017/04/30 7:0 p.m.68 views

CVE-2017-8366

CVE-2017-8366 affects Ettercap (0.8.2 and earlier) via the strescape function in ec_strings.c in the Etterfilter utility. A crafted filter mishandled by etterfilter can cause a heap-based buffer overflow, leading to application crash or possible arbitrary code execution. Multiple advisories (Arch...

9.8CVSS9.7AI score0.01711EPSS
Exploits1References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/01/25 12:0 a.m.39 views

GLSA-201701-60 : LibRaw: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201701-60 LibRaw: Multiple vulnerabilities Multiple vulnerabilities have been discovered in LibRaw. Please review the CVE identifiers referenced below for details. Impact : An attacker could execute arbitrary code, cause a Denial ...

9.8CVSS7.6AI score0.05454EPSS
Exploits0References4
ICS
ICS
added 2016/08/12 6:0 a.m.41 views

Phoenix Contact ILC PLC Authentication Vulnerabilities

OVERVIEW Matthias Niedermaier and Michael Kapfer of HSASec Hochschule Augsburg have identified authentication vulnerabilities in Phoenix Contact’s ILC inline controller PLCs. Phoenix Contact GmbH & Co. KG has produced a mitigation plan that includes an update and recommended security practices to...

7.5CVSS7.8AI score0.11199EPSS
Exploits8References10
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.25 views

Fedora 22 : LibRaw-0.16.2-3.fc22 (2015-a288773b9a)

Patch for CVE-2015-8366, CVE-2015-8367 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

9.8CVSS8.1AI score0.05454EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.30 views

Fedora 23 : LibRaw-0.16.2-3.fc23 (2015-d2fc332108)

Patch for CVE-2015-8366, CVE-2015-8367 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

9.8CVSS8.1AI score0.05454EPSS
Exploits0References5
Rows per page
Query Builder