Lucene search
K

93 matches found

OSV
OSV
added 2014/06/05 8:55 p.m.8 views

CVE-2014-3467

Multiple unspecified vulnerabilities in the DER decoder in GNU Libtasn1 before 3.6, as used in GnuTLS, allow remote attackers to cause a denial of service out-of-bounds read via crafted ASN.1 data...

7.5AI score
Exploits0References29
NVD
NVD
added 2014/06/05 8:55 p.m.21 views

CVE-2014-3467

Multiple unspecified vulnerabilities in the DER decoder in GNU Libtasn1 before 3.6, as used in GnuTLS, allow remote attackers to cause a denial of service out-of-bounds read via crafted ASN.1 data...

5CVSS7.4AI score0.068EPSS
Exploits0References24
OSV
OSV
added 2014/06/05 8:55 p.m.13 views

CVE-2014-3468

The asn1getbitder function in GNU Libtasn1 before 3.6 does not properly report an error when a negative bit length is identified, which allows context-dependent attackers to cause out-of-bounds access via crafted ASN.1 data...

7.3AI score
Exploits0References31
NVD
NVD
added 2014/06/05 8:55 p.m.18 views

CVE-2014-3468

The asn1getbitder function in GNU Libtasn1 before 3.6 does not properly report an error when a negative bit length is identified, which allows context-dependent attackers to cause out-of-bounds access via crafted ASN.1 data...

7.5CVSS7.2AI score0.03789EPSS
Exploits0References25
Cvelist
Cvelist
added 2014/06/05 8:0 p.m.32 views

CVE-2014-3467

Multiple unspecified vulnerabilities in the DER decoder in GNU Libtasn1 before 3.6, as used in GnuTLS, allow remote attackers to cause a denial of service out-of-bounds read via crafted ASN.1 data...

7.4AI score0.068EPSS
Exploits0References24
Cvelist
Cvelist
added 2014/06/05 8:0 p.m.22 views

CVE-2014-3468

The asn1getbitder function in GNU Libtasn1 before 3.6 does not properly report an error when a negative bit length is identified, which allows context-dependent attackers to cause out-of-bounds access via crafted ASN.1 data...

7.2AI score0.03789EPSS
Exploits0References25
UbuntuCve
UbuntuCve
added 2014/06/05 12:0 a.m.31 views

CVE-2014-3468

The asn1getbitder function in GNU Libtasn1 before 3.6 does not properly report an error when a negative bit length is identified, which allows context-dependent attackers to cause out-of-bounds access via crafted ASN.1 data...

7.5CVSS6.8AI score0.03789EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2014/06/05 12:0 a.m.33 views

CVE-2014-3467

Multiple unspecified vulnerabilities in the DER decoder in GNU Libtasn1 before 3.6, as used in GnuTLS, allow remote attackers to cause a denial of service out-of-bounds read via crafted ASN.1 data...

5CVSS6.9AI score0.068EPSS
Exploits0References3
Prion
Prion
added 2014/04/23 11:52 a.m.21 views

Design/Logic Flaw

Heimdal, as used in Apple OS X through 10.9.2, allows remote attackers to cause a denial of service abort and daemon exit via ASN.1 data encountered in the Kerberos 5 protocol...

5CVSS6.8AI score0.01147EPSS
Exploits0References1Affected Software1
FreeBSD
FreeBSD
added 2012/05/03 12:0 a.m.39 views

FreeBSD -- OpenSSL multiple vulnerabilities

Problem description: OpenSSL fails to clear the bytes used as block cipher padding in SSL 3.0 records when operating as a client or a server that accept SSL 3.0 handshakes. As a result, in each record, up to 15 bytes of uninitialized memory may be sent, encrypted, to the SSL peer. This could...

9.3CVSS8.6AI score0.48298EPSS
Exploits8
0day.today
0day.today
added 2012/04/21 12:0 a.m.78 views

OpenSSL 1.0.1 Memory Corruption

Exploit for multiple platform in category remote exploits Incorrect integer conversions in OpenSSL can result in memory corruption. -------------------------------------------------------------------------- CVE-2012-2110 This advisory is intended for system administrators and developers exposing...

7.1AI score0.48298EPSS
Exploits8
UbuntuCve
UbuntuCve
added 2009/08/04 4:30 p.m.17 views

CVE-2009-2661

The asn1length function in strongSwan 2.8 before 2.8.11, 4.2 before 4.2.17, and 4.3 before 4.3.3 does not properly handle X.509 certificates with crafted Relative Distinguished Names RDNs, which allows remote attackers to cause a denial of service pluto IKE daemon crash via malformed ASN.1 data...

5CVSS5.9AI score0.01577EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2009/08/04 4:13 p.m.19 views

CVE-2009-2661

The asn1length function in strongSwan 2.8 before 2.8.11, 4.2 before 4.2.17, and 4.3 before 4.3.3 does not properly handle X.509 certificates with crafted Relative Distinguished Names RDNs, which allows remote attackers to cause a denial of service pluto IKE daemon crash via malformed ASN.1 data...

5CVSS5.4AI score0.01577EPSS
Exploits0
Rows per page
Query Builder