478 matches found
CVE-2017-11555
There is an illegal address access in the Eval::operator function in eval.cpp in LibSass 3.4.5. A crafted input will lead to a remote denial of service...
CVE-2017-11342
There is an illegal address access in ast.cpp of LibSass 3.4.5. A crafted input will lead to a remote denial of service attack...
UBUNTU-CVE-2017-11342
There is an illegal address access in ast.cpp of LibSass 3.4.5. A crafted input will lead to a remote denial of service attack...
CVE-2017-11342
There is an illegal address access in ast.cpp of LibSass 3.4.5. A crafted input will lead to a remote denial of service attack...
CVE-2017-0342
All versions of the NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer nvlddmkm.sys handler where incorrect calculation may cause an invalid address access leading to denial of service or potential escalation of privileges...
CVE-2017-5139
An issue was discovered in Honeywell XL Web II controller XL1000C500 XLWebExe-2-01-00 and prior, and XLWeb 500 XLWebExe-1-02-08 and prior. Any user is able to disclose a password by accessing a specific URL, because of Plaintext Storage of a Password...
The vulnerability of the Flash Player software allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability exists in the Adobe Flash Player due to the possibility of accessing information related to memory addresses. Exploiting this vulnerability allows an attacker to bypass the ASLR Address Space Layout Randomization protection mechanism...
The vulnerability of the Flash Player software allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability exists in the Adobe Flash Player due to the possibility of accessing information related to memory addresses. Exploiting this vulnerability allows an attacker to bypass the ASLR Address Space Layout Randomization protection mechanism...
Vulnerability of Adobe AIR software, which allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information
Vulnerability exists in Adobe AIR due to the possibility of accessing information related to memory addresses. Exploiting this vulnerability allows an attacker to bypass the ASLR Address Space Layout Randomization protection mechanism...
Security researchers find HIV Dating APP vulnerability, the reverse is the vendor with the AIDS threat-vulnerability warning-the black bar safety net
! Around the world websites and applications to encourage researchers noted that their system vulnerabilities, but one designed for HIV-positive users of online Dating app developer with HIV a threat to security researchers not to notify them of the program any security vulnerabilities. HIV...
Adobe ColdFusion Multiple Vulnerabilities (APSB14-23) (credentialed check)
The version of Adobe ColdFusion running on the remote Windows host is affected by the following vulnerabilities : - An unspecified cross-site request forgery vulnerability exists because ColdFusion does not properly sanitize user-supplied input. CVE-2014-0570 - An unspecified cross-site scripting...
MGASA-2014-0384 Updated curl packages fix security vulnerabilities
Updated curl packages fix security vulnerabilities: In cURL before 7.38.0, libcurl can be fooled to both sending cookies to wrong sites and into allowing arbitrary sites to set cookies for others. For this problem to trigger, the client application must use the numerical IP address in the URL to...
CVE-2006-6307
srvloc.sys in Novell Client for Windows before 4.91 SP3 allows remote attackers to cause an unspecified denial of service via a crafted packet to port 427 that triggers an access of pageable or invalid addresses using a higher interrupt request level IRQL than necessary...
CVE-2002-1877
NETGEAR FM114P allows remote attackers to bypass access restrictions for web sites via a URL that uses the IP address instead of the hostname...
CVE-2002-2181
SonicWall Content Filtering allows local users to access prohibited web sites via requests to the web site's IP address instead of the domain name...
Доступ к исходным текстам PHP в plesk (source disclosure)
Используя числовой адрес вместо виртуального имени сервера можно получить доступ к исзодным текстам...
DoS против squid
При PUT-запросе с URL ftp-директории происходит обращение по нулевому адресу...
PT-1997-1156 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: The issue is related to a guessable password for accessing a WWW URL. Recommendations: At the moment, there is no information about a newer version that contains a fix for this...