Lucene search
K

183 matches found

RedHat Linux
RedHat Linux
added 2017/05/24 11:38 a.m.15 views

samba: Loading shared modules from any path in the system leading to RCE (SambaCry)

A remote code execution flaw was found in Samba. A malicious authenticated samba client, having write access to the samba share, could use this flaw to execute arbitrary code as root...

10CVSS8.1AI score0.99448EPSS
Exploits24References6
RedHat Linux
RedHat Linux
added 2017/05/24 9:13 a.m.2 views

samba: Loading shared modules from any path in the system leading to RCE (SambaCry)

A remote code execution flaw was found in Samba. A malicious authenticated samba client, having write access to the samba share, could use this flaw to execute arbitrary code as root...

10CVSS8.1AI score0.99448EPSS
Exploits24References6
RedHat Linux
RedHat Linux
added 2017/05/24 9:1 a.m.3 views

samba: Loading shared modules from any path in the system leading to RCE (SambaCry)

A remote code execution flaw was found in Samba. A malicious authenticated samba client, having write access to the samba share, could use this flaw to execute arbitrary code as root...

10CVSS8.1AI score0.99448EPSS
Exploits24References6
Tenable Nessus
Tenable Nessus
added 2017/05/12 12:0 a.m.45 views

FreeBSD : OpenVPN -- two remote denial-of-service vulnerabilities (04cc7bd2-3686-11e7-aa64-080027ef73ec)

Samuli Seppanen reports : OpenVPN v2.4.0 was audited for security vulnerabilities independently by Quarkslabs funded by OSTIF and Cryptography Engineering funded by Private Internet Access between December 2016 and April 2017. The primary findings were two remote denial-of-service vulnerabilities...

7.5CVSS7AI score0.13892EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2017/04/24 12:0 a.m.53 views

SUSE SLED12 / SLES12 Security Update : tigervnc (SUSE-SU-2017:1094-1)

This update for tigervnc provides the several fixes. These security issues were fixed : - CVE-2017-7392, CVE-2017-7396: Client can cause leak in VNC server bsc1031886 - CVE-2017-7395: Authenticated VNC client can crash VNC server bsc1031877 - CVE-2017-7394: Client can crash or block VNC server...

8.8CVSS6.9AI score0.02033EPSS
Exploits0References20
OSV
OSV
added 2017/04/22 8:14 a.m.6 views

SUSE-SU-2017:1093-1 Security update for tigervnc

This update for tigervnc provides the several fixes. These security issues were fixed: - CVE-2017-7392, CVE-2017-7396: Client can cause leak in VNC server bsc1031886 - CVE-2017-7395: Authenticated VNC client can crash VNC server bsc1031877 - CVE-2017-7394: Client can crash or block VNC server...

8.8CVSS7.7AI score0.02033EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2017/04/01 2:59 a.m.20 views

CVE-2017-7395

In TigerVNC 1.7.1 SMsgReader.cxx SMsgReader::readClientCutText, by causing an integer overflow, an authenticated client can crash the server...

6.5CVSS6.9AI score0.01432EPSS
Exploits0References1
OSV
OSV
added 2017/04/01 2:59 a.m.2 views

DEBIAN-CVE-2017-7395

In TigerVNC 1.7.1 SMsgReader.cxx SMsgReader::readClientCutText, by causing an integer overflow, an authenticated client can crash the server...

6.5CVSS6.9AI score0.01432EPSS
Exploits0References1
OSV
OSV
added 2017/04/01 2:59 a.m.1 views

DEBIAN-CVE-2017-7393

In TigerVNC 1.7.1 VNCSConnectionST.cxx VNCSConnectionST::fence, an authenticated client can cause a double free, leading to denial of service or potentially code execution...

8.8CVSS7.5AI score0.0182EPSS
Exploits0References1
OSV
OSV
added 2017/04/01 2:59 a.m.1 views

UBUNTU-CVE-2017-7395

In TigerVNC 1.7.1 SMsgReader.cxx SMsgReader::readClientCutText, by causing an integer overflow, an authenticated client can crash the server...

6.5CVSS7.2AI score0.01432EPSS
Exploits0References2
Prion
Prion
added 2017/04/01 2:59 a.m.19 views

Double free

In TigerVNC 1.7.1 VNCSConnectionST.cxx VNCSConnectionST::fence, an authenticated client can cause a double free, leading to denial of service or potentially code execution...

6.5CVSS8.4AI score0.0182EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2017/04/01 2:59 a.m.19 views

CVE-2017-7393

In TigerVNC 1.7.1 VNCSConnectionST.cxx VNCSConnectionST::fence, an authenticated client can cause a double free, leading to denial of service or potentially code execution...

8.8CVSS6.9AI score
Exploits0References4
Cvelist
Cvelist
added 2017/04/01 1:7 a.m.13 views

CVE-2017-7395

In TigerVNC 1.7.1 SMsgReader.cxx SMsgReader::readClientCutText, by causing an integer overflow, an authenticated client can crash the server...

7.3AI score0.01432EPSS
Exploits0References5
OSV
OSV
added 2016/03/12 12:0 a.m.33 views

DSA-3514-1 samba - security update

Bulletin has no description...

6.5CVSS6.7AI score0.12938EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/03/26 12:0 a.m.23 views

Debian DLA-98-1 : openvpn security update

Dragana Damjanovic discovered that an authenticated client could crash an OpenVPN server by sending a control packet containing less than four bytes as payload. For the oldstable distribution squeeze, this problem has been fixed in version 2.1.3-2+squeeze3 in squeeze-lts. We recommend that you...

6.8CVSS5.2AI score0.03478EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/01/16 12:0 a.m.26 views

Amazon Linux AMI : xorg-x11-server (ALAS-2015-470)

Multiple integer overflow flaws and out-of-bounds write flaws were found in the way the X.Org server calculated memory requirements for certain X11 core protocol and GLX extension requests. A malicious, authenticated client could use either of these flaws to crash the X.Org server or, potentially...

6.5CVSS6.7AI score0.05192EPSS
Exploits0References14
Amazon
Amazon
added 2015/01/15 12:0 a.m.56 views

Important: xorg-x11-server

Issue Overview: Multiple integer overflow flaws and out-of-bounds write flaws were found in the way the X.Org server calculated memory requirements for certain X11 core protocol and GLX extension requests. A malicious, authenticated client could use either of these flaws to crash the X.Org server...

6.5CVSS7.8AI score0.05192EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2014/12/11 7:41 p.m.3 views

xorg-x11-server: out of bounds access due to not validating length or offset values in DRI3 & Present extensions

Multiple out-of-bounds access flaws were found in the way the X.Org server calculated memory requirements for certain requests. A malicious, authenticated client could use either of these flaws to crash the X.Org server...

6.5CVSS7.1AI score0.03379EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2014/12/11 7:41 p.m.2 views

xorg-x11-server: out of bounds access due to not validating length or offset values in XFixes extension

Multiple out-of-bounds access flaws were found in the way the X.Org server calculated memory requirements for certain requests. A malicious, authenticated client could use either of these flaws to crash the X.Org server...

6.5CVSS6.6AI score0.04378EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2014/12/11 7:41 p.m.7 views

xorg-x11-server: integer overflow in GLX extension requests when calculating memory needs for requests

Multiple integer overflow flaws were found in the way the X.Org server calculated memory requirements for certain GLX extension requests. A malicious, authenticated client could use either of these flaws to crash the X.Org server or, potentially, execute arbitrary code with root privileges...

6.5CVSS7.2AI score0.04373EPSS
Exploits0References5
Rows per page
Query Builder