181 matches found
USN-3275-3 openjdk-7 regression
USN-3275-2 fixed vulnerabilities in OpenJDK 7. Unfortunately, the update introduced a regression when handling TLS handshakes. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that OpenJDK improperly re-used cached NTLM connections in...
EUVD-2017-14611
Memory leak in coders/mpc.c in ImageMagick before 6.9.7-4 and 7.x before 7.0.4-4 allows remote attackers to cause a denial of service memory consumption via vectors involving a pixel cache...
ImageMagick magick/cache.c File Denial of Service Vulnerability
mageMagick is a set of open source image processing software. A security vulnerability exists in the ImageMagick magick/cache.c file. An attacker can exploit the vulnerability to submit a special file that will trick the application into parsing it, crashing the application...
CVE-2017-6076
In versions of wolfSSL before 3.10.2 the function fpmulcomba makes it easier to extract RSA key information for a malicious user who has access to view cache on a machine...
UBUNTU-CVE-2016-10002
Incorrect processing of responses to If-None-Modified HTTP conditional requests in Squid HTTP Proxy 3.1.10 through 3.1.23, 3.2.0.3 through 3.5.22, and 4.0.1 through 4.0.16 leads to client-specific Cookie data being leaked to other clients. Attack requests can easily be crafted by a client to prob...
Wireshark AllJoyn Parser Cache Denial of Service Vulnerability
Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A denial of service vulnerability exists in the AllJoyn parser in Wireshark versions 2.2...
CVE-2016-4746
The Keyboards component in Apple iOS before 10 does not properly use a cache for auto-correct suggestions, which allows remote attackers to obtain sensitive information in opportunistic circumstances by leveraging an unintended correction...
CVE-2015-5490
The viewsfetchdata method in includes/cache.inc in the Views module 7.x-3.5 through 7.x-3.10 for Drupal does not rebuild the full cache if the static cache is not empty, which allows remote attackers to bypass intended filters and obtain access to hidden content via unspecified vectors...
Discuz! X-Series remote code execution vulnerability analysis-vulnerability warning-the black bar safety net
0x01 vulnerability root causes The root of the problem is that the api/uc. php file in the updatebadwords method, the code is as follows: function updatebadwords$get, $post global $G; if! APIUPDATEBADWORDS return APIRETURNFORBIDDEN; $data = array; ifisarray$post foreach$post as $k = $v...
MS15-001: Vulnerability in Windows Application Compatibility Cache Could Allow Elevation of Privilege (3023266)
The remote Windows host is affected by a privilege escalation vulnerability due to improper validation of the authorization of a caller's impersonation token in the Microsoft Windows Application Compatibility Infrastructure AppCompat component. A local attacker, with a specially crafted program,...
CVE-2014-5459
The PEARREST class in REST.php in PEAR in PHP through 5.6.0 allows local users to write to arbitrary files via a symlink attack on a 1 rest.cachefile or 2 rest.cacheid file in /tmp/pear/cache/, related to the retrieveCacheFirst and useLocalCache functions...
ISC BIND 9 resolver cache vulnerability
Overview ISC BIND 9 resolver contains a vulnerability that could allow a attacker to keep a domain name in the cache even after it has been deleted from registration. Description According to ISC:I SC has been notified by Haixin Duan a professor at Tsinghua University in Beijing China, who is...
ISC BIND cache vulnerability
Overview The ISC BIND nameserver contains a vulnerability that could allow a remote attacker to cause a denial of service. Description According to ISC:Adding certain types of signed negative responses to cache doesn't clear any matching RRSIG records already in cache. A subsequent lookup of the...
Firefox wyciwyg:// cache zone bypass
There is an interesting vulnerability in how Mozilla Firefox handles internal wyciwyg:// pseudo-URIs. These cache-related resource identifiers are meant to be inaccessible by the user - but there are at least three routes to bypass these restrictionss, one of which - HTTP 302 redirect - also...
CVE-2001-1452
By default, DNS servers on Windows NT 4.0 and Windows 2000 Server cache glue records received from non-delegated name servers, which allows remote attackers to poison the DNS cache via spoofed DNS responses...
DEBIAN-CVE-2005-0626
Race condition in Squid 2.5.STABLE7 to 2.5.STABLE9, when using the Netscape Set-Cookie recommendations for handling cookies in caches, may cause Set-Cookie headers to be sent to other users, which allows attackers to steal the related cookies...
DEBIAN-CVE-2004-2654
The clientAbortBody function in clientside.c in Squid Web Proxy Cache before 2.6 STABLE6 allows remote attackers to cause a denial of service segmentation fault via unspecified vectors that trigger a null dereference. NOTE: in a followup advisory, a researcher claimed that the issue was a buffer...
MS Internet Explorer Overly Trusted Location Cache Exploit
Exploit for unknown platform in category dos / poc ========================================================== MS Internet Explorer Overly Trusted Location Cache Exploit ========================================================== Overly Trusted Location Variant Method Cache Vulnerability GO! This...
MS Internet Explorer Overly Trusted Location Cache Exploit
No description provided by source. html body bfont size="5"Overly Trusted Location Variant Method Cache Vulnerability/font/b brbr a href="refresh" onclick="setTimeout'document.execCommand'Refresh'',1000;"font size=4 color=redGO!/font/abr +br This vulnerability seems to be unstable. For some...
Microsoft Internet Explorer - Overly Trusted Location Cache
Overly Trusted Location Variant Method Cache Vulnerability GO! This vulnerability seems to be unstable. For some reason, it crashes my internet explorer unless the exploit is executed onlo +ad and even then it crashes sometimes. var...