Lucene search
+L

3875 matches found

RedHat Linux
RedHat Linux
added 2012/12/21 3:9 a.m.5 views

jruby: Murmur hash function collisions (oCERT-2012-001)

JRuby computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application that maintains a hash table, as demonstrated by a universal...

5CVSS5.8AI score0.02249EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2012/12/04 12:0 a.m.34 views

Oracle Java SE Hash Collision DoS Vulnerability - Windows

Oracle Java SE is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.6AI score0.0317EPSS
Exploits1References7
OSV
OSV
added 2012/11/28 1:3 p.m.15 views

CVE-2012-5370

JRuby computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application that maintains a hash table, as demonstrated by a universal...

6.1AI score
Exploits0References6
Prion
Prion
added 2012/11/28 1:3 p.m.30 views

Design/Logic Flaw

JRuby computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application that maintains a hash table, as demonstrated by a universal...

5CVSS6.5AI score0.0436EPSS
Exploits1References6
Prion
Prion
added 2012/11/28 1:3 p.m.14 views

Design/Logic Flaw

Google CityHash computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application that maintains a hash table, as demonstrated by a univers...

5CVSS6.9AI score0.0061EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2012/11/28 1:3 p.m.28 views

CVE-2012-6051

Google CityHash computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application that maintains a hash table, as demonstrated by a univers...

5CVSS5.9AI score0.0061EPSS
Exploits0References5
Prion
Prion
added 2012/11/28 1:3 p.m.26 views

Design/Logic Flaw

Rubinius computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application that maintains a hash table, as demonstrated by a universal...

5CVSS6.9AI score0.01941EPSS
Exploits1References5
Cvelist
Cvelist
added 2012/11/28 11:0 a.m.39 views

CVE-2012-5373

Oracle Java SE 7 and earlier, and OpenJDK 7 and earlier, computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application that maintains a...

8.4AI score0.02289EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2012/11/28 11:0 a.m.77 views

CVE-2012-5370

JRuby computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application that maintains a hash table, as demonstrated by a universal...

5CVSS5.3AI score0.02249EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2012/11/06 6:8 p.m.4 views

kernel: udf: buffer overflow when parsing sparing table

Heap-based buffer overflow in the udfloadlogicalvol function in fs/udf/super.c in the Linux kernel before 3.4.5 allows remote attackers to cause a denial of service system crash or possibly have unspecified other impact via a crafted UDF filesystem...

7.6CVSS7.7AI score0.08738EPSS
Exploits1References4
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.56 views

BufferOverflow Vulnerability on Logica HotScan SWIFT Alliance Access Interface

-------------------------------------------------------------------------------- | BufferOverflow Vulnerability on Logica HotScan SWIFT Alliance Access Interface -------------------------------------------------------------------------------- Summary ======= Hotscan Listener interface is prone to...

4.3CVSS2AI score0.0131EPSS
Exploits0
Prion
Prion
added 2012/10/05 9:55 p.m.28 views

Code injection

Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application...

5CVSS6.5AI score0.0506EPSS
Exploits3References18Affected Software1
OSV
OSV
added 2012/10/05 9:0 p.m.9 views

PSF-2012-5 Hash DoS

Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application...

5CVSS9.1AI score0.0506EPSS
Exploits3References3
NVD
NVD
added 2012/08/30 5:55 p.m.19 views

CVE-2012-3254

Multiple unspecified vulnerabilities in HP iNode Management Center before iNode PC 5.1 E0304 allow remote attackers to execute arbitrary code via crafted input, as demonstrated by a stack-based buffer overflow in iNodeMngChecker.exe for a crafted 0x0A0BF007 packet...

10CVSS8.1AI score0.09593EPSS
Exploits0References2
NVD
NVD
added 2012/08/30 5:55 p.m.21 views

CVE-2012-3253

Multiple unspecified vulnerabilities in HP Intelligent Management Center IMC before 5.0 E0101P05 allow remote attackers to execute arbitrary code via crafted input, as demonstrated by an integer overflow and heap-based buffer overflow in img.exe for a crafted message packet...

10CVSS8.2AI score0.09593EPSS
Exploits0References2
Prion
Prion
added 2012/08/30 5:55 p.m.21 views

Integer overflow

Multiple unspecified vulnerabilities in HP Intelligent Management Center IMC before 5.0 E0101P05 allow remote attackers to execute arbitrary code via crafted input, as demonstrated by an integer overflow and heap-based buffer overflow in img.exe for a crafted message packet...

10CVSS8.9AI score0.09593EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2012/08/30 5:0 p.m.27 views

CVE-2012-3253

Multiple unspecified vulnerabilities in HP Intelligent Management Center IMC before 5.0 E0101P05 allow remote attackers to execute arbitrary code via crafted input, as demonstrated by an integer overflow and heap-based buffer overflow in img.exe for a crafted message packet...

8.2AI score0.09593EPSS
Exploits0References2
Cvelist
Cvelist
added 2012/08/21 10:0 a.m.33 views

CVE-2012-3301

Multiple CRLF injection vulnerabilities in the HTTP server in IBM Lotus Domino 8.5.x before 8.5.4 allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via crafted input involving 1 Mozilla Firefox 3.0.9 and earlier or 2 unspecified browsers...

6.9AI score0.01467EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2012/07/31 2:24 p.m.6 views

jruby: hash table collisions DoS (oCERT-2011-003)

JRuby before 1.6.5.1 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application that maintains a hash table...

5CVSS5.8AI score0.0436EPSS
Exploits1References4
NVD
NVD
added 2012/07/23 5:55 p.m.23 views

CVE-2012-2953

The management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary commands via crafted input to application scripts...

10CVSS7.4AI score0.67389EPSS
Exploits9References3
Rows per page
Query Builder