Lucene search
K

13 matches found

Ubuntu
Ubuntu
added 2026/06/08 4:41 p.m.15 views

USN-8349-2: rsync regression

USN-8349-1 fixed vulnerabilities in rsync. The update introduced multiple regressions in rsync functionality. This update fixes the problem. Original advisory details: Calum Hutton discovered that rsync contained a heap-based out-of-bounds read when handling file transfers. A remote attacker with...

5.6AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.11 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS : rsync vulnerabilities (USN-8349-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8349-1 advisory. Calum Hutton discovered that rsync contained a heap-based out-of-bounds read when handling file transfers. A remote...

8.1CVSS6AI score0.0078EPSS
Exploits1References9
OSV
OSV
added 2026/05/27 3:9 p.m.8 views

EEF-CVE-2026-42790 nameConstraints DNS bypass via subject CommonName fallback in public_key hostname verification

Summary Improper Certificate Validation vulnerability in Erlang OTP public\key pubkey\cert and public\key modules allows a DNS nameConstraints bypass via subject CommonName fallback in TLS hostname verification. Two flaws combine to allow a subordinate CA whose DNS nameConstraints are restricted...

7.6CVSS7AI score0.00338EPSS
Exploits0References6
OSV
OSV
added 2025/06/24 1:15 p.m.2 views

CVE-2025-6432

When Multi-Account Containers was enabled, DNS requests could have bypassed a SOCKS proxy when the domain name was invalid or the SOCKS proxy was not responding. This vulnerability affects Firefox 140 and Thunderbird 140...

8.6CVSS5.8AI score0.00287EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.5 views

Astra Linux – Vulnerability in Firefox

When Multi-Account Containers was enabled, DNS requests could bypass a SOCKS proxy when the domain name was invalid or the SOCKS proxy was not responding. This vulnerability was fixed in Firefox 140 and Thunderbird 140...

8.6CVSS7.5AI score0.00287EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 5:17 p.m.4 views

CVE-2020-0028

In notifyNetworkTested and related functions of NetworkMonitor.java, there is a possible bypass of private DNS settings. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:...

7.1CVSS6.1AI score0.02683EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/06/02 12:0 a.m.9 views

The vulnerability of the Security Intelligence channel function in Cisco Firepower Threat Defense’s microprogramming-based network interface devices allows attackers to bypass the DNS channel of Security Intelligence.

The vulnerability of the Security Intelligence channel function in Cisco Firepower Threat Defense’s microprogramming system is related to the improper processing of unexpected data types. Exploiting this vulnerability can allow a malicious actor to bypass the Security Intelligence DNS channel by...

7.8CVSS7.2AI score0.00913EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2020/02/13 3:15 p.m.2 views

CVE-2020-0028

In notifyNetworkTested and related functions of NetworkMonitor.java, there is a possible bypass of private DNS settings. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:...

6.5CVSS6.7AI score
Exploits0References10
Kitploit
Kitploit
added 2019/07/26 10:10 p.m.363 views

Cloudcheck - Checks Using A Test String If A Cloudflare DNS Bypass Is Possible Using CloudFail

Cloudcheck is made to be used in the same folder as CloudFail. Make sure all files in this repo are in the same folder before using. Also create a empty text file called none.txt in the data folder, that way it doesn't do a subdomain brute when testing. Cloudcheck will automatically change your...

7.2AI score
Exploits0References2
Prion
Prion
added 2019/07/18 6:15 p.m.16 views

Open redirect

Open Information Security Foundation Suricata prior to version 4.1.2 is affected by: Denial of Service - DNS detection bypass. The impact is: An attacker can evade a signature detection with a specialy formed network packet. The component is: app-layer-detect-proto.c, decode.c, decode-teredo.c an...

5CVSS7.5AI score0.02125EPSS
Exploits0References3Affected Software1
myhack58
myhack58
added 2009/04/26 12:0 a.m.10 views

Let the administrator help you restart the server-the vulnerabilities and early warning-the black bar safety net

Go from: http://www.darkst.com/bbs/thread-38959-1-1.html Sometimes, we go through the database backup a batch to the Startup menu, you want the server on the next restart to run our batch processing. But we, Ah, etc., the server is not restarting, what to do? Allow administrator to help us restar...

8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2003/06/10 12:0 a.m.47 views

OpenSSH < 3.6.2 Reverse DNS Lookup Bypass

According to its banner, the remote host appears to be running OpenSSH-portable version 3.6.1 or older. There is a flaw in such version that could allow an attacker to bypass the access controls set by the administrator of this server. OpenSSH features a mechanism that can restrict the list of...

7.5CVSS7.6AI score0.05766EPSS
Exploits1References1
NVD
NVD
added 2002/08/12 4:0 a.m.16 views

CVE-2002-0804

Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, when configured to perform reverse DNS lookups, allows remote attackers to bypass IP restrictions by connecting from a system with a spoofed reverse DNS hostname...

7.5CVSS6.7AI score0.01396EPSS
Exploits0References6
Rows per page
Query Builder