Lucene search
K

323 matches found

Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.22 views

Scientific Linux Security Update : curl on SL3.x i386/x86_64

Wesley Miaw discovered that when deflate compression was used, libcurl could call the registered write callback function with data exceeding the documented limit. A malicious server could use this flaw to crash an application using libcurl or, potentially, execute arbitrary code. Note: This issue...

6.8CVSS7.5AI score0.04408EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.31 views

Scientific Linux Security Update : curl on SL4.x i386/x86_64

Wesley Miaw discovered that when deflate compression was used, libcurl could call the registered write callback function with data exceeding the documented limit. A malicious server could use this flaw to crash an application using libcurl or, potentially, execute arbitrary code. Note: This issue...

6.8CVSS7.5AI score0.04408EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.46 views

Scientific Linux Security Update : httpd on SL5.x i386/x86_64

A flaw was discovered in the way the modproxy module of the Apache HTTP Server handled the timeouts of requests forwarded by a reverse proxy to the back-end server. If the proxy was configured to reuse existing back-end connections, it could return a response intended for another user under certa...

5CVSS6.2AI score0.2187EPSS
Exploits3References6
RedHat Linux
RedHat Linux
added 2010/08/04 9:30 p.m.7 views

httpd: possible temporary DoS (CPU consumption) in mod_deflate

The moddeflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service CPU consumption...

7.1CVSS7.2AI score0.17111EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2010/07/14 5:46 p.m.1 views

libpng: excessive memory consumption due to highly compressed huge ancillary chunk

The pngdecompresschunk function in pngrutil.c in libpng 1.0.x before 1.0.53, 1.2.x before 1.2.43, and 1.4.x before 1.4.1 does not properly handle compressed ancillary-chunk data that has a disproportionately large uncompressed representation, which allows remote attackers to cause a denial of...

4.3CVSS7.4AI score0.04208EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2010/05/11 12:0 a.m.24 views

RHEL 5 : curl (RHSA-2010:0273)

Updated curl packages that fix one security issue, various bugs, and add enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...

6.8CVSS7.5AI score0.04408EPSS
Exploits0References3
Check Point Advisories
Check Point Advisories
added 2010/03/31 12:0 a.m.3 views

GNU gzip LZH Decompression make_table Stack Modification (CVE-2006-4335)

GNU gzip is a popular compression and decompression utility that ships with all standard Linux distributions, as well as commercial Unix-based operating systems. The utility can create and decompress files which are stored using the DEFLATE algorithm. In addition to the algorithm used in the...

7.5CVSS7.1AI score0.05478EPSS
Exploits1
Metasploit
Metasploit
added 2010/03/16 6:6 p.m.76 views

Adobe Acrobat Bundled LibTIFF Integer Overflow

This module exploits an integer overflow vulnerability in Adobe Reader and Adobe Acrobat Professional versions 8.0 through 8.2 and 9.0 through 9.3. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'zlib' class...

7.8CVSS7.1AI score0.88246EPSS
Exploits12
Prion
Prion
added 2010/03/03 7:30 p.m.19 views

Design/Logic Flaw

The pngdecompresschunk function in pngrutil.c in libpng 1.0.x before 1.0.53, 1.2.x before 1.2.43, and 1.4.x before 1.4.1 does not properly handle compressed ancillary-chunk data that has a disproportionately large uncompressed representation, which allows remote attackers to cause a denial of...

4.3CVSS6.8AI score0.04208EPSS
Exploits0References35Affected Software7
seebug.org
seebug.org
added 2009/12/23 12:0 a.m.13 views

apache mod-deflate 2.2.11 拒绝服务漏洞

No description provided by source...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2009/11/11 10:2 p.m.5 views

httpd: possible temporary DoS (CPU consumption) in mod_deflate

The moddeflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service CPU consumption...

7.1CVSS7.2AI score0.17111EPSS
Exploits3References4
Packet Storm
Packet Storm
added 2009/10/15 12:0 a.m.42 views

MSIE Content-Encoding: Deflate Memory Corruption

MSIE Content-Encoding: deflate memory corruption vulnerability a.k.a. MSRC 8769, MS09-054, CVE-2009-1547, “Data Stream Header Corruption Vulnerability” Microsoft fixed a bug in Internet Explorer’s “Content-Encoding:deflate” implementation. Here are two HTTP replies that trigger the bug:...

9.3CVSS0.7AI score0.37436EPSS
Exploits8
RedHat Linux
RedHat Linux
added 2009/08/10 5:34 p.m.5 views

httpd: possible temporary DoS (CPU consumption) in mod_deflate

The moddeflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service CPU consumption...

7.1CVSS7.2AI score0.17111EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2009/07/17 1:13 p.m.5 views

httpd: possible temporary DoS (CPU consumption) in mod_deflate

The moddeflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service CPU consumption...

7.1CVSS7.2AI score0.17111EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2009/07/14 7:7 p.m.4 views

httpd: possible temporary DoS (CPU consumption) in mod_deflate

The moddeflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service CPU consumption...

7.1CVSS7.2AI score0.17111EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2009/07/14 7:7 p.m.5 views

httpd: possible temporary DoS (CPU consumption) in mod_deflate

The moddeflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service CPU consumption...

7.1CVSS7.2AI score0.17111EPSS
Exploits3References4
OSV
OSV
added 2009/07/10 3:30 p.m.8 views

CVE-2009-1891

The moddeflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service CPU consumption...

7.3AI score
Exploits0References73
OSV
OSV
added 2009/07/10 3:30 p.m.2 views

DEBIAN-CVE-2009-1891

The moddeflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service CPU consumption...

7.1CVSS7.8AI score0.17111EPSS
Exploits3References1
RedHat Linux
RedHat Linux
added 2009/07/09 4:10 p.m.5 views

httpd: possible temporary DoS (CPU consumption) in mod_deflate

The moddeflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service CPU consumption...

7.1CVSS7.2AI score0.17111EPSS
Exploits3References4
securityvulns
securityvulns
added 2006/08/25 12:0 a.m.32 views

[Full-disclosure] EEYE: Internet Explorer Compressed Content URL Heap Overflow Vulnerability

Internet Explorer Compressed Content URL Heap Overflow Vulnerability Release Date: August 24, 2006 Date Reported: August 17, 2006 Severity: High Code Execution Systems Affected: Internet Explorer 6 SP1 with MS06-042 - Windows 2000 Internet Explorer 6 SP1 with MS06-042 - Windows XP SP1 Overview:...

8.2AI score
Exploits0
Rows per page
Query Builder