Lucene search
+L

151 matches found

NVD
NVD
added 2015/10/23 9:59 p.m.16 views

CVE-2015-7015

Heap-based buffer overflow in the DNS client library in configd in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows attackers to execute arbitrary code via a crafted app that sends a spoofed configd response to a client...

6.8CVSS9AI score0.02673EPSS
Exploits0References7
Prion
Prion
added 2015/10/23 9:59 p.m.17 views

Heap overflow

Heap-based buffer overflow in the DNS client library in configd in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows attackers to execute arbitrary code via a crafted app that sends a spoofed configd response to a client...

6.8CVSS7.7AI score0.02673EPSS
Exploits0References7Affected Software3
CVE
CVE
added 2015/10/23 9:0 p.m.67 views

CVE-2015-7015

CVE-2015-7015 is a heap-based buffer overflow in the DNS client library of configd that affects Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1. An attacker could exploit a crafted configd response to execute arbitrary code on a vulnerable device. Public-connected documents co...

6.8CVSS8.8AI score0.02673EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2015/10/23 9:0 p.m.26 views

CVE-2015-7015

Heap-based buffer overflow in the DNS client library in configd in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows attackers to execute arbitrary code via a crafted app that sends a spoofed configd response to a client...

9.1AI score0.02673EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2015/07/15 12:35 p.m.5 views

OpenJDK: DnsClient fails to release request information after error (JNDI, 8075378)

It was discovered that the JNDI component in OpenJDK did not handle DNS resolution errors correctly. An attacker able to trigger such DNS errors could cause a Java application using JNDI to consume memory and CPU time, and possibly block further DNS resolution...

4.3CVSS6.7AI score0.03316EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2014/07/29 3:40 p.m.6 views

OpenJDK: missing randomization of JNDI DNS client query IDs (JNDI, 8030731)

Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality and integrity via vectors related to JNDI...

5.8CVSS6.8AI score0.0435EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2014/07/04 12:0 a.m.45 views

RedHat Update for java-1.7.0-openjdk RHSA-2014:0675-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.7AI score0.07571EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2014/06/10 12:34 p.m.51 views

Important: Red Hat Security Advisory: java-1.6.0-openjdk security update

Updated java-1.6.0-openjdk packages that fix various security issues are now available for Red Hat Enterprise Linux 7. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

10CVSS7.3AI score0.07571EPSS
Exploits0References20
Amazon
Amazon
added 2014/04/17 12:0 a.m.57 views

Critical: java-1.7.0-openjdk

Issue Overview: An input validation flaw was discovered in the medialib library in the 2D component. A specially crafted image could trigger Java Virtual Machine memory corruption when processed. A remote attacker, or an untrusted Java application or applet, could possibly use this flaw to execut...

10CVSS9AI score0.07571EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2014/04/17 12:0 a.m.36 views

Scientific Linux Security Update : java-1.6.0-openjdk on SL5.x, SL6.x i386/x86_64 (20140416)

An input validation flaw was discovered in the medialib library in the 2D component. A specially crafted image could trigger Java Virtual Machine memory corruption when processed. A remote attacker, or an untrusted Java application or applet, could possibly use this flaw to execute arbitrary code...

10CVSS7.8AI score0.07571EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2014/04/17 12:0 a.m.42 views

Scientific Linux Security Update : java-1.7.0-openjdk on SL5.x i386/x86_64 (20140416)

An input validation flaw was discovered in the medialib library in the 2D component. A specially crafted image could trigger Java Virtual Machine memory corruption when processed. A remote attacker, or an untrusted Java application or applet, could possibly use this flaw to execute arbitrary code...

10CVSS7.8AI score0.07571EPSS
Exploits0References26
Tenable Nessus
Tenable Nessus
added 2012/06/04 12:0 a.m.14 views

DNS Client Flame Infection

Binary data 7058.pasl...

7.3AI score
Exploits0
Nmap
Nmap
added 2012/02/19 1:22 p.m.143 views

dns-client-subnet-scan NSE Script

Performs a domain lookup using the edns-client-subnet option which allows clients to specify the subnet that queries supposedly originate from. The script uses this option to supply a number of geographically distributed locations in an attempt to enumerate as many different address records as...

10CVSS9.2AI score0.99448EPSS
Exploits33
Tenable Nessus
Tenable Nessus
added 2011/08/11 12:0 a.m.9 views

DNS Client Detection (UDP)

Binary data 6006.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/04/21 12:0 a.m.2025 views

MS11-030: Vulnerability in DNS Resolution Could Allow Remote Code Execution (2509553) (remote check)

A flaw in the way the installed Windows DNS client processes Link- local Multicast Name Resolution LLMNR queries can be exploited to execute arbitrary code in the context of the NetworkService account. Note that Windows XP and 2003 do not support LLMNR and successful exploitation on those platfor...

9.8CVSS8.5AI score0.63335EPSS
Exploits2References2
securityvulns
securityvulns
added 2011/04/17 12:0 a.m.121 views

Microsoft Windows multiple security vulnerabilities

SMB client and server memory corruption, Fax Cover Page Editor memory corruption, MFC library unsafe DLL loading, MHTML library information leak, GDI+ library integer overflow, DNS client memory corruption, memory corruption in .Net Framework, memory corruption in JScript / VBScript engines, stac...

10CVSS3.1AI score0.68084EPSS
Exploits7References2Affected Software1
NVD
NVD
added 2011/04/13 6:55 p.m.23 views

CVE-2011-0657

DNSAPI.dll in the DNS client in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly process DNS queries, which allows remote attackers to execute arbitrary code via 1 a...

9.8CVSS7.4AI score0.63335EPSS
Exploits2References8
Prion
Prion
added 2011/04/13 6:55 p.m.18 views

Design/Logic Flaw

DNSAPI.dll in the DNS client in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly process DNS queries, which allows remote attackers to execute arbitrary code via 1 a...

7.5CVSS8AI score0.63335EPSS
Exploits2References8Affected Software3
Positive Technologies
Positive Technologies
added 2011/04/13 12:0 a.m.2 views

PT-2011-2535 · Microsoft · Windows Xp +6

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 through SP2 Microsoft Windows Server 2008 versions Gold through R2 SP1 Microsoft Windows 7 versions Gold through SP1...

9.8CVSS7.8AI score0.63335EPSS
Exploits2References13
Tenable Nessus
Tenable Nessus
added 2011/04/13 12:0 a.m.450 views

MS11-030: Vulnerability in DNS Resolution Could Allow Remote Code Execution (2509553)

A flaw in the way the installed Windows DNS client processes Link- local Multicast Name Resolution LLMNR queries can be exploited to execute arbitrary code in the context of the NetworkService account. Note that Windows XP and 2003 do not support LLMNR and successful exploitation on those platfor...

9.8CVSS8.5AI score0.63335EPSS
Exploits2References2
Rows per page
Query Builder