279 matches found
Oracle Linux 6 : php (ELSA-2015-1218)
The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-1218 advisory. - fix patch for CVE-2015-4024 - core: fix multipart/form-data request can use excessive amount of CPU usage CVE-2015-4024 - fix various functions accep...
wireshark-cli: denial of service
CVE-2015-3808 denial of service There is an infinite loop condition in dissectlbmrpser in epan/dissectors/packet-lbmr.c. It's possible for an attacker to set the the variable 'optionlen' to 0, causing the loop to never terminate. This issue is leading to excessive CPU resources consumption by...
IBM DB2 10.5 < Fix Pack 5 Multiple DoS Vulnerabilities
According to its version, the IBM DB2 10.5 server running on the remote host is affected by the following vulnerabilities : - A remote, authenticated attacker, using a specially crafted 'ALTER TABLE' statement on an identity column, can cause a denial of service by crashing the server...
libxml2 security update
CentOS Errata and Security Advisory CESA-2014:1885 Updated libxml2 packages that fix one security issue are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which...
Medium: ruby19
Issue Overview: The upstream patch for CVE-2014-8080 introduced checks against the REXML.entityexpansiontextlimit, but did not add restrictions to limit the number of expansions performed, i.e. checks against the REXML::Document.entityexpansionlimit. As a consequence, even with the patch applied,...
Medium: ruby20
Issue Overview: The upstream patch for CVE-2014-8080 introduced checks against the REXML.entityexpansiontextlimit, but did not add restrictions to limit the number of expansions performed, i.e. checks against the REXML::Document.entityexpansionlimit. As a consequence, even with the patch applied,...
Debian DSA-3057-1 : libxml2 - security update
Sogeti found a denial of service flaw in libxml2, a library providing support to read, modify and write XML and HTML files. A remote attacker could provide a specially crafted XML file that, when processed by an application using libxml2, would lead to excessive CPU consumption denial of service...
[SECURITY] [DSA 3057-1] libxml2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3057-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst October 26, 2014 http://www.debian.org/security/faq -...
Mandriva Linux Security Advisory : libxml2 (MDVSA-2014:204)
A vulnerability has been found and corrected in libxml2 : A denial of service flaw was found in libxml2, a library providing support to read, modify and write XML and HTML files. A remote attacker could provide a specially crafted XML file that, when processed by an application using libxml2, wou...
MGASA-2014-0418 Updated libxml2 packages fix security vulnerability
A denial of service flaw was found in libxml2, a library providing support to read, modify and write XML and HTML files. A remote attacker could provide a specially crafted XML file that, when processed by an application using libxml2, would lead to excessive CPU consumption denial of service bas...
libxml2 security update
CentOS Errata and Security Advisory CESA-2014:1655 Updated libxml2 packages that fix one security issue are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score,...
Moderate: Red Hat Security Advisory: libxml2 security update
Updated libxml2 packages that fix one security issue are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availab...
libxml2 -- Denial of service
RedHat reports: A denial of service flaw was found in libxml2, a library providing support to read, modify and write XML and HTML files. A remote attacker could provide a specially crafted XML file that, when processed by an application using libxml2, would lead to excessive CPU consumption denia...
Ipswitch WhatsUp Professional 2006 Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16771/info Ipswitch WhatsUp Professional 2006 is susceptible to a remote denial-of-service vulnerability. This issue is due to the application's failure to properly handle certain HTTP GET requests. This issue allows remo...
Fedora 19 : jansson-2.6-1.fc19 (2014-3782)
Florian Weimer of the Red Hat Product Security Team found that the hashing implementation in Jansson, a library for encoding, decoding and manipulating JSON data, was susceptible to predictable hash collisions. A remote attacker could use this flaw to cause an application using Jansson to use an...
Mandriva Linux Security Advisory : bzr (MDVSA-2013:229)
Updated bzr packages fix security vulnerabilities : A denial of service flaw was found in the way SSL module implementation of Python 3 performed matching of the certificate's name in the case it contained many '' wildcard characters. A remote attacker, able to obtain valid certificate with its...
[ MDVSA-2013:229 ] bzr
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:229 http://www.mandriva.com/en/support/security/ Package : bzr Date : September 10, 2013 Affected: Business Server 1.0 Problem Description: Updated bzr packages fix security vulnerabilities: A denial of...
Wireshark Multiple Dissector Multiple DoS Vulnerabilities - March 13 (Windows)
This host is installed with Wireshark and is prone to multiple denial of service vulnerabilities. OpenVAS Vulnerability Test $Id: gbwiresharkmultdosvulnmar13win.nasl 6093 2017-05-10 09:03:18Z teissa $ Wireshark Multiple Dissector Multiple DoS Vulnerabilities - March 13 Windows Authors: Arun Kalla...
Wireshark Multiple Dissector Multiple Vulnerabilities - March 13 (Mac OS X)
This host is installed with Wireshark and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbwiresharkmultvulnmar13macosx.nasl 6125 2017-05-15 09:03:42Z teissa $ Wireshark Multiple Dissector Multiple Vulnerabilities - March 13 Mac OS X Authors: Arun Kallavi Copyright: Copyrig...
CentOS Update for libxml2 CESA-2013:0581 centos5
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...