116 matches found
Dell Vnx2 Oe For File 日志信息泄露漏洞
Dell Vnx2 Oe For File is an operating environment from Dell, Inc. A sensitive information vulnerability exists in Dell VNX2 OE for File versions 8.1.21.266 and earlier, which stems from an application exporting too much data. An attacker could use this vulnerability to obtain log information...
Linux kernel information disclosure vulnerability (CNVD-2021-60526)
Linux kernel is the kernel used by the Linux Foundation's open source operating system, Linux. Linux kernel is vulnerable due to an excessive amount of data output in the Linux kernel functions, which allows user-state applications to read the contents of a sigpage, thereby leaking the contents o...
Linux kernel安全漏洞
Linux kernel is the kernel used by the Linux Foundation's open source operating system, Linux. Linux kernel is vulnerable due to an excessive amount of data output in the Linux kernel functions, which allows user-state applications to read the contents of a sigpage, thereby leaking the contents o...
Moodle 信息泄露漏洞
Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment. Moodle suffers from an information disclosure vulnerability that stems from the application exporting too much data. A remote attacker...
CVE-2020-28944
OX Guard 2.10.4 and earlier allows a Denial of Service via a WKS server that responds slowly or with a large amount of data...
Security Update for Microsoft Power BI Report Server (March 2021)
An information disclosure vulnerability exists in Microsoft Power BI Report Server due to excessive data output by the application in Microsoft Power BI. An authenticated, remote attacker can exploit this, to disclose potentially sensitive information. Note that Nessus has not tested for this iss...
WESEEK GROWI Information Disclosure Vulnerability
Weseek WESEEK GROWI is a suite of team collaboration software from WESEEK Weseek Japan. An information disclosure vulnerability exists in GROWI versions 4.0.0 through 4.1.3, which stems from the application exporting too much data. The vulnerability allows a remote attacker to access potentially...
Denial Of Service (DoS) Via Settings Flood
github.com/grpc/grpc-go is vulnerable to denial of service DoS attacks. The attack can be triggered by sending a flood of settings by a HTTP/2 peer, leading to an excessive data queue and causing high CPU and resource consumption...
CVE-2019-5839
Excessive data validation in URL parser in Google Chrome prior to 75.0.3770.80 allowed a remote attacker who convinced a user to input a URL to bypass website URL validation via a crafted URL...
Authentication flaw
Excessive data validation in URL parser in Google Chrome prior to 75.0.3770.80 allowed a remote attacker who convinced a user to input a URL to bypass website URL validation via a crafted URL...
CVE-2019-5839
Excessive data validation in URL parser in Google Chrome prior to 75.0.3770.80 allowed a remote attacker who convinced a user to input a URL to bypass website URL validation via a crafted URL...
CVE-2019-5839
Excessive data validation in URL parser in Google Chrome prior to 75.0.3770.80 allowed a remote attacker who convinced a user to input a URL to bypass website URL validation via a crafted URL...
CVE-2019-5839
Excessive data validation in URL parser in Google Chrome prior to 75.0.3770.80 allowed a remote attacker who convinced a user to input a URL to bypass website URL validation via a crafted URL...
Your Location has been Shared 5,398 Times in Last 14 Days
Do you realize how often your smartphone is sharing your location data with various companies? It is more than 5000 times in just two weeks. That is little Shocking but True! A recent study by the security researchers from Carnegie Mellon reveals that a number of smartphone applications collect...
Uber’s Android app is Literally Malware?
The popular ride-sharing service Uber has been hit by various controversies lately, but now the things gone even worse for the company when a security researcher made a worrying discovery this week and claims, "Uber’s app is literally malware." The ride-hailing company is in disputes of handling...
CesarFTP 0.99 g Remote CWD Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7950/info A vulnerability has been reported for CesarFTP. Reportedly, an attacker may crash a target server by supplying excessive data as the argument to the 'CWD' command. This may result in the server hanging,...
Crackalaka IRC Server 1.0.8 - Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10092/info It has been reported that Crackalaka may be prone to a remote denial of service vulnerability that may allow an attacker to crash the server by sending an excessive amount of data. Crackalaka version 1.0.8 is...
EvolutionX Multiple Remote Buffer Overflow Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/9631/info The FTP server that is distributed with EvolutionX has been reported prone to multiple buffer overflow vulnerabilities. The first of these vulnerabilities exists post-authentication, and is due to a lack of...
GoodTech Telnet Server 4.0 - Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9337/info GoodTech Telnet Server is reportedly prone to a denial of service vulnerability. This condition occurs prior to authentication when excessive data is received by the server. Exploitation could result in memory...
CVE-2014-2342
Triangle MicroWorks SCADA Data Gateway vulnerable to DoS via crafted DNP3 packets. Affected: versions before 3.00.0635. Root cause: incorrect input validation leading to uncontrolled resource consumption (IP-connected DoS; serial connections also impacted with physical access). Impact: denial of ...