Lucene search
K

9310 matches found

RedHat Linux
RedHat Linux
added 2013/04/24 5:34 p.m.41 views

Low: Red Hat Security Advisory: glibc security and bug fix update

Updated glibc packages that fix two security issues and two bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, ar...

5CVSS6.8AI score0.04113EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2013/04/24 5:34 p.m.2 views

glibc: Buffer overrun (DoS) in regexp matcher by processing multibyte characters

A flaw was found in the regular expression matching routines that process multibyte character input. If an application utilized the glibc regular expression matching mechanism, an attacker could provide specially-crafted input that, when processed, would cause the application to crash...

5CVSS7.3AI score0.02851EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2013/04/20 12:0 a.m.35 views

Mandriva Linux Security Advisory : emacs (MDVSA-2013:076)

Updated emacs packages fix security vulnerabilities : Untrusted search path vulnerability in EDE in CEDET before 1.0.1, as used in GNU Emacs before 23.4 and other products, allows local users to gain privileges via a crafted Lisp expression in a Project.ede file in the directory, or a parent...

9.3CVSS7.6AI score0.03804EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2013/04/02 12:0 a.m.30 views

Ubuntu Update for bind9 USN-1783-1

Check for the Version of bind9 OpenVAS Vulnerability Test $Id: gbubuntuUSN17831.nasl 8466 2018-01-19 06:58:30Z teissa $ Ubuntu Update for bind9 USN-1783-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; y...

7.8CVSS7.6AI score0.42851EPSS
Exploits1References2
securityvulns
securityvulns
added 2013/04/01 12:0 a.m.57 views

bind / dhcp DoS

Resources exhaustion on RDATA regular expression check...

7.8CVSS1.7AI score0.42851EPSS
Exploits1References2Affected Software2
Ubuntu
Ubuntu
added 2013/03/29 12:37 p.m.48 views

USN-1783-1: Bind vulnerability

Matthew Horsfall discovered that Bind incorrectly handled regular expression checking. A remote attacker could use this flaw to cause Bind to consume an excessive amount of memory, possibly resulting in a denial of service. This issue was corrected by disabling RDATA regular expression syntax...

7.8CVSS6.7AI score0.42851EPSS
Exploits1
NVD
NVD
added 2013/03/28 4:55 p.m.18 views

CVE-2013-2266

libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows remote attackers to cause a denial of service memory consumption via a crafted regular expression, as demonstrated by a memory-exhaustion attack again...

7.8CVSS8AI score0.42851EPSS
Exploits1References15
Prion
Prion
added 2013/03/28 4:55 p.m.27 views

Design/Logic Flaw

libdns in ISC DHCP 4.2.x before 4.2.5-P1 allows remote name servers to cause a denial of service memory consumption via vectors involving a regular expression, as demonstrated by a memory-exhaustion attack against a machine running a dhcpd process, a related issue to CVE-2013-2266...

4.9CVSS6.6AI score0.42851EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2013/03/28 4:0 p.m.27 views

CVE-2013-2266

libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows remote attackers to cause a denial of service memory consumption via a crafted regular expression, as demonstrated by a memory-exhaustion attack again...

7.5AI score0.42851EPSS
Exploits1References15
UbuntuCve
UbuntuCve
added 2013/03/26 12:0 a.m.27 views

CVE-2013-2266

libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows remote attackers to cause a denial of service memory consumption via a crafted regular expression, as demonstrated by a memory-exhaustion attack again...

7.8CVSS6.8AI score0.42851EPSS
Exploits1References4
The Hacker News
The Hacker News
added 2013/03/13 7:34 p.m.15 views

Philippines President's website defaced by Anonymous Hackers

Philippines-Malaysia Cyber war over Sabah land dispute take another turn, when Philippines hackers deface their own President Benigno Aquino III website early Thursday, and criticized how the President has been handling the conflict in Sabah.The hacker group left a message to the president on the...

6.7AI score
Exploits0
Prion
Prion
added 2013/03/01 5:40 a.m.22 views

Design/Logic Flaw

lib/rack/multipart.rb in Rack before 1.1.4, 1.2.x before 1.2.6, 1.3.x before 1.3.7, and 1.4.x before 1.4.2 uses an incorrect regular expression, which allows remote attackers to cause a denial of service infinite loop via a crafted Content-Disposion header...

4.3CVSS6.8AI score0.02717EPSS
Exploits0References7Affected Software1
Saint
Saint
added 2013/02/21 12:0 a.m.62 views

Adobe Flash Player SWF Content Regular Expression Heap Overflow

Added: 02/21/2013 CVE: CVE-2013-0634 BID: 57788 OSVDB: 89936 Background Adobe Flash Player is a cross-platform browser plug-in providing visual enhancements for web pages. Problem The ActiveX version of Adobe Flash Player on Windows is vulnerable to heap buffer overflow because it does not proper...

9.3CVSS9.1AI score0.77597EPSS
Exploits10
Saint
Saint
added 2013/02/21 12:0 a.m.39 views

Adobe Flash Player SWF Content Regular Expression Heap Overflow

Added: 02/21/2013 CVE: CVE-2013-0634 BID: 57788 OSVDB: 89936 Background Adobe Flash Player is a cross-platform browser plug-in providing visual enhancements for web pages. Problem The ActiveX version of Adobe Flash Player on Windows is vulnerable to heap buffer overflow because it does not proper...

9.3CVSS9.1AI score0.77597EPSS
Exploits10
RedHat Linux
RedHat Linux
added 2013/02/20 9:33 p.m.6 views

Framework: Information (internal server information, classpath, local working directories, session IDs) disclosure

VMware SpringSource Spring Framework before 2.5.6.SEC03, 2.5.7.SR023, and 3.x before 3.0.6, when a container supports Expression Language EL, evaluates EL expressions in tags twice, which allows remote attackers to obtain sensitive information via a 1 name attribute in a a spring:hasBindErrors ta...

7.5CVSS6.5AI score0.11779EPSS
Exploits1References4
Prion
Prion
added 2013/02/08 8:55 p.m.36 views

Buffer overflow

Buffer overflow in the extendbuffers function in the regular expression matcher posix/regexec.c in glibc, possibly 2.17 and earlier, allows context-dependent attackers to cause a denial of service memory corruption and crash via crafted multibyte characters...

5CVSS7.3AI score0.02851EPSS
Exploits0References15Affected Software1
RedHat Linux
RedHat Linux
added 2013/01/31 7:31 p.m.5 views

Framework: Information (internal server information, classpath, local working directories, session IDs) disclosure

VMware SpringSource Spring Framework before 2.5.6.SEC03, 2.5.7.SR023, and 3.x before 3.0.6, when a container supports Expression Language EL, evaluates EL expressions in tags twice, which allows remote attackers to obtain sensitive information via a 1 name attribute in a a spring:hasBindErrors ta...

7.5CVSS6.5AI score0.11779EPSS
Exploits1References4
0day.today
0day.today
added 2013/01/29 12:0 a.m.40 views

Wordpress plugins wp-powerplaygallery Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2013/01/24 7:6 p.m.67 views

Important: Red Hat Security Advisory: JBoss Enterprise Web Platform 5.2.0 update

JBoss Enterprise Web Platform 5.2.0, which fixes multiple security issues, various bugs, and adds several enhancements, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring...

10CVSS7.7AI score0.15561EPSS
Exploits6References16
RedHat Linux
RedHat Linux
added 2013/01/24 7:6 p.m.6 views

Framework: Information (internal server information, classpath, local working directories, session IDs) disclosure

VMware SpringSource Spring Framework before 2.5.6.SEC03, 2.5.7.SR023, and 3.x before 3.0.6, when a container supports Expression Language EL, evaluates EL expressions in tags twice, which allows remote attackers to obtain sensitive information via a 1 name attribute in a a spring:hasBindErrors ta...

7.5CVSS6.5AI score0.11779EPSS
Exploits1References4
Rows per page
Query Builder