Lucene search
K

8517 matches found

CVE
CVE
added 2014/06/02 3:0 p.m.47 views

CVE-2013-7386

The CVE-2013-7386 entry concerns BOINC’s PROJECT::write_account_file in client/cs_account.cpp. A format-string vulnerability in the gui_urls item of an account file could allow a remote attacker to crash the service or potentially execute arbitrary code. Affected software is BOINC client (around ...

5CVSS8.1AI score0.04369EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2014/06/02 3:0 p.m.20 views

CVE-2013-7386

Format string vulnerability in the PROJECT::writeaccountfile function in client/csaccount.cpp in BOINC, possibly 7.2.33, allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via format string specifiers in the guiurls item in an account file...

5CVSS7.8AI score0.04369EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/05/19 12:0 a.m.27 views

GLSA-201405-19 : MCrypt: User-assisted execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-201405-19 MCrypt: User-assisted execution of arbitrary code Multiple vulnerabilities have been discovered in MCrypt: A boundary error in MCrypt could cause a stack-based buffer overflow CVE-2012-4409. MCrypt contains multiple form...

6.8CVSS6.5AI score0.15019EPSS
Exploits6References4
Tenable Nessus
Tenable Nessus
added 2014/05/19 12:0 a.m.31 views

GLSA-201405-12 : Ettercap: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201405-12 Ettercap: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Ettercap: Ettercap does not handle temporary files securely CVE-2010-3843. A format string flaw in Ettercap could cause a buffer overflo...

8.8CVSS8.5AI score0.01404EPSS
Exploits1References4
Gentoo Linux
Gentoo Linux
added 2014/05/18 12:0 a.m.24 views

MCrypt: User-assisted execution of arbitrary code

Background MCrypt is a replacement of the old unix crypt1 utility. Description Multiple vulnerabilities have been discovered in MCrypt: A boundary error in MCrypt could cause a stack-based buffer overflow CVE-2012-4409. MCrypt contains multiple format string errors CVE-2012-4426. MCrypt does not...

6.8CVSS7.9AI score0.15019EPSS
Exploits6
NVD
NVD
added 2014/04/23 11:52 a.m.19 views

CVE-2014-1315

Format string vulnerability in CoreServicesUIAgent in Apple OS X 10.9.x through 10.9.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a URL...

6.8CVSS7.5AI score0.01844EPSS
Exploits0References1
Prion
Prion
added 2014/04/23 11:52 a.m.20 views

Format string

Format string vulnerability in CoreServicesUIAgent in Apple OS X 10.9.x through 10.9.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a URL...

6.8CVSS8.1AI score0.01844EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2014/04/23 10:0 a.m.23 views

CVE-2014-1315

Format string vulnerability in CoreServicesUIAgent in Apple OS X 10.9.x through 10.9.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a URL...

7.5AI score0.01844EPSS
Exploits0References1
CVE
CVE
added 2014/04/23 10:0 a.m.56 views

CVE-2014-1315

CVE-2014-1315 affects CoreServicesUIAgent in OS X 10.9.x up to 10.9.2. It is a format-string vulnerability in URL handling that could allow remote code execution or cause a denial of service (application crash). Root cause is a format string issue in the handling of URLs. Apple Security Update 20...

6.8CVSS7.8AI score0.01844EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/04/16 12:0 a.m.18 views

FreeBSD : nas -- multiple vulnerabilities (bf7912f5-c1a8-11e3-a5ac-001b21614864)

Hamid Zamani reports : multiple security problems buffer overflows, format string vulnerabilities and missing input sanitising, which could lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

7.5CVSS5.6AI score0.0408EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2014/04/10 12:0 a.m.26 views

Adobe Reader '.ETD File' Denial of Service Vulnerability - Mac OS X

Adobe Reader is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS6.6AI score0.07966EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2014/04/10 12:0 a.m.27 views

Adobe Reader '.ETD File' Denial of Service Vulnerability - Linux

Adobe Reader is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS6.6AI score0.07966EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2014/04/10 12:0 a.m.27 views

Adobe Reader '.ETD File' Denial of Service Vulnerability - Windows

Adobe Reader is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS6.6AI score0.07966EPSS
Exploits1References3
NVD
NVD
added 2014/04/01 3:24 a.m.13 views

CVE-2009-5141

Format string vulnerability in War FTP Daemon warftpd 1.82 RC 12 allows remote authenticated users to cause a denial of service crash via format string specifiers in a LIST command...

4CVSS6.2AI score0.02795EPSS
Exploits1References5
Prion
Prion
added 2014/04/01 3:24 a.m.14 views

Format string

Format string vulnerability in War FTP Daemon warftpd 1.82 RC 12 allows remote authenticated users to cause a denial of service crash via format string specifiers in a LIST command...

4CVSS6.7AI score0.02795EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2014/04/01 12:0 a.m.18 views

CVE-2009-5141

Format string vulnerability in War FTP Daemon warftpd 1.82 RC 12 allows remote authenticated users to cause a denial of service crash via format string specifiers in a LIST command...

6.2AI score0.02795EPSS
Exploits1References5
CVE
CVE
added 2014/04/01 12:0 a.m.48 views

CVE-2009-5141

War FTP Daemon (warftpd) 1.82 RC 12 has a format string vulnerability in the LIST command that lets remote authenticated users crash the service (denial of service). Root cause is improper handling of format specifiers in the LIST response. The issue is documented across Red Hat, NVD/NIST, and CV...

4CVSS6.4AI score0.02795EPSS
Exploits1References5Affected Software1
RedHat Linux
RedHat Linux
added 2014/03/11 5:7 p.m.3 views

kernel: block: passing disk names as format strings

Format string vulnerability in the registerdisk function in block/genhd.c in the Linux kernel through 3.9.4 allows local users to gain privileges by leveraging root access and writing format string specifiers to /sys/module/mdmod/parameters/newarray in order to create a crafted /dev/md device nam...

6CVSS7.2AI score0.0034EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2014/03/11 5:7 p.m.43 views

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6.4 Extended Update Support. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores...

6.9CVSS6.8AI score0.02578EPSS
Exploits10References9
NVD
NVD
added 2014/02/10 6:15 p.m.25 views

CVE-2012-3404

The vfprintf function in stdio-common/vfprintf.c in libc in GNU C Library aka glibc 2.12 and other versions does not properly calculate a buffer length, which allows context-dependent attackers to bypass the FORTIFYSOURCE format-string protection mechanism and cause a denial of service stack...

5CVSS6.3AI score0.02225EPSS
Exploits1References7
Rows per page
Query Builder