Lucene search
K

79 matches found

OSV
OSV
added 2019/11/13 2:15 p.m.1 views

ALPINE-CVE-2019-18397

A buffer overflow in the fribidigetparembeddinglevelsex function in lib/fribidi-bidi.c of GNU FriBidi through 1.0.7 allows an attacker to cause a denial of service or possibly execute arbitrary code by delivering crafted text content to a user, when this content is then rendered by an application...

7.8CVSS8.2AI score0.02182EPSS
Exploits0References1
Prion
Prion
added 2019/11/13 2:15 p.m.20 views

Buffer overflow

A buffer overflow in the fribidigetparembeddinglevelsex function in lib/fribidi-bidi.c of GNU FriBidi through 1.0.7 allows an attacker to cause a denial of service or possibly execute arbitrary code by delivering crafted text content to a user, when this content is then rendered by an application...

6.8CVSS8.1AI score0.02182EPSS
Exploits0References10Affected Software2
Cvelist
Cvelist
added 2019/11/13 1:55 p.m.17 views

CVE-2019-18397

A buffer overflow in the fribidigetparembeddinglevelsex function in lib/fribidi-bidi.c of GNU FriBidi through 1.0.7 allows an attacker to cause a denial of service or possibly execute arbitrary code by delivering crafted text content to a user, when this content is then rendered by an application...

8.2AI score0.02182EPSS
Exploits0References10
AlpineLinux
AlpineLinux
added 2019/11/13 1:55 p.m.23 views

CVE-2019-18397

A buffer overflow in the fribidigetparembeddinglevelsex function in lib/fribidi-bidi.c of GNU FriBidi through 1.0.7 allows an attacker to cause a denial of service or possibly execute arbitrary code by delivering crafted text content to a user, when this content is then rendered by an application...

7.8CVSS8.3AI score0.02182EPSS
Exploits0
exploitpack
exploitpack
added 2018/08/27 12:0 a.m.22 views

Libpango 1.40.8 - Denial of Service (PoC)

Libpango 1.40.8 - Denial of Service PoC Exploit Title: Libpango 1.40.8 - Denial of Service PoC Date: 2018-08-06 Exploit Author: Jeffery M Vendor Homepage: https://www.pango.org/ Software Link: http://ftp.gnome.org/pub/GNOME/sources/pango/1.40/pango-1.40.9.tar.xz Version: 1.40.8+ Tested on: Window...

6.8CVSS0.11499EPSS
Exploits5
UbuntuCve
UbuntuCve
added 2018/08/24 7:29 p.m.20 views

CVE-2018-15120

libpango in Pango 1.40.8 through 1.42.3, as used in hexchat and other products, allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via crafted text with invalid Unicode sequences...

6.5CVSS6.7AI score0.11499EPSS
Exploits5References2
CVE
CVE
added 2018/08/24 7:0 p.m.270 views

CVE-2018-15120

The CVE-2018-15120 entry concerns libpango in Pango 1.40.8–1.42.3 where crafted text with invalid Unicode sequences can cause a denial of service (application crash) and potentially other impacts. Public sources (e.g., CNVD, CNVD-2018-17885) indicate the fix is in Pango 1.42.4 and later. Related ...

6.5CVSS7AI score0.11499EPSS
Exploits5References11Affected Software1
Debian CVE
Debian CVE
added 2018/08/24 7:0 p.m.21 views

CVE-2018-15120

libpango in Pango 1.40.8 through 1.42.3, as used in hexchat and other products, allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via crafted text with invalid Unicode sequences...

6.5CVSS6.4AI score0.11499EPSS
Exploits5
RedhatCVE
RedhatCVE
added 2018/08/21 8:48 p.m.24 views

CVE-2018-15120

libpango in Pango 1.40.8 through 1.42.3, as used in hexchat and other products, allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via crafted text with invalid Unicode sequences...

6.5CVSS6.1AI score0.11499EPSS
Exploits5References2
FreeBSD
FreeBSD
added 2018/08/06 12:0 a.m.30 views

pango -- remote DoS vulnerability

libpango in Pango 1.40.8 through 1.42.3, as used in hexchat and other products, allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via crafted text with invalid Unicode sequences...

6.5CVSS6AI score0.11499EPSS
Exploits5References4
Prion
Prion
added 2017/01/18 5:59 p.m.9 views

Directory traversal

Directory traversal vulnerability in the client in HexChat 2.11.0 allows remote IRC servers to read or modify arbitrary files via a .. dot dot in the server name...

6.8CVSS7AI score0.09524EPSS
Exploits5References3Affected Software1
OSV
OSV
added 2017/01/18 5:59 p.m.32 views

UBUNTU-CVE-2016-2233

Stack-based buffer overflow in the inboundcapls function in common/inbound.c in HexChat 2.10.2 allows remote IRC servers to cause a denial of service crash via a large number of options in a CAP LS message...

7.5CVSS7.4AI score0.34894EPSS
Exploits5References4
NVD
NVD
added 2017/01/18 5:59 p.m.17 views

CVE-2016-2233

Stack-based buffer overflow in the inboundcapls function in common/inbound.c in HexChat 2.10.2 allows remote IRC servers to cause a denial of service crash via a large number of options in a CAP LS message...

7.5CVSS7.5AI score0.34894EPSS
Exploits5References3
Prion
Prion
added 2017/01/18 5:59 p.m.10 views

Stack overflow

Stack-based buffer overflow in the inboundcapls function in common/inbound.c in HexChat 2.10.2 allows remote IRC servers to cause a denial of service crash via a large number of options in a CAP LS message...

5CVSS7.4AI score0.34894EPSS
Exploits5References3Affected Software1
UbuntuCve
UbuntuCve
added 2017/01/18 5:59 p.m.19 views

CVE-2016-2233

Stack-based buffer overflow in the inboundcapls function in common/inbound.c in HexChat 2.10.2 allows remote IRC servers to cause a denial of service crash via a large number of options in a CAP LS message...

7.5CVSS7.3AI score0.34894EPSS
Exploits5References3
OSV
OSV
added 2017/01/18 5:59 p.m.1 views

DEBIAN-CVE-2016-2087

Directory traversal vulnerability in the client in HexChat 2.11.0 allows remote IRC servers to read or modify arbitrary files via a .. dot dot in the server name...

7.4CVSS7AI score0.09524EPSS
Exploits5References1
OSV
OSV
added 2017/01/18 5:59 p.m.5 views

CVE-2016-2087

Directory traversal vulnerability in the client in HexChat 2.11.0 allows remote IRC servers to read or modify arbitrary files via a .. dot dot in the server name...

7.4CVSS7.3AI score0.09524EPSS
Exploits5References3
OSV
OSV
added 2017/01/18 5:59 p.m.2 views

UBUNTU-CVE-2016-2087

Directory traversal vulnerability in the client in HexChat 2.11.0 allows remote IRC servers to read or modify arbitrary files via a .. dot dot in the server name...

7.4CVSS7.2AI score0.09524EPSS
Exploits5References4
UbuntuCve
UbuntuCve
added 2017/01/18 5:59 p.m.21 views

CVE-2016-2087

Directory traversal vulnerability in the client in HexChat 2.11.0 allows remote IRC servers to read or modify arbitrary files via a .. dot dot in the server name...

7.4CVSS7.2AI score0.09524EPSS
Exploits5References3
OSV
OSV
added 2017/01/18 5:59 p.m.19 views

CVE-2016-2233

Stack-based buffer overflow in the inboundcapls function in common/inbound.c in HexChat 2.10.2 allows remote IRC servers to cause a denial of service crash via a large number of options in a CAP LS message...

7.5CVSS7.1AI score
Exploits0References3
Rows per page
Query Builder