Lucene search
K

111 matches found

cvelist
cvelist
added 2014/07/02 1:0 a.m.40 views

CVE-2014-3100

Stack-based buffer overflow in the encodekey function in /system/bin/keystore in the KeyStore service in Android 4.3 allows attackers to execute arbitrary code, and consequently obtain sensitive key information or bypass intended restrictions on cryptographic operations, via a long key name...

7.4AI score0.01757EPSS
Exploits1References5
android
android
added 2014/06/23 12:0 a.m.36 views

keystore buffer

Stack-based buffer overflow in the encodekey function in /system/bin/keystore in the KeyStore service in Android 4.3 allows attackers to execute arbitrary code, and consequently obtain sensitive key information or bypass intended restrictions on cryptographic operations, via a long key name...

5.1CVSS7AI score0.01757EPSS
Exploits1References4Affected Software1
ubuntucve
ubuntucve
added 2014/02/03 3:55 a.m.29 views

CVE-2011-4327

ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call...

5.5CVSS7.1AI score0.00416EPSS
Exploits0References5
prion
prion
added 2014/02/03 3:55 a.m.150 views

Open redirect

ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call...

2.1CVSS6.2AI score0.00416EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2014/02/03 2:0 a.m.58 views

CVE-2011-4327

ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call...

6.2AI score0.00416EPSS
Exploits0References2
debiancve
debiancve
added 2014/02/03 2:0 a.m.39 views

CVE-2011-4327

ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call...

5.5CVSS5.7AI score0.00416EPSS
Exploits0
ptsecurity
ptsecurity
added 2014/02/03 12:0 a.m.9 views

PT-2014-2168

Name of the Vulnerable Software and Affected Versions OpenSSH versions prior to 5.8p2 Description The issue allows local users to obtain sensitive key information via the ptrace system call due to unintended open file descriptors when executing ssh-rand-helper in ssh-keysign.c. Recommendations Fo...

5.5CVSS7.2AI score0.00416EPSS
Exploits0References4
centos
centos
added 2013/10/22 7:41 a.m.80 views

java security update

CentOS Errata and Security Advisory CESA-2013:1447 Updated java-1.7.0-openjdk packages that fix various security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring Syst...

10CVSS6.9AI score0.24738EPSS
Exploits0References7
securityvulns
securityvulns
added 2011/10/24 12:0 a.m.33 views

tor multiple security vulnerabilities

Heap buffer overflow, DoS, key information leak...

6.8CVSS1.8AI score0.04444EPSS
Exploits0References1Affected Software1
ubuntucve
ubuntucve
added 2005/06/28 4:0 a.m.40 views

CVE-2005-2050

Unknown vulnerability in Tor before 0.1.0.10 allows remote attackers to read arbitrary memory and possibly key information from the exit server's process space...

5CVSS6.1AI score0.02223EPSS
Exploits0References1
debiancve
debiancve
added 2005/06/26 4:0 a.m.43 views

CVE-2005-2050

Unknown vulnerability in Tor before 0.1.0.10 allows remote attackers to read arbitrary memory and possibly key information from the exit server's process space...

5CVSS6AI score0.02223EPSS
Exploits0
Rows per page
Query Builder