Lucene search
K

254 matches found

Tenable Nessus
Tenable Nessus
added 2014/03/03 12:0 a.m.27 views

Debian DSA-2868-1 : php5 - denial of service

It was discovered that file, a file type classification tool, contains a flaw in the handling of 'indirect' magic rules in the libmagic library, which leads to an infinite recursion when trying to determine the file type of certain files. The Common Vulnerabilities and Exposures project ID...

5CVSS7.6AI score0.0507EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2013/12/09 11:22 p.m.2 views

libjpeg: information leak (read of uninitialized memory)

The getdht function in jdmarker.c in libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48 and other products, does not set all elements of a certain Huffman value array during the reading of segments that follow Define Huffman Table DHT JPEG markers, which allows remote...

5CVSS7.4AI score0.02131EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2011/12/05 7:53 p.m.46 views

Low: Red Hat Security Advisory: glibc security, bug fix, and enhancement update

Updated glibc packages that fix two security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which giv...

6.9CVSS7.7AI score0.00543EPSS
Exploits1References19
OSV
OSV
added 2011/03/31 10:55 p.m.4 views

DEBIAN-CVE-2011-0764

t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, uses an invalid pointer in conjunction with a dereference operation, which allows remote attackers to execute arbitrary code via a crafted Type 1 font in a PDF document, as demonstrated by testz.2184122398.pdf...

6.8CVSS7.6AI score0.13055EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2011/02/18 12:0 a.m.36 views

RedHat Update for java-1.6.0-openjdk RHSA-2011:0281-01

Check for the Version of java-1.6.0-openjdk OpenVAS Vulnerability Test RedHat Update for java-1.6.0-openjdk RHSA-2011:0281-01 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

10CVSS0.04132EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2010/04/09 12:0 a.m.50 views

Ubuntu Update for openjdk-6 vulnerabilities USN-923-1

Ubuntu Update for Linux kernel vulnerabilities USN-923-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9231.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for openjdk-6 vulnerabilities USN-923-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

7.5CVSS0.3AI score0.96319EPSS
Exploits33References2
Positive Technologies
Positive Technologies
added 2009/07/29 12:0 a.m.7 views

PT-2009-3491

Name of the Vulnerable Software and Affected Versions Microsoft Visual Studio .NET versions 2003 SP1 through 2008 Microsoft Visual C++ versions 2005 SP1 through 2008 SP1 Windows versions 2000 SP4 through XP SP3, Server 2003 SP2, Vista Gold through SP2, and Server 2008 Gold through SP2 Description...

9.3CVSS6.7AI score0.36608EPSS
Exploits5References29
RedHat Linux
RedHat Linux
added 2009/07/27 9:22 a.m.8 views

python: integer signedness error in the zlib extension module

Integer signedness error in the zlib extension module in Python 2.5.2 and earlier allows remote attackers to execute arbitrary code via a negative signed integer, which triggers insufficient memory allocation and a buffer overflow...

7.5CVSS7.5AI score0.22621EPSS
Exploits1References4
OSV
OSV
added 2009/05/13 3:30 p.m.3 views

DEBIAN-CVE-2009-0153

International Components for Unicode ICU 4.0, 3.6, and other 3.x versions, as used in Apple Mac OS X 10.5 before 10.5.7, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Fedora 9 and 10, and possibly other operating systems, does not properly handle invalid byte sequences...

4.3CVSS6AI score0.0368EPSS
Exploits0References1
OSV
OSV
added 2007/11/07 11:46 p.m.3 views

DEBIAN-CVE-2007-4767

Perl-Compatible Regular Expression PCRE library before 7.3 does not properly compute the length of 1 a \p sequence, 2 a \P sequence, or 3 a \Px sequence, which allows context-dependent attackers to cause a denial of service infinite loop or crash or execute arbitrary code...

5CVSS7.2AI score0.0507EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2005/04/19 6:52 p.m.11 views

security flaw

The loadelflibrary in the Linux kernel before 2.6.11.6 allows local users to cause a denial of service kernel crash via a crafted ELF library or executable, which causes a free of an invalid pointer...

7.2CVSS6.2AI score0.00446EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2004/07/23 12:0 a.m.25 views

Fedora Core 2 : neon-0.24.5-2.2 (2004-130)

Stefan Esser discovered a flaw in the neon library which allows a heap buffer overflow in a date parsing routine. An attacker could create a malicious WebDAV server in such a way as to allow arbitrary code execution on the client should a user connect to it using a neon-based application which us...

7.5CVSS5.6AI score0.05015EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2004/05/19 6:46 a.m.34 views

Important: Red Hat Security Advisory: cadaver security update

An updated cadaver package is now available that fixes a vulnerability in neon which could be exploitable by a malicious DAV server. cadaver is a command-line WebDAV client that uses inbuilt code from neon, an HTTP and WebDAV client library. Stefan Esser discovered a flaw in the neon library whic...

7.5CVSS6AI score0.05015EPSS
Exploits0References3
OSV
OSV
added 2003/11/17 5:0 a.m.4 views

DEBIAN-CVE-2003-0544

OpenSSL 0.9.6 and 0.9.7 does not properly track the number of characters in certain ASN.1 inputs, which allows remote attackers to cause a denial of service crash via an SSL client certificate that causes OpenSSL to read past the end of a buffer when the long form is used...

5CVSS8.9AI score0.06173EPSS
Exploits0References1
Rows per page
Query Builder