Lucene search
K

108 matches found

Packet Storm
Packet Storm
added 2015/04/29 12:0 a.m.32 views

PHP SoapFault Type Confusion

Type Confusion Infoleak Vulnerability in unserialize with SoapFault Taoguang Chen - Write Date: 2015.3.1 - Release Date: 2015.4.28 A type confusion vulnerability was discovered in unserialize with SoapFault object's toString magic method that can be abused for leaking arbitrary memory blocks...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2015/02/23 12:0 a.m.286 views

PHP DateTime - Use-After-Free

Use After Free Vulnerability in unserialize with DateTime CVE-2015-0273 Taoguang Chen - Write Date: 2015.1.29 - Release Date: 2015.2.20 A use-after-free vulnerability was discovered in unserialize with DateTime/DateTimeZone/DateInterval/DatePeriod objects's wakeup magic method that can be abused...

7.5CVSS7.4AI score0.43146EPSS
Exploits9
exploitpack
exploitpack
added 2015/02/03 1:42 p.m.20 views

Mac-OS-X-Server-DirectoryService-Buffer-Overflow

The bug is located in the function 'DSTCPEndpoint::AllocFromProxyStruct' from 'DSTCPEndpoint.cpp'1. An attacker can control both the value of 'inProxyDataMsg-fDataSize' and the data that will be copied. Thus, by sending a huge amount of data and a small buffer size, the service will crash trying ...

1.7AI score
Exploits0
Cisco
Cisco
added 2013/11/13 3:20 p.m.25 views

Cisco Unified IP Phone 8900/9900 Series Insecure File Permissions Vulnerability

A vulnerability in Cisco Unified IP Phone 9951, Cisco Unified IP Phone 9971, and Cisco Unified IP Phone 8961 could allow an authenticated, local attacker to fully compromise the affected device. The vulnerability is due to insecure file permissions on memory block devices. An attacker could explo...

6.8CVSS1.1AI score0.00283EPSS
Exploits0References1
Cvelist
Cvelist
added 2013/11/13 3:0 p.m.25 views

CVE-2013-6685

The firmware on Cisco Unified IP phones 8961, 9951, and 9971 uses weak permissions for memory block devices, which allows local users to gain privileges by mounting a device with a setuid file in its filesystem, aka Bug ID CSCui04382...

6.6AI score0.00283EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2013/11/12 12:0 a.m.2 views

PT-2013-6105 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.12 Description: The issue is related to the uio mmap physical function in the Linux kernel, which does not validate the size of a memory block. This allows local users to cause a denial of service, such as...

9.3CVSS7.4AI score0.14806EPSS
Exploits48References184
seebug.org
seebug.org
added 2009/08/06 12:0 a.m.179 views

Apache APR和APR-util整数溢出漏洞

Bugraq ID: 35949 CVE ID:CVE-2009-2412 Apache APR-util是一款可移植运行库,全名为Apache Portable Runtime。 Apache APR Apache Portable Runtime和'APR-util'存在整数溢出,远程攻击者可以利用漏洞以利用此库的应用程序安全上下文执行任意代码。 -当对齐重定位内存块时memory/unix/aprpools.c存在整数溢出错误,可导致缓冲区溢出。 -当对齐重定位内存块时misc/aprrmm.c中的"aprrmmmalloc", "aprrmmcalloc",...

10CVSS0.2AI score0.13781EPSS
Exploits2
Ubuntu
Ubuntu
added 2005/04/06 3:43 a.m.43 views

USN-108-1: GDK vulnerability

Matthias Clasen discovered a Denial of Service vulnerability in the BMP image module of gdk. Processing a specially crafted BMP image with an application using gdk-pixbuf caused an allocated memory block to be free'ed twice, leading to a crash of the application. However, it is believed that this...

7.5CVSS5.5AI score0.03904EPSS
Exploits0
Rows per page
Query Builder