Lucene search
K

2734 matches found

Prion
Prion
added 2014/07/31 2:55 p.m.20 views

Design/Logic Flaw

The SslHandler in Netty before 3.9.2 allows remote attackers to cause a denial of service infinite loop and CPU consumption via a crafted SSLv2Hello message...

5CVSS6.8AI score0.04222EPSS
Exploits1References5Affected Software1
UbuntuCve
UbuntuCve
added 2014/07/31 2:55 p.m.23 views

CVE-2014-3488

The SslHandler in Netty before 3.9.2 allows remote attackers to cause a denial of service infinite loop and CPU consumption via a crafted SSLv2Hello message...

5CVSS7.2AI score0.04222EPSS
Exploits1References2
Cvelist
Cvelist
added 2014/07/31 2:0 p.m.24 views

CVE-2014-3488

The SslHandler in Netty before 3.9.2 allows remote attackers to cause a denial of service infinite loop and CPU consumption via a crafted SSLv2Hello message...

8.7AI score0.04222EPSS
Exploits1References5
CVE
CVE
added 2014/07/31 2:0 p.m.89 views

CVE-2014-3488

Netty CVE-2014-3488: The SslHandler in Netty before 3.9.2 is vulnerable to a remote DoS via a crafted SSLv2Hello message that can cause an infinite loop and high CPU usage. Affected are Netty 3.9.x predecessors up to 3.9.2. Remediation: upgrade to Netty 3.9.2.Final or later (as noted in advisorie...

5CVSS8.7AI score0.04222EPSS
Exploits1References5Affected Software1
Debian CVE
Debian CVE
added 2014/07/31 2:0 p.m.25 views

CVE-2014-3488

The SslHandler in Netty before 3.9.2 allows remote attackers to cause a denial of service infinite loop and CPU consumption via a crafted SSLv2Hello message...

5CVSS8.4AI score0.04222EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2014/07/21 6:35 p.m.5 views

netty: DoS via memory exhaustion during data aggregation

A flaw was found in the WebSocket08FrameDecoder implementation that could allow a remote attacker to trigger an Out Of Memory Exception by issuing a series of TextWebSocketFrame and ContinuationWebSocketFrames. Depending on the server configuration, this could lead to a denial of service...

5CVSS7.2AI score0.04326EPSS
Exploits0References4
NVD
NVD
added 2014/05/06 2:55 p.m.26 views

CVE-2014-0193

WebSocket08FrameDecoder in Netty 3.6.x before 3.6.9, 3.7.x before 3.7.1, 3.8.x before 3.8.2, 3.9.x before 3.9.1, and 4.0.x before 4.0.19 allows remote attackers to cause a denial of service memory consumption via a TextWebSocketFrame followed by a long stream of ContinuationWebSocketFrames...

5CVSS8.9AI score0.04326EPSS
Exploits0References14
UbuntuCve
UbuntuCve
added 2014/05/06 2:55 p.m.36 views

CVE-2014-0193

WebSocket08FrameDecoder in Netty 3.6.x before 3.6.9, 3.7.x before 3.7.1, 3.8.x before 3.8.2, 3.9.x before 3.9.1, and 4.0.x before 4.0.19 allows remote attackers to cause a denial of service memory consumption via a TextWebSocketFrame followed by a long stream of ContinuationWebSocketFrames...

5CVSS7.1AI score0.04326EPSS
Exploits0References2
Prion
Prion
added 2014/05/06 2:55 p.m.29 views

Design/Logic Flaw

WebSocket08FrameDecoder in Netty 3.6.x before 3.6.9, 3.7.x before 3.7.1, 3.8.x before 3.8.2, 3.9.x before 3.9.1, and 4.0.x before 4.0.19 allows remote attackers to cause a denial of service memory consumption via a TextWebSocketFrame followed by a long stream of ContinuationWebSocketFrames...

5CVSS6.9AI score0.04326EPSS
Exploits0References14Affected Software1
OSV
OSV
added 2014/05/06 2:55 p.m.5 views

UBUNTU-CVE-2014-0193

WebSocket08FrameDecoder in Netty 3.6.x before 3.6.9, 3.7.x before 3.7.1, 3.8.x before 3.8.2, 3.9.x before 3.9.1, and 4.0.x before 4.0.19 allows remote attackers to cause a denial of service memory consumption via a TextWebSocketFrame followed by a long stream of ContinuationWebSocketFrames...

5CVSS7.2AI score0.04326EPSS
Exploits0References3
Cvelist
Cvelist
added 2014/05/06 2:0 p.m.39 views

CVE-2014-0193

WebSocket08FrameDecoder in Netty 3.6.x before 3.6.9, 3.7.x before 3.7.1, 3.8.x before 3.8.2, 3.9.x before 3.9.1, and 4.0.x before 4.0.19 allows remote attackers to cause a denial of service memory consumption via a TextWebSocketFrame followed by a long stream of ContinuationWebSocketFrames...

8.8AI score0.04326EPSS
Exploits0References14
CVE
CVE
added 2014/05/06 2:0 p.m.123 views

CVE-2014-0193

CVE-2014-0193 is a Netty WebSocket DoS vulnerability. The WebSocket08FrameDecoder in Netty versions 3.6.x (before 3.6.9), 3.7.x (before 3.7.1), 3.8.x (before 3.8.2), 3.9.x (before 3.9.1), and 4.0.x (before 4.0.19) can be triggered by sending a TextWebSocketFrame followed by a long stream of Conti...

5CVSS7.9AI score0.04326EPSS
Exploits0References14Affected Software1
Debian CVE
Debian CVE
added 2014/05/06 2:0 p.m.32 views

CVE-2014-0193

WebSocket08FrameDecoder in Netty 3.6.x before 3.6.9, 3.7.x before 3.7.1, 3.8.x before 3.8.2, 3.9.x before 3.9.1, and 4.0.x before 4.0.19 allows remote attackers to cause a denial of service memory consumption via a TextWebSocketFrame followed by a long stream of ContinuationWebSocketFrames...

5CVSS8AI score0.04326EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2014/05/06 12:0 a.m.6 views

PT-2014-3528 · Netty · Netty

Name of the Vulnerable Software and Affected Versions: Netty versions 3.6.x through 3.6.8 Netty versions 3.7.x through 3.7.0 Netty versions 3.8.x through 3.8.1 Netty versions 3.9.x through 3.9.0 Netty versions 4.0.x through 4.0.18 Description: The issue allows remote attackers to cause a denial o...

9.1CVSS7.1AI score0.13474EPSS
Exploits5References44
Rows per page
Query Builder