Lucene search
K

94 matches found

RedHat Linux
RedHat Linux
added 2019/06/27 9:19 a.m.3 views

libical: Heap buffer over read in icalparser.c parser_get_next_char

A flaw in Thunderbird's implementation of iCal causes a heap buffer overflow in parsergetnextchar when processing certain email messages, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird 60.7.1...

9.8CVSS7.6AI score0.10527EPSS
Exploits4References5
OSV
OSV
added 2018/05/24 8:29 p.m.2 views

UBUNTU-CVE-2018-11419

An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the litreadcodeunitfromhex function via a RegExp"\u0" payload, related to reparsecharclass in parser/regexp/re-parser.c...

9.8CVSS7.5AI score0.01583EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2018/04/10 12:0 a.m.58 views

tcpdump: Infinite loop due to bugs in print-isakmp.c, several functions in ISAKMP parser

The ISAKMP parser in tcpdump before 4.9.2 could enter an infinite loop due to bugs in print-isakmp.c, several functions...

9.8CVSS7.4AI score0.02546EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/04/10 12:0 a.m.14 views

tcpdump: Buffer over-read in print-icmp.c:icmp_print() in ICMP parser

The ICMP parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp.c:icmpprint...

9.8CVSS7.6AI score0.02389EPSS
Exploits0References4
OSV
OSV
added 2017/09/14 6:29 a.m.4 views

DEBIAN-CVE-2017-13028

The BOOTP parser in tcpdump before 4.9.2 has a buffer over-read in print-bootp.c:bootpprint...

9.8CVSS7.5AI score0.03587EPSS
Exploits0References1
OSV
OSV
added 2017/09/14 6:29 a.m.2 views

DEBIAN-CVE-2017-13012

The ICMP parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp.c:icmpprint...

9.8CVSS9.7AI score0.02527EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2017/09/14 6:0 a.m.1 views

CVE-2017-12990

The ISAKMP parser in tcpdump before 4.9.2 could enter an infinite loop due to bugs in print-isakmp.c, several functions...

6.6AI score0.02546EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2017/09/14 6:0 a.m.0 views

CVE-2017-12997

The LLDP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-lldp.c:lldpprivate8021print...

6.6AI score0.02463EPSS
Exploits0References8
Mageia
Mageia
added 2017/08/08 8:24 p.m.34 views

Updated mpg123 packages fix security vulnerabilities

The nexttext function in src/libmpg123/id3.c in mpg123 1.24.0 allows remote attackers to cause a denial of service buffer over-read via a crafted mp3 file CVE-2017-9545. Invalid read of size 1 in ID3v2 parser due to forgotten offset from the frame flag bytes CVE-2017-10683. Extend pow tables for...

5.5CVSS3.9AI score0.01167EPSS
Exploits1References2
OSV
OSV
added 2017/01/28 1:59 a.m.2 views

ALPINE-CVE-2016-7975

The TCP parser in tcpdump before 4.9.0 has a buffer overflow in print-tcp.c:tcpprint...

9.8CVSS7.7AI score0.03355EPSS
Exploits0References1
Hacker One
Hacker One
added 2015/04/08 10:37 p.m.50 views

drchrono: XML Parser Bug: XXE over which leads to RCE

Hello security team, I have reported this issue on Feb 6, 2015 and i'm resubmit it here again. I was able to do XXE attack on your site and exposed the /etc/passwd file. Scenario: 1. Login to drchrono site. 2. Click on patients-patient 3. Click on ' Update patient via C-CDA XML.' 4. Select the fi...

Exploits0
RedHat Linux
RedHat Linux
added 2015/03/17 5:58 p.m.2 views

freetype: out of bounds read in Type42 font parser

type42/t42parse.c in FreeType before 2.5.4 does not consider that scanning can be incomplete without triggering an error, which allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted Type42 font...

7.5CVSS5.9AI score0.0436EPSS
Exploits1References4
OSV
OSV
added 2006/08/24 8:4 p.m.2 views

DEBIAN-CVE-2006-4331

Multiple off-by-one errors in the IPSec ESP preference parser in Wireshark formerly Ethereal 0.99.2 allow remote attackers to cause a denial of service crash via unspecified vectors...

5CVSS6.9AI score0.04132EPSS
Exploits0References1
securityvulns
securityvulns
added 2002/01/17 12:0 a.m.30 views

'/usr/bin/at 31337 + vuln' problem + exploit

Affects: /usr/bin/at To check if you are potentially vulnerable to this exploit, execute: /usr/bin/at 31337 + vuln If you are vulnerable this will cause: Segmentation fault If not, there will be a message similar to: Garbled time possibly with some extra information The problem is caused by a bug...

1.3AI score
Exploits0
Rows per page
Query Builder