Lucene search
K

6684 matches found

RedHat Linux
RedHat Linux
added 2013/10/23 4:26 p.m.6 views

GlassFish: hash table collisions CPU usage DoS (oCERT-2011-003)

Oracle Glassfish 2.1.1, 3.0.1, and 3.1.1, as used in Communications Server 2.0, Sun Java System Application Server 8.1 and 8.2, and possibly other products, computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attacke...

5CVSS7AI score0.68914EPSS
Exploits6References4
Cisco
Cisco
added 2013/10/23 4:0 p.m.23 views

Cisco IOS XR Software Route Processor Denial of Service Vulnerability

Cisco IOS XR Software Releases 3.3.0 to 4.2.0 contain a vulnerability when handling fragmented packets that could result in a denial of service DoS condition of the Cisco CRS Route Processor cards listed in the "Affected Products" section of this advisory. The vulnerability is due to improper...

7.1CVSS6.3AI score0.01661EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2013/10/17 5:31 p.m.2 views

OpenJDK: XML parsing Denial of Service (JAXP, 8017298)

A resource consumption issue was found in the way Xerces-J handled XML declarations. A remote attacker could use an XML document with a specially crafted declaration using a long pseudo-attribute name that, when parsed by an application using Xerces-J, would cause that application to use an...

7.1CVSS6.7AI score0.24738EPSS
Exploits0References5
Fedora
Fedora
added 2013/10/15 6:37 a.m.51 views

[SECURITY] Fedora 20 Update: qemu-1.6.0-10.fc20

QEMU is a generic and open source processor emulator which achieves a good emulation speed by using dynamic translation. QEMU has two operating modes: Full system emulation. In this mode, QEMU emulates a full system for example a PC, including a processor and various peripherials. It can be used ...

7.2CVSS0.5AI score0.0046EPSS
Exploits0
OpenVAS
OpenVAS
added 2013/10/15 12:0 a.m.27 views

Fedora Update for qemu FEDORA-2013-18493

Check for the Version of qemu OpenVAS Vulnerability Test Fedora Update for qemu FEDORA-2013-18493 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

6CVSS0.3AI score0.00434EPSS
Exploits0References2
Fedora
Fedora
added 2013/10/14 5:9 p.m.36 views

[SECURITY] Fedora 19 Update: qemu-1.4.2-12.fc19

QEMU is a generic and open source processor emulator which achieves a good emulation speed by using dynamic translation. QEMU has two operating modes: Full system emulation. In this mode, QEMU emulates a full system for example a PC, including a processor and various peripherials. It can be used ...

7.2CVSS0.5AI score0.00434EPSS
Exploits0
Fedora
Fedora
added 2013/10/14 7:6 a.m.30 views

[SECURITY] Fedora 19 Update: qemu-1.4.2-12.fc19

QEMU is a generic and open source processor emulator which achieves a good emulation speed by using dynamic translation. QEMU has two operating modes: Full system emulation. In this mode, QEMU emulates a full system for example a PC, including a processor and various peripherials. It can be used ...

7.2CVSS0.5AI score0.00434EPSS
Exploits0
OSV
OSV
added 2013/09/30 9:55 p.m.3 views

DEBIAN-CVE-2013-4154

The qemuAgentCommand function in libvirt before 1.1.1, when a guest agent is not configured, allows remote attackers to cause a denial of service NULL pointer dereference and crash via vectors related to "agent based cpu unplug," as demonstrated by the "virsh vcpucount foobar --guest" command...

4.3CVSS7AI score0.02202EPSS
Exploits1References1
myhack58
myhack58
added 2013/09/22 12:0 a.m.12 views

iOS 7 lock screen vulnerability that can bypass the password to view the photos and other information containing operation step-the vulnerability warning-the black bar safety net

Apple's new iPhone 5S a major selling point is its safety features,including its new addition to the fingerprint processor and the next generation of iOS 7 built-in anti-theft feature. However, a since on behalf of iOS 6 will be any bug so far is still there,you can make everyone bypass the lock...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2013/09/09 12:0 a.m.46 views

Microsoft Windows multiple security vulnerabilities

Unicode Scripts Processor memory corruption, RPC privilege escalation, kernel protection bypass and memory corruptions, IPv6 and NAT DoS...

10CVSS3.5AI score0.95888EPSS
Exploits6References1Affected Software1
Debian CVE
Debian CVE
added 2013/08/28 5:0 p.m.44 views

CVE-2013-2076

Xen 4.0.x, 4.1.x, and 4.2.x, when running on AMD64 processors, only save/restore the FOP, FIP, and FDP x87 registers in FXSAVE/FXRSTOR when an exception is pending, which allows one domain to determine portions of the state of floating point instructions of other domains, which can be leveraged t...

4.3CVSS4.2AI score0.00496EPSS
Exploits0
CVE
CVE
added 2013/08/28 5:0 p.m.85 views

CVE-2013-2076

CVE-2013-2076 affects Xen on AMD64: when running Xen 4.0.x/4.1.x/4.2.x on AMD64, FXSAVE/FXRSTOR saves only some x87/FPU state during a pending exception, enabling a domain to glean parts of another domain’s floating-point state and potentially sensitive data (e.g., cryptographic keys). Related fo...

4.3CVSS4.1AI score0.00496EPSS
Exploits0References5Affected Software1
ThreatPost
ThreatPost
added 2013/08/26 3:43 p.m.20 views

Phone Hack Could Block Messages, Calls on GSM Networks

By tweaking the firmware on certain kinds of phones, a hacker could make it so other phones in the area are unable to receive incoming calls or SMS messages, according to research presented at the USENIX Security Symposium earlier this month. The hack involves modifying the baseband processor on...

7.3AI score
Exploits0References3
CVE
CVE
added 2013/08/14 10:0 a.m.146 views

CVE-2013-3181

CVE-2013-3181 affects the Unicode Script Processor (USP10.DLL) used by Windows XP SP2/SP3 and Windows Server 2003 SP2. The vulnerability enables remote code execution via crafted OpenType fonts, described as the Uniscribe Font Parsing Engine Memory Corruption. Microsoft issued MS13-060 with patch...

9.3CVSS7.5AI score0.20444EPSS
Exploits1References3Affected Software2
OpenVAS
OpenVAS
added 2013/08/14 12:0 a.m.25 views

Microsoft Unicode Scripts Processor Remote Code Execution Vulnerability (2850869)

This host is missing an critical security update according to Microsoft Bulletin MS13-060. OpenVAS Vulnerability Test $Id: secpodms13-060.nasl 5346 2017-02-19 08:43:11Z cfi $ Microsoft Unicode Scripts Processor Remote Code Execution Vulnerability 2850869 Authors: Antu Sanadi Copyright: Copyright ...

9.3CVSS0.7AI score0.20444EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2013/08/14 12:0 a.m.40 views

MS13-060: Vulnerability in Unicode Scripts Processor Could Allow Remote Code Execution (2850869)

The version of Microsoft Windows installed on the remote host includes a vulnerable version of the Unicode Script Processor, also known as Uniscribe. Some font types are not parsed correctly, which can result in memory corruption. An attacker could exploit this by tricking a user into viewing a...

9.3CVSS5.9AI score0.20444EPSS
Exploits1References2
Prion
Prion
added 2013/08/13 3:4 p.m.12 views

Memory corruption

Cisco IOS XR allows local users to cause a denial of service Silicon Packet Processor memory corruption, improper mutex handling, and device reload by starting an outbound flood of large ICMP Echo Request packets and stopping this with a CTRL-C sequence, aka Bug ID CSCui60347...

4.6CVSS6.8AI score0.00312EPSS
Exploits0References3Affected Software1
Cisco
Cisco
added 2013/08/13 1:47 p.m.25 views

Cisco IOS XR Internet Control Message Protocol Denial of Service Vulnerability

Cisco IOS XR Software is affected by a denial of service DoS vulnerability that could allow an authenticated, local attacker to trigger a reload of the affected device by locally generating certain Internet Control Message Protocol ICMP messages. The vulnerability is due to a combination of Silic...

4.6CVSS2.1AI score0.00312EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2013/08/09 12:0 a.m.36 views

Squash YAML Code Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'zlib' class Metasploit3 'Squash YAML Code...

7.5CVSS0.1AI score0.46182EPSS
Exploits5
Fedora
Fedora
added 2013/08/03 11:56 p.m.64 views

[SECURITY] Fedora 18 Update: libreoffice-3.6.7.2-3.fc18

LibreOffice is an Open Source, community-developed, office productivity sui te. It includes the key desktop applications, such as a word processor, spreadsheet, presentation manager, formula editor and drawing program, with a user interface and feature set similar to other office suites...

10CVSS1.3AI score0.22753EPSS
Exploits5
Rows per page
Query Builder