Code injection

TWiki 4.0, 4.0.1, and 20010901 through 20040904 allows remote authenticated users with edit rights to cause a denial of service infinite recursion leading to CPU and memory consumption via INCLUDE by URL statements that form a loop, such as a page that includes itself...

CVE-2006-1387

TWiki 4.0, 4.0.1, and 20010901 through 20040904 allows remote authenticated users with edit rights to cause a denial of service infinite recursion leading to CPU and memory consumption via INCLUDE by URL statements that form a loop, such as a page that includes itself...

CVE-2006-0452

CVE-2006-0452 affects the LDAP component of Fedora Directory Server 1.0, where a ModDN operation with a DN containing a large number of commas can trigger excessive recursion and cause a denial of service (CPU/memory). The vulnerability is exploited remotely by connecting to the directory server ...

CVE-2006-0118

Unspecified vulnerability in IBM Lotus Notes and Domino Server before 6.5.5, when running on AIX, allows attackers to cause a denial of service deep recursion leading to stack overflow and crash via long formulas...

DEBIAN-CVE-2005-3239

The OLE2 unpacker in clamd in Clam AntiVirus ClamAV 0.87-1 allows remote attackers to cause a denial of service segmentation fault via a DOC file with an invalid property tree, which triggers an infinite recursion in the ole2walkpropertytree function...

CVE-2005-3239

The OLE2 unpacker in clamd in Clam AntiVirus ClamAV 0.87-1 allows remote attackers to cause a denial of service segmentation fault via a DOC file with an invalid property tree, which triggers an infinite recursion in the ole2walkpropertytree function...

Debian DSA-771-1 : pdns - several vulnerabilities

Several problems have been discovered in pdns, a versatile nameserver that can lead to a denial of service. The Common Vulnerabilities and Exposures project identifies the following problems : - CAN-2005-2301 Norbert Sendetzky and Jan de Groot discovered that the LDAP backend did not properly...

CVE-2005-2302

PowerDNS before 2.9.18, when allowing recursion to a restricted range of IP addresses, does not properly handle questions from clients that are denied recursion, which could cause a "blank out" of answers to those clients that are allowed to use recursion...

DEBIAN-CVE-2005-2302

PowerDNS before 2.9.18, when allowing recursion to a restricted range of IP addresses, does not properly handle questions from clients that are denied recursion, which could cause a "blank out" of answers to those clients that are allowed to use recursion...

CVE-2005-2302

PowerDNS before 2.9.18, when allowing recursion to a restricted range of IP addresses, does not properly handle questions from clients that are denied recursion, which could cause a "blank out" of answers to those clients that are allowed to use recursion...

CVE-2005-2302

PowerDNS before 2.9.18 is affected by CVE-2005-2302. When the server is configured to allow recursion to a restricted IP range, it does not properly handle queries from clients that are denied recursion, which can cause a temporary blanking of answers for clients that are permitted to recurse. Th...

CVE-2005-2302

PowerDNS before 2.9.18, when allowing recursion to a restricted range of IP addresses, does not properly handle questions from clients that are denied recursion, which could cause a "blank out" of answers to those clients that are allowed to use recursion...

CVE-2005-2302

PowerDNS before 2.9.18, when allowing recursion to a restricted range of IP addresses, does not properly handle questions from clients that are denied recursion, which could cause a "blank out" of answers to those clients that are allowed to use recursion...

CVE-2005-2302

PowerDNS before 2.9.18, when allowing recursion to a restricted range of IP addresses, does not properly handle questions from clients that are denied recursion, which could cause a "blank out" of answers to those clients that are allowed to use recursion...

PowerDNS 2.9.18 fixes two security issues affecting users of LDAP backend or limited recursion

PowerDNS 2.9.18 fixes two bugs with security implications, which only apply to installations running on the LDAP backend, or installations providing recursion to a limited range of IP addresses. If any of these apply to you, an upgrade is highly advised. Version 2.9.18 release notes are on:...

Multiple PowerDNS bugs

LDAP questions are not properly escaped, leading to deadlock with LDAP server. Race conditions then clients with recursion allowed are unable to perform recursive query after query from the client with recursion denied...

CVE-2002-1902

CGIForum 1.0 through 1.05 allows remote attackers to cause a denial of service infinite recursion by creating a message board post that is a child of an outdated parent...

security flaw

exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service memory consumption and crash via an EXIF header with a large IFD nesting level, which causes significant stack recursion...

CVE-2005-0033

Buffer overflow in the code for recursion and glue fetching in BIND 8.4.4 and 8.4.5 allows remote attackers to cause a denial of service crash via queries that trigger the overflow in the qusedns array that tracks nameservers and addresses...

CVE-2005-0256

The wufnmatch function in wufnmatch.c in wu-ftpd 2.6.1 and 2.6.2 allows remote attackers to cause a denial of service CPU exhaustion by recursion via a glob pattern with a large number of wildcard characters, as demonstrated using the dir command...