Lucene search
K

5155 matches found

RedHat Linux
RedHat Linux
added 2016/02/01 9:3 p.m.4 views

redis: Integer wraparound in lua_struct.c causing stack-based buffer overflow

An integer-wraparound flaw leading to a stack-based overflow was found in Redis. A user with access to run Lua code in a Redis session could possibly use this flaw to crash the server denial of service or gain code execution outside of the Lua sandbox...

7.5CVSS6.3AI score0.05362EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2016/02/01 9:3 p.m.38 views

Moderate: Red Hat Security Advisory: redis security advisory

Updated redis packages that fix a security issue are now available for Red Hat Enterprise Linux OpenStack Platform 7.0. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

7.5CVSS6.8AI score0.05362EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2016/02/01 9:3 p.m.8 views

redis: Integer wraparound in lua_struct.c causing stack-based buffer overflow

An integer-wraparound flaw leading to a stack-based overflow was found in Redis. A user with access to run Lua code in a Redis session could possibly use this flaw to crash the server denial of service or gain code execution outside of the Lua sandbox...

7.5CVSS6.3AI score0.05362EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2016/02/01 9:3 p.m.46 views

Moderate: Red Hat Security Advisory: redis security advisory

Updated redis packages that fix a security issue are now available for Red Hat Enterprise Linux OpenStack Platform 7.0 Operational Tools. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detaile...

7.5CVSS6.8AI score0.05362EPSS
Exploits1References2
Metasploit
Metasploit
added 2016/01/05 5:14 a.m.16 views

Redis Command Execute Scanner

This module locates Redis endpoints by attempting to run a specified Redis command. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Redis Command Execute Scanner', 'Description' = %q This modul...

7.2AI score
Exploits0
Metasploit
Metasploit
added 2015/12/30 10:54 a.m.41 views

Redis Login Utility

This module attempts to authenticate to an Redis service. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasploit/framework/loginscanner/redis' require 'metasploit/framework/credentialcollection' Metasploi...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2015/12/17 12:0 a.m.38 views

Mageia: Security Advisory (MGASA-2015-0472)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.05362EPSS
Exploits1References4
OSV
OSV
added 2015/12/16 9:1 p.m.12 views

MGASA-2015-0472 Updated redis packages fix CVE-2015-8080

Luca Bruno discovered an integer overflow flaw leading to a stack-based buffer overflow in redis, a persistent key-value database. A remote attacker can use this flaw to cause a denial of service application crash CVE-2015-8080...

7.5CVSS7.4AI score0.05362EPSS
Exploits1References3
Mageia
Mageia
added 2015/12/16 9:1 p.m.48 views

Updated redis packages fix CVE-2015-8080

Luca Bruno discovered an integer overflow flaw leading to a stack-based buffer overflow in redis, a persistent key-value database. A remote attacker can use this flaw to cause a denial of service application crash CVE-2015-8080...

7.5CVSS7.8AI score0.05362EPSS
Exploits1References2
Metasploit
Metasploit
added 2015/12/14 6:40 p.m.40 views

Redis File Upload

This module can be used to leverage functionality exposed by Redis to achieve somewhat arbitrary file upload to a file and directory to which the user account running the redis instance has access. It is not totally arbitrary because the exact contents of the file cannot be completely controlled...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/12/04 12:0 a.m.49 views

Debian DSA-3412-1 : redis - security update

Luca Bruno discovered an integer overflow flaw leading to a stack-based buffer overflow in redis, a persistent key-value database. A remote attacker can use this flaw to cause a denial of service application crash. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

7.5CVSS6.6AI score0.05362EPSS
Exploits1References4
Debian
Debian
added 2015/12/03 9:6 p.m.42 views

[SECURITY] [DSA 3412-1] redis security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3412-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 03, 2015 https://www.debian.org/security/faq -...

7.5CVSS7.4AI score0.05362EPSS
Exploits1
Debian
Debian
added 2015/12/03 9:6 p.m.80 views

[SECURITY] [DSA 3412-1] redis security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3412-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 03, 2015 https://www.debian.org/security/faq -...

5CVSS2.4AI score0.05362EPSS
Exploits1
OSV
OSV
added 2015/12/03 12:0 a.m.15 views

DSA-3412-1 redis - security update

Bulletin has no description...

7.5CVSS7.5AI score0.05362EPSS
Exploits1
OpenVAS
OpenVAS
added 2015/12/03 12:0 a.m.31 views

Debian Security Advisory DSA 3412-1 (redis - security update)

Luca Bruno discovered an integer overflow flaw leading to a stack-based buffer overflow in redis, a persistent key-value database. A remote attacker can use this flaw to cause a denial of service application crash. OpenVAS Vulnerability Test $Id: deb3412.nasl 6609 2017-07-07 12:05:59Z cfischer $...

5CVSS0.1AI score0.05362EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2015/12/02 12:0 a.m.33 views

Debian: Security Advisory (DSA-3412-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.05362EPSS
Exploits1References3
myhack58
myhack58
added 2015/11/22 12:0 a.m.48 views

Redis event a comprehensive analysis-vulnerability warning-the black bar safety net

redis unauthorized access has not been valued, until the 1 1 on No. 4, and in this article on being broke: the redis you can write into the SSH Key and then control the server, the security personnel started a lot of attention to this event. 0×0 1 vulnerability profile Exposed in public of redis ...

0.1AI score
Exploits0
CNVD
CNVD
added 2015/11/15 12:0 a.m.6 views

Redis Unauthorized Access Vulnerability

Redis is a set of open source written in ANSI C , network support , memory-based can also be persistent log-type , key-value store database , and provides a variety of languages API. Redis will be bound to 0.0.0.0:6379 by default, if the authentication is not turned on, it can lead to unauthorize...

7AI score
Exploits0References1
myhack58
myhack58
added 2015/11/12 12:0 a.m.262 views

Redis unauthorized access can lead to a Remote Access Server Permissions-bug warning-the black bar safety net

Recently, the Rubik's Cube security team monitoring for Redis unauthorized access of a new type of attack, under certain conditions, may be the remote cause the server to fall, the Rubik's Cube Safety team in a timely manner to the attacks carried out research and threat assessment, and by the cu...

0.2AI score
Exploits0
myhack58
myhack58
added 2015/11/12 12:0 a.m.466 views

Redis unauthorized access with SSH key file use analysis: ZoomEye the latest global exclusive data V2-vulnerability warning-the black bar safety net

Updates ! 2. Vulnerability overview Redis by default, it will bind on 0.0.0.0:6 3 7 9, This will be the Redis service exposed to the public Internet, if there is no open authentication, can cause any user can access the target server is not authorized to access Redis and read the Redis data...

0.1AI score
Exploits0
Rows per page
Query Builder