Lucene search
+L

1056 matches found

Tenable Nessus
Tenable Nessus
added 2015/12/16 12:0 a.m.43 views

FreeBSD : bind -- multiple vulnerabilities (a8ec4db7-a398-11e5-85e9-14dae9d210b8)

ISC reports : Named is potentially vulnerable to the OpenSSL vulnerability described in CVE-2015-3193. Incorrect reference counting could result in an INSIST failure if a socket error occurred while performing a lookup. This flaw is disclosed in CVE-2015-8461. RT40945 Insufficient testing when...

7.5CVSS6.9AI score0.5469EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2015/06/17 9:5 p.m.4 views

cups: incorrect string reference counting (VU#810572)

A string reference count bug was found in cupsd, causing premature freeing of string objects. An attacker could submit a malicious print job that exploits this flaw to dismantle ACLs protecting privileged operations, allowing a replacement configuration file to be uploaded, which in turn allowed...

10CVSS7.2AI score0.29913EPSS
Exploits8References4
OSV
OSV
added 2015/06/10 12:52 p.m.12 views

USN-2629-1 cups vulnerabilities

It was discovered that CUPS incorrectly handled reference counting when handling localized strings. A remote attacker could use this issue to escalate permissions, upload a replacement CUPS configuration file, and execute arbitrary code. CVE-2015-1158 It was discovered that the CUPS templating...

10CVSS6.8AI score0.29913EPSS
Exploits9References3
RedHat Linux
RedHat Linux
added 2015/05/27 12:7 p.m.5 views

kernel: net: slab corruption from use after free on INIT collisions

A use-after-free flaw was found in the way the Linux kernel's SCTP implementation handled authentication key reference counting during INIT collisions. A remote attacker could use this flaw to crash the system or, potentially, escalate their privileges on the system...

10CVSS6.7AI score0.09828EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/04/20 12:0 a.m.38 views

Debian DLA-203-1 : openldap security update

Multiple vulnerabilities were found in OpenLDAP, a free implementation of the Lightweight Directory Access Protocol. Please carefully check whether you are affected by CVE-2014-9713: if you are, you will need to manually upgrade your configuration! See below for more details on this. Just upgradi...

5CVSS5.6AI score0.11091EPSS
Exploits3References2
RedHat Linux
RedHat Linux
added 2015/04/07 3:8 p.m.5 views

kernel: net: slab corruption from use after free on INIT collisions

A use-after-free flaw was found in the way the Linux kernel's SCTP implementation handled authentication key reference counting during INIT collisions. A remote attacker could use this flaw to crash the system or, potentially, escalate their privileges on the system...

10CVSS6.7AI score0.09828EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/03/26 4:52 p.m.10 views

kernel: net: slab corruption from use after free on INIT collisions

A use-after-free flaw was found in the way the Linux kernel's SCTP implementation handled authentication key reference counting during INIT collisions. A remote attacker could use this flaw to crash the system or, potentially, escalate their privileges on the system...

10CVSS6.7AI score0.09828EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/01/20 5:21 p.m.49 views

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

Updated kernel packages that fix multiple security issues, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 6.5 Extended Update Support. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS...

7.8CVSS7AI score0.08579EPSS
Exploits4References7
NVD
NVD
added 2014/12/15 6:59 p.m.25 views

CVE-2014-8967

Use-after-free vulnerability in Microsoft Internet Explorer allows remote attackers to execute arbitrary code via a crafted HTML document in conjunction with a Cascading Style Sheets CSS token sequence specifying the run-in value for the display property, leading to improper CElement reference...

6.8CVSS7.1AI score0.12403EPSS
Exploits1References2
Prion
Prion
added 2014/12/15 6:59 p.m.22 views

Design/Logic Flaw

Use-after-free vulnerability in Microsoft Internet Explorer allows remote attackers to execute arbitrary code via a crafted HTML document in conjunction with a Cascading Style Sheets CSS token sequence specifying the run-in value for the display property, leading to improper CElement reference...

6.8CVSS7.6AI score0.12403EPSS
Exploits1References2
Cvelist
Cvelist
added 2014/12/15 5:27 p.m.37 views

CVE-2014-8967

Use-after-free vulnerability in Microsoft Internet Explorer allows remote attackers to execute arbitrary code via a crafted HTML document in conjunction with a Cascading Style Sheets CSS token sequence specifying the run-in value for the display property, leading to improper CElement reference...

7AI score0.12403EPSS
Exploits1References2
Zero Day Initiative
Zero Day Initiative
added 2014/12/04 12:0 a.m.34 views

(0Day) Microsoft Internet Explorer display:run-in Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how...

6.8CVSS6.5AI score0.12403EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2014/11/12 12:0 a.m.55 views

CentOS 6 : kernel (CESA-2014:1392)

Updated kernel packages that fix multiple security issues, address several hundred bugs, and add numerous enhancements are now available as part of the ongoing support and maintenance of Red Hat Enterprise Linux version 6. This is the sixth regular update. Red Hat Product Security has rated this...

7.8CVSS7.1AI score0.05794EPSS
Exploits5References12
RedHat Linux
RedHat Linux
added 2014/10/30 5:22 p.m.4 views

kernel: futex: refcount issue in case of requeue

A flaw was found in the way the Linux kernel's futex subsystem handled reference counting when requeuing futexes during futexwait. A local, unprivileged user could use this flaw to zero out the reference counter of an inode or an mm struct that backs up the memory area of the futex, which could...

6.9CVSS5.7AI score0.00661EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2014/10/30 5:22 p.m.51 views

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix two security issues are now available for Red Hat Enterprise Linux 6.2 Advanced Update Support. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

7.1CVSS6.5AI score0.05794EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2014/10/14 12:0 a.m.58 views

RHEL 6 : kernel (RHSA-2014:1392)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:1392 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. A NULL pointer dereference flaw was found in the way t...

7.8CVSS7.4AI score0.05794EPSS
Exploits5References51
RedHat Linux
RedHat Linux
added 2014/10/13 9:28 p.m.5 views

kernel: vfs: refcount issues during unmount on symlink

A flaw was found in the way the Linux kernel's VFS subsystem handled reference counting when performing unmount operations on symbolic links. A local, unprivileged user could use this flaw to exhaust all available memory on the system or, potentially, trigger a use-after-free error, resulting in ...

6.2CVSS6.6AI score0.00487EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2014/10/07 4:31 p.m.41 views

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 6.4 Extended Update Support. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...

6.9CVSS5.7AI score0.00661EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.44 views

openSUSE Security Update : xen (openSUSE-SU-2013:1404-1)

XEN was updated to 4.2.2, fixing lots of bugs and several security issues. Various upstream patches were also merged into this version by our developers. Detailed buglist : - bnc824676 - Failed to setup devices for vm instance when start multiple vms simultaneously - bnc817799 - sles9sp4 guest...

9.3CVSS5.7AI score0.04904EPSS
Exploits0References40
OpenVAS
OpenVAS
added 2014/06/09 12:0 a.m.41 views

Ubuntu: Security Advisory (USN-2234-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.37233EPSS
Exploits18References4
Rows per page
Query Builder