Lucene search
K

2337 matches found

CVE
CVE
added 2013/08/14 10:0 a.m.216 views

CVE-2013-3175

CVE-2013-3175 is a Windows elevation-of-privilege issue in the handling of asynchronous RPC requests. Affected products include Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2/R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT. Root cause...

10CVSS7.5AI score0.27538EPSS
Exploits1References4Affected Software8
OpenVAS
OpenVAS
added 2013/05/31 12:0 a.m.23 views

CentOS Update for libtirpc CESA-2013:0884 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS5.2AI score0.0646EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2013/03/26 12:0 a.m.24 views

Solaris 10 (sparc) : 150157-01 (deprecated)

Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite subcomponent: Remote Procedure Call RPC. Supported versions that are affected are 8, 9, 10 and 11.1. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can...

4.6CVSS5.7AI score0.00442EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/03/25 12:0 a.m.24 views

Solaris 10 (x86) : 150158-01 (deprecated)

Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite subcomponent: Remote Procedure Call RPC. Supported versions that are affected are 8, 9, 10 and 11.1. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can...

4.6CVSS5.7AI score0.00442EPSS
Exploits0References2
Fedora
Fedora
added 2013/02/01 5:16 p.m.38 views

[SECURITY] Fedora 17 Update: axis-1.4-19.fc17

Apache AXIS is an implementation of the SOAP "Simple Object Access Protoco l" submission to W3C. From the draft W3C specification: SOAP is a lightweight protocol for exchange of information in a decentraliz ed, distributed environment. It is an XML based protocol that consists of three parts: an...

5.8CVSS1.4AI score0.05722EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2013/01/28 7:1 p.m.10 views

libvirt: use-after-free in virNetMessageFree()

Use-after-free vulnerability in the virNetMessageFree function in rpc/virnetserverclient.c in libvirt 1.0.x before 1.0.2, 0.10.2 before 0.10.2.3, 0.9.11 before 0.9.11.9, and 0.9.6 before 0.9.6.4 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code by...

6.8CVSS6.7AI score0.05774EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2013/01/08 4:4 a.m.23 views

Low: Red Hat Security Advisory: quota security and bug fix update

An updated quota package that fixes one security issue and multiple bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

4CVSS5.9AI score0.03147EPSS
Exploits0References3
OSV
OSV
added 2012/11/19 12:10 p.m.3 views

DEBIAN-CVE-2012-4423

The virNetServerProgramDispatchCall function in libvirt before 0.10.2 allows remote attackers to cause a denial of service NULL pointer dereference and segmentation fault via an RPC call with 1 an event as the RPC number or 2 an RPC number whose value is in a "gap" in the RPC dispatch table...

5CVSS5.9AI score0.03718EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2012/10/11 1:15 p.m.4 views

libvirt: null function pointer invocation in virNetServerProgramDispatchCall()

The virNetServerProgramDispatchCall function in libvirt before 0.10.2 allows remote attackers to cause a denial of service NULL pointer dereference and segmentation fault via an RPC call with 1 an event as the RPC number or 2 an RPC number whose value is in a "gap" in the RPC dispatch table...

5CVSS6.6AI score0.03718EPSS
Exploits0References4
OSV
OSV
added 2012/10/05 9:55 p.m.4 views

DEBIAN-CVE-2012-0845

SimpleXMLRPCServer.py in SimpleXMLRPCServer in Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 allows remote attackers to cause a denial of service infinite loop and CPU consumption via an XML-RPC POST request that contains a smaller amount of data than specified...

5CVSS8.3AI score0.0562EPSS
Exploits2References1
RedHat Linux
RedHat Linux
added 2012/08/23 2:51 p.m.4 views

libvirt: crash in virTypedParameterArrayClear

The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain API calls with typed parameters, which might allow remote authenticated users to cause a denial of service libvirtd crash via an RPC command with nparams set to zero, which triggers an out-of-bounds read...

3.5CVSS6.3AI score0.02158EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.54 views

Scientific Linux Security Update : kernel on SL4.x i386/x86_64

This update fixes the following security issues : - a flaw was found in the CIFSSMBWrite function in the Linux kernel Common Internet File System CIFS implementation. A remote attacker could send a specially crafted SMB response packet to a target CIFS client, resulting in a kernel panic denial o...

10CVSS6AI score0.08984EPSS
Exploits2References4
myhack58
myhack58
added 2012/07/13 12:0 a.m.18 views

The zend framework xxe injection analysis-vulnerability warning-the black bar safety net

A few days ago online broke a zend framework vulnerability author: mkods Specifically described as follows: ; according to the description, the vulnerability occurs in the zend Framework xmlrpc module of an xxeXML external entity injection vulnerability this vulnerability can be read on server...

0.8AI score
Exploits0
OpenVAS
OpenVAS
added 2012/05/04 12:0 a.m.26 views

RedHat Update for samba and samba3x RHSA-2012:0533-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.5CVSS6.5AI score0.04803EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2012/04/13 12:18 a.m.68 views

USN-1423-1: Samba vulnerability

Brian Gorenc discovered that Samba incorrectly calculated array bounds when handling remote procedure calls RPC over the network. A remote, unauthenticated attacker could exploit this to execute arbitrary code as the root user. CVE-2012-1182...

10CVSS8.8AI score0.74034EPSS
Exploits9
Tenable Nessus
Tenable Nessus
added 2012/04/13 12:0 a.m.334 views

Ubuntu 8.04 LTS / 10.04 LTS / 11.04 / 11.10 : samba vulnerability (USN-1423-1)

Brian Gorenc discovered that Samba incorrectly calculated array bounds when handling remote procedure calls RPC over the network. A remote, unauthenticated attacker could exploit this to execute arbitrary code as the root user. CVE-2012-1182. Note that Tenable Network Security has extracted the...

10CVSS8.7AI score0.74034EPSS
Exploits9References2
OSV
OSV
added 2012/04/10 9:55 p.m.3 views

DEBIAN-CVE-2012-1182

The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call...

10CVSS9.4AI score0.74034EPSS
Exploits9References1
RedHat Linux
RedHat Linux
added 2012/04/10 8:9 p.m.8 views

samba: Multiple heap-based buffer overflows in memory management based on NDR marshalling code output

The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call...

10CVSS8AI score0.74034EPSS
Exploits9References5
RedHat Linux
RedHat Linux
added 2012/02/13 8:30 p.m.9 views

glibc: svc_run() produces high cpu usage when accept() fails with EMFILE error

A denial of service flaw was found in the remote procedure call RPC implementation in glibc. A remote attacker able to open a large number of connections to an RPC service that is using the RPC implementation from glibc, could use this flaw to make that service use an excessive amount of CPU time...

5CVSS7.3AI score0.01834EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2012/02/13 8:30 p.m.7 views

glibc: svc_run() produces high cpu usage when accept() fails with EMFILE error

A denial of service flaw was found in the remote procedure call RPC implementation in glibc. A remote attacker able to open a large number of connections to an RPC service that is using the RPC implementation from glibc, could use this flaw to make that service use an excessive amount of CPU time...

5CVSS7.3AI score0.01834EPSS
Exploits0References4
Rows per page
Query Builder