136 matches found
Vulnerability of the Server component: Security: Privileges of the MySQL database management system, which allows a hacker to cause a service failure.
The vulnerability of the Server component: Security: Privileges of the MySQL database management system is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...
The vulnerability of the imagetopnm function in the OpenJPEG library, related to the swapping of the null pointer, allows attackers to cause a service failure.
The vulnerability of the imagetopnm function in the OpenJPEG image encoding and decoding library is related to the use of a null pointer. Exploiting this vulnerability could allow an attacker to cause service interruptions remotely...
The vulnerability of the Extensible Authentication Protocol over LAN (EAPOL) implementation in microprogrammable routering software from Cisco’s Small Business 100 Series and Cisco Small Business 300 Series allows a perpetrator to induce a service failure.
The vulnerability of the Extensible Authentication Protocol over LAN EAPOL implementation in microprogramming-based router software from Cisco’s Small Business 100 Series and Cisco Small Business 300 Series models is related to errors in processing EAPOL frames. Exploiting this vulnerability allo...
PT-2018-3298 · Mutt +5 · Mutt +5
Name of the Vulnerable Software and Affected Versions: Mutt versions prior to 1.10.1 NeoMutt versions prior to 2018-07-16 Description: The issue is related to the imap quote string function in the imap/util.c file of the Mutt and NeoMutt email clients. This function does not account for quote...
The vulnerability of the xmlDictAddString function in the dict.c library of the libxml2 library, which allows a hacker to cause a service failure.
The vulnerability of the xmlDictAddString function in the dict.c library of the libxml2 library arises from a read operation that occurs outside the buffer’s boundaries in dynamic memory. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...
Artifex Ghostscript GhostXPS heap buffer overflow vulnerability (CNVD-2017-22385)
Artifex Ghostscript is an open source PostScript a page description language and programming language for the electronics industry and desktop publishing parser from Artifex Software. A security vulnerability exists in the 'InsJMPR' function of the base/ttinterp.c file in Artifex Ghostscript...
The vulnerability of the xdr_bytes and xdr_string functions in the library that handles system calls and core glibc functions allows a attacker to cause a service failure.
The vulnerabilities of the xdrbytes and xdrstring functions in the library that handles system calls and core glibc functions are related to the reclamation of unreliable data stored in memory after deserialization of buffers. Exploiting these vulnerabilities allows a remote attacker to cause a...
The vulnerabilities of programs for viewing and editing PDF files such as Adobe Reader, Adobe Acrobat, Adobe Acrobat Document Cloud, and Adobe Reader Document Cloud allow attackers to trigger service interruptions.
The vulnerability of the JPEG 2000 stream processing service for programs used to view and edit PDF files, such as Adobe Reader, Adobe Acrobat, Adobe Acrobat Document Cloud, and Adobe Reader Document Cloud, is related to a memory leak. Exploiting this vulnerability can allow an attacker to cause...
The vulnerabilities of programs for viewing and editing PDF files such as Adobe Reader, Adobe Acrobat, Adobe Acrobat Document Cloud, and Adobe Reader Document Cloud allow attackers to trigger service interruptions.
The vulnerability of the JPEG 2000 stream processing service software for viewing and editing PDF files in Adobe Reader, Adobe Acrobat, Adobe Acrobat Document Cloud, and Adobe Reader Document Cloud is related to a memory leak. Exploiting this vulnerability can allow an attacker to cause a service...
The vulnerability of the Cisco Wireless LAN Controller 2000 software allows a malicious individual to cause service failure.
Vulnerability exists in Cisco Wireless LAN Controller WLC devices due to improper memory release. This allows malicious actors operating remotely to trigger a service failure by sending frequent WebAuth authorization requests...
The vulnerability of the Cisco IOS operating system, which allows a intruder to trigger a service failure
The vulnerability of the Cisco IOS operating system does not limit the number of PCE elements used for OSPF LSA updates. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...
Google Chrome FFmpeg Competitive Conditions Vulnerability
Google Chrome is an open source WEB browser. The 'updatedimensions' function in the libavcodec/vp8.c file of FFmpeg used by Google to perform multi-threaded operations relies on coefficient-partition counting, allowing remote attackers to build special WebM files for denial-of-service attacks...
The vulnerability of the Cisco IOS operating system, which allows a intruder to trigger a service failure
The vulnerability of the Cisco IOS operating system is related to resource management errors. Exploiting this vulnerability allows a malicious actor to cause service interruptions by sending specially crafted UDP packets remotely...
UBUNTU-CVE-2015-6823
The allocatebuffers function in libavcodec/alac.c in FFmpeg before 2.7.2 does not initialize certain context data, which allows remote attackers to cause a denial of service segmentation violation or possibly have unspecified other impact via crafted Apple Lossless Audio Codec ALAC data...
Cisco IOS TCP Input Module Denial of Service Vulnerability
Cisco IOS is a popular Internet operating system. A memory leak vulnerability exists in the Cisco IOS TCP input module, which allows remote attackers to conduct denial-of-service attacks via specially crafted TCP messages...
wireshark: NFS dissector crash (wnpa-sec-2014-01)
The nfsnamesnoopaddname function in epan/dissectors/packet-nfs.c in the NFS dissector in Wireshark 1.8.x before 1.8.13 and 1.10.x before 1.10.6 does not validate a certain length value, which allows remote attackers to cause a denial of service memory corruption and application crash via a crafte...