Lucene search
+L

97 matches found

NVD
NVD
added 2019/06/24 8:15 p.m.30 views

CVE-2019-7231

The ABB IDAL FTP server is vulnerable to a buffer overflow when a long string is sent by an authenticated attacker. This overflow is handled, but terminates the process. An authenticated attacker can send a FTP command string of 472 bytes or more to overflow a buffer, causing an exception that...

5.7CVSS6.6AI score0.06783EPSS
Exploits2References5
Veracode
Veracode
added 2019/05/02 5:12 a.m.29 views

Buffer Overflow

The X11 Xorg libraries provide library routines that are used within all X Window applications. Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in the way various X11 client libraries handled certain protocol data. An attacker able to submit invalid protocol da...

6.8CVSS10.2AI score0.04282EPSS
Exploits0References13Affected Software6
Veracode
Veracode
added 2019/05/02 5:12 a.m.32 views

Integer Overflows

The X11 Xorg libraries provide library routines that are used within all X Window applications. Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in the way various X11 client libraries handled certain protocol data. An attacker able to submit invalid protocol da...

6.8CVSS10.2AI score0.04282EPSS
Exploits0References14Affected Software6
Prion
Prion
added 2019/02/22 3:29 p.m.17 views

Memory corruption

In Eclipse Wakaama formerly liblwm2m 1.0, core/er-coap-13/er-coap-13.c in lwm2mserver in the LWM2M server mishandles invalid options, leading to a memory leak. Processing of a single crafted packet leads to leaking wasting 24 bytes of memory. This can lead to termination of the LWM2M server after...

5CVSS7.4AI score0.01507EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2019/01/25 5:29 a.m.22 views

CVE-2017-18359

PostGIS 2.x before 2.3.3, as used with PostgreSQL, allows remote attackers to cause a denial of service via crafted STAsX3D function input, as demonstrated by an abnormal server termination for "SELECT STAsX3D'LINESTRING EMPTY';" because empty geometries are mishandled...

7.5CVSS7.4AI score0.03046EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2019/01/25 5:29 a.m.29 views

CVE-2017-18359

PostGIS 2.x before 2.3.3, as used with PostgreSQL, allows remote attackers to cause a denial of service via crafted STAsX3D function input, as demonstrated by an abnormal server termination for "SELECT STAsX3D'LINESTRING EMPTY';" because empty geometries are mishandled...

7.5CVSS7.1AI score0.03046EPSS
Exploits1References4
Cvelist
Cvelist
added 2019/01/25 5:0 a.m.26 views

CVE-2017-18359

PostGIS 2.x before 2.3.3, as used with PostgreSQL, allows remote attackers to cause a denial of service via crafted STAsX3D function input, as demonstrated by an abnormal server termination for "SELECT STAsX3D'LINESTRING EMPTY';" because empty geometries are mishandled...

7.2AI score0.03046EPSS
Exploits1References5
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 1:7 p.m.28 views

Security Bulletin: IBM® DB2® LUW contains a vulnerability in which an ALTER TABLE statement may cause the DB2 server to terminate abnormally when AUTO_REVAL is set to IMMEDIATE . (CVE-2014-6159)

Summary IBM DB2 contains a vulnerability in which an ALTER TABLE statement may cause the DB2 server to terminate abnormally when AUTOREVAL is set to IMMEDIATE . This could result in a DB2 server crash; if so, the server would need to be restarted. Vulnerability Details CVE ID: CVE-2014-6159...

3.5CVSS0.1AI score0.0212EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 1:7 p.m.31 views

Security Bulletin: IBM® DB2® LUW contains a vulnerability in which an ALTER TABLE statement may cause the DB2 server to terminate abnormally. (CVE-2014-6097)

Summary IBM DB2 LUW contains a vulnerability in which an ALTER TABLE statement may cause the DB2 server to terminate abnormally. This could result in a DB2 server crash and require that the server be restarted Vulnerability Details CVE ID: CVE-2014-6097 DESCRIPTION: IBM DB2 V9.7 and V9.8 contain ...

4CVSS0.01896EPSS
Exploits0Affected Software2
Prion
Prion
added 2018/05/14 2:29 p.m.20 views

Design/Logic Flaw

In Schneider Electric ClearSCADA 2014 R1 build 75.5210 and prior, 2014 R1.1 build 75.5387 and prior, 2015 R1 build 76.5648 and prior, and 2015 R2 build 77.5882 and prior, an attacker with network access to the ClearSCADA server can send specially crafted sequences of commands and data packets to...

5CVSS7.6AI score0.01711EPSS
Exploits0References2Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2016/06/14 5:0 a.m.6 views

ETX-R vulnerable to denial-of-service (DoS)

Overview ETX-R provided by I-O DATA DEVICE, INC. is a wired LAN router. ETX-R contains a denial-of-service DoS vulnerability. Junichi MURAKAMI of FFRI, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact A...

5.3CVSS6.7AI score0.01599EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2015/01/08 12:0 a.m.37 views

IBM Db2 Multiple Denial of Service Vulnerabilities

IBM Db2 is prone to multiple denial of service vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:db2";...

4CVSS6.2AI score0.0249EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2014/10/13 9:6 p.m.48 views

Moderate: Red Hat Security Advisory: X11 client libraries security, bug fix, and enhancement update

Updated X11 client libraries packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base...

7.5CVSS7.6AI score0.04282EPSS
Exploits0References28
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

Pragma TelnetServer 7.0.4.589 NULL-Pointer Dereference Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27143/info Pragma TelnetServer is prone to a denial-of-service vulnerability because it fails to adequately handle certain telnet options. Attackers can leverage this issue to terminate the server and cause...

7.1AI score
Exploits0
Prion
Prion
added 2013/08/09 10:55 p.m.29 views

Buffer overflow

Buffer overflow in the idnsALookup function in dnsinternal.cc in Squid 3.2 through 3.2.11 and 3.3 through 3.3.6 allows remote attackers to cause a denial of service memory corruption and server termination via a long name in a DNS lookup request...

7.5CVSS7.3AI score0.43261EPSS
Exploits0References18Affected Software2
CVE
CVE
added 2013/08/09 10:0 p.m.177 views

CVE-2013-4115

CVE-2013-4115 : Buffer overflow in the idnsALookup function of Squid’s DNS lookup (dns_internal.cc) affects Squid 3.2–3.2.11 and 3.3–3.3.6, enabling a remote attacker to trigger memory corruption and cause a denial of service via a long DNS name. Connected advisories confirm affected products and...

7.5CVSS8.4AI score0.43261EPSS
Exploits0References18Affected Software1
Debian CVE
Debian CVE
added 2013/08/09 10:0 p.m.37 views

CVE-2013-4115

Buffer overflow in the idnsALookup function in dnsinternal.cc in Squid 3.2 through 3.2.11 and 3.3 through 3.3.6 allows remote attackers to cause a denial of service memory corruption and server termination via a long name in a DNS lookup request...

7.5CVSS5.9AI score0.43261EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/06/05 12:0 a.m.36 views

FreeBSD : dns/bind9* -- zero-length RDATA can cause named to terminate, reveal memory (1ecc0d3f-ae8e-11e1-965b-0024e88a8c98)

ISC reports : Processing of DNS resource records where the rdata field is zero length may cause various issues for the servers handling them. Processing of these records may lead to unexpected outcomes. Recursive servers may crash or disclose some portion of memory to the client. Secondary server...

8.5CVSS6.8AI score0.13405EPSS
Exploits1References3
FreeBSD
FreeBSD
added 2012/06/04 12:0 a.m.46 views

dns/bind9* -- zero-length RDATA can cause named to terminate, reveal memory

ISC reports: Processing of DNS resource records where the rdata field is zero length may cause various issues for the servers handling them. Processing of these records may lead to unexpected outcomes. Recursive servers may crash or disclose some portion of memory to the client. Secondary servers...

8.5CVSS8.7AI score0.13405EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2009/09/02 12:0 a.m.38 views

Debian Security Advisory DSA 1833-2 (dhcp3)

The remote host is missing an update to dhcp3 announced via advisory DSA 1833-2. OpenVAS Vulnerability Test $Id: deb18332.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1833-2 dhcp3 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

10CVSS0.9AI score0.2578EPSS
Exploits10
Rows per page
Query Builder