Lucene search
+L

2718 matches found

Positive Technologies
Positive Technologies
added 2014/07/22 12:0 a.m.3 views

PT-2014-1464 · Mozilla +1 · Firefox Esr +3

Name of the Vulnerable Software and Affected Versions: Mozilla Firefox versions prior to 31.0 Firefox ESR versions prior to 24.7 Thunderbird versions prior to 24.7 Description: The issue is related to a use-after-free vulnerability in the FontTableRec destructor, allowing remote attackers to...

10CVSS6.4AI score0.04682EPSS
Exploits0References16
OSV
OSV
added 2014/07/22 12:0 a.m.6 views

UBUNTU-CVE-2014-1555

Use-after-free vulnerability in the nsDocLoader::OnProgress function in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7 allows remote attackers to execute arbitrary code via vectors that trigger a FireOnStateChange event...

9.3CVSS7.2AI score0.04907EPSS
Exploits0References5
OSV
OSV
added 2014/07/16 12:0 a.m.3 views

UBUNTU-CVE-2014-2494

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier allows remote authenticated users to affect availability via vectors related to ENARC...

4CVSS7.3AI score0.03482EPSS
Exploits0References4
OSV
OSV
added 2014/07/09 11:7 a.m.3 views

DEBIAN-CVE-2014-0207

The cdfreadshortsector function in cdf.c in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, allows remote attackers to cause a denial of service assertion failure and application exit via a crafted CDF file...

6.5CVSS7.7AI score0.16853EPSS
Exploits0References1
OSV
OSV
added 2014/07/09 12:0 a.m.4 views

UBUNTU-CVE-2014-4607

Integer overflow in the LZO algorithm variant in Oberhumer liblzo2 and lzo-2 before 2.07 on 32-bit platforms might allow remote attackers to execute arbitrary code via a crafted Literal Run...

8.8CVSS7.1AI score0.05315EPSS
Exploits1References5
OSV
OSV
added 2014/07/09 12:0 a.m.6 views

UBUNTU-CVE-2014-3480

The cdfcountchain function in cdf.c in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, does not properly validate sector-count data, which allows remote attackers to cause a denial of service application crash via a crafted CDF file...

6.5CVSS7.2AI score0.11481EPSS
Exploits0References5
OSV
OSV
added 2014/07/03 12:0 a.m.2 views

UBUNTU-CVE-2014-4611

Integer overflow in the LZ4 algorithm implementation, as used in Yann Collet LZ4 before r118 and in the lz4uncompress function in lib/lz4/lz4decompress.c in the Linux kernel before 3.15.2, on 32-bit platforms might allow context-dependent attackers to cause a denial of service memory corruption o...

5CVSS7AI score0.08103EPSS
Exploits0References8
OSV
OSV
added 2014/06/11 10:57 a.m.4 views

UBUNTU-CVE-2014-1534

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 30.0 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors...

10CVSS6.9AI score0.05815EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2014/06/10 12:44 p.m.12 views

mysql: unspecified DoS related to Performance Schema (CPU April 2014)

Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote authenticated users to affect availability via unknown vectors related to Performance Schema...

3.5CVSS6.5AI score0.03281EPSS
Exploits0References5
OSV
OSV
added 2014/05/19 2:55 p.m.37 views

UBUNTU-CVE-2014-3716

Xen 4.4.x does not properly check alignment, which allows local users to cause a denial of service crash via an unspecified field in a DTB header in a 32-bit guest kernel...

1.9CVSS5.8AI score0.00388EPSS
Exploits0References6
OSV
OSV
added 2014/04/29 2:38 p.m.4 views

UBUNTU-CVE-2014-0088

The SPDY implementation in the ngxhttpspdymodule module in nginx 1.5.10 before 1.5.11, when running on a 32-bit platform, allows remote attackers to execute arbitrary code via a crafted request...

7.5CVSS6.2AI score0.08663EPSS
Exploits0References4
OSV
OSV
added 2014/04/15 12:0 a.m.5 views

UBUNTU-CVE-2014-2440

Unspecified vulnerability in the MySQL Client component in Oracle MySQL 5.5.36 and earlier and 5.6.16 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

5.1CVSS6.5AI score0.04578EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2014/02/24 5:57 p.m.25 views

openldap: segfault on certain queries with rwm overlay

The rwm overlay in OpenLDAP 2.4.23, 2.4.36, and earlier does not properly count references, which allows remote attackers to cause a denial of service slapd crash by unbinding immediately after a search request, which triggers rwmconndestroy to free the session context while it is being used by...

4.3CVSS6.2AI score0.10913EPSS
Exploits1References4
OSV
OSV
added 2014/02/06 10:55 p.m.2 views

DEBIAN-CVE-2014-0038

The compatsysrecvmmsg function in net/compat.c in the Linux kernel before 3.13.2, when CONFIGX86X32 is enabled, allows local users to gain privileges via a recvmmsg system call with a crafted timeout pointer parameter...

6.9CVSS8.6AI score0.34649EPSS
Exploits16References1
RedHat Linux
RedHat Linux
added 2013/10/23 4:26 p.m.3 views

JDK: unspecified vulnerability fixed in 6u31 and 7u3 (2D)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D...

10CVSS6.9AI score0.05916EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2013/10/23 4:26 p.m.14 views

JDK: unspecified vulnerability (Deployment)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than...

7.5CVSS5.8AI score0.03819EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/10/23 4:26 p.m.8 views

JDK: unspecified vulnerability fixed in 6u41 and 7u15 (Deployment)

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE 7 Update 13 and earlier and 6 Update 39 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment...

10CVSS5.8AI score0.06036EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/10/23 4:26 p.m.6 views

JDK: unspecified vulnerability fixed in 6u41 and 7u15 (Deployment)

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE 7 Update 13 and earlier and 6 Update 39 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment...

10CVSS5.8AI score0.06036EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/10/23 4:26 p.m.8 views

JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality via unknown vectors related to Deployment...

4.3CVSS5.8AI score0.04284EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/10/23 4:26 p.m.8 views

JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs...

7.6CVSS5.8AI score0.0671EPSS
Exploits0References5
Rows per page
Query Builder