4357 matches found
CVE-2016-4006
epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...
UBUNTU-CVE-2016-4006
epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...
CVE-2016-4006
epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...
DEBIAN-CVE-2016-4006
epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...
CVE-2016-4006
CVE-2016-4006 affectsWireshark 1.12.x (before 1.12.11) and 2.0.x (before 2.0.3). The vulnerability arises because epan/proto.c does not limit the protocol-tree depth, enabling a remote attacker to crash the application via a crafted packet due to stack memory exhaustion. Affected product details ...
CVE-2016-4006
epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...
UBUNTU-CVE-2016-3172
SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier allows remote authenticated users to execute arbitrary SQL commands via the parentid parameter in an itemedit action...
Tree Fu Tom: Play and Learn - Base64 encoded String, Customized SSL, Exported ContentProvider vulnerabilities
HackApp vulnerability scanner discovered that application Tree Fu Tom: Play and Learn published at the 'play' market has multiple vulnerabilities...
Christmas Tree Fun - Dynamic Code Loading, External URLs, Native code usage vulnerabilities
HackApp vulnerability scanner discovered that application Christmas Tree Fun published at the 'play' market has multiple vulnerabilities...
New Year: Xmas Tree Puzzle - Exported ContentProvider, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application New Year: Xmas Tree Puzzle published at the 'play' market has multiple vulnerabilities...
Season of Tree :Forest Friends - External URLs, Possible privilege escalation, SD-card access vulnerabilities
HackApp vulnerability scanner discovered that application Season of Tree :Forest Friends published at the 'play' market has multiple vulnerabilities...
FamilySearch Tree - Customized SSL, Redefined SSL Common Names verifier vulnerabilities
HackApp vulnerability scanner discovered that application FamilySearch Tree published at the 'play' market has multiple vulnerabilities...
MyHeritage - Family Tree - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application MyHeritage - Family Tree published at the 'play' market has multiple vulnerabilities...
UBUNTU-CVE-2016-1960
Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string parser in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service use-after-free by leveraging mishandling of end tags, as demonstrated by...
Control CSS loading with custom properties
Last week I wrote about a simple method to load CSS progressively, and on the very same day some scientists taught gravity how to wave. Coincidence? Yes. The pattern in the previous post covers the 90% case of multi-stage CSS loading, and it's really simple to understand. But would you like to he...
Microsoft Edge Text Node Type Confusion Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Edge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how Microsoft Edge...
UEFI firmware image viewer and editor: UEFITool
It supports parsing of full BIOS images starting with the flash descriptor or any binary files containing UEFI volumes. Original development was started here at MDL forums as a cross-platform analog to PhoenixTool ‘s structure mode with some additional features, but the program’s engine was prove...
CVE-2016-1260
Juniper Junos OS before 13.2X51-D36, 14.1X53 before 14.1X53-D25, and 15.2 before 15.2R1 on EX4300 series switches allow remote attackers to cause a denial of service network loop and bandwidth consumption via unspecified vectors related to Spanning Tree Protocol STP traffic...
CVE-2016-1260
Juniper Junos OS before 13.2X51-D36, 14.1X53 before 14.1X53-D25, and 15.2 before 15.2R1 on EX4300 series switches allow remote attackers to cause a denial of service network loop and bandwidth consumption via unspecified vectors related to Spanning Tree Protocol STP traffic...
Design/Logic Flaw
Juniper Junos OS before 13.2X51-D36, 14.1X53 before 14.1X53-D25, and 15.2 before 15.2R1 on EX4300 series switches allow remote attackers to cause a denial of service network loop and bandwidth consumption via unspecified vectors related to Spanning Tree Protocol STP traffic...