Lucene search
K

4357 matches found

NVD
NVD
added 2016/04/25 10:59 a.m.22 views

CVE-2016-4006

epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...

5.9CVSS5.7AI score0.02316EPSS
Exploits0References6
OSV
OSV
added 2016/04/25 10:59 a.m.4 views

UBUNTU-CVE-2016-4006

epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...

5.9CVSS6.6AI score0.02316EPSS
Exploits0References5
OSV
OSV
added 2016/04/25 10:59 a.m.8 views

CVE-2016-4006

epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...

5.9CVSS5.5AI score
Exploits0References6
OSV
OSV
added 2016/04/25 10:59 a.m.2 views

DEBIAN-CVE-2016-4006

epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...

5.9CVSS5.4AI score0.02316EPSS
Exploits0References1
CVE
CVE
added 2016/04/25 10:0 a.m.80 views

CVE-2016-4006

CVE-2016-4006 affectsWireshark 1.12.x (before 1.12.11) and 2.0.x (before 2.0.3). The vulnerability arises because epan/proto.c does not limit the protocol-tree depth, enabling a remote attacker to crash the application via a crafted packet due to stack memory exhaustion. Affected product details ...

5.9CVSS5.5AI score0.02316EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2016/04/25 10:0 a.m.39 views

CVE-2016-4006

epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...

5.7AI score0.02316EPSS
Exploits0References6
OSV
OSV
added 2016/04/12 4:59 p.m.3 views

UBUNTU-CVE-2016-3172

SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier allows remote authenticated users to execute arbitrary SQL commands via the parentid parameter in an itemedit action...

8.8CVSS7.7AI score0.02827EPSS
Exploits1References3
hackapp
hackapp
added 2016/04/01 10:22 a.m.14 views

Tree Fu Tom: Play and Learn - Base64 encoded String, Customized SSL, Exported ContentProvider vulnerabilities

HackApp vulnerability scanner discovered that application Tree Fu Tom: Play and Learn published at the 'play' market has multiple vulnerabilities...

0.4AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 10:20 a.m.16 views

Christmas Tree Fun - Dynamic Code Loading, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application Christmas Tree Fun published at the 'play' market has multiple vulnerabilities...

0.2AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 10:20 a.m.9 views

New Year: Xmas Tree Puzzle - Exported ContentProvider, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application New Year: Xmas Tree Puzzle published at the 'play' market has multiple vulnerabilities...

1AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 10:17 a.m.13 views

Season of Tree :Forest Friends - External URLs, Possible privilege escalation, SD-card access vulnerabilities

HackApp vulnerability scanner discovered that application Season of Tree :Forest Friends published at the 'play' market has multiple vulnerabilities...

0.8AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 8:49 a.m.16 views

FamilySearch Tree - Customized SSL, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application FamilySearch Tree published at the 'play' market has multiple vulnerabilities...

0.4AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 8:48 a.m.21 views

MyHeritage - Family Tree - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application MyHeritage - Family Tree published at the 'play' market has multiple vulnerabilities...

0.6AI score
Exploits0References1Affected Software1
OSV
OSV
added 2016/03/08 12:0 a.m.5 views

UBUNTU-CVE-2016-1960

Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string parser in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service use-after-free by leveraging mishandling of end tags, as demonstrated by...

8.8CVSS7.7AI score0.31046EPSS
Exploits8References5
Jake Archibald's Blog
Jake Archibald's Blog
added 2016/02/16 1:2 p.m.15 views

Control CSS loading with custom properties

Last week I wrote about a simple method to load CSS progressively, and on the very same day some scientists taught gravity how to wave. Coincidence? Yes. The pattern in the previous post covers the 90% case of multi-stage CSS loading, and it's really simple to understand. But would you like to he...

6.9AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2016/02/10 12:0 a.m.40 views

Microsoft Edge Text Node Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Edge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how Microsoft Edge...

5.1CVSS2.6AI score0.2777EPSS
Exploits0References1
n0where
n0where
added 2016/02/03 5:31 a.m.31 views

UEFI firmware image viewer and editor: UEFITool

It supports parsing of full BIOS images starting with the flash descriptor or any binary files containing UEFI volumes. Original development was started here at MDL forums as a cross-platform analog to PhoenixTool ‘s structure mode with some additional features, but the program’s engine was prove...

7AI score
Exploits0References2
OSV
OSV
added 2016/01/15 7:59 p.m.4 views

CVE-2016-1260

Juniper Junos OS before 13.2X51-D36, 14.1X53 before 14.1X53-D25, and 15.2 before 15.2R1 on EX4300 series switches allow remote attackers to cause a denial of service network loop and bandwidth consumption via unspecified vectors related to Spanning Tree Protocol STP traffic...

5.3CVSS5.8AI score0.01739EPSS
Exploits0References2
NVD
NVD
added 2016/01/15 7:59 p.m.20 views

CVE-2016-1260

Juniper Junos OS before 13.2X51-D36, 14.1X53 before 14.1X53-D25, and 15.2 before 15.2R1 on EX4300 series switches allow remote attackers to cause a denial of service network loop and bandwidth consumption via unspecified vectors related to Spanning Tree Protocol STP traffic...

5.3CVSS5.3AI score0.01739EPSS
Exploits0References2
Prion
Prion
added 2016/01/15 7:59 p.m.22 views

Design/Logic Flaw

Juniper Junos OS before 13.2X51-D36, 14.1X53 before 14.1X53-D25, and 15.2 before 15.2R1 on EX4300 series switches allow remote attackers to cause a denial of service network loop and bandwidth consumption via unspecified vectors related to Spanning Tree Protocol STP traffic...

5CVSS7.2AI score0.01739EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder