Lucene search
K

90 matches found

OSV
OSV
added 2017/04/09 2:59 p.m.2 views

DEBIAN-CVE-2017-7609

elfcompress.c in elfutils 0.168 does not validate the zlib compression factor, which allows remote attackers to cause a denial of service memory consumption via a crafted ELF file...

5.5CVSS5.7AI score0.01641EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2017/04/09 12:0 a.m.29 views

CVE-2017-7609

elfcompress.c in elfutils 0.168 does not validate the zlib compression factor, which allows remote attackers to cause a denial of service memory consumption via a crafted ELF file...

5.5CVSS6.4AI score0.01641EPSS
Exploits1References3
OSV
OSV
added 2017/04/09 12:0 a.m.3 views

UBUNTU-CVE-2017-7609

elfcompress.c in elfutils 0.168 does not validate the zlib compression factor, which allows remote attackers to cause a denial of service memory consumption via a crafted ELF file...

5.5CVSS6.3AI score0.01641EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2016/01/08 12:0 a.m.88 views

Wireshark 2.0.0 Multiple DoS

The version of Wireshark installed on the remote Windows host is 2.0.0. It is, therefore, affected by multiple denial of service vulnerabilities in the following components : - 802.11 dissector - ANSI A dissector - Ascend file parser - BER dissector - Bluetooth Attribute dissector - DIAMETER...

5.5CVSS6.5AI score0.07142EPSS
Exploits14References26
Tenable Nessus
Tenable Nessus
added 2016/01/08 12:0 a.m.52 views

Wireshark 1.12.x < 1.12.9 Multiple DoS

The version of Wireshark installed on the remote Windows host is 1.12.x prior to 1.12.9. It is, therefore, affected by multiple denial of service vulnerabilities in the following components : - 802.11 dissector - AllJoyn dissector - ANSI A dissector - Ascend file parser - BER dissector - DCOM...

5.5CVSS6.5AI score0.05488EPSS
Exploits11References24
NVD
NVD
added 2016/01/04 5:59 a.m.15 views

CVE-2015-8721

Buffer overflow in the tvbuncompress function in epan/tvbuffzlib.c in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 allows remote attackers to cause a denial of service application crash via a crafted packet with zlib compression...

5.5CVSS5.6AI score0.01701EPSS
Exploits0References8
OSV
OSV
added 2016/01/04 5:59 a.m.1 views

DEBIAN-CVE-2015-8721

Buffer overflow in the tvbuncompress function in epan/tvbuffzlib.c in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 allows remote attackers to cause a denial of service application crash via a crafted packet with zlib compression...

5.5CVSS7.4AI score0.01701EPSS
Exploits0References1
OSV
OSV
added 2016/01/04 5:59 a.m.6 views

CVE-2015-8721

Buffer overflow in the tvbuncompress function in epan/tvbuffzlib.c in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 allows remote attackers to cause a denial of service application crash via a crafted packet with zlib compression...

5.5CVSS5.4AI score
Exploits0References8
Prion
Prion
added 2016/01/04 5:59 a.m.18 views

Buffer overflow

Buffer overflow in the tvbuncompress function in epan/tvbuffzlib.c in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 allows remote attackers to cause a denial of service application crash via a crafted packet with zlib compression...

4.3CVSS7.1AI score0.01701EPSS
Exploits0References8Affected Software1
UbuntuCve
UbuntuCve
added 2016/01/04 5:59 a.m.30 views

CVE-2015-8721

Buffer overflow in the tvbuncompress function in epan/tvbuffzlib.c in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 allows remote attackers to cause a denial of service application crash via a crafted packet with zlib compression...

5.5CVSS6.5AI score0.01701EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2016/01/04 2:0 a.m.23 views

CVE-2015-8721

Buffer overflow in the tvbuncompress function in epan/tvbuffzlib.c in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 allows remote attackers to cause a denial of service application crash via a crafted packet with zlib compression...

5.5CVSS5.7AI score0.01701EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.29 views

Amazon Linux: Security Advisory (ALAS-2013-171)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.9AI score0.35584EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2015/07/20 2:6 p.m.44 views

Moderate: Red Hat Security Advisory: sudo security, bug fix, and enhancement update

Updated sudo packages that fix one security issue, three bugs, and add one enhancement are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

3.3CVSS6.2AI score0.0047EPSS
Exploits1References7
GoogleProjectZero
GoogleProjectZero
added 2014/08/21 12:0 a.m.37 views

What does a pointer look like, anyway?

Posted by Chris Evans, Renderer of Modern Art In Adobe’s August 2014 Flash Player security update, we see: These updates resolve memory leakage vulnerabilities that could be used to bypass memory address randomization CVE-2014-0540, CVE-2014-0542, CVE-2014-0543, CVE-2014-0544, CVE-2014-0545. I...

10CVSS6.5AI score0.03978EPSS
Exploits0
Debian
Debian
added 2014/06/20 4:35 p.m.103 views

openssl security update

Package: openssl Version: 0.9.8o-4squeeze16 CVE ID: CVE-2014-0224 CVE-2012-4929 CVE-2014-0224 This update updates the upstream fix for CVE-2014-0224 to address problems with renegotiation under some conditions. original text: KIKUCHI Masashi discovered that carefully crafted handshakes can force...

7.4CVSS1AI score0.95326EPSS
Exploits11
Debian
Debian
added 2014/06/20 4:35 p.m.55 views

openssl security update

Package: openssl Version: 0.9.8o-4squeeze16 CVE ID: CVE-2014-0224 CVE-2012-4929 CVE-2014-0224 This update updates the upstream fix for CVE-2014-0224 to address problems with renegotiation under some conditions. original text: KIKUCHI Masashi discovered that carefully crafted handshakes can force...

7.4CVSS6.9AI score0.95326EPSS
Exploits11
OSV
OSV
added 2014/06/20 12:0 a.m.50 views

DLA-0008-1 openssl - security update

Bulletin has no description...

7.4CVSS6.8AI score0.95326EPSS
Exploits11
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.41 views

Oracle Linux 5 / 6 : openssl (ELSA-2013-0587)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-0587 advisory. - fix for CVE-2013-0169 - SSL/TLS CBC timing attack 907589 - fix for CVE-2013-0166 - DoS in OCSP signatures checking 908052 - enable compression on...

5CVSS7.1AI score0.35584EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2013/03/05 12:0 a.m.49 views

RedHat Update for openssl RHSA-2013:0587-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS6.6AI score0.35584EPSS
Exploits2References2
UbuntuCve
UbuntuCve
added 2012/09/15 12:0 a.m.52 views

CVE-2012-4929

The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google Chrome, Qt, and other products, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which allows man-in-the-middle attackers to obtain plaintext HTTP headers by observing length differenc...

2.6CVSS6.8AI score0.04266EPSS
Exploits2References20
Rows per page
Query Builder