7010 matches found
Quagga bgpd DoS
bgpd/bgpattr.c in Quagga 0.98.6 and earlier, and 0.99.6 and earlier 0.99 versions, does not validate length values in the MPREACHNLRI and MPUNREACHNLRI attributes, which allows remote attackers to cause a denial of service daemon crash or exit via crafted UPDATE messages that trigger an assertion...
CVE-2007-1995
bgpd/bgpattr.c in Quagga 0.98.6 and earlier, and 0.99.6 and earlier 0.99 versions, does not validate length values in the MPREACHNLRI and MPUNREACHNLRI attributes, which allows remote attackers to cause a denial of service daemon crash or exit via crafted UPDATE messages that trigger an assertion...
CVE-2007-1995
Removed by vendor...
security flaw
The clientProcessRequest function in src/clientside.c in Squid 2.6 before 2.6.STABLE12 allows remote attackers to cause a denial of service daemon crash via crafted TRACE requests that trigger an assertion error...
Denial of Service (DoS)
Overview Affected versions of this package are vulnerable to Denial of Service DoS. PulseAudio 0.9.5 allows remote attackers to cause a denial of service daemon crash via 1 a PAPSTREAMDESCRIPTORLENGTH value of FRAMESIZEMAXALLOW sent on TCP port 9875, which triggers a p-export assertion failure in...
CVE-2007-1560
The clientProcessRequest function in src/clientside.c in Squid 2.6 before 2.6.STABLE12 allows remote attackers to cause a denial of service daemon crash via crafted TRACE requests that trigger an assertion error...
Cross site request forgery (csrf)
The clientProcessRequest function in src/clientside.c in Squid 2.6 before 2.6.STABLE12 allows remote attackers to cause a denial of service daemon crash via crafted TRACE requests that trigger an assertion error...
DEBIAN-CVE-2007-1560
The clientProcessRequest function in src/clientside.c in Squid 2.6 before 2.6.STABLE12 allows remote attackers to cause a denial of service daemon crash via crafted TRACE requests that trigger an assertion error...
CVE-2007-1560
The clientProcessRequest function in src/clientside.c in Squid 2.6 before 2.6.STABLE12 allows remote attackers to cause a denial of service daemon crash via crafted TRACE requests that trigger an assertion error...
CVE-2007-1560
The clientProcessRequest function in src/clientside.c in Squid 2.6 before 2.6.STABLE12 allows remote attackers to cause a denial of service daemon crash via crafted TRACE requests that trigger an assertion error...
CVE-2007-1560
The clientProcessRequest function in src/clientside.c in Squid 2.6 before 2.6.STABLE12 allows remote attackers to cause a denial of service daemon crash via crafted TRACE requests that trigger an assertion error...
BIND dnssec denial of service
ISC BIND 9.0.x, 9.1.x, 9.2.0 up to 9.2.7, 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 Bind Forum only allows remote attackers to cause a denial of service exit via a type ANY DNS query response that contains multiple RRsets, which triggers an assertion...
CVE-2007-0842
CVE-2007-0842 affects 64-bit Microsoft Visual C++ 8.0 standard library (MSVCR80.DLL) time functions (localtime, localtime_s, gmtime, gmtime_s, ctime, ctime_s, wctime, wctime_s, fstat). When processing a time argument >= 1 Jan 3000, these functions trigger an assertion instead of returning NULL...
CVE-2007-0842
The 64-bit versions of Microsoft Visual C++ 8.0 standard library MSVCR80.DLL time functions, including 1 localtime, 2 localtimes, 3 gmtime, 4 gmtimes, 5 ctime, 6 ctimes, 7 wctime, 8 wctimes, and 9 fstat, trigger an assertion error instead of a NULL pointer or EINVAL when processing a time argumen...
bind -- Multiple Denial of Service vulnerabilities
Problem Description: A type ANY query response containing multiple RRsets can trigger an assertion failure. Certain recursive queries can cause the nameserver to crash by using memory which has already been freed. Impact: A remote attacker sending a type ANY query to an authoritative DNS server f...
BIND dnssec denial of service
ISC BIND 9.0.x, 9.1.x, 9.2.0 up to 9.2.7, 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 Bind Forum only allows remote attackers to cause a denial of service exit via a type ANY DNS query response that contains multiple RRsets, which triggers an assertion...
KSirc: Denial of Service vulnerability
Background KSirc is the default KDE IRC client. Description KSirc fails to check the size of an incoming PRIVMSG string sent from an IRC server during the connection process. Impact A malicious IRC server could send a long PRIVMSG string to the KSirc client causing an assertion failure and the...
CVE-2007-0494
ISC BIND 9.0.x, 9.1.x, 9.2.0 up to 9.2.7, 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 Bind Forum only allows remote attackers to cause a denial of service exit via a type ANY DNS query response that contains multiple RRsets, which triggers an assertion...
Input validation
ISC BIND 9.0.x, 9.1.x, 9.2.0 up to 9.2.7, 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 Bind Forum only allows remote attackers to cause a denial of service exit via a type ANY DNS query response that contains multiple RRsets, which triggers an assertion...
CVE-2007-0494
ISC BIND 9.0.x, 9.1.x, 9.2.0 up to 9.2.7, 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 Bind Forum only allows remote attackers to cause a denial of service exit via a type ANY DNS query response that contains multiple RRsets, which triggers an assertion...