Lucene search
K

7041 matches found

Debian CVE
Debian CVE
added 2016/05/14 9:0 p.m.27 views

CVE-2016-1660

Removed by vendor...

8.8CVSS9.3AI score0.01128EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2016/05/11 1:7 p.m.11 views

pcre: buffer overflow for forward reference within backward assertion with excess closing parenthesis (8.38/18)

Heap-based buffer overflow in the findfixedlength function in pcrecompile.c in PCRE before 8.38 allows remote attackers to cause a denial of service crash or obtain sensitive information from heap memory and possibly bypass the ASLR protection mechanism via a crafted regular expression with an...

9.1CVSS7.6AI score0.07673EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2016/05/11 1:7 p.m.3 views

pcre: buffer overflow for forward reference within backward assertion with excess closing parenthesis (8.38/18)

PCRE before 8.38 mishandles the /?=di?=?1|?=./ pattern and related patterns with an unmatched closing parenthesis, which allows remote attackers to cause a denial of service buffer overflow or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript...

7.5CVSS7.4AI score0.06587EPSS
Exploits0References4
myhack58
myhack58
added 2016/05/10 12:0 a.m.26 views

Microsoft Office 3 6 5 platform SAML service vulnerability, unauthorized access to other users of the resource-vulnerability warning-the black bar safety net

! Recently, two security researchers, Klemen Bratec and Ioannis Kakavas, announced they found one in Microsoft Office 3 6 5 platform on the SAML service vulnerability that can be exploited to perform cross-domain authentication bypass, and eventually to 3 6 5 on the platform of the all the Federa...

7.2AI score
Exploits0
exploitpack
exploitpack
added 2016/04/29 12:0 a.m.20 views

Wireshark - alloc_address_wmem Assertion Failure

Wireshark - allocaddresswmem Assertion Failure Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=804 The following crash due to an asserion failure can be observed in an ASAN build of Wireshark current git master, by feeding a malformed file to tshark "$ ./tshark -nVxr...

7.4AI score
Exploits0
0day.today
0day.today
added 2016/04/29 12:0 a.m.42 views

Wireshark - alloc_address_wmem Assertion Failure

Exploit for multiple platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=804 The following crash due to an asserion failure can be observed in an ASAN build of Wireshark current git master, by feeding a malformed file to tshark "$ ./tshark -nVxr...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2016/04/29 12:0 a.m.31 views

Wireshark - alloc_address_wmem Assertion Failure

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=804 The following crash due to an asserion failure can be observed in an ASAN build of Wireshark current git master, by feeding a malformed file to tshark "$ ./tshark -nVxr /path/to/file": --- cut ---...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/04/27 12:0 a.m.41 views

AIX 6.1 TL 9 : bind (IV81279) (deprecated)

ISC BIND is vulnerable to a denial of service, caused by improper bounds checking in apl42.c. By sending specially crafted Address Prefix List APL data, a remote authenticated attacker could exploit this vulnerability to trigger an INSIST assertion failure and cause the named process to terminate...

6.8AI score0.20172EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2016/04/19 12:0 a.m.7 views

DNS BIND server vulnerability, allowing attackers to cause service failures

The vulnerability of the BIND DNS server component exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to cause service failures—such as the appearance of an “Assertion Failure” error and the termination of the daemon—by using a specially...

4.3CVSS6.9AI score0.59143EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/04/19 12:0 a.m.5 views

DNS BIND server vulnerability, allowing attackers to cause service failures

The vulnerability of the DNS BIND server component exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to cause a service failure—the appearance of an “Assertion Failure” error, and the termination of the daemon—by using a specially crafted...

5CVSS6.9AI score0.621EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/04/14 12:0 a.m.7 views

DNS BIND server vulnerability, allowing attackers to cause service failures

The vulnerability of the DNS BIND server exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to cause service failures—such as the appearance of an error message “Assertion failure” or the termination of the daemon—by using a specially creat...

2.6CVSS6.2AI score0.03311EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/04/08 12:0 a.m.22 views

openSUSE Security Update : java-1_7_0-openjdk (openSUSE-2016-431)

This update for java-170-openjdk fixes the following issues : java-170-openjdk was updated to 2.6.5 - OpenJDK 7u99 boo972468 - Security fixes - S8152335, CVE-2016-0636: Improve MethodHandle consistency - Import of OpenJDK 7 u99 build 0 - S6425769, PR2858: Allow specifying an address to bind JMX...

9.3CVSS7.6AI score0.05765EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2016/03/31 12:0 a.m.6 views

The vulnerability of the Squid proxy server allows a hacker to cause a service failure.

The vulnerability of the Edge Side Includes parser of the Squid proxy server exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to cause a service failure—such as the appearance of an error message “Assertion failure” or the termination of...

5CVSS7.2AI score0.09025EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/03/31 12:0 a.m.5 views

The vulnerability of the Squid proxy server allows a hacker to cause a service failure.

The vulnerability of the Squid proxy server exists due to the incorrect addition of information into String objects. Exploiting this vulnerability allows a remote attacker to cause a service failure—the appearance of an “Assertion failure” window, or the termination of the daemon. This occurs wit...

5CVSS7.2AI score0.31411EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/03/31 12:0 a.m.4 views

The vulnerability of the Squid proxy server allows a hacker to cause a service failure.

The vulnerability of the http.cc component in the Squid proxy server exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to cause a service failure—such as the appearance of an “Assertion failure” message and the termination of the...

5CVSS7.2AI score0.09363EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/03/28 12:0 a.m.41 views

FreeBSD : bind -- denial of service vulnerability (cba246d2-f483-11e5-92ce-002590263bf5)

ISC reports : A problem parsing resource record signatures for DNAME resource records can lead to an assertion failure in resolver.c or db.c %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database :...

8.6CVSS6.9AI score0.621EPSS
Exploits0References3
Mageia
Mageia
added 2016/03/25 6:38 a.m.57 views

Updated iceape packages fix security vulnerability

Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allow remote attackers to bypass the Same Origin Policy via data: and view-source: URIs. CVE-2015-7214 The WebExtension APIs in Mozilla Firefox before 43.0 allow remote attackers to gain privileges, and possibly obtain sensitive...

10CVSS10.4AI score0.06058EPSS
Exploits1References18
OSV
OSV
added 2016/03/20 12:0 a.m.25 views

DSA-3522-1 squid3 - security update

Bulletin has no description...

7.5CVSS7.5AI score0.09363EPSS
Exploits0
OSV
OSV
added 2016/03/18 3:33 p.m.4 views

SUSE-SU-2016:0825-1 Security update for bind

This update for bind fixes the following issues: Fix two assertion failures that can lead to a remote denial of service attack: CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. bsc970072 CVE-2016-1286: An error when parsing...

8.6CVSS7.4AI score0.621EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2016/03/17 12:0 a.m.5 views

The vulnerability of Google Chrome browser allows a perpetrator to trigger a service failure or cause other effects.

The vulnerability in the WebKit/Source/core/layout/LayoutBlock.cpp function of the Google Chrome browser’s Blink kernel exists due to insufficient checking of input data. Exploiting this vulnerability can allow an attacker to cause a service failure the appearance of a “Assertion failure” window ...

9.3CVSS7.7AI score0.02121EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder