Lucene search
K

7041 matches found

Check Point Advisories
Check Point Advisories
added 2015/10/07 12:0 a.m.4 views

OpenLDAP ber_get_next Denial of Service (CVE-2015-6908)

A denial of service condition has been reported in OpenLDAP. The vulnerability is due to an obsolete assertion failure in bergetnext. A remote user can exploit this vulnerability by sending a crafted BER message to the target server. A successful exploitation will cause a denial of service...

5CVSS2.7AI score0.19984EPSS
Exploits1
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.22 views

Oracle: Security Advisory (ELSA-2012-0899)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.6CVSS8.8AI score0.03691EPSS
Exploits1References2
myhack58
myhack58
added 2015/09/25 12:0 a.m.20 views

The depth of investigation of CVE-2 0 1 5-5 4 7 7&CloudFlare Virtual DNS how to protect their users-vulnerability warning-the black bar safety net

Last week, the ISC released a patch that fixes the BIND9 DNS server in a remote exploit the vulnerability. This exploit will cause the server during the processing of a data packet when the occurrence of a crash. ! The announcement pointed out, the server in the processing TKEY the type of the...

7.1AI score
Exploits0
0day.today
0day.today
added 2015/09/12 12:0 a.m.36 views

OpenLDAP 2.4.42 - ber_get_next Denial of Service Vulnerability

OpenLDAP versions 2.4.42 and below suffer from a remote denial of service vulnerability. Exploit Title: OpenLDAP 2.4.42 bergetnext DOS Date: 11/09/15 Exploit Author: Denis Andzakovic Vendor Homepage: http://www.openldap.org/ Software Link:...

6.9AI score
Exploits0
Cvelist
Cvelist
added 2015/09/11 4:0 p.m.22 views

CVE-2015-6908

The bergetnext function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service reachable assertion and application crash via crafted BER data, as demonstrated by an attack against slapd...

4.2AI score0.19984EPSS
Exploits1References17
Tenable Nessus
Tenable Nessus
added 2015/09/11 12:0 a.m.43 views

ISC BIND 9.0.x < 9.9.7-P3 / 9.10.x < 9.10.2-P4 Multiple DoS

According to its self-reported version number, the installation of ISC BIND running on the remote name server is potentially affected by the following vulnerabilities : - A denial of service vulnerability exists due to an assertion flaw that is triggered when parsing malformed DNSSEC keys. An...

7.8CVSS7AI score0.33652EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/09/09 12:0 a.m.25 views

Scientific Linux Security Update : subversion on SL7.x x86_64 (20150908)

An assertion failure flaw was found in the way the SVN server processed certain requests with dynamically evaluated revision numbers. A remote attacker could use this flaw to cause the SVN server both svnserve and httpd with the moddavsvn module to crash. CVE-2015-0248 It was found that the...

5CVSS7AI score0.12841EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/09/08 1:9 p.m.0 views

subversion: (mod_dav_svn) remote denial of service with certain requests with dynamically evaluated revision numbers

An assertion failure flaw was found in the way the SVN server processed certain requests with dynamically evaluated revision numbers. A remote attacker could use this flaw to cause the SVN server both svnserve and httpd with the moddavsvn module to crash...

5CVSS7.4AI score0.12841EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/09/08 1:9 p.m.44 views

Moderate: Red Hat Security Advisory: subversion security update

Updated subversion packages that fix multiple security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

5CVSS6.8AI score0.12841EPSS
Exploits0References9
Mageia
Mageia
added 2015/09/08 7:20 a.m.42 views

Updated bind packages fix security vulnerabilities

Updated bind packages fix security vulnerability: Parsing a malformed DNSSEC key can cause a validating resolver to exit due to a failed assertion in buffer.c. It is possible for a remote attacker to deliberately trigger this condition, for example by using a query which requires a response from ...

7.8CVSS7.6AI score0.33652EPSS
Exploits0References5
OSV
OSV
added 2015/09/08 7:20 a.m.5 views

MGASA-2015-0341 Updated bind packages fix security vulnerabilities

Updated bind packages fix security vulnerability: Parsing a malformed DNSSEC key can cause a validating resolver to exit due to a failed assertion in buffer.c. It is possible for a remote attacker to deliberately trigger this condition, for example by using a query which requires a response from ...

7.8CVSS6.4AI score0.33652EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.29 views

Amazon Linux: Security Advisory (ALAS-2015-587)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS9.1AI score0.12841EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.15 views

Amazon Linux: Security Advisory (ALAS-2015-481)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS8.3AI score0.13195EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.22 views

Amazon Linux: Security Advisory (ALAS-2015-482)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS8.3AI score0.13195EPSS
Exploits1References2
CVE
CVE
added 2015/09/05 1:0 a.m.522 views

CVE-2015-5986

ISC BIND vulnerability CVE-2015-5986 arises from an incorrect boundary check in openpgpkey_61.c within named, allowing remote attackers to crash the server via a crafted DNS response. Affected products/versions: BIND 9.9.7 before 9.9.7‑P3 and 9.10.x before 9.10.2‑P4. Exploitation can cause a deni...

7.1CVSS8.6AI score0.26071EPSS
Exploits0References14Affected Software1
UbuntuCve
UbuntuCve
added 2015/09/02 12:0 a.m.30 views

CVE-2015-5722

buffer.c in named in ISC BIND 9.x before 9.9.7-P3 and 9.10.x before 9.10.2-P4 allows remote attackers to cause a denial of service assertion failure and daemon exit by creating a zone containing a malformed DNSSEC key and issuing a query for a name in that zone...

7.8CVSS6.9AI score0.33652EPSS
Exploits0References3
FreeBSD Advisory
FreeBSD Advisory
added 2015/09/02 12:0 a.m.20 views

FreeBSD-SA-15:23.bind

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-15:23.bind Security Advisory The FreeBSD Project Topic: BIND remote denial of service vulnerability Category: contrib Module: bind Announced: 2015-09-02 Credits...

7.8CVSS6.9AI score0.33652EPSS
Exploits0
OSV
OSV
added 2015/09/02 12:0 a.m.1 views

UBUNTU-CVE-2015-5722

buffer.c in named in ISC BIND 9.x before 9.9.7-P3 and 9.10.x before 9.10.2-P4 allows remote attackers to cause a denial of service assertion failure and daemon exit by creating a zone containing a malformed DNSSEC key and issuing a query for a name in that zone...

7.8CVSS6.9AI score0.33652EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/08/26 12:0 a.m.26 views

Amazon Linux AMI : subversion / mod_dav_svn (ALAS-2015-587)

The moddavsvn server in Subversion 1.8.0 through 1.8.11 allows remote attackers to cause a denial of service memory consumption via a large number of REPORT requests, which trigger the traversal of FSFS repository nodes. CVE-2015-0202 An assertion failure flaw was found in the way the SVN server...

7.8CVSS8AI score0.12841EPSS
Exploits0References4
Amazon
Amazon
added 2015/08/24 12:0 a.m.45 views

Medium: subversion, mod_dav_svn

Issue Overview: The moddavsvn server in Subversion 1.8.0 through 1.8.11 allows remote attackers to cause a denial of service memory consumption via a large number of REPORT requests, which trigger the traversal of FSFS repository nodes. CVE-2015-0202 An assertion failure flaw was found in the way...

7.8CVSS8.5AI score0.12841EPSS
Exploits0
Rows per page
Query Builder