Lucene search
K

7041 matches found

NVD
NVD
added 2008/11/04 12:58 a.m.27 views

CVE-2008-4907

The message parsing feature in Dovecot 1.1.4 and 1.1.5, when using the FETCH ENVELOPE command in the IMAP client, allows remote attackers to cause a denial of service persistent crash via an email with a malformed From address, which triggers an assertion error, aka "invalid message address parsi...

4.3CVSS7.4AI score0.06203EPSS
Exploits0References8
OSV
OSV
added 2008/11/04 12:58 a.m.2 views

DEBIAN-CVE-2008-4907

The message parsing feature in Dovecot 1.1.4 and 1.1.5, when using the FETCH ENVELOPE command in the IMAP client, allows remote attackers to cause a denial of service persistent crash via an email with a malformed From address, which triggers an assertion error, aka "invalid message address parsi...

4.3CVSS7AI score0.06203EPSS
Exploits0References1
Prion
Prion
added 2008/11/04 12:58 a.m.24 views

Design/Logic Flaw

The message parsing feature in Dovecot 1.1.4 and 1.1.5, when using the FETCH ENVELOPE command in the IMAP client, allows remote attackers to cause a denial of service persistent crash via an email with a malformed From address, which triggers an assertion error, aka "invalid message address parsi...

4.3CVSS6.9AI score0.06203EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2008/11/04 12:0 a.m.32 views

CVE-2008-4907

The message parsing feature in Dovecot 1.1.4 and 1.1.5, when using the FETCH ENVELOPE command in the IMAP client, allows remote attackers to cause a denial of service persistent crash via an email with a malformed From address, which triggers an assertion error, aka "invalid message address parsi...

4.3CVSS6.2AI score0.06203EPSS
Exploits0
NVD
NVD
added 2008/10/22 6:0 p.m.17 views

CVE-2008-4682

wtap.c in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service application abort via a malformed Tamos CommView capture file aka .ncf file with an "unknown/unexpected packet type" that triggers a failed assertion...

5CVSS6.2AI score0.0929EPSS
Exploits0References19
OSV
OSV
added 2008/10/22 6:0 p.m.1 views

DEBIAN-CVE-2008-4682

wtap.c in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service application abort via a malformed Tamos CommView capture file aka .ncf file with an "unknown/unexpected packet type" that triggers a failed assertion...

5CVSS6.8AI score0.0929EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2008/10/22 6:0 p.m.23 views

CVE-2008-4682

wtap.c in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service application abort via a malformed Tamos CommView capture file aka .ncf file with an "unknown/unexpected packet type" that triggers a failed assertion...

5CVSS5.9AI score0.0929EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2008/10/22 5:0 p.m.24 views

CVE-2008-4682

wtap.c in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service application abort via a malformed Tamos CommView capture file aka .ncf file with an "unknown/unexpected packet type" that triggers a failed assertion...

5CVSS4.9AI score0.0929EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/10/17 12:0 a.m.29 views

openSUSE 10 Security Update : openldap2 (openldap2-5509)

This update fixes a security problem in the liblber client library of openldap that allowed remote attackers to cause a denial of service program termination via crafted ASN.1 BER datagrams, which triggers an assertion error. CVE-2008-2952 Additionally a bug was fixed in ldapfreeconnection which...

5CVSS5.4AI score0.13173EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2008/10/17 12:0 a.m.21 views

SuSE 10 Security Update : OpenLDAP 2 (ZYPP Patch Number 5511)

This update fixes a security problem in the liblber client library of openldap that allowed remote attackers to cause a denial of service program termination via crafted ASN.1 BER datagrams, which triggers an assertion error. CVE-2008-2952 Additionally a bug was fixed in ldapfreeconnection which...

5CVSS5.4AI score0.13173EPSS
Exploits0References2
NVD
NVD
added 2008/10/09 6:0 p.m.15 views

CVE-2008-4514

The HTML parser in KDE Konqueror 3.5.9 allows remote attackers to cause a denial of service application crash via a font tag with a long color value, which triggers an assertion error...

5CVSS6.2AI score0.07741EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2008/10/09 6:0 p.m.16 views

CVE-2008-4514

The HTML parser in KDE Konqueror 3.5.9 allows remote attackers to cause a denial of service application crash via a font tag with a long color value, which triggers an assertion error...

5CVSS5.9AI score0.07741EPSS
Exploits0References1
Prion
Prion
added 2008/10/09 6:0 p.m.21 views

Hardcoded credentials

The HTML parser in KDE Konqueror 3.5.9 allows remote attackers to cause a denial of service application crash via a font tag with a long color value, which triggers an assertion error...

5CVSS6.6AI score0.07741EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2008/10/09 4:0 p.m.56 views

CVE-2008-4514

The CVE-2008-4514 entry covers a Denial of Service in KDE Konqueror 3.5.9’s HTML parser, triggered by a font tag with an excessively long color value that leads to an assertion error and application crash. Related disclosures (CVE-2008-5712) describe the same DoS condition via long COLOR attribut...

5CVSS6.2AI score0.07741EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2008/10/09 4:0 p.m.22 views

CVE-2008-4514

The HTML parser in KDE Konqueror 3.5.9 allows remote attackers to cause a denial of service application crash via a font tag with a long color value, which triggers an assertion error...

6.1AI score0.07741EPSS
Exploits0References3
NVD
NVD
added 2008/10/07 9:1 p.m.20 views

CVE-2008-3834

The dbussignaturevalidate function in the D-bus library libdbus before 1.2.4 allows remote attackers to cause a denial of service application abort via a message containing a malformed signature, which triggers a failed assertion error...

2.1CVSS5.2AI score0.04623EPSS
Exploits8References22
UbuntuCve
UbuntuCve
added 2008/10/07 9:1 p.m.33 views

CVE-2008-3834

The dbussignaturevalidate function in the D-bus library libdbus before 1.2.4 allows remote attackers to cause a denial of service application abort via a message containing a malformed signature, which triggers a failed assertion error...

2.1CVSS7.1AI score0.04623EPSS
Exploits8References2
CVE
CVE
added 2008/10/07 7:0 p.m.101 views

CVE-2008-3834

Summary (CVE-2008-3834) In D-Bus libdbus prior to 1.2.4, the function dbus_signature_validate may trigger a failed assertion on a malformed signature, leading to a Denial of Service (application abort). Public advisories confirm the issue and reference a fix in version 1.2.4 or newer; multiple ve...

2.1CVSS5.2AI score0.04623EPSS
Exploits8References22Affected Software3
Cvelist
Cvelist
added 2008/10/07 7:0 p.m.30 views

CVE-2008-3834

The dbussignaturevalidate function in the D-bus library libdbus before 1.2.4 allows remote attackers to cause a denial of service application abort via a message containing a malformed signature, which triggers a failed assertion error...

5.2AI score0.04623EPSS
Exploits8References22
Exploit DB
Exploit DB
added 2008/09/29 12:0 a.m.42 views

Wireshark 1.0.x - '.ncf' Packet Capture Local Denial of Service

Wireshark 1.0.x .ncf local denial of service author: Shinnok Description Wireshark 1.0.x crashes as a result of a failed assertion when dealing with a malformed Tamosoft CommView .ncf packet capture: Err file wtap.c: line 620 wtapread: assertion failed: wth-phdr.pktencap != WTAPENCAPPERPACKET...

7.4AI score
Exploits0
Rows per page
Query Builder