Lucene search
K

117 matches found

OSV
OSV
added 2018/04/24 7:29 p.m.8 views

CVE-2017-12087

An exploitable heap overflow vulnerability exists in the tinysvcmdns library version 2016-07-18. A specially crafted packet can make the library overwrite an arbitrary amount of data on the heap with attacker controlled values. An attacker needs send a dns packet to trigger this vulnerability...

9.8CVSS9.5AI score
Exploits0References1
Debian CVE
Debian CVE
added 2018/04/24 7:0 p.m.43 views

CVE-2017-12087

An exploitable heap overflow vulnerability exists in the tinysvcmdns library version 2016-07-18. A specially crafted packet can make the library overwrite an arbitrary amount of data on the heap with attacker controlled values. An attacker needs send a dns packet to trigger this vulnerability...

10CVSS9.5AI score0.01943EPSS
Exploits3
RedHat Linux
RedHat Linux
added 2018/01/18 9:55 p.m.4 views

OpenJDK: LDAPCertStore insecure handling of LDAP referrals (JNDI, 8186606)

It was discovered that the LDAPCertStore class in the JNDI component of OpenJDK failed to securely handle LDAP referrals. An attacker could possibly use this flaw to make it fetch attacker controlled certificate data...

8.3CVSS7.3AI score0.0565EPSS
Exploits0References4
Prion
Prion
added 2017/09/12 3:29 p.m.29 views

Design/Logic Flaw

In Apple iOS 7 through 9, due to a BlueBorne flaw in the implementation of LEAP Low Energy Audio Protocol, a large audio command can be sent to a targeted device and lead to a heap overflow with attacker-controlled data. Since the audio commands sent via LEAP are not properly validated, an attack...

7.9CVSS7.8AI score0.01005EPSS
Exploits1References5Affected Software1
RedHat Linux
RedHat Linux
added 2017/09/05 11:19 a.m.6 views

kernel: a race between inotify_handle_event() and sys_rename()

A race condition was found in the Linux kernel, present since v3.14-rc1 through v4.12. The race happens between threads of inotifyhandleevent and vfsrename while running the rename operation against the same file. As a result of the race the next slab data or the slab's free list pointer can be...

7CVSS7AI score0.01223EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2017/08/22 12:0 a.m.56 views

Scientific Linux Security Update : kernel on SL7.x x86_64 (20170815)

Security Fixes : - A race condition was found in the Linux kernel, present since v3.14-rc1 through v4.12. The race happens between threads of inotifyhandleevent and vfsrename while running the rename operation against the same file. As a result of the race the next slab data or the slab's free li...

7CVSS6.5AI score0.01223EPSS
Exploits3References2
Virtuozzo
Virtuozzo
added 2017/08/10 12:0 a.m.37 views

Kernel security update: CVE-2017-7533; Virtuozzo ReadyKernel patch 28.0 for Virtuozzo 7.0.x

The cumulative Virtuozzo ReadyKernel patch was updated with a security fix. The patch applies to Virtuozzo kernels 3.10.0-327.18.2.vz7.15.2 Virtuozzo 7.0.0, 3.10.0-327.36.1.vz7.18.7 Virtuozzo 7.0.1, 3.10.0-327.36.1.vz7.20.18 Virtuozzo 7.0.3, 3.10.0-514.16.1.vz7.30.10 Virtuozzo 7.0.4,...

7CVSS1.1AI score0.01223EPSS
Exploits3References7
Zero Day Initiative
Zero Day Initiative
added 2016/05/24 12:0 a.m.163 views

Apache ActiveMQ MOVE Method Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apache ActiveMQ. Authentication may or may not be required to exploit this vulnerability, according to how the product has been configured. The specific flaw exists within the fileserver web servic...

7.5CVSS2AI score0.98518EPSS
Exploits19References1
FreeBSD
FreeBSD
added 2016/02/05 12:0 a.m.15 views

py-pillow -- Integer overflow in Resample.c

The Pillow maintainers report: If a large value was passed into the new size for an image, it is possible to overflow an int32 value passed into malloc, leading the malloc’d buffer to be undersized. These allocations are followed by a loop that writes out of bounds. This can lead to corruption on...

3.5AI score
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2015/08/31 12:0 a.m.71 views

Apache ActiveMQ RestFilter Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apache ActiveMQ. Authentication is not required to exploit this vulnerability. The specific flaw exists within ActiveMQ fileserver web application. By issuing specially crafted requests, an attacke...

7.5CVSS9.4AI score0.84408EPSS
Exploits7References1
Zero Day Initiative
Zero Day Initiative
added 2013/11/24 12:0 a.m.27 views

HP Virtual User Generator EmulationAdmin Service copyFileToServer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Virtual User Generator. Authentication is not required to exploit this vulnerability. The specific flaw exists in the handling of requests to the EmulationAdmin web service. This service exposes...

10CVSS6.7AI score0.62617EPSS
Exploits8References1
Zero Day Initiative
Zero Day Initiative
added 2013/08/13 12:0 a.m.31 views

Oracle Endeca Server attachDataStore SOAP Request Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Endeca Server. Authentication is not required to exploit this vulnerability. The specific flaw exists in the handling of requests to the controlSoapBinding web service. This service exposes...

6.4CVSS6.4AI score0.01009EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2012/12/18 12:0 a.m.19 views

opera -- execution of arbitrary code

Opera reports: When loading GIF images into memory, Opera should allocate the correct amount of memory to store that image. Specially crafted image files can cause Opera to allocate the wrong amount of memory. Subsequent data may then overwrite unrelated memory with attacker-controlled data. This...

3.9AI score
Exploits0References2
CERT
CERT
added 2011/12/08 12:0 a.m.28 views

JasPer memory corruption vulnerabilities

Overview Some versions of JasPer contain multiple vulnerabilities that may allow a remote, unauthenticated attacker to execute arbitrary code. Description JasPer fails to properly decode marker segments and other sections in malformed JPEG2000 files. Malformed inputs can cause heap buffer overflo...

6.8CVSS6.5AI score0.10618EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2010/06/25 12:0 a.m.70 views

Adobe Flash Player AVM2 getouterscope Opcode Remote Code Execution Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required in that a target must visit a malicious web page. The specific vulnerability exists within the parsing of an undocumented opcode within Adobe's ActionScrip...

10CVSS4.7AI score0.06751EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.31 views

Debian Security Advisory DSA 1149-1 (ncompress)

The remote host is missing an update to ncompress announced via advisory DSA 1149-1. Tavis Ormandy from the Google Security Team discovered a missing boundary check in ncompress, the original Lempel-Ziv compress and uncompress programs, which allows a specially crafted datastream to underflow a...

7.5CVSS0.4AI score0.05422EPSS
Exploits0
Cvelist
Cvelist
added 2007/11/15 2:0 a.m.28 views

CVE-2007-4700

Unspecified vulnerability in WebKit on Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to use Safari as an indirect proxy and send attacker-controlled data to arbitrary TCP ports via unknown vectors...

7AI score0.02059EPSS
Exploits1References8
Rows per page
Query Builder