Linux Distros Unpatched Vulnerability : CVE-2012-4460

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The serializing/deserializing functions in the qpid::framing::Buffer class in Apache Qpid 0.20 and earlier allow remote attackers to cause a denial of service...

Linux Distros Unpatched Vulnerability : CVE-2017-8804

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The xdrbytes and xdrstring functions in the GNU C Library aka glibc or libc6 2.25 mishandle failures of buffer deserialization, which allows remote attackers to...

The vulnerability of the Apache Tomcat application server configuration allows a hacker to execute arbitrary code.

The vulnerability of the Apache Tomcat application server configuration relates to the restoration of unreliable data in memory, which are generated during deserialization of buffers. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created request...

PT-2021-2444

Name of the Vulnerable Software and Affected Versions: Apache Tomcat affected versions not specified Description: The issue is related to a configuration server implementation vulnerability in Apache Tomcat, which involves the recovery of unreliable data in memory due to buffer deserialization. A...

Security Bulletin: IBM MQ Appliance is affected by a GNU C library (glibc) vulnerability (CVE-2017-8804)

Summary IBM MQ Appliance has addressed a vulnerability in GNU C library glibc. Vulnerability Details CVEID: CVE-2017-8804 DESCRIPTION: glibc is vulnerable to a denial of service, caused by improper handling of buffer deserialization in the xdrbytes and xdrstring functions. By sending a...

CVE-2017-8804

DISPUTED The xdrbytes and xdrstring functions in the GNU C Library aka glibc or libc6 2.25 mishandle failures of buffer deserialization, which allows remote attackers to cause a denial of service virtual memory allocation, or memory consumption if an overcommit setting is not used via a crafted U...

CVE-2017-8804

The xdrbytes and xdrstring functions in the GNU C Library aka glibc or libc6 2.25 mishandle failures of buffer deserialization, which allows remote attackers to cause a denial of service virtual memory allocation, or memory consumption if an overcommit setting is not used via a crafted UDP packet...

CVE-2017-8804

The xdrbytes and xdrstring functions in the GNU C Library aka glibc or libc6 2.25 mishandle failures of buffer deserialization, which allows remote attackers to cause a denial of service virtual memory allocation, or memory consumption if an overcommit setting is not used via a crafted UDP packet...

Deserialization of untrusted data

DISPUTED The xdrbytes and xdrstring functions in the GNU C Library aka glibc or libc6 2.25 mishandle failures of buffer deserialization, which allows remote attackers to cause a denial of service virtual memory allocation, or memory consumption if an overcommit setting is not used via a crafted U...

CVE-2017-8804

CVE-2017-8804 affects glibc (libc6) 2.25 and permits denial of service via crafted UDP packets to port 111 due to mishandled failures in xdr_bytes/xdr_string during buffer deserialization. It is related to CVE-2017-8779 (RPC/BIND) which in other sources is described as a memory-exhaustion vulnera...