Lucene search
K

98 matches found

CNVD
CNVD
added 2019/02/12 12:0 a.m.26 views

LIVE555 Memory Leak Vulnerability

LIVE555 is a set of open source C++ libraries for multimedia streaming. LIVE555 suffers from a memory leak vulnerability. The vulnerability stems from because when multiple instances of a single field username, realm, nonce, uri, or response exist, only the last instance can be freed. An attacker...

7.5CVSS7.4AI score0.01399EPSS
Exploits0References1
OSV
OSV
added 2019/02/09 2:29 p.m.20 views

CVE-2019-7659

Genivia gSOAP 2.7.x and 2.8.x before 2.8.75 allows attackers to cause a denial of service application abort or possibly have unspecified other impact if a server application is built with the -DWITHCOOKIES flag. This affects the C/C++ libgsoapck/libgsoapck++ and libgsoapssl/libgsoapssl++ librarie...

8.1CVSS8.5AI score
Exploits0References3
Fedora
Fedora
added 2018/10/09 12:8 a.m.36 views

[SECURITY] Fedora 29 Update: nekovm-2.2.0-8.fc29

Neko is a high-level dynamically typed programming language which can also be used as an embedded scripting language. It has been designed to provide a common run-time for several different languages. Neko is not only very easy to learn and use, but also has the flexibility of being able to exten...

5.9CVSS0.6AI score0.02674EPSS
Exploits0
Fedora
Fedora
added 2018/04/27 1:24 a.m.12 views

[SECURITY] Fedora 27 Update: boost-1.64.0-6.fc27

Boost provides free peer-reviewed portable C++ source libraries. The emphasis is on libraries which work well with the C++ Standard Library, in the hopes of establishing "existing practice" for extensions and providing reference implementations so that the Boost libraries are suitable for eventua...

1.5AI score
Exploits0
Fedora
Fedora
added 2018/01/30 5:33 p.m.21 views

[SECURITY] Fedora 26 Update: poco-1.7.8p3-3.fc26

The POCO C++ Libraries POCO stands for POrtable COmponents are open source C++ class libraries that simplify and accelerate the development of network-centric, portable applications in C++. The POCO C++ Libraries are built strictly on standard ANSI/ISO C++, including the standard library...

6.5CVSS2.1AI score0.01681EPSS
Exploits1
Fedora
Fedora
added 2018/01/26 6:10 p.m.17 views

[SECURITY] Fedora 27 Update: poco-1.7.8p3-3.fc27

The POCO C++ Libraries POCO stands for POrtable COmponents are open source C++ class libraries that simplify and accelerate the development of network-centric, portable applications in C++. The POCO C++ Libraries are built strictly on standard ANSI/ISO C++, including the standard library...

6.5CVSS2.1AI score0.01681EPSS
Exploits1
NVD
NVD
added 2018/01/03 8:29 p.m.21 views

CVE-2017-1000472

The ZipCommon::isValidPath function in Zip/src/ZipCommon.cpp in POCO C++ Libraries before 1.8 does not properly restrict the filename value in the ZIP header, which allows attackers to conduct absolute path traversal attacks during the ZIP decompression, and possibly create or overwrite arbitrary...

6.5CVSS6.5AI score0.01681EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2018/01/03 8:29 p.m.17 views

CVE-2017-1000472

The ZipCommon::isValidPath function in Zip/src/ZipCommon.cpp in POCO C++ Libraries before 1.8 does not properly restrict the filename value in the ZIP header, which allows attackers to conduct absolute path traversal attacks during the ZIP decompression, and possibly create or overwrite arbitrary...

6.5CVSS6.6AI score0.01681EPSS
Exploits1References2
OSV
OSV
added 2018/01/03 8:29 p.m.18 views

CVE-2017-1000472

The ZipCommon::isValidPath function in Zip/src/ZipCommon.cpp in POCO C++ Libraries before 1.8 does not properly restrict the filename value in the ZIP header, which allows attackers to conduct absolute path traversal attacks during the ZIP decompression, and possibly create or overwrite arbitrary...

6.5CVSS6.9AI score
Exploits0References3
CVE
CVE
added 2018/01/03 8:0 p.m.150 views

CVE-2017-1000472

POCO C++ Libraries prior to 1.8 contain a ZIP path-validation flaw in ZipCommon::isValidPath() that can allow absolute path traversal during ZIP decompression, potentially enabling creation or overwriting of arbitrary files via a crafted ZIP file. Reports across multiple distributions (Debian, Fe...

6.5CVSS6.4AI score0.01681EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2018/01/03 8:0 p.m.25 views

CVE-2017-1000472

The ZipCommon::isValidPath function in Zip/src/ZipCommon.cpp in POCO C++ Libraries before 1.8 does not properly restrict the filename value in the ZIP header, which allows attackers to conduct absolute path traversal attacks during the ZIP decompression, and possibly create or overwrite arbitrary...

6.5AI score0.01681EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2018/01/03 8:0 p.m.13 views

CVE-2017-1000472

The ZipCommon::isValidPath function in Zip/src/ZipCommon.cpp in POCO C++ Libraries before 1.8 does not properly restrict the filename value in the ZIP header, which allows attackers to conduct absolute path traversal attacks during the ZIP decompression, and possibly create or overwrite arbitrary...

6.5CVSS6.5AI score0.01681EPSS
Exploits1
OpenVAS
OpenVAS
added 2017/08/04 12:0 a.m.46 views

RedHat Update for glibc RHSA-2017:1916-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.05966EPSS
Exploits3References2
CNVD
CNVD
added 2017/07/27 12:0 a.m.1 views

Wube Factorio Security Bypass Vulnerability

Wube Factorio Alien Factory is a factory construction game from Wube Software, Czech Republic. A security vulnerability exists in the Lua interface in versions of Wube Factorio prior to 0.15.31. A remote attacker can exploit this vulnerability by including and loading C libraries to bypass the...

8.6CVSS8.9AI score0.00767EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2016/11/23 12:0 a.m.181 views

Linux Kernel 4.6.3 Netfilter Privilege Escalation

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require "msf/core" class MetasploitModule 'Linux Kernel 4.6.3 Netfilter Privilege Escalation', 'Description' = %q This module attempts to exploit a netfilter bug on Linux...

7.2CVSS1.3AI score0.05676EPSS
Exploits10
Fedora
Fedora
added 2016/02/21 4:37 p.m.29 views

[SECURITY] Fedora 23 Update: poco-1.4.2p1-3.fc23

The POCO C++ Libraries POCO stands for POrtable COmponents are open source C++ class libraries that simplify and accelerate the development of network-centric, portable applications in C++. The POCO C++ Libraries are built strictly on standard ANSI/ISO C++, including the standard library...

6.4CVSS2.1AI score0.01218EPSS
Exploits0
Fedora
Fedora
added 2016/02/21 2:30 a.m.38 views

[SECURITY] Fedora 22 Update: poco-1.4.2p1-3.fc22

The POCO C++ Libraries POCO stands for POrtable COmponents are open source C++ class libraries that simplify and accelerate the development of network-centric, portable applications in C++. The POCO C++ Libraries are built strictly on standard ANSI/ISO C++, including the standard library...

6.4CVSS2.1AI score0.01218EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/12/02 12:0 a.m.53 views

CentOS 7 : glibc (CESA-2015:2199)

Updated glibc packages that fix multiple security issues, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give...

7.5CVSS8.2AI score0.05808EPSS
Exploits4References5
OpenVAS
OpenVAS
added 2014/10/15 12:0 a.m.42 views

RedHat Update for glibc RHSA-2014:1391-02

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.8AI score0.04154EPSS
Exploits1References2
Fedora
Fedora
added 2014/06/10 3:7 a.m.46 views

[SECURITY] Fedora 20 Update: mingw-icu-50.1.2-3.fc20

ICU is a set of C and C++ libraries that provides robust and full-featured Unicode and locale support. The library provides calendar support, conversions for many character sets, language sensitive collation, date and time formatting, support for many locales, message catalogs and resources,...

7.5CVSS1AI score0.02531EPSS
Exploits0
Rows per page
Query Builder