Lucene search
K

665 matches found

0day.today
0day.today
added 2018/04/29 12:0 a.m.728 views

Android Bluetooth - Blueborne Information Leak (2) Exploit

Exploit for Android platform in category remote exploits from pwn import import bluetooth if not 'TARGET' in args: log.info"Usage: CVE-2017-0785.py TARGET=XX:XX:XX:XX:XX:XX" exit target = args'TARGET' servicelong = 0x0100 serviceshort = 0x0001 mtu = 50 n = 30 def packetservice, continuationstate:...

3.3CVSS0.3AI score0.12388EPSS
Exploits12
OSV
OSV
added 2016/12/05 7:59 p.m.6 views

DEBIAN-CVE-2016-8740

The modhttp2 module in the Apache HTTP Server 2.4.17 through 2.4.23, when the Protocols configuration includes h2 or h2c, does not restrict request-header length, which allows remote attackers to cause a denial of service memory consumption via crafted CONTINUATION frames in an HTTP/2 request...

7.5CVSS7.5AI score0.7907EPSS
Exploits4References1
Cvelist
Cvelist
added 2016/12/05 7:0 p.m.46 views

CVE-2016-8740

The modhttp2 module in the Apache HTTP Server 2.4.17 through 2.4.23, when the Protocols configuration includes h2 or h2c, does not restrict request-header length, which allows remote attackers to cause a denial of service memory consumption via crafted CONTINUATION frames in an HTTP/2 request...

7.3AI score0.7907EPSS
Exploits4References28
Apache Httpd
Apache Httpd
added 2016/11/22 12:0 a.m.74 views

Apache Httpd < 2.4.25 : HTTP/2 CONTINUATION denial of service

The HTTP/2 protocol implementation modhttp2 had an incomplete handling of the LimitRequestFields directive. This allowed an attacker to inject unlimited request headers into the server, leading to eventual memory exhaustion...

7.5CVSS5.1AI score0.7907EPSS
Exploits4Affected Software1
OSV
OSV
added 2016/05/20 10:59 a.m.1 views

DEBIAN-CVE-2015-8865

The filecheckmem function in funcs.c in file before 5.23, as used in the Fileinfo component in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5, mishandles continuation-level jumps, which allows context-dependent attackers to cause a denial of service buffer overflow and application...

7.3CVSS8.1AI score0.04985EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2016/02/03 12:0 a.m.48 views

nghttp2 -- Out of memory in nghttpd, nghttp, and libnghttp2_asio

Nghttp2 reports: Out of memory in nghttpd, nghttp, and libnghttp2asio applications due to unlimited incoming HTTP header fields. nghttpd, nghttp, and libnghttp2asio applications do not limit the memory usage for the incoming HTTP header field. If peer sends specially crafted HTTP/2 HEADERS frames...

3.3CVSS1.8AI score0.00886EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2015/06/23 8:46 a.m.9 views

Kernel: fs: isofs: infinite loop in CE record entries

It was found that the Linux kernel's ISO file system implementation did not correctly limit the traversal of Rock Ridge extension Continuation Entries CE. An attacker with physical access to the system could use this flaw to trigger an infinite loop in the kernel, resulting in a denial of service...

4.9CVSS7AI score0.00455EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/06/23 8:28 a.m.4 views

Kernel: fs: isofs: infinite loop in CE record entries

It was found that the Linux kernel's ISO file system implementation did not correctly limit the traversal of Rock Ridge extension Continuation Entries CE. An attacker with physical access to the system could use this flaw to trigger an infinite loop in the kernel, resulting in a denial of service...

4.9CVSS7AI score0.00455EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/06/23 8:24 a.m.3 views

Kernel: fs: isofs: infinite loop in CE record entries

It was found that the Linux kernel's ISO file system implementation did not correctly limit the traversal of Rock Ridge extension Continuation Entries CE. An attacker with physical access to the system could use this flaw to trigger an infinite loop in the kernel, resulting in a denial of service...

4.9CVSS7AI score0.00455EPSS
Exploits0References4
OPENSUSE Linux
OPENSUSE Linux
added 2015/04/13 2:17 p.m.54 views

Security update for the Linux Kernel (important)

The Linux kernel was updated to fix various bugs and security issues. Following security issues were fixed: - CVE-2014-8173: A NULL pointer dereference flaw was found in the way the Linux kernels madvise MADVWILLNEED functionality handled page table locking. A local, unprivileged user could have...

7.2CVSS1.9AI score0.05489EPSS
Exploits6References16
RedHat Linux
RedHat Linux
added 2015/03/31 5:0 p.m.5 views

netty: DoS via memory exhaustion during data aggregation

A flaw was found in the WebSocket08FrameDecoder implementation that could allow a remote attacker to trigger an Out Of Memory Exception by issuing a series of TextWebSocketFrame and ContinuationWebSocketFrames. Depending on the server configuration, this could lead to a denial of service...

5CVSS7.2AI score0.04326EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/03/11 4:51 p.m.7 views

netty: DoS via memory exhaustion during data aggregation

A flaw was found in the WebSocket08FrameDecoder implementation that could allow a remote attacker to trigger an Out Of Memory Exception by issuing a series of TextWebSocketFrame and ContinuationWebSocketFrames. Depending on the server configuration, this could lead to a denial of service...

5CVSS7.2AI score0.04326EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/03/05 9:38 a.m.4 views

krb5: NULL pointer dereference flaw in SPNEGO acceptor for continuation tokens

A NULL pointer dereference flaw was found in the MIT Kerberos SPNEGO acceptor for continuation tokens. A remote, unauthenticated attacker could use this flaw to crash a GSSAPI-enabled server application...

7.8CVSS7.1AI score0.06614EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/02/17 10:27 p.m.5 views

netty: DoS via memory exhaustion during data aggregation

A flaw was found in the WebSocket08FrameDecoder implementation that could allow a remote attacker to trigger an Out Of Memory Exception by issuing a series of TextWebSocketFrame and ContinuationWebSocketFrames. Depending on the server configuration, this could lead to a denial of service...

5CVSS7.2AI score0.04326EPSS
Exploits0References4
OSV
OSV
added 2014/12/26 12:59 a.m.4 views

CVE-2014-9420

The rockcontinue function in fs/isofs/rock.c in the Linux kernel through 3.18.1 does not restrict the number of Rock Ridge continuation entries, which allows local users to cause a denial of service infinite loop, and system crash or hang via a crafted iso9660 image...

5AI score
Exploits0References26
RedHat Linux
RedHat Linux
added 2014/10/13 9:27 p.m.3 views

krb5: NULL pointer dereference flaw in SPNEGO acceptor for continuation tokens

A NULL pointer dereference flaw was found in the MIT Kerberos SPNEGO acceptor for continuation tokens. A remote, unauthenticated attacker could use this flaw to crash a GSSAPI-enabled server application...

7.8CVSS7.1AI score0.06614EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2014/10/01 6:10 p.m.5 views

netty: DoS via memory exhaustion during data aggregation

A flaw was found in the WebSocket08FrameDecoder implementation that could allow a remote attacker to trigger an Out Of Memory Exception by issuing a series of TextWebSocketFrame and ContinuationWebSocketFrames. Depending on the server configuration, this could lead to a denial of service...

5CVSS7.2AI score0.04326EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2014/09/16 5:28 a.m.4 views

krb5: NULL pointer dereference flaw in SPNEGO acceptor for continuation tokens

A NULL pointer dereference flaw was found in the MIT Kerberos SPNEGO acceptor for continuation tokens. A remote, unauthenticated attacker could use this flaw to crash a GSSAPI-enabled server application...

7.8CVSS7.1AI score0.06614EPSS
Exploits0References4
OSV
OSV
added 2014/05/06 2:55 p.m.6 views

UBUNTU-CVE-2014-0193

WebSocket08FrameDecoder in Netty 3.6.x before 3.6.9, 3.7.x before 3.7.1, 3.8.x before 3.8.2, 3.9.x before 3.9.1, and 4.0.x before 4.0.19 allows remote attackers to cause a denial of service memory consumption via a TextWebSocketFrame followed by a long stream of ContinuationWebSocketFrames...

5CVSS7.2AI score0.04326EPSS
Exploits0References3
CVE
CVE
added 2012/07/16 10:0 a.m.53 views

CVE-2011-4294

CVE-2011-4294 describes an open redirect flaw in Moodle’s error-message handling. In Moodle 1.9.x (before 1.9.13), 2.0.x (before 2.0.4), and 2.1.x (before 2.1.1), continuation links in error messages are not guaranteed to point to http(s) URLs of the local Moodle instance, enabling attackers to l...

5.8CVSS6.5AI score0.01541EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder