71 matches found
UBUNTU-CVE-2023-4055
When the number of cookies per domain was exceeded in document.cookie, the actual cookie jar sent to the host was no longer consistent with expected cookie jar state. This could have caused requests to be sent with some cookies missing. This vulnerability affects Firefox 116, Firefox ESR 102.14,...
dotnet: malicious content causes high CPU and memory usage
A flaw was found in dotnet. The Microsoft Security Advisory describes the issue of a malicious client that can send MyCookie=chunks-2147483647 without the actual cookie chunks, causing large allocations, exceptions, and excess CPU utilization on the server when it tries to read or delete that man...
The vulnerability of the CAF demultiplexer in the VideoLAN VLC media player lies in the access to an uninitialized pointer, which allows a hacker to trigger a service failure and/or gain access to confidential data.
The vulnerability of the CAF media player VideoLAN VLC lies in the access to an uninitialized pointer due to a numerical overflow during the processing of cookie files in the ReadKukiChunk function. Exploiting this vulnerability allows a remote attacker to cause service failures and/or gain acces...
CVE-2019-10655
Grandstream GAC2500 1.0.3.35, GXP2200 1.0.3.27, GVC3202 1.0.3.51, GXV3275 before 1.0.3.219 Beta, and GXV3240 before 1.0.3.219 Beta devices allow unauthenticated remote code execution via shell metacharacters in a /manager?action=getlogcat priority field, in conjunction with a buffer overflow via...
D-Link 850L Router Cookie Overflow Remote Code Execution (CVE-2016-5681)
There exists a Remote Code Execution vulnerability within D-Link 850L Routers. This is due to the way the D-Link Routers handle cookie validation. A successful attack could lead to unauthorized remote code execution...
Fortigate Firewall Remote HTTPD Cookie Overflow Vulnerability
FortiGate Fita Firewall is a network firewall product from Fortinet Fita for defense against attacks such as network and malicious code at the network and content layers. A remote HTTPD cookie overflow vulnerability exists in Fortigate Firewall. An attacker could exploit the vulnerability by...
The vulnerabilities of Fedora and openSUSE operating systems allow attackers to increase their privileges.
The vulnerability of the authenticationagentnewcookie function in the PolicyKit package of Fedora and openSUSE is related to integer overflow. Exploiting this vulnerability allows a malicious actor to increase their privileges by creating a large number of connections, resulting in duplicate cook...
DMA[2005-0614a] - 'Global Hauri ViRobot Server cookie overflow'
DMA2005-0614a - 'Global Hauri ViRobot Server cookie overflow' Author: Kevin Finisterre Vendor: http://www.globalhauri.com Product: 'ViRobot Linux and Unix? Server' References: http://www.digitalmunition.com/DMA2005-0614a.txt Description: HAURI, Inc. is a leading anti-virus solution provider in th...
Debian DSA-042-1 : gnuserv
Klaus Frank has found a vulnerability in the way gnuserv handled remote connections. Gnuserv is a remote control facility for Emacsen which is available as standalone program as well as included in XEmacs21. Gnuserv has a buffer for which insufficient boundary checks were made. Unfortunately this...
[VulnWatch] Netegrity SiteMinder Affiliate Agent Cookie Overflow
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake, Inc. www.atstake.com Security Advisory Advisory Name: Netegrity SiteMinder Affiliate Agent Cookie Overflow Release Date: 04/22/2004 Application: SiteMinder Affiliate Agent 4.x Platform: Solaris, Windows, HP-UX Severity: A remote attacker can...
PT-1997-1036 · Apache · Apache Http Server
Name of the Vulnerable Software and Affected Versions: Apache httpd versions 1.1.1 and earlier Description: The issue is related to a cookie buffer overflow. Recommendations: For versions 1.1.1 and earlier, at the moment, there is no information about a newer version that contains a fix for this...