Lucene search
K

71 matches found

OSV
OSV
added 2023/08/02 12:0 a.m.3 views

UBUNTU-CVE-2023-4055

When the number of cookies per domain was exceeded in document.cookie, the actual cookie jar sent to the host was no longer consistent with expected cookie jar state. This could have caused requests to be sent with some cookies missing. This vulnerability affects Firefox 116, Firefox ESR 102.14,...

7.5CVSS7.1AI score0.00614EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2022/05/11 6:10 p.m.7 views

dotnet: malicious content causes high CPU and memory usage

A flaw was found in dotnet. The Microsoft Security Advisory describes the issue of a malicious client that can send MyCookie=chunks-2147483647 without the actual cookie chunks, causing large allocations, exceptions, and excess CPU utilization on the server when it tries to read or delete that man...

7.5CVSS5.8AI score0.04913EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2019/04/04 12:0 a.m.8 views

The vulnerability of the CAF demultiplexer in the VideoLAN VLC media player lies in the access to an uninitialized pointer, which allows a hacker to trigger a service failure and/or gain access to confidential data.

The vulnerability of the CAF media player VideoLAN VLC lies in the access to an uninitialized pointer due to a numerical overflow during the processing of cookie files in the ReadKukiChunk function. Exploiting this vulnerability allows a remote attacker to cause service failures and/or gain acces...

9.1CVSS7.8AI score0.03916EPSS
Exploits1References4Affected Software2
OSV
OSV
added 2019/03/30 5:29 p.m.1 views

CVE-2019-10655

Grandstream GAC2500 1.0.3.35, GXP2200 1.0.3.27, GVC3202 1.0.3.51, GXV3275 before 1.0.3.219 Beta, and GXV3240 before 1.0.3.219 Beta devices allow unauthenticated remote code execution via shell metacharacters in a /manager?action=getlogcat priority field, in conjunction with a buffer overflow via...

9.8CVSS8.1AI score0.15353EPSS
Exploits7References4
Check Point Advisories
Check Point Advisories
added 2017/10/18 12:0 a.m.21 views

D-Link 850L Router Cookie Overflow Remote Code Execution (CVE-2016-5681)

There exists a Remote Code Execution vulnerability within D-Link 850L Routers. This is due to the way the D-Link Routers handle cookie validation. A successful attack could lead to unauthorized remote code execution...

9.3CVSS5.8AI score0.11927EPSS
Exploits0
CNVD
CNVD
added 2016/08/19 12:0 a.m.3 views

Fortigate Firewall Remote HTTPD Cookie Overflow Vulnerability

FortiGate Fita Firewall is a network firewall product from Fortinet Fita for defense against attacks such as network and malicious code at the network and content layers. A remote HTTPD cookie overflow vulnerability exists in Fortigate Firewall. An attacker could exploit the vulnerability by...

7.4AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2015/11/20 12:0 a.m.6 views

The vulnerabilities of Fedora and openSUSE operating systems allow attackers to increase their privileges.

The vulnerability of the authenticationagentnewcookie function in the PolicyKit package of Fedora and openSUSE is related to integer overflow. Exploiting this vulnerability allows a malicious actor to increase their privileges by creating a large number of connections, resulting in duplicate cook...

4.6CVSS6.5AI score0.00405EPSS
Exploits0References11Affected Software2
securityvulns
securityvulns
added 2005/06/16 12:0 a.m.39 views

DMA[2005-0614a] - 'Global Hauri ViRobot Server cookie overflow'

DMA2005-0614a - 'Global Hauri ViRobot Server cookie overflow' Author: Kevin Finisterre Vendor: http://www.globalhauri.com Product: 'ViRobot Linux and Unix? Server' References: http://www.digitalmunition.com/DMA2005-0614a.txt Description: HAURI, Inc. is a leading anti-virus solution provider in th...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/09/29 12:0 a.m.29 views

Debian DSA-042-1 : gnuserv

Klaus Frank has found a vulnerability in the way gnuserv handled remote connections. Gnuserv is a remote control facility for Emacsen which is available as standalone program as well as included in XEmacs21. Gnuserv has a buffer for which insufficient boundary checks were made. Unfortunately this...

5.9AI score
Exploits0References1
securityvulns
securityvulns
added 2004/04/23 12:0 a.m.64 views

[VulnWatch] Netegrity SiteMinder Affiliate Agent Cookie Overflow

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake, Inc. www.atstake.com Security Advisory Advisory Name: Netegrity SiteMinder Affiliate Agent Cookie Overflow Release Date: 04/22/2004 Application: SiteMinder Affiliate Agent 4.x Platform: Solaris, Windows, HP-UX Severity: A remote attacker can...

10CVSS0.3AI score0.04986EPSS
Exploits0
Positive Technologies
Positive Technologies
added 1997/09/01 12:0 a.m.7 views

PT-1997-1036 · Apache · Apache Http Server

Name of the Vulnerable Software and Affected Versions: Apache httpd versions 1.1.1 and earlier Description: The issue is related to a cookie buffer overflow. Recommendations: For versions 1.1.1 and earlier, at the moment, there is no information about a newer version that contains a fix for this...

7.5CVSS6.2AI score0.03571EPSS
Exploits0References3
Rows per page
Query Builder