Lucene search
+L

172 matches found

RedHat Linux
RedHat Linux
added 2017/09/13 4:37 p.m.4 views

httpd: Uninitialized memory reflection in mod_auth_digest

It was discovered that the httpd's modauthdigest module did not properly initialize memory before using it when processing certain headers related to digest authentication. A remote attacker could possibly use this flaw to disclose potentially sensitive information or cause httpd child process to...

9.1CVSS7.4AI score0.5677EPSS
Exploits0References6
NVD
NVD
added 2017/08/25 6:29 p.m.20 views

CVE-2014-7859

Stack-based buffer overflow in loginmgr.cgi in D-Link firmware DNR-320L and DNS-320LW before 1.04b08, DNR-322L before 2.10 build 03, DNR-326 before 2.10 build 03, and DNS-327L before 1.04b01 allows remote attackers to execute arbitrary code by crafting malformed "Host" and "Referer" header values...

9.8CVSS10AI score0.20881EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2017/08/15 6:23 p.m.7 views

httpd: Uninitialized memory reflection in mod_auth_digest

It was discovered that the httpd's modauthdigest module did not properly initialize memory before using it when processing certain headers related to digest authentication. A remote attacker could possibly use this flaw to disclose potentially sensitive information or cause httpd child process to...

9.1CVSS7.4AI score0.5677EPSS
Exploits0References6
OSV
OSV
added 2017/06/20 1:29 a.m.3 views

ALPINE-CVE-2017-7668

The HTTP strict parsing changes added in Apache httpd 2.2.32 and 2.4.24 introduced a bug in token list parsing, which allows apfindtoken to search past the end of its input string. By maliciously crafting a sequence of request headers, an attacker may be able to cause a segmentation fault, or to...

7.5CVSS6.9AI score0.57472EPSS
Exploits1References1
OSV
OSV
added 2017/06/20 1:29 a.m.4 views

DEBIAN-CVE-2017-7668

The HTTP strict parsing changes added in Apache httpd 2.2.32 and 2.4.24 introduced a bug in token list parsing, which allows apfindtoken to search past the end of its input string. By maliciously crafting a sequence of request headers, an attacker may be able to cause a segmentation fault, or to...

7.5CVSS8AI score0.57472EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2017/06/07 5:54 p.m.6 views

httpd: Incomplete handling of LimitRequestFields directive in mod_http2

A vulnerability was found in httpd's handling of the LimitRequestFields directive in modhttp2, affecting servers with HTTP/2 enabled. An attacker could send crafted requests with headers larger than the server's available memory, causing httpd to crash...

7.5CVSS7.1AI score0.7907EPSS
Exploits4References6
OSV
OSV
added 2017/03/09 9:59 a.m.7 views

CVE-2017-6549

Session hijack vulnerability in httpd on ASUS RT-N56U, RT-N66U, RT-AC66U, RT-N66R, RT-AC66R, RT-AC68U, RT-AC68R, RT-N66W, RT-AC66W, RT-AC87R, RT-AC87U, RT-AC51U, RT-AC68P, RT-N11P, RT-N12+, RT-N12E B1, RT-AC3200, RT-AC53U, RT-AC1750, RT-AC1900P, RT-N300, and RT-AC750 routers with firmware before...

8.8CVSS5.8AI score0.07552EPSS
Exploits6References4
OSV
OSV
added 2016/12/30 7:59 p.m.6 views

UBUNTU-CVE-2016-10074

The mail transport aka SwiftTransportMailTransport in Swift Mailer before 5.4.5 might allow remote attackers to pass extra parameters to the mail command and consequently execute arbitrary code via a " backslash double quote in a crafted e-mail address in the 1 From, 2 ReturnPath, or 3 Sender...

9.8CVSS7.8AI score0.41827EPSS
Exploits18References7
CNVD
CNVD
added 2016/12/26 12:0 a.m.8 views

Unspecified Vulnerability in Apache HTTP Server

Apache httpd is the U.S. Apache Apache Software Foundation, an open source HTTP server developed and maintained specifically for modern operating systems. A security vulnerability exists in Apache httpd, which stems from the program's failure to properly parse HTTP headers. A remote attacker coul...

7.5CVSS8.7AI score0.49024EPSS
Exploits4References1
RedHat Linux
RedHat Linux
added 2016/11/15 11:40 a.m.6 views

php: Out-of-bounds heap memory read in exif_read_data() caused by malformed input

The exifprocessIFDTAG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not properly construct spprintf arguments, which allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via crafted...

9.8CVSS7.4AI score0.06063EPSS
Exploits1References4
OSV
OSV
added 2016/09/24 1:59 a.m.7 views

CVE-2016-6412

The Cisco Application-hosting Framework CAF component in Cisco IOS 15.61T1 and IOS XE, when the IOx feature set is enabled, allows man-in-the-middle attackers to trigger arbitrary downloads via crafted HTTP headers, aka Bug ID CSCuz84773...

6.5CVSS5.9AI score0.01105EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2016/01/12 12:0 a.m.7 views

PT-2016-3899 · Gdcm · Grassroot Dicom

Name of the Vulnerable Software and Affected Versions: Grassroots DICOM aka GDCM versions prior to 2.6.2 Description: The issue is related to an integer overflow in the ImageRegionReader::ReadIntoBuffer function, which can be triggered by crafted header dimensions in a DICOM image file. This can...

10CVSS8.3AI score0.16803EPSS
Exploits4References15
CNVD
CNVD
added 2015/02/26 12:0 a.m.7 views

Squid HTTP Header Injection Vulnerability

Squid Cache or Squid for short is a popular proxy server and web caching server software. A vulnerability in Squid's handling of HTTP responses with specially crafted headers allows attackers to exploit the vulnerability for HTTP response splitting attacks...

4.3CVSS6.8AI score0.04507EPSS
Exploits0References1
Prion
Prion
added 2014/12/07 9:59 p.m.21 views

Server side request forgery (ssrf)

Plex Media Server before 0.9.9.3 allows remote attackers to bypass the web server whitelist, conduct SSRF attacks, and execute arbitrary administrative actions via multiple crafted X-Plex-Url headers to system/proxy, which are inconsistently processed by the request handler in the backend web...

7.5CVSS7.9AI score0.08109EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2014/11/26 3:59 p.m.20 views

CVE-2014-6609

The respjsippubsub module in Asterisk Open Source 12.x before 12.5.1 allows remote authenticated users to cause a denial of service crash via crafted headers in a SIP SUBSCRIBE request for an event package...

4CVSS6.2AI score0.03614EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2014/11/26 3:59 p.m.45 views

CVE-2014-6609

The respjsippubsub module in Asterisk Open Source 12.x before 12.5.1 allows remote authenticated users to cause a denial of service crash via crafted headers in a SIP SUBSCRIBE request for an event package...

4CVSS5.9AI score0.03614EPSS
Exploits0References2
OSV
OSV
added 2014/09/11 6:55 p.m.3 views

DEBIAN-CVE-2014-3985

The getHTTPResponse function in miniwget.c in MiniUPnP 1.9 allows remote attackers to cause a denial of service crash via crafted headers that trigger an out-of-bounds read...

5CVSS6.5AI score0.03312EPSS
Exploits1References1
NVD
NVD
added 2014/09/11 6:55 p.m.20 views

CVE-2014-3609

HttpHdrRange.cc in Squid 3.x before 3.3.12 and 3.4.x before 3.4.6 allows remote attackers to cause a denial of service crash via a request with crafted "Range headers with unidentifiable byte-range values."...

5CVSS6.3AI score0.5622EPSS
Exploits0References14
Prion
Prion
added 2014/09/11 6:55 p.m.30 views

Out-of-bounds

The getHTTPResponse function in miniwget.c in MiniUPnP 1.9 allows remote attackers to cause a denial of service crash via crafted headers that trigger an out-of-bounds read...

5CVSS7AI score0.03312EPSS
Exploits1References7Affected Software2
RedHat Linux
RedHat Linux
added 2014/09/10 1:16 p.m.5 views

procmail: Heap-overflow in procmail's formail utility when processing specially-crafted email headers

A heap-based buffer overflow flaw was found in procmail's formail utility. A remote attacker could send an email with specially crafted headers that, when processed by formail, could cause procmail to crash or, possibly, execute arbitrary code as the user running formail...

7.5CVSS7.2AI score0.08525EPSS
Exploits1References4
Rows per page
Query Builder