14 matches found
EUVD-2019-4655
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2016-4651
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in the WebKit JavaScript bindings in Apple iOS before 9.3.3 and Safari before 9.1.2 allows remote attackers to inject...
CVE-2025-55143
Reflected text injection in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote unauthenticated attacker to inject arbitrary te...
CVE-2025-2784
A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skipinsightwhitespace function. Libsoup clients may read one byte out-of-bounds in response to a crafted HTTP response by an HTTP server...
Ubuntu 16.04 ESM : libtorrent vulnerability (USN-4790-1)
The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-4790-1 advisory. It was discovered that libtorrent incorrectly handled chunked headers. A remote attacker could possibly use this to cause a crash resulting in a denial of service...
Apache Axis Remote Code Execution (CVE-2019-0227)
A remote code execution exists in Apache Axis server. A remote attacker can exploit this vulnerability to execute arbitrary code in the affected system via a crafted http response...
CVE-2016-4708
CVE-2016-4708 affects CFNetwork across Apple platforms (iOS before 10, OS X before 10.12, tvOS before 10, watchOS before 3). Root cause: input parsing/validation flaw in the Set-Cookie header handling that can disclose sensitive information via a crafted HTTP response. Impact: information disclos...
CVE-2016-5301
The parsechunkheader function in libtorrent before 1.1.1 allows remote attackers to cause a denial of service crash via a crafted 1 HTTP response or possibly a 2 UPnP broadcast...
CVE-2013-5512
Race condition in the HTTP Deep Packet Inspection DPI feature in Cisco Adaptive Security Appliance ASA Software 8.2.x before 8.25.46, 8.3.x before 8.32.39, 8.4.x before 8.45.5, 8.5.x before 8.51.18, 8.6.x before 8.61.12, 8.7.x before 8.71.4, 9.0.x before 9.01.4, and 9.1.x before 9.11.2, in certai...
Heap overflow
Heap-based buffer overflow in the proxyconnect function in src/client.c in CVS 1.11 and 1.12 allows remote HTTP proxy servers to cause a denial of service crash and possibly execute arbitrary code via a crafted HTTP response...
CVE-2012-0804
Heap-based buffer overflow in the proxyconnect function in src/client.c in CVS 1.11 and 1.12 allows remote HTTP proxy servers to cause a denial of service crash and possibly execute arbitrary code via a crafted HTTP response...
CVE-2012-0804
Heap-based buffer overflow in the proxyconnect function in src/client.c in CVS 1.11 and 1.12 allows remote HTTP proxy servers to cause a denial of service crash and possibly execute arbitrary code via a crafted HTTP response...
Directory traversal
Directory traversal vulnerability in CFNetwork in Apple Mac OS X 10.5.1 allows remote attackers to overwrite arbitrary files via a crafted HTTP response...
CVE-2007-3389
Wireshark before 0.99.6 allows remote attackers to cause a denial of service crash via a crafted chunked encoding in an HTTP response, possibly related to a zero-length payload...