Lucene search
K

14 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.25 views

Mageia: Security Advisory (MGASA-2014-0136)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.5AI score0.09293EPSS
Exploits1References5
Hacker One
Hacker One
added 2016/09/15 4:8 a.m.241 views

IRCCloud: Exposed, outdated nginx server (v1.4.6) potentially vulnerable to heap-based buffer overflow & RCE

Summary ======== During my reconnaissance for your bug bounty program, I discovered an instance of nginx version 1.4.6 running at the IP address https://54.153.101.52. To locate it, I search for IRCCloud-related certificated and found the self-signed certificate for this server...

7.5CVSS9.6AI score0.09293EPSS
Exploits1
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.44 views

Amazon Linux: Security Advisory (ALAS-2014-308)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.5AI score0.09293EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.29 views

openSUSE Security Update : nginx (openSUSE-SU-2014:0450-1)

nginx was updated to 1.4.7 to fix bugs and security issues. Fixed security issues : - CVE-2014-0133: nginx:heap-based buffer overflow in SPDY implementation New upstream release 1.4.7 bnc869076 CVE-2014-0133 Security: a heap memory buffer overflow might occur in a worker process while handling a...

7.5CVSS8.6AI score0.09293EPSS
Exploits1References3
seebug.org
seebug.org
added 2014/04/01 12:0 a.m.716 views

Nginx SPDY缓冲区溢出漏洞

CVE ID:CVE-2014-0133 Nginx是HTTP及反向代理服务器,同时也用作邮件代理服务器,由Igor Sysoev编写。 nginx SPDY实现存在基于堆的缓冲区溢出,允许攻击者利用漏洞提交特殊的请求使应用程序崩溃或执行任意代码。 0 nginx 1.3.15 nginx 1.5.x nginx 1.5.12, 1.4.7版本已修复该漏洞,建议用户下载使用: http://www.manageengine.com/products/opstor/...

5.1CVSS9.5AI score0.09293EPSS
Exploits1
OSV
OSV
added 2014/03/28 3:55 p.m.7 views

CVE-2014-0133

Heap-based buffer overflow in the SPDY implementation in nginx 1.3.15 before 1.4.7 and 1.5.x before 1.5.12 allows remote attackers to execute arbitrary code via a crafted request...

7.8AI score
Exploits0References4
Nginx
Nginx
added 2014/03/28 3:0 p.m.890 views

SPDY heap buffer overflow

SPDY heap buffer overflow Severity: major CVE-2014-0133 Not vulnerable: 1.5.12+, 1.4.7+ Vulnerable: 1.3.15-1.5.11...

7.5CVSS9.1AI score0.09293EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVE
added 2014/03/28 3:0 p.m.34 views

CVE-2014-0133

Heap-based buffer overflow in the SPDY implementation in nginx 1.3.15 before 1.4.7 and 1.5.x before 1.5.12 allows remote attackers to execute arbitrary code via a crafted request...

7.5CVSS9.6AI score0.09293EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2014/03/28 12:0 a.m.47 views

Amazon Linux AMI : nginx (ALAS-2014-308)

Heap-based buffer overflow in the SPDY implementation in nginx 1.3.15 before 1.4.7 and 1.5.x before 1.5.12 allows remote attackers to execute arbitrary code via a crafted request. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon...

7.5CVSS8.9AI score0.09293EPSS
Exploits1References2
Hacker One
Hacker One
added 2014/03/24 9:54 p.m.371 views

Internet Bug Bounty: SPDY heap buffer overflow

A bug in the experimental SPDY implementation in nginx was found, which might allow an attacker to cause a heap memory buffer overflow in a worker process by using a specially crafted request, potentially resulting in arbitrary code execution CVE-2014-0133. The problem affects nginx 1.3.15 -...

7.5CVSS9.4AI score0.09293EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2014/03/24 12:0 a.m.43 views

FreeBSD : nginx -- SPDY heap buffer overflow (fc28df92-b233-11e3-99ca-f0def16c5c1b)

The nginx project reports : A bug in the experimental SPDY implementation in nginx was found, which might allow an attacker to cause a heap memory buffer overflow in a worker process by using a specially crafted request, potentially resulting in arbitrary code execution CVE-2014-0133. The problem...

7.5CVSS9.1AI score0.09293EPSS
Exploits1References3
Amazon
Amazon
added 2014/03/24 12:0 a.m.40 views

Important: nginx

Issue Overview: Heap-based buffer overflow in the SPDY implementation in nginx 1.3.15 before 1.4.7 and 1.5.x before 1.5.12 allows remote attackers to execute arbitrary code via a crafted request. Affected Packages: nginx Issue Correction: Run yum update nginx or yum update --advisory ALAS-2014-30...

7.5CVSS9.6AI score0.09293EPSS
Exploits1
Mageia
Mageia
added 2014/03/19 5:57 p.m.47 views

Updated nginx package fixes security vulnerability

A bug in the experimental SPDY implementation in nginx was found, which might allow an attacker to cause a heap memory buffer overflow in a worker process by using a specially crafted request, potentially resulting in arbitrary code execution CVE-2014-0133...

7.5CVSS9.7AI score0.09293EPSS
Exploits1References3
FreeBSD
FreeBSD
added 2014/03/18 12:0 a.m.76 views

nginx -- SPDY heap buffer overflow

The nginx project reports: A bug in the experimental SPDY implementation in nginx was found, which might allow an attacker to cause a heap memory buffer overflow in a worker process by using a specially crafted request, potentially resulting in arbitrary code execution CVE-2014-0133. The problem...

7.5CVSS9.5AI score0.09293EPSS
Exploits1References1
Rows per page
Query Builder