Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2015-5522

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based buffer overflow in the ParseValue function in lexer.c in tidy before 4.9.31 allows remote attackers to cause a denial of service crash via vectors...

6.8CVSS5.4AI score0.04655EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.16 views

Debian: Security Advisory (DLA-273-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.7AI score0.04655EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2015/09/11 12:0 a.m.35 views

SUSE SLED11 Security Update : tidy (SUSE-SU-2015:1525-1)

This update fixes two heap-based buffer overflows in tidy/libtidy. These vulnerabilities could allow remote attackers to cause a denial of service crash via vectors involving a command character in an href. CVE-2015-5522, CVE-2015-5523 Note that Tenable Network Security has extracted the precedin...

6.8CVSS5.5AI score0.04655EPSS
Exploits2References6
CVE
CVE
added 2015/08/11 2:0 p.m.96 views

CVE-2015-5522

CVE-2015-5522 is a heap-based buffer overflow in the ParseValue function of lexer.c in tidy before 4.9.31 that allows remote attackers to crash the program via a vector involving a command character in an href. The vulnerability affects tidy/libtidy and can lead to a denial of service. A fix is a...

6.8CVSS6.8AI score0.04655EPSS
Exploits1References14Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/07/20 12:0 a.m.34 views

Debian DSA-3309-1 : tidy - security update

Fernando Munoz discovered that invalid HTML input passed to tidy, an HTML syntax checker and reformatter, could trigger a buffer overflow. This could allow remote attackers to cause a denial of service crash or potentially execute arbitrary code. Geoff McLane also discovered that a similar issue...

6.8CVSS5.9AI score0.04655EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2015/07/20 12:0 a.m.36 views

Debian DLA-273-1 : tidy security update

Fernando Muoz discovered a security issue on the HTML syntax checker and reformatter tidy. Tidy did not properly process specific character sequences, and a remote attacker could exploit this flaw to cause a DoS, or probably, execute arbitrary code. Two different CVEs were assigned to this issue...

6.8CVSS5.8AI score0.04655EPSS
Exploits2References4
Debian
Debian
added 2015/07/18 5:11 p.m.30 views

[SECURITY] [DSA 3309-1] tidy security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3309-1 [email protected] https://www.debian.org/security/ Alessandro Ghedini July 18, 2015 https://www.debian.org/security/faq -...

6.8CVSS7.3AI score0.04655EPSS
Exploits2
OSV
OSV
added 2015/07/18 12:0 a.m.36 views

DLA-273-1 tidy - security update

Bulletin has no description...

6.8CVSS5.5AI score0.04655EPSS
Exploits2
OpenVAS
OpenVAS
added 2015/07/18 12:0 a.m.28 views

Debian Security Advisory DSA 3309-1 (tidy - security update)

Fernando Muoz discovered that invalid HTML input passed to tidy, an HTML syntax checker and reformatter, could trigger a buffer overflow. This could allow remote attackers to cause a denial of service crash or potentially execute arbitrary code. Geoff McLane also discovered that a similar issue...

6.8CVSS0.7AI score0.04655EPSS
Exploits2References1
UbuntuCve
UbuntuCve
added 2015/07/16 12:0 a.m.43 views

CVE-2015-5522

Heap-based buffer overflow in the ParseValue function in lexer.c in tidy before 4.9.31 allows remote attackers to cause a denial of service crash via vectors involving a command character in an href...

6.8CVSS6.2AI score0.04655EPSS
Exploits1References3
OSV
OSV
added 2015/07/16 12:0 a.m.10 views

UBUNTU-CVE-2015-5522

Heap-based buffer overflow in the ParseValue function in lexer.c in tidy before 4.9.31 allows remote attackers to cause a denial of service crash via vectors involving a command character in an href...

6.8CVSS6.1AI score0.04655EPSS
Exploits1References4
Rows per page
Query Builder