Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2015-5523

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ParseValue function in lexer.c in tidy before 4.9.31 allows remote attackers to cause a denial of service crash via vectors involving multiple whitespace...

4.3CVSS5.2AI score0.03842EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.16 views

Debian: Security Advisory (DLA-273-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.7AI score0.04655EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2015/09/11 12:0 a.m.35 views

SUSE SLED11 Security Update : tidy (SUSE-SU-2015:1525-1)

This update fixes two heap-based buffer overflows in tidy/libtidy. These vulnerabilities could allow remote attackers to cause a denial of service crash via vectors involving a command character in an href. CVE-2015-5522, CVE-2015-5523 Note that Tenable Network Security has extracted the precedin...

6.8CVSS5.5AI score0.04655EPSS
Exploits2References6
CVE
CVE
added 2015/08/11 2:0 p.m.94 views

CVE-2015-5523

CVE-2015-5523 affects the tidy project (libtidy) ParseValue() in lexer.c; multiple whitespace before an empty href can trigger a large memory allocation and remote DoS. Affected: tidy/libtidy prior to 4.9.31. Remediation: upgrade to 4.9.31+ (vendors like SUSE/Debian reference patching; see SUSE-S...

4.3CVSS6.3AI score0.03842EPSS
Exploits1References14Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/07/20 12:0 a.m.36 views

Debian DLA-273-1 : tidy security update

Fernando Muoz discovered a security issue on the HTML syntax checker and reformatter tidy. Tidy did not properly process specific character sequences, and a remote attacker could exploit this flaw to cause a DoS, or probably, execute arbitrary code. Two different CVEs were assigned to this issue...

6.8CVSS5.8AI score0.04655EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2015/07/20 12:0 a.m.34 views

Debian DSA-3309-1 : tidy - security update

Fernando Munoz discovered that invalid HTML input passed to tidy, an HTML syntax checker and reformatter, could trigger a buffer overflow. This could allow remote attackers to cause a denial of service crash or potentially execute arbitrary code. Geoff McLane also discovered that a similar issue...

6.8CVSS5.9AI score0.04655EPSS
Exploits2References6
Debian
Debian
added 2015/07/18 5:11 p.m.30 views

[SECURITY] [DSA 3309-1] tidy security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3309-1 [email protected] https://www.debian.org/security/ Alessandro Ghedini July 18, 2015 https://www.debian.org/security/faq -...

6.8CVSS7.3AI score0.04655EPSS
Exploits2
OpenVAS
OpenVAS
added 2015/07/18 12:0 a.m.27 views

Debian Security Advisory DSA 3309-1 (tidy - security update)

Fernando Muoz discovered that invalid HTML input passed to tidy, an HTML syntax checker and reformatter, could trigger a buffer overflow. This could allow remote attackers to cause a denial of service crash or potentially execute arbitrary code. Geoff McLane also discovered that a similar issue...

6.8CVSS0.7AI score0.04655EPSS
Exploits2References1
OSV
OSV
added 2015/07/18 12:0 a.m.36 views

DLA-273-1 tidy - security update

Bulletin has no description...

6.8CVSS5.5AI score0.04655EPSS
Exploits2
Rows per page
Query Builder