Lucene search
K

13 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.29 views

Mageia: Security Advisory (MGASA-2017-0367)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.93307EPSS
Exploits32References10
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.35 views

Mageia: Security Advisory (MGASA-2017-0364)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.93307EPSS
Exploits32References7
Openbugbounty
Openbugbounty
added 2019/07/21 9:6 a.m.7 views

countylinemagazine.com Cross Site Scripting vulnerability

Security Researcher Kaushik49617036 Helped patch 0 vulnerabilities Received 0 Coordinated Disclosure badges , found a security vulnerability affecting countylinemagazine.com website and its users. Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard,...

6.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/01/15 12:0 a.m.54 views

Fedora 27 : dnsmasq (2017-274d763ed8)

Fixes CVE-2017-13704 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

7.5CVSS8AI score0.6541EPSS
Exploits0References2
ICS
ICS
added 2017/11/17 12:0 a.m.235 views

Siemens SCALANCE W1750D, M800, S615, and RUGGEDCOM RM1224 (Update C)

1. EXECUTIVE SUMMARY CVSS v3 8.1 ATTENTION: Exploitable remotely/low skill level to exploit. Vendor: Siemens --------- Begin Update C Part 1 of 3 -------- Equipment: SCALANCE W1750D, M800, S615, and RUGGEDCOM RM1224 --------- End Update C Part 1 of 3 -------- Vulnerabilities: Resource...

9.8CVSS9.9AI score0.84925EPSS
Exploits16References9
Check Point Advisories
Check Point Advisories
added 2017/10/24 12:0 a.m.3 views

DNSmasq Integer Underflow Denial Of Service (CVE-2017-13704)

An integer underflow vulnerability exists over Dnsmasq. This is due to the way Dnsmasq handles TTL requests. A successful attack could lead to a denial of service...

5CVSS3.1AI score0.6541EPSS
Exploits0
ALT Linux
ALT Linux
added 2017/10/06 12:0 a.m.69 views

Security fix for the ALT Linux 10 package dnsmasq version 2.78-alt1

Oct. 6, 2017 Mikhail Efremov 2.78-alt1 - Updated to 2.78 fixes: CVE-2017-13704, CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494, CVE-2017-14495, CVE-2017-14496...

7.8CVSS8.1AI score0.93307EPSS
Exploits32
Tenable Nessus
Tenable Nessus
added 2017/10/03 12:0 a.m.851 views

dnsmasq < 2.78 Multiple Remote Vulnerabilities

The version of dnsmasq installed on the remote host is prior to 2.78, and thus, is affected by the following vulnerabilities : - Denial of service related to handling DNS queries exceeding 512 bytes. CVE-2017-13704 - Heap overflow related to handling DNS requests. CVE-2017-14491 - Heap overflow...

9.8CVSS7.4AI score0.93307EPSS
Exploits32References26
Cvelist
Cvelist
added 2017/10/02 9:0 p.m.29 views

CVE-2017-13704

In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a negative value. As it is an unsigned value, memset ends up writing up to 0xffffffff zero's 0xffffffffffffffff in 64 bit platforms, making dnsmasq crash...

8.4AI score0.6541EPSS
Exploits0References12
Slackware Linux
Slackware Linux
added 2017/10/02 6:43 p.m.46 views

[slackware-security] dnsmasq

New dnsmasq packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/dnsmasq-2.78-i586-1slack14.2.txz: Upgraded. This update fixes bugs and remotely exploitable security...

9.8CVSS8.9AI score0.93307EPSS
Exploits32
OSV
OSV
added 2017/10/02 12:0 a.m.3 views

UBUNTU-CVE-2017-13704

In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a negative value. As it is an unsigned value, memset ends up writing up to 0xffffffff zero's 0xffffffffffffffff in 64 bit platforms, making dnsmasq crash...

7.5CVSS7.1AI score0.6541EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2017/10/02 12:0 a.m.68 views

dnsmasq -- multiple vulnerabilities

Google Project Zero reports: CVE-2017-14491: Heap based overflow 2 bytes. Before 2.76 and this commit overflow was unrestricted. CVE-2017-14492: Heap based overflow. CVE-2017-14493: Stack Based overflow. CVE-2017-14494: Information Leak CVE-2017-14495: Lack of free CVE-2017-14496: Invalid boundar...

9.8CVSS8.4AI score0.93307EPSS
Exploits32References1
RedhatCVE
RedhatCVE
added 2017/09/26 8:49 a.m.26 views

CVE-2017-13704

An integer underflow flaw leading to a buffer over-read was found in dnsmasq in the DNS code. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash...

7.5CVSS4.1AI score0.6541EPSS
Exploits0References1
Rows per page
Query Builder