Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-11646

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL in UIProcess/API/glib/WebKitFaviconDatabase.cpp in WebKit, as used in...

7.5CVSS7.5AI score0.69016EPSS
Exploits10References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2018:2075-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.2AI score0.69016EPSS
Exploits28References2
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.42 views

Fedora 28 : webkit2gtk3 (2018-118b9abf99)

This update addresses the following vulnerabilities : - CVE-2018-4190, CVE-2018-4199, CVE-2018-4218, CVE-2018-4222, CVE-2018-4232, CVE-2018-4233, CVE-2018-4246, CVE-2018-11646. Additional fixes : - Fix installation directory of API documentation. - Disable Gigacage if mmap fails to allocate in...

8.8CVSS6.9AI score0.69016EPSS
Exploits28References9
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.39 views

SUSE SLED15 / SLES15 Security Update : webkit2gtk3 (SUSE-SU-2018:2075-1)

This update for webkit2gtk3 to version 2.20.3 fixes the following issues: These security issues were fixed : - CVE-2018-4190: An unspecified issue allowed remote attackers to obtain sensitive credential information that is transmitted during a CSS mask-image fetch bsc1097693. - CVE-2018-4199: An...

8.8CVSS7.6AI score0.69016EPSS
Exploits28References17
OPENSUSE Linux
OPENSUSE Linux
added 2018/08/10 3:8 a.m.63 views

Security update for webkit2gtk3 (moderate)

This update for webkit2gtk3 to version 2.20.3 fixes the following issues: These security issues were fixed: - CVE-2018-4190: An unspecified issue allowed remote attackers to obtain sensitive credential information that is transmitted during a CSS mask-image fetch bsc1097693. - CVE-2018-4199: An...

6.8CVSS6.6AI score0.69016EPSS
Exploits28References2
Tenable Nessus
Tenable Nessus
added 2018/08/10 12:0 a.m.51 views

openSUSE Security Update : webkit2gtk3 (openSUSE-2018-845)

This update for webkit2gtk3 to version 2.20.3 fixes the following issues : These security issues were fixed : - CVE-2018-4190: An unspecified issue allowed remote attackers to obtain sensitive credential information that is transmitted during a CSS mask-image fetch bsc1097693. - CVE-2018-4199: An...

8.8CVSS7.5AI score0.69016EPSS
Exploits28References9
Tenable Nessus
Tenable Nessus
added 2018/07/02 12:0 a.m.52 views

Fedora 27 : webkitgtk4 (2018-aac3ca8936)

This update addresses the following vulnerabilities : - CVE-2018-4190, CVE-2018-4199, CVE-2018-4218, CVE-2018-4222, CVE-2018-4232, CVE-2018-4233, CVE-2018-4246, CVE-2018-11646. Additional fixes : - Fix installation directory of API documentation. - Disable Gigacage if mmap fails to allocate in...

8.8CVSS6.9AI score0.69016EPSS
Exploits28References9
Circl
Circl
added 2018/06/21 9:37 p.m.8 views

CVE-2018-11646

creationtimestamp| type| source ---|---|--- 2018-06-21 21:37:11+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/http/webkitplus.rb 2025-01-23 20:37:20+00:00| published-proof-of-concept| Telegram/gZVW49kuYoasZTY1tITTGZ5xDPxjlw-c5GyQ-w1Z3p3ssZo 2025-02-...

7.5CVSS7.8AI score0.69016EPSS
Exploits10References1
0day.today
0day.today
added 2018/06/11 12:0 a.m.58 views

WebKitGTK+ < 2.21.3 - #WebKitFaviconDatabase DoS Exploit

Exploit for linux platform in category dos / poc Title: WebKitGTK+ "WebKitGTK+ WebKitFaviconDatabase DoS", 'Description' = %q This module exploits a vulnerability in WebKitFaviconDatabase when pageURL is unset. If successful, it could lead to application crash, resulting in denial of service. ,...

0.2AI score0.69016EPSS
Exploits10
exploitpack
exploitpack
added 2018/06/11 12:0 a.m.67 views

WebKitGTK+ 2.21.3 - WebKitFaviconDatabase Denial of Service (Metasploit)

WebKitGTK+ 2.21.3 - WebKitFaviconDatabase Denial of Service Metasploit Title: WebKitGTK+ "WebKitGTK+ WebKitFaviconDatabase DoS", 'Description' = %q This module exploits a vulnerability in WebKitFaviconDatabase when pageURL is unset. If successful, it could lead to application crash, resulting in...

5CVSS0.1AI score0.69016EPSS
Exploits10
Exploit DB
Exploit DB
added 2018/06/11 12:0 a.m.42 views

WebKitGTK+ &lt; 2.21.3 - &#039;WebKitFaviconDatabase&#039; Denial of Service (Metasploit)

Title: WebKitGTK+ "WebKitGTK+ WebKitFaviconDatabase DoS", 'Description' = %q This module exploits a vulnerability in WebKitFaviconDatabase when pageURL is unset. If successful, it could lead to application crash, resulting in denial of service. , 'License' = MSFLICENSE, 'Author' = 'Dhiraj Mishra'...

7.5CVSS8.2AI score0.69016EPSS
Exploits10
Packet Storm
Packet Storm
added 2018/06/11 12:0 a.m.39 views

WebKitGTK+ WebKitFaviconDatabase Denial Of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "WebKitGTK+ WebKitFaviconDatabase DoS", 'Description' = %q This module exploits a vulnerability in WebKitFaviconDatabase when pageURL is unset. If...

0.69016EPSS
Exploits10
Metasploit
Metasploit
added 2018/06/09 6:13 a.m.43 views

WebKitGTK+ WebKitFaviconDatabase DoS

This module exploits a vulnerability in WebKitFaviconDatabase when pageURL is unset. If successful, it could lead to application crash, resulting in denial of service. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework...

7.5CVSS7.5AI score0.69016EPSS
Exploits10
0day.today
0day.today
added 2018/06/06 12:0 a.m.68 views

WebKitGTK+ < 2.21.3 - pageURL Mishandling Crash (PoC) Exploit

webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL in UIProcess/API/glib/WebKitFaviconDatabase.cpp in WebKit, as used in WebKitGTK+ through 2.21.3, mishandle an unset pageURL, leading to an application crash. Title: WebKitGTK+ win = window.open"sleeponesecond.php...

8.1AI score0.69016EPSS
Exploits10
Packet Storm
Packet Storm
added 2018/06/05 12:0 a.m.35 views

WebKitGTK+ 2.21.3 pageURL Mishandling Denial Of Service

Summary: webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL in UIProcess/API/glib/WebKitFaviconDatabase.cpp in WebKit, as used in WebKitGTK+ through 2.21.3, mishandle an unset pageURL, leading to an application crash, CVE-2018-11646 was assigned to this issue. Po...

0.3AI score0.69016EPSS
Exploits10
exploitpack
exploitpack
added 2018/06/05 12:0 a.m.77 views

WebKitGTK+ 2.21.3 - Crash (PoC)

WebKitGTK+ 2.21.3 - Crash PoC Title: WebKitGTK+ win = window.open"sleeponesecond.php", "WIN"; window.open"https://www.paypal.com", "WIN"; win.document.execCommand'Stop'; win.document.write"Spoofed URL"; win.document.close; Backtrace using fedora 27: 0 WTF::StringImpl::rawHash at...

5CVSS8.2AI score0.69016EPSS
Exploits10
Exploit DB
Exploit DB
added 2018/06/05 12:0 a.m.64 views

WebKitGTK+ &lt; 2.21.3 - Crash (PoC)

Title: WebKitGTK+ win = window.open"sleeponesecond.php", "WIN"; window.open"https://www.paypal.com", "WIN"; win.document.execCommand'Stop'; win.document.write"Spoofed URL"; win.document.close; Backtrace using fedora 27: 0 WTF::StringImpl::rawHash at...

7.5CVSS8.2AI score0.69016EPSS
Exploits10
NVD
NVD
added 2018/06/01 1:29 p.m.15 views

CVE-2018-11646

webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL in UIProcess/API/glib/WebKitFaviconDatabase.cpp in WebKit, as used in WebKitGTK+ through 2.21.3, mishandle an unset pageURL, leading to an application crash...

7.5CVSS7.4AI score0.69016EPSS
Exploits10References5
UbuntuCve
UbuntuCve
added 2018/06/01 1:29 p.m.27 views

CVE-2018-11646

webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL in UIProcess/API/glib/WebKitFaviconDatabase.cpp in WebKit, as used in WebKitGTK+ through 2.21.3, mishandle an unset pageURL, leading to an application crash...

7.5CVSS7.1AI score0.69016EPSS
Exploits10References2
CVE
CVE
added 2018/06/01 1:0 p.m.94 views

CVE-2018-11646

CVE-2018-11646 affects WebKitGTK+ (WebKit) up to at least 2.21.3, via WebKitFaviconDatabase.cpp when pageURL is unset, causing an application crash (DoS). Public exploitation code exists (Metasploit/Exploit-DB). Remediation in the provided advisories recommends upgrading to a newer WebKitGTK+ ver...

7.5CVSS7.8AI score0.69016EPSS
Exploits10References5Affected Software1
Rows per page
Query Builder