Lucene search
K

3287 matches found

Tenable Nessus
Tenable Nessus
added 2014/09/25 12:0 a.m.27 views

Mandriva Linux Security Advisory : dump (MDVSA-2014:181)

Updated dump packages fix security vulnerability : An integer overflow in liblzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications using performing LZO decompression on a compressed payload from the attacker CVE-2014-4607. The dump package is bui...

8.8CVSS7.3AI score0.05315EPSS
Exploits1References2
Check Point Advisories
Check Point Advisories
added 2014/09/17 12:0 a.m.2 views

Apache HTTP Server mod_deflate Denial of Service (CVE-2014-0118)

A denial of service vulnerability exists in Apache HTTP server. The vulnerability exists in the moddeflate module and is due to a resource exhaustion that is related to request body decompression configuration. A remote, unauthenticated attacker can leverage this vulnerability by sending a...

4.3CVSS1.7AI score0.37156EPSS
Exploits0
Exploit DB
Exploit DB
added 2014/09/16 12:0 a.m.58 views

ZTE ZXDSL-931VII - Configuration Dump

Exploit Title: ZTE ZXDSL-931VII Unauthenticated Configuration Dump Google Dork: use your imagination Date: 09-12-2014 Exploit Author: L0ukanik0sGR Vendor Homepage: www.zte.com.cn Software Link:...

7.4AI score
Exploits0
Mageia
Mageia
added 2014/09/15 10:36 a.m.41 views

Updated dump package fix CVE-2014-4607

Updated dump packages fix security vulnerability: An integer overflow in liblzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications using performing LZO decompression on a compressed payload from the attacker CVE-2014-4607. The dump package is buil...

8.8CVSS9.3AI score0.05315EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/09/12 12:0 a.m.18 views

Mandriva Linux Security Advisory : busybox (MDVSA-2014:173)

Updated busybox packages fix security vulnerability : An integer overflow in liblzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications using performing LZO decompression on a compressed payload from the attacker CVE-2014-4607. Busybox bundles part...

8.8CVSS7.3AI score0.05315EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/09/12 12:0 a.m.23 views

Mandriva Linux Security Advisory : libvncserver (MDVSA-2014:168)

An integer overflow in liblzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications using performing LZO decompression on a compressed payload from the attacker CVE-2014-4607. The libvncserver library is built with a bundled copy of minilzo, which is...

8.8CVSS7.4AI score0.05315EPSS
Exploits1References4
Mageia
Mageia
added 2014/09/01 10:44 a.m.34 views

Updated blender package fixes CVE-2014-4607

Updated blender package fixes security vulnerability: An integer overflow in liblzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications using performing LZO decompression on a compressed payload from the attacker CVE-2014-4607. The blender package ...

8.8CVSS9.3AI score0.05315EPSS
Exploits1References2
OSV
OSV
added 2014/08/26 11:4 p.m.4 views

MGASA-2014-0355 Updated harbour package fixes security vulnerability

An integer overflow in liblzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications using performing LZO decompression on a compressed payload from the attacker CVE-2014-4607. The harbour is built with a bundled copy of minilzo, which is a part of...

8.8CVSS9.2AI score0.05315EPSS
Exploits1References4
Mageia
Mageia
added 2014/08/26 11:4 p.m.32 views

Updated icecream package fixes security vulnerability

An integer overflow in liblzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications using performing LZO decompression on a compressed payload from the attacker CVE-2014-4607. The icecream package is built with a bundled copy of minilzo, which is a...

8.8CVSS9.3AI score0.05315EPSS
Exploits1References2
Mageia
Mageia
added 2014/08/26 11:4 p.m.33 views

Updated grub2 package fixes security vulnerability

An integer overflow in liblzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications using performing LZO decompression on a compressed payload from the attacker CVE-2014-4607. The grub2 package is built with a bundled copy of minilzo, which is a part...

8.8CVSS9.3AI score0.05315EPSS
Exploits1References2
Mageia
Mageia
added 2014/08/26 11:4 p.m.39 views

Updated italc package fixes security vulnerability

An integer overflow in liblzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications using performing LZO decompression on a compressed payload from the attacker CVE-2014-4607. The italc package is built with a bundled copy of minilzo, which is a part...

8.8CVSS9.3AI score0.05315EPSS
Exploits1References2
OSV
OSV
added 2014/08/26 11:4 p.m.4 views

MGASA-2014-0359 Updated italc package fixes security vulnerability

An integer overflow in liblzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications using performing LZO decompression on a compressed payload from the attacker CVE-2014-4607. The italc package is built with a bundled copy of minilzo, which is a part...

8.8CVSS9.1AI score0.05315EPSS
Exploits1References3
OSV
OSV
added 2014/08/25 8:44 a.m.8 views

MGASA-2014-0351 Updated busybox packages fix CVE-2014-4607

Updated busybox packages fix security vulnerability: An integer overflow in liblzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications using performing LZO decompression on a compressed payload from the attacker CVE-2014-4607. Busybox bundles part ...

8.8CVSS9.2AI score0.05315EPSS
Exploits1References3
Mageia
Mageia
added 2014/08/25 8:44 a.m.29 views

Updated mednafen packages fix CVE-2014-4607

The bundled version of minilzo.c in the mednafen package has been updated to version 2.08 to fix the following security vulnerability: An integer overflow in minilzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications using performing LZO...

8.8CVSS9.3AI score0.05315EPSS
Exploits1References4
Mageia
Mageia
added 2014/08/25 8:44 a.m.32 views

Updated busybox packages fix CVE-2014-4607

Updated busybox packages fix security vulnerability: An integer overflow in liblzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications using performing LZO decompression on a compressed payload from the attacker CVE-2014-4607. Busybox bundles part ...

8.8CVSS9.3AI score0.05315EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2014/08/21 3:29 p.m.9 views

httpd: mod_deflate denial of service

A denial of service flaw was found in the way httpd's moddeflate module handled request body decompression configured via the "DEFLATE" input filter. A remote attacker able to send a request whose body would be decompressed could use this flaw to consume an excessive amount of system memory and C...

4.3CVSS6.7AI score0.37156EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2014/08/21 3:29 p.m.5 views

httpd: mod_deflate denial of service

A denial of service flaw was found in the way httpd's moddeflate module handled request body decompression configured via the "DEFLATE" input filter. A remote attacker able to send a request whose body would be decompressed could use this flaw to consume an excessive amount of system memory and C...

4.3CVSS6.7AI score0.37156EPSS
Exploits0References5
Symantec
Symantec
added 2014/08/21 8:0 a.m.41 views

Symantec Encryption Desktop Compressed Mail File Denial-of-Service

SUMMARY Certain encryption applications permit compression directly in the message body of an encrypted email file. Symantec Encryption Desktop will attempt decompression and decryption of these specifically formatted incoming email files without properly limiting maximum file size during the...

5CVSS6.4AI score0.01072EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2014/08/06 3:3 p.m.4 views

httpd: mod_deflate denial of service

A denial of service flaw was found in the way httpd's moddeflate module handled request body decompression configured via the "DEFLATE" input filter. A remote attacker able to send a request whose body would be decompressed could use this flaw to consume an excessive amount of system memory and C...

4.3CVSS6.7AI score0.37156EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2014/07/24 12:0 a.m.52 views

Scientific Linux Security Update : httpd on SL5.x, SL6.x i386/x86_64 (20140723)

A race condition flaw, leading to heap-based buffer overflows, was found in the modstatus httpd module. A remote attacker able to access a status page served by modstatus on a server using a threaded Multi-Processing Module MPM could send a specially crafted request that would cause the httpd chi...

6.8CVSS7.6AI score0.85744EPSS
Exploits5References4
Rows per page
Query Builder