Lucene search
+L

159 matches found

htbridge
htbridge
added 2013/12/26 12:0 a.m.54 views

SQL Injection in Sexy Polling Joomla Extension

High-Tech Bridge Security Research Lab discovered vulnerability in Sexy Polling Joomla Extension, which can be exploited to perform SQL Injection attacks. 1 SQL Injection in Sexy Polling Joomla Extension: CVE-2013-7219 The vulnerability exists due to insufficient validation of "answerid" HTTP POS...

7.5CVSS7.9AI score0.02289EPSS
Exploits3Affected Software1
securityvulns
securityvulns
added 2012/04/24 12:0 a.m.34 views

InspIRCd buffer overflow

Buffer overflow on DNS request processing...

7.5CVSS4.1AI score0.06896EPSS
Exploits1References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2012/01/19 12:0 a.m.37 views

ISC BIND Crafted ANY Request Response Multiple RRsets DoS

The version of BIND installed on the remote host suggests that it suffers from a denial of service vulnerability that could be triggered by sending a large volume of recursive queries that return multiple RRsets in the answer section, triggering assertion checks. To be vulnerable you need to have...

4.3CVSS5.5AI score0.43355EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2011/05/31 8:0 p.m.23 views

CVE-2011-1922

daemon/worker.c in Unbound 1.x before 1.4.10, when debugging functionality and the interface-automatic option are enabled, allows remote attackers to cause a denial of service assertion failure and daemon exit via a crafted DNS request that triggers improper error handling...

4.3CVSS5.1AI score0.07085EPSS
Exploits1
CVE
CVE
added 2010/01/20 4:0 p.m.51 views

CVE-2010-0362

Affected product/versions: Zeus Web Server before 4.3r5. Root cause: failure to use random DNS transaction IDs for DNS requests, which can enable remote attackers to spoof DNS responses. Impact (as stated): DNS spoofing potential. Exploitation details: not provided in the connected documents. Rem...

5CVSS6.8AI score0.0147EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2009/05/21 12:0 a.m.32 views

NSD version Directive Remote Version Disclosure

The remote host is running Name Server Daemon NSD, an open source DNS server. It is possible to extract the version number of the remote installation by sending a special DNS request for the text 'version.bind' in the domain 'chaos'. C Tenable Network Security, Inc. include"compat.inc"; if...

5.5AI score
Exploits0References1
securityvulns
securityvulns
added 2007/12/17 12:0 a.m.38 views

Perl Net::DNS package multiple security vulnerabilities

Weak DNS ID generation allows response spoofing, DoS on parsing DNS request...

5CVSS4AI score0.09547EPSS
Exploits3References2
securityvulns
securityvulns
added 2007/08/08 12:0 a.m.28 views

Apple Mac OS X Bonjour mDNSResponder buffer overflow

Buffer overflow on malformed DNS request parsing...

5.8CVSS4.2AI score0.06912EPSS
Exploits2References1Affected Software1
securityvulns
securityvulns
added 2007/03/31 12:0 a.m.47 views

dproxy DNS proxy buffer overflow

Buffer overflow on oversized DNS request UDP packet UDP/53...

10CVSS5.4AI score0.10185EPSS
Exploits5References2Affected Software1
securityvulns
securityvulns
added 2007/01/28 12:0 a.m.54 views

rPSA-2007-0021-1 bind bind-utils

rPath Security Advisory: 2007-0021-1 Published: 2007-01-25 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Remote Deterministic Denial of Service Updated Versions: bind=/conary.rpath.com@rpl:devel//1/9.3.4-0.1-1 bind-utils=/conary.rpath.com@rpl:devel//1/9.3.4-0.1-1 Reference...

7.8CVSS2AI score0.43355EPSS
Exploits1
NVD
NVD
added 2006/11/28 11:28 p.m.17 views

CVE-2006-4518

Qbik WinGate 6.1.4 and earlier allows remote attackers to cause a denial of service CPU consumption via a DNS request with a self-referencing compressed name pointer, which triggers an infinite loop...

5CVSS6.6AI score0.01762EPSS
Exploits0References7
Cvelist
Cvelist
added 2006/11/28 11:0 p.m.24 views

CVE-2006-4518

Qbik WinGate 6.1.4 and earlier allows remote attackers to cause a denial of service CPU consumption via a DNS request with a self-referencing compressed name pointer, which triggers an infinite loop...

6.6AI score0.01762EPSS
Exploits0References7
CVE
CVE
added 2006/11/28 11:0 p.m.66 views

CVE-2006-4518

CVE-2006-4518 affects Qbik WinGate 6.1.4 and earlier. The vulnerability arises in processing DNS requests with compressed name pointers: a self-referencing pointer can trigger an infinite loop, causing the WinGate proxy to consume 100% of CPU and effectively deny service. Exploitation is unauthen...

5CVSS6.6AI score0.01762EPSS
Exploits0References7Affected Software1
securityvulns
securityvulns
added 2006/11/27 12:0 a.m.59 views

iDefense Security Advisory 11.26.06: Qbik WinGate Compressed Name Pointer Denial of Service Vulnerability

Qbik WinGate Compressed Name Pointer Denial of Service Vulnerability iDefense Security Advisory 11.26.06 http://labs.idefense.com/intelligence/vulnerabilities/ Nov 26, 2006 I. BACKGROUND Qbik WinGate is an Internet gateway and communications server. It includes functionality related to efficientl...

5CVSS0.3AI score0.01762EPSS
Exploits0
securityvulns
securityvulns
added 2006/10/30 12:0 a.m.40 views

Microsoft Windows connection sharing DoS

NULL-pointer dereference on DNS request proxying in Microsoft Windows NAT Helper...

1.1AI score
Exploits0Affected Software1
securityvulns
securityvulns
added 2006/06/13 12:0 a.m.50 views

Multiple FAST360 Appliance security vulnerabilities

DNS requiest processing DoS, HTTP filtering bypass...

1AI score
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2004/12/17 12:0 a.m.34 views

RHEL 2.1 / 3 : libxml (RHSA-2004:650)

An updated libxml package that fixes multiple buffer overflows is now available. Updated 24 May 2005 Multilib packages have been added to this advisory The libxml package contains a library for manipulating XML files. Multiple buffer overflow bugs have been found in libxml versions prior to 2.6.1...

10CVSS6.4AI score0.24232EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2004/12/16 8:52 p.m.45 views

Moderate: Red Hat Security Advisory: libxml security update

An updated libxml package that fixes multiple buffer overflows is now available. Updated 24 May 2005 Multilib packages have been added to this advisory The libxml package contains a library for manipulating XML files. Multiple buffer overflow bugs have been found in libxml versions prior to 2.6.1...

10CVSS6.4AI score0.24232EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2004/11/12 4:46 p.m.49 views

Moderate: Red Hat Security Advisory: libxml2 security update

An updated libxml2 package that fixes multiple buffer overflows is now available. libxml2 is a library for manipulating XML files. Multiple buffer overflow bugs have been found in libxml2 versions prior to 2.6.14. If an attacker can trick a user into passing a specially crafted FTP URL or FTP pro...

10CVSS6.3AI score0.21686EPSS
Exploits1References3
Rows per page
Query Builder