Lucene search
K

293 matches found

Apache Httpd
Apache Httpd
added 2016/02/02 12:0 a.m.66 views

Apache Httpd < 2.4.20 : mod_http2: denial of service by thread starvation

By manipulating the flow control windows on streams, a client was able to block server threads for long times, causing starvation of worker threads. Connections could still be opened, but no streams where processed for these. This issue affected HTTP/2 support in 2.4.17 and 2.4.18...

5.9CVSS1.1AI score0.15327EPSS
Exploits0Affected Software1
Intel
Intel
added 2015/08/12 12:0 a.m.19 views

Potential Vulnerability with Intel® LAN Products with SR-IOV

Summary: A potential issue impacting Intel® LAN products with SR-IOV capability is expected to be publicly disclosed by security researchers at an industry conference on August 13, 2015. Description: In Intel® LAN products with SR-IOV capability, the potential exists where, under specific...

6.5AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2015/07/09 12:0 a.m.6 views

The vulnerability of the Cisco IOS operating system, which allows a intruder to trigger a service failure

The vulnerability of the Cisco IOS operating system is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending IEEE 802.3x control frames remotely...

5.7CVSS5.4AI score0.00874EPSS
Exploits0References2
CNVD
CNVD
added 2015/06/24 12:0 a.m.2 views

Cisco ASR 9000 IOS XR Resource Management Error Vulnerability

Cisco IOS XR on ASR 9000 is a set of operating systems from Cisco that run in the 9000 series router devices. A security vulnerability exists in Cisco IOS XR version 5.3.1 for Cisco ASR 9000 devices. A remote attacker can exploit this vulnerability to cause a denial of service NPU chip reset or...

5.7CVSS6.6AI score0.00874EPSS
Exploits0References1
NVD
NVD
added 2015/06/23 2:59 p.m.16 views

CVE-2015-4205

Cisco IOS XR 5.3.1 on ASR 9000 devices allows remote attackers to cause a denial of service NPU chip reset or line-card reload by sending crafted IEEE 802.3x flow-control PAUSE frames on the local network, aka Bug ID CSCut19959...

5.7CVSS6.6AI score0.00874EPSS
Exploits0References3
Prion
Prion
added 2015/06/23 2:59 p.m.22 views

Design/Logic Flaw

Cisco IOS XR 5.3.1 on ASR 9000 devices allows remote attackers to cause a denial of service NPU chip reset or line-card reload by sending crafted IEEE 802.3x flow-control PAUSE frames on the local network, aka Bug ID CSCut19959...

5.7CVSS7.2AI score0.00874EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2015/06/23 2:0 p.m.23 views

CVE-2015-4205

Cisco IOS XR 5.3.1 on ASR 9000 devices allows remote attackers to cause a denial of service NPU chip reset or line-card reload by sending crafted IEEE 802.3x flow-control PAUSE frames on the local network, aka Bug ID CSCut19959...

6.6AI score0.00874EPSS
Exploits0References3
Cisco
Cisco
added 2015/06/22 7:31 p.m.31 views

Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers Denial of Service Vulnerability

A vulnerability in flow control processing of Cisco IOS XR Software for Cisco ASR 9000 Series Routers could allow an unauthenticated, adjacent attacker to cause a Network Processing Unit NPU chip reset and potentially a reload of the affected line card. The vulnerability is due to improper...

5.7CVSS6.7AI score0.00874EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2014/11/17 6:11 p.m.8 views

bash: off-by-one error in deeply nested flow control constructs

An off-by-one error was discovered in the way Bash was handling deeply nested flow control constructs. Depending on the layout of the .bss segment, this could allow arbitrary execution of code that would not otherwise be executed by Bash...

10CVSS6.9AI score0.58462EPSS
Exploits12References4
RedHat Linux
RedHat Linux
added 2014/10/02 6:40 p.m.9 views

bash: off-by-one error in deeply nested flow control constructs

An off-by-one error was discovered in the way Bash was handling deeply nested flow control constructs. Depending on the layout of the .bss segment, this could allow arbitrary execution of code that would not otherwise be executed by Bash...

10CVSS6.9AI score0.58462EPSS
Exploits12References4
Tenable Nessus
Tenable Nessus
added 2014/10/01 12:0 a.m.66 views

FreeBSD : bash -- out-of-bounds memory access in parser (4a4e9f88-491c-11e4-ae2c-c80aa9043978)

RedHat security team reports : It was discovered that the fixed-sized redirstack could be forced to overflow in the Bash parser, resulting in memory corruption, and possibly leading to arbitrary code execution when evaluating untrusted input that would not otherwise be run as code. An off-by-one...

10CVSS7.8AI score0.64336EPSS
Exploits14References4
RedHat Linux
RedHat Linux
added 2014/09/26 9:28 p.m.6 views

bash: off-by-one error in deeply nested flow control constructs

An off-by-one error was discovered in the way Bash was handling deeply nested flow control constructs. Depending on the layout of the .bss segment, this could allow arbitrary execution of code that would not otherwise be executed by Bash...

10CVSS7AI score0.58462EPSS
Exploits12References4
RedHat Linux
RedHat Linux
added 2014/09/26 5:58 p.m.9 views

bash: off-by-one error in deeply nested flow control constructs

An off-by-one error was discovered in the way Bash was handling deeply nested flow control constructs. Depending on the layout of the .bss segment, this could allow arbitrary execution of code that would not otherwise be executed by Bash...

10CVSS7AI score0.58462EPSS
Exploits12References4
RedHat Linux
RedHat Linux
added 2014/09/26 1:46 a.m.9 views

bash: off-by-one error in deeply nested flow control constructs

An off-by-one error was discovered in the way Bash was handling deeply nested flow control constructs. Depending on the layout of the .bss segment, this could allow arbitrary execution of code that would not otherwise be executed by Bash...

10CVSS7AI score0.58462EPSS
Exploits12References4
FreeBSD
FreeBSD
added 2014/09/25 12:0 a.m.49 views

bash -- out-of-bounds memory access in parser

RedHat security team reports: It was discovered that the fixed-sized redirstack could be forced to overflow in the Bash parser, resulting in memory corruption, and possibly leading to arbitrary code execution when evaluating untrusted input that would not otherwise be run as code. An off-by-one...

10CVSS8.8AI score0.64336EPSS
Exploits14References1
exploitpack
exploitpack
added 2014/05/14 12:0 a.m.21 views

Easy File Sharing Web Server 6.8 - Remote Stack Buffer Overflow

Easy File Sharing Web Server 6.8 - Remote Stack Buffer Overflow Exploit Title: Easy File Sharing Web Server 6.8 stack buffer overflow Date: 10 May 2014 Exploit Author: superkojiman - http://www.techorganic.com Vendor Homepage: http://www.efssoft.com Software Link:...

0.7AI score
Exploits0
Cent OS
Cent OS
added 2014/01/30 11:16 p.m.77 views

kernel security update

CentOS Errata and Security Advisory CESA-2014:0108 Updated kernel packages that fix one security issue and three bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring Syste...

5.2CVSS6.9AI score0.0067EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2014/01/30 12:0 a.m.27 views

RHEL 5 : kernel (RHSA-2014:0108)

Updated kernel packages that fix one security issue and three bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

5.2CVSS7.2AI score0.0067EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2014/01/29 12:0 a.m.37 views

kernel security and bug fix update

kernel 2.6.18-371.4.1 - char ipmi: fix message handling during panics Tony Camuso 1049731 995293 - net igb: Use 32bit mask calculating the flow control watermarks Stefan Assmann 1041694 1036115 - fs NTLM auth and sign - Use appropriate server challenge Sachin Prabhu 1029865 1018286 - xen gnttab:...

5.2CVSS3.1AI score0.0067EPSS
Exploits0
NVD
NVD
added 2013/01/01 12:35 p.m.18 views

CVE-2012-5573

The connectionedgeprocessrelaycell function in or/relay.c in Tor before 0.2.3.25 maintains circuits even if an unexpected SENDME cell arrives, which might allow remote attackers to cause a denial of service memory consumption or excessive cell reception rate or bypass intended flow-control...

5CVSS6.5AI score0.03146EPSS
Exploits0References9
Rows per page
Query Builder