CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8515 matches found

OSV•added 2013/05/25 3:18 a.m.•2 views

DEBIAN-CVE-2013-3560

The dissectdsmccundownload function in epan/dissectors/packet-mpeg-dsmcc.c in the MPEG DSM-CC dissector in Wireshark 1.8.x before 1.8.7 uses an incorrect format string, which allows remote attackers to cause a denial of service application crash via a malformed packet...

5CVSS7.3AI score0.02403EPSS

Exploits1References1

Prion•added 2013/05/25 3:18 a.m.•13 views

Format string

5CVSS6.8AI score0.02403EPSS

Exploits1References13Affected Software3

OSV•added 2013/05/25 3:18 a.m.•0 views

UBUNTU-CVE-2013-3560

5CVSS7.1AI score0.02403EPSS

Exploits1References4

CVE•added 2013/05/25 1:0 a.m.•75 views

CVE-2013-3560

CVE-2013-3560 affects Wireshark 1.8.x before 1.8.7, where the MPEG DSM-CC dissector in epan/dissectors/packet-mpeg-dsmcc.c uses an incorrect format string in the dissect_dsmcc_un_download function. This flaw can allow remote attackers to trigger a denial of service (application crash) by sending ...

5CVSS6.3AI score0.02403EPSS

Exploits1References13Affected Software2

Debian CVE•added 2013/05/25 1:0 a.m.•18 views

CVE-2013-3560

5CVSS5.2AI score0.02403EPSS

Exploits1

RedHat Linux•added 2013/05/22 6:17 p.m.•3 views

System: pki-tps format string injection

Format string vulnerability in the token processing system pki-tps in Red Hat Certificate System RHCS 8.1 and possibly Dogtag Certificate System 9 and 10 allows remote authenticated users to cause a denial of service crash and possibly execute arbitrary code via format string specifiers in...

7.5CVSS6.2AI score0.0222EPSS

Exploits0References4

RedHat Linux•added 2013/05/22 6:17 p.m.•30 views

Important: Red Hat Security Advisory: pki-tps security update

An updated pki-tps package that fixes two security issues is now available for Red Hat Certificate System 8.1. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings,...

7.5CVSS6AI score0.0222EPSS

Exploits0References3

RedHat Linux•added 2013/05/20 4:44 p.m.•3 views

kernel: ext3: format string issues

fs/ext3/super.c in the Linux kernel before 3.8.4 uses incorrect arguments to functions in certain circumstances related to printk input, which allows local users to conduct format-string attacks and possibly gain privileges via a crafted application...

6.2CVSS6.4AI score0.00577EPSS

Exploits1References4

exploitpack•added 2013/05/18 12:0 a.m.•18 views

Python RRDtool Module - Function Format String

Python RRDtool Module - Function Format String / source: https://www.securityfocus.com/bid/60004/info The RRDtool module for Python is prone to a format-string vulnerability because it fails to properly sanitize user-supplied input. An attacker may exploit this issue to execute arbitrary code...

Exploits0

Exploit DB•added 2013/05/18 12:0 a.m.•29 views

Python RRDtool Module - Function Format String

/ source: https://www.securityfocus.com/bid/60004/info The RRDtool module for Python is prone to a format-string vulnerability because it fails to properly sanitize user-supplied input. An attacker may exploit this issue to execute arbitrary code within the context of the affected application or ...

7.4AI score

Exploits0

0day.today•added 2013/05/09 12:0 a.m.•21 views

Flightgear 2.0 / 2.4 Format String Vulnerability

Flightgear versions 2.0 and 2.4 suffer from a remote format string vulnerability. / Exploit Title: Flightgear remote format string Date: 21/04/2013 Exploit Author: Kurono email: email protected Vendor Homepage: http://www.flightgear.org/ Software Link: http://www.flightgear.org/download/ Version:...

7AI score

Exploits0

Packet Storm•added 2013/05/08 12:0 a.m.•24 views

Flightgear 2.0 / 2.4 Format String

/ Exploit Title: Flightgear remote format string Date: 21/04/2013 Exploit Author: Kurono email: [email protected] Vendor Homepage: http://www.flightgear.org/ Software Link: http://www.flightgear.org/download/ Version: Tested on versions 2.0, 2.4. Tested on: Windows Linux user assisted CVE...

0.5AI score

Exploits0

Tenable Nessus•added 2013/05/03 12:0 a.m.•43 views

Ubuntu 12.10 : linux vulnerabilities (USN-1813-1)

Mathias Krause discovered an information leak in the Linux kernel's UDF file system implementation. A local user could exploit this flaw to examine some of the kernel's heap memory. CVE-2012-6548 Mathias Krause discovered an information leak in the Linux kernel's ISO 9660 CDROM file system driver...

7.2CVSS7.5AI score0.01361EPSS

Exploits6References11

NVD•added 2013/05/02 2:55 p.m.•23 views

CVE-2012-0864

Integer overflow in the vfprintf function in stdio-common/vfprintf.c in glibc 2.14 and other versions allows context-dependent attackers to bypass the FORTIFYSOURCE protection mechanism, conduct format string attacks, and write to arbitrary memory via a large number of arguments...

6.8CVSS7.9AI score0.02717EPSS

Exploits5References9

Prion•added 2013/05/02 2:55 p.m.•24 views

Integer overflow

6.8CVSS7.2AI score0.02717EPSS

Exploits5References9Affected Software1

CVE•added 2013/05/02 2:0 p.m.•120 views

CVE-2012-0864

Summary (CVE-2012-0864) The vulnerability is in the GNU C Library (glibc) via an integer/format string flaw in the vfprintf path (stdio-common/vfprintf.c) affecting glibc 2.14 and other versions. A context-dependent attacker could bypass Fortify_SOURCE, perform format-string attacks, and write to...

6.8CVSS8.4AI score0.02717EPSS

Exploits5References9Affected Software1