CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

OpenVAS•added 2023/03/08 12:0 a.m.•37 views

Debian: Security Advisory (DLA-139-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.3AI score0.8487EPSS

Exploits29References2

SUSE CVE•added 2023/02/15 5:23 a.m.•6 views

SUSE CVE-2015-0235

Heap-based buffer overflow in the nsshostnamedigitsdots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the 1 gethostbyname or 2 gethostbyname2 function, aka "GHOST."...

10CVSS8.2AI score0.8487EPSS

Exploits29References15

Veracode•added 2019/01/15 9:4 a.m.•43 views

Arbitrary Code Execution

glibc is vulnerable to arbitrary code execution attacks. The vulnerability exists as a heap-based buffer overflow in the nsshostnamedigitsdots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the 1...

10CVSS7.8AI score0.8487EPSS

Exploits29References92Affected Software1

Lenovo•added 2016/07/22 12:0 a.m.•252 views

GNU C Library (glibc) __nss_hostname_digits_dots() function vulnerable to buffer overflow ("GHOST")

Lenovo Security Advisory: LEN-2015-007 Potential Impact: Execution of Arbitrary Code Severity: High Summary: A vulnerability has been found in the GNU C Library glibc nsshostnamedigitsdots function that allows both local and remote users to cause a buffer overflow in network function calls...

10CVSS8.2AI score0.8487EPSS

Exploits29

ICS•added 2015/12/06 7:0 a.m.•112 views

Siemens SIMATIC HMI Basic, SINUMERIK, and Ruggedcom APE GHOST Vulnerability (Update A)

OVERVIEW This updated advisory is a follow-up to the original advisory titled ICSA-15-064-01 Siemens SIMATIC HMI Basic, SINUMERIK, and Ruggedcom APE GHOST Vulnerability that was published March 5, 2015, on the NCCIC/ICS-CERT web site. The “GHOST”Further information about the GHOST vulnerability:...

10CVSS8AI score0.8487EPSS

Exploits29References10

OpenVAS•added 2015/09/08 12:0 a.m.•51 views

Amazon Linux: Security Advisory (ALAS-2015-494)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.3AI score0.8487EPSS

Exploits38References2

Tenable Nessus•added 2015/01/29 12:0 a.m.•69 views

FreeBSD : glibc -- gethostbyname buffer overflow (0765de84-a6c1-11e4-a0c1-c485083ca99c) (GHOST)

Robert Kratky reports : GHOST is a 'buffer overflow' bug affecting the gethostbyname and gethostbyname2 function calls in the glibc library. This vulnerability allows a remote attacker that is able to make an application call to either of these functions to execute arbitrary code with the...

10CVSS7.9AI score0.8487EPSS

Exploits29References4

Prion•added 2015/01/28 7:59 p.m.•45 views

Heap overflow

10CVSS8.6AI score0.8487EPSS

Exploits29References90Affected Software18

ATTACKERKB•added 2015/01/28 7:59 p.m.•78 views

Heap overflow in glibc 2.2 name resolution (CVE-2015-0235)

10CVSS7.5AI score0.8487EPSS

Exploits29References100

OSV•added 2015/01/28 7:59 p.m.•5 views

DEBIAN-CVE-2015-0235

10CVSS8.6AI score0.8487EPSS

Exploits29References1

CVE•added 2015/01/28 7:0 p.m.•576 views

CVE-2015-0235

CVE-2015-0235 (GHOST) is a heap-based buffer overflow in glibc’s __nss_hostname_digits_dots() used by gethostbyname/gethostbyname2. Affected glibc versions include 2.2 up to 2.17; patched in glibc-2.18 and later. Exploitation could allow remote or context-dependent arbitrary code execution depend...

10CVSS7.7AI score0.8487EPSS

In wildExploits29References90Affected Software1

RedHat Linux•added 2015/01/28 5:13 p.m.•2 views

glibc: __nss_hostname_digits_dots() heap-based buffer overflow

A heap-based buffer overflow was found in glibc's nsshostnamedigitsdots function, which is used by the gethostbyname and gethostbyname2 glibc function calls. A remote attacker able to make an application call either of these functions could use this flaw to execute arbitrary code with the...

10CVSS7.3AI score0.8487EPSS

Exploits29References8

RedHat Linux•added 2015/01/28 3:50 p.m.•1 views

glibc: __nss_hostname_digits_dots() heap-based buffer overflow

10CVSS7.3AI score0.8487EPSS

Exploits29References8

Tenable Nessus•added 2015/01/28 12:0 a.m.•49 views

Ubuntu 10.04 LTS / 12.04 LTS : eglibc vulnerability (USN-2485-1) (GHOST)

It was discovered that a buffer overflow existed in the gethostbyname and gethostbyname2 functions in the GNU C Library. An attacker could use this issue to execute arbitrary code or cause an application crash, resulting in a denial of service. Note that Tenable Network Security has extracted the...

10CVSS8.2AI score0.8487EPSS

Exploits29References2

Tenable Nessus•added 2015/01/28 12:0 a.m.•81 views

Scientific Linux Security Update : glibc on SL6.x, SL7.x i386/x86_64 (20150127) (GHOST)

10CVSS8.1AI score0.8487EPSS

Exploits29References2

Cent OS•added 2015/01/27 11:31 p.m.•138 views

glibc, nscd security update

CentOS Errata and Security Advisory CESA-2015:0092 Updated glibc packages that fix one security issue are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Critical security impact. A Common Vulnerability Scoring System CVSS base score,...

10CVSS7.4AI score0.8487EPSS

Exploits29References7