Lucene search
K

1994 matches found

OSV
OSV
added 2010/06/01 8:30 p.m.14 views

CVE-2009-4880

Multiple integer overflows in the strfmon implementation in the GNU C Library aka glibc or libc6 2.10.1 and earlier allow context-dependent attackers to cause a denial of service memory consumption or application crash via a crafted format string, as demonstrated by a crafted first argument to th...

6.2AI score
Exploits0References14
UbuntuCve
UbuntuCve
added 2010/06/01 8:30 p.m.22 views

CVE-2009-4881

Integer overflow in the vstrfmonl function in stdlib/strfmonl.c in the strfmon implementation in the GNU C Library aka glibc or libc6 before 2.10.1 allows context-dependent attackers to cause a denial of service application crash via a crafted format string, as demonstrated by the...

5CVSS5.9AI score0.02025EPSS
Exploits0References1
Prion
Prion
added 2010/06/01 8:30 p.m.28 views

Integer overflow

Integer overflow in the vstrfmonl function in stdlib/strfmonl.c in the strfmon implementation in the GNU C Library aka glibc or libc6 before 2.10.1 allows context-dependent attackers to cause a denial of service application crash via a crafted format string, as demonstrated by the...

5CVSS6.5AI score0.18795EPSS
Exploits2References6Affected Software1
Prion
Prion
added 2010/06/01 8:30 p.m.33 views

Memory corruption

The encodename macro in misc/mntentr.c in the GNU C Library aka glibc or libc6 2.11.1 and earlier, as used by ncpmount and mount.cifs, does not properly handle newline characters in mountpoint names, which allows local users to cause a denial of service mtab corruption, or possibly modify mount...

7.2CVSS6.9AI score0.00592EPSS
Exploits1References22Affected Software1
Cvelist
Cvelist
added 2010/06/01 8:0 p.m.36 views

CVE-2009-4880

Multiple integer overflows in the strfmon implementation in the GNU C Library aka glibc or libc6 2.10.1 and earlier allow context-dependent attackers to cause a denial of service memory consumption or application crash via a crafted format string, as demonstrated by a crafted first argument to th...

6.1AI score0.11222EPSS
Exploits1References13
Cvelist
Cvelist
added 2010/06/01 8:0 p.m.28 views

CVE-2010-0830

Integer signedness error in the elfgetdynamicinfo function in elf/dynamic-link.h in ld.so in the GNU C Library aka glibc or libc6 2.0.1 through 2.11.1, when the --verify option is used, allows user-assisted remote attackers to execute arbitrary code via a crafted ELF program with a negative value...

9.2AI score0.04514EPSS
Exploits0References14
Cvelist
Cvelist
added 2010/06/01 8:0 p.m.31 views

CVE-2009-4881

Integer overflow in the vstrfmonl function in stdlib/strfmonl.c in the strfmon implementation in the GNU C Library aka glibc or libc6 before 2.10.1 allows context-dependent attackers to cause a denial of service application crash via a crafted format string, as demonstrated by the...

6.2AI score0.02025EPSS
Exploits0References6
CVE
CVE
added 2010/06/01 8:0 p.m.111 views

CVE-2009-4880

Glibc (GNU C Library) is affected by CVE-2009-4880: multiple integer overflows in strfmon handling that can be triggered by a crafted format string, potentially causing memory growth or an application crash (denial of service). This is observed in glibc 2.10.1 and earlier. Mitigation per connecte...

5CVSS6.2AI score0.11222EPSS
Exploits1References13Affected Software1
Debian CVE
Debian CVE
added 2010/06/01 8:0 p.m.31 views

CVE-2009-4880

Multiple integer overflows in the strfmon implementation in the GNU C Library aka glibc or libc6 2.10.1 and earlier allow context-dependent attackers to cause a denial of service memory consumption or application crash via a crafted format string, as demonstrated by a crafted first argument to th...

5CVSS6.2AI score0.11222EPSS
Exploits1
OpenVAS
OpenVAS
added 2010/05/28 12:0 a.m.40 views

Ubuntu Update for glibc, eglibc vulnerabilities USN-944-1

Ubuntu Update for Linux kernel vulnerabilities USN-944-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9441.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for glibc, eglibc vulnerabilities USN-944-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

7.5CVSS0.6AI score0.18795EPSS
Exploits3References2
UbuntuCve
UbuntuCve
added 2010/05/24 12:0 a.m.35 views

CVE-2009-4880

Multiple integer overflows in the strfmon implementation in the GNU C Library aka glibc or libc6 2.10.1 and earlier allow context-dependent attackers to cause a denial of service memory consumption or application crash via a crafted format string, as demonstrated by a crafted first argument to th...

5CVSS5.9AI score0.11222EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2010/02/24 12:0 a.m.27 views

Debian DSA-1973-1 : glibc, eglibc - information disclosure

Christoph Pleger has discovered that the GNU C Library aka glibc and its derivatives add information from the passwd.adjunct.byname map to entries in the passwd map, which allows local users to obtain the encrypted passwords of NIS accounts by calling the getpwnam function. %NASLMINLEVEL 70300 C...

7.5CVSS5.2AI score0.03067EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2010/02/01 12:0 a.m.24 views

Debian: Security Advisory (DSA-1973-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.03067EPSS
Exploits0References3
OSV
OSV
added 2010/01/19 12:0 a.m.24 views

DSA-1973-1 glibc - information disclosure

Bulletin has no description...

7.5CVSS6AI score0.03067EPSS
Exploits0
Prion
Prion
added 2010/01/14 6:30 p.m.27 views

Code injection

nis/nssnis/nis-pwd.c in the GNU C Library aka glibc or libc6 2.7 and Embedded GLIBC EGLIBC 2.10.2 adds information from the passwd.adjunct.byname map to entries in the passwd map, which allows remote attackers to obtain the encrypted passwords of NIS accounts by calling the getpwnam function...

7.5CVSS6.7AI score0.03067EPSS
Exploits0References12Affected Software1
OSV
OSV
added 2010/01/14 6:30 p.m.7 views

CVE-2010-0015

nis/nssnis/nis-pwd.c in the GNU C Library aka glibc or libc6 2.7 and Embedded GLIBC EGLIBC 2.10.2 adds information from the passwd.adjunct.byname map to entries in the passwd map, which allows remote attackers to obtain the encrypted passwords of NIS accounts by calling the getpwnam function...

6.1AI score
Exploits0References12
Debian CVE
Debian CVE
added 2010/01/14 6:0 p.m.34 views

CVE-2010-0015

nis/nssnis/nis-pwd.c in the GNU C Library aka glibc or libc6 2.7 and Embedded GLIBC EGLIBC 2.10.2 adds information from the passwd.adjunct.byname map to entries in the passwd map, which allows remote attackers to obtain the encrypted passwords of NIS accounts by calling the getpwnam function...

7.5CVSS6AI score0.03067EPSS
Exploits0
CheckPoint Security
CheckPoint Security
added 2007/07/11 9:0 p.m.23 views

Check Point response to Integer Overflow Vulnerability in GNU C Library (CVE-2007-3508)

...

7.2CVSS3.4AI score0.00454EPSS
Exploits0Affected Software3
securityvulns
securityvulns
added 2007/07/04 12:0 a.m.39 views

GNU C integer overflow

Integer overflow in ld.so dynamic loader...

7.2CVSS3.5AI score0.00454EPSS
Exploits0References1
securityvulns
securityvulns
added 2007/07/04 12:0 a.m.67 views

[ GLSA 200707-04 ] GNU C Library: Integer overflow

Gentoo Linux Security Advisory GLSA 200707-04 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

7.2CVSS6.9AI score0.00454EPSS
Exploits0
Rows per page
Query Builder