Lucene search
K

17000 matches found

UbuntuCve
UbuntuCve
added 2019/06/26 2:15 p.m.26 views

CVE-2019-12972

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32. There is a heap-based buffer over-read in bfddoprnt in bfd.c because elfobjectp in elfcode.h mishandles an eshstrndx section of type SHTGROUP by omitting a trailing '\0' character...

5.5CVSS6.8AI score0.01802EPSS
Exploits1References3
Prion
Prion
added 2019/06/26 2:15 p.m.18 views

Heap overflow

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32. There is a heap-based buffer over-read in bfddoprnt in bfd.c because elfobjectp in elfcode.h mishandles an eshstrndx section of type SHTGROUP by omitting a trailing '\0' character...

4.3CVSS6.2AI score0.01802EPSS
Exploits1References7Affected Software3
CVE
CVE
added 2019/06/26 1:27 p.m.207 views

CVE-2019-12972

CVE-2019-12972 is a heap-based buffer over-read in the Binary File Descriptor (BFD) library (libbfd) distributed with GNU Binutils 2.32. The vulnerability arises in _bfd_doprnt in bfd.c where elf_object_p in elfcode.h mishandles an e_shstrndx section of type SHT_GROUP by omitting a trailing '\0' ...

5.5CVSS6.2AI score0.01802EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2019/06/26 1:27 p.m.24 views

CVE-2019-12972

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32. There is a heap-based buffer over-read in bfddoprnt in bfd.c because elfobjectp in elfcode.h mishandles an eshstrndx section of type SHTGROUP by omitting a trailing '\0' character...

6.3AI score0.01802EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2019/06/25 12:0 a.m.64 views

Fedora Update for firefox FEDORA-2019-53e4772bb8

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS9.8AI score0.55874EPSS
Exploits10References4
RedhatCVE
RedhatCVE
added 2019/06/19 7:21 a.m.40 views

CVE-2012-6711

A heap-based buffer overflow exists in GNU Bash before 4.3 when wide characters, not supported by the current locale set in the LCCTYPE environment variable, are printed through the echo built-in function. A local attacker, who can provide data to print through the "echo -e" built-in function, ma...

7.8CVSS5.5AI score0.00491EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2019/06/19 12:0 a.m.55 views

openSUSE: Security Advisory for the Linux Kernel (openSUSE-SU-2019:1570-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS7.3AI score0.98745EPSS
Exploits11References2
NVD
NVD
added 2019/06/18 6:15 p.m.20 views

CVE-2012-6711

A heap-based buffer overflow exists in GNU Bash before 4.3 when wide characters, not supported by the current locale set in the LCCTYPE environment variable, are printed through the echo built-in function. A local attacker, who can provide data to print through the "echo -e" built-in function, ma...

7.8CVSS7.2AI score0.00491EPSS
Exploits0References6
OSV
OSV
added 2019/06/18 6:15 p.m.9 views

CVE-2012-6711

A heap-based buffer overflow exists in GNU Bash before 4.3 when wide characters, not supported by the current locale set in the LCCTYPE environment variable, are printed through the echo built-in function. A local attacker, who can provide data to print through the "echo -e" built-in function, ma...

7.8CVSS7.7AI score
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2019/06/18 6:15 p.m.6 views

CVE-2012-6711

A heap-based buffer overflow exists in GNU Bash before 4.3 when wide characters, not supported by the current locale set in the LCCTYPE environment variable, are printed through the echo built-in function. A local attacker, who can provide data to print through the "echo -e" built-in function, ma...

7.8CVSS6AI score0.00491EPSS
Exploits0References10
Prion
Prion
added 2019/06/18 6:15 p.m.13 views

Heap overflow

A heap-based buffer overflow exists in GNU Bash before 4.3 when wide characters, not supported by the current locale set in the LCCTYPE environment variable, are printed through the echo built-in function. A local attacker, who can provide data to print through the "echo -e" built-in function, ma...

4.6CVSS7.4AI score0.00491EPSS
Exploits0References6Affected Software2
UbuntuCve
UbuntuCve
added 2019/06/18 6:15 p.m.28 views

CVE-2012-6711

A heap-based buffer overflow exists in GNU Bash before 4.3 when wide characters, not supported by the current locale set in the LCCTYPE environment variable, are printed through the echo built-in function. A local attacker, who can provide data to print through the "echo -e" built-in function, ma...

7.8CVSS7.4AI score0.00491EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/06/18 5:34 p.m.28 views

CVE-2012-6711

A heap-based buffer overflow exists in GNU Bash before 4.3 when wide characters, not supported by the current locale set in the LCCTYPE environment variable, are printed through the echo built-in function. A local attacker, who can provide data to print through the "echo -e" built-in function, ma...

7CVSS7.7AI score0.00491EPSS
Exploits0References6
CVE
CVE
added 2019/06/18 5:34 p.m.236 views

CVE-2012-6711

CVE-2012-6711 describes a heap-based buffer overflow in GNU Bash prior to 4.3. When wide characters not supported by the current LC_CTYPE locale are printed via the echo builtin, ansicstr() mishandles u32cconv() in lib/sh/strtrans.c, potentially allowing a local attacker to crash a script or exec...

7.8CVSS7.6AI score0.00491EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2019/06/18 5:34 p.m.42 views

CVE-2012-6711

A heap-based buffer overflow exists in GNU Bash before 4.3 when wide characters, not supported by the current locale set in the LCCTYPE environment variable, are printed through the echo built-in function. A local attacker, who can provide data to print through the "echo -e" built-in function, ma...

7.8CVSS7.7AI score0.00491EPSS
Exploits0
0day.today
0day.today
added 2019/06/18 12:0 a.m.188 views

Netperf 2.6.0 - Stack-Based Buffer Overflow Exploit

Exploit Author: Juan Sacco - http://exploitpack.com Tested on: Kali i686 GNU/Linux Description: Netperf 2.6.0 s a benchmark tool than developed by Helett Packard that can be used to measure the performance of many different types of networking. It provides tests for both unidirectional troughput...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2019/06/17 12:0 a.m.253 views

Exim 4.91 Local Privilege Escalation

!/bin/bash raptoreximwiz - "The Return of the WIZard" LPE exploit Copyright c 2019 Marco Ivaldi A flaw was found in Exim versions 4.87 to 4.91 inclusive. Improper validation of recipient address in delivermessage function in /src/deliver.c may lead to remote command execution. CVE-2019-10149 This...

7.5CVSS0.9AI score0.99961EPSS
Exploits27
OpenVAS
OpenVAS
added 2019/06/17 12:0 a.m.25 views

Discourse < 2.3.0.beta6 SSO Validation Vulnerability

Discourse doesn SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:discourse:discourse"; ifdescription...

7.3AI score
Exploits0References1
Exploit DB
Exploit DB
added 2019/06/17 12:0 a.m.600 views

Exim 4.87 - 4.91 - Local Privilege Escalation

!/bin/bash raptoreximwiz - "The Return of the WIZard" LPE exploit Copyright c 2019 Marco Ivaldi A flaw was found in Exim versions 4.87 to 4.91 inclusive. Improper validation of recipient address in delivermessage function in /src/deliver.c may lead to remote command execution. CVE-2019-10149 This...

10CVSS9.8AI score0.99961EPSS
Exploits27
Tenable Nessus
Tenable Nessus
added 2019/06/14 12:0 a.m.47 views

Amazon Linux 2 : wget (ALAS-2019-1227)

Buffer overflow in GNU Wget allows remote attackers to cause a denial-of-service DoS or may execute an arbitrary code via unspecified vectors. CVE-2019-5953 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Linux 2 Security Advisory...

9.8CVSS8.7AI score0.05141EPSS
Exploits0References2
Rows per page
Query Builder