Lucene search
K

17002 matches found

NVD
NVD
added 2019/04/10 8:29 p.m.26 views

CVE-2006-7254

The nscd daemon in the GNU C Library glibc before version 2.5 does not close incoming client sockets if they cannot be handled by the daemon, allowing local users to carry out a denial of service attack on the daemon...

5.5CVSS5.3AI score0.00305EPSS
Exploits0References1
OSV
OSV
added 2019/04/10 8:29 p.m.11 views

CVE-2005-3590

The getgrouplist function in the GNU C library glibc before version 2.3.5, when invoked with a zero argument, writes to the passed pointer even if the specified array size is zero, leading to a buffer overflow and potentially allowing attackers to corrupt memory...

9.8CVSS7.2AI score
Exploits0References5
CVE
CVE
added 2019/04/10 7:52 p.m.58 views

CVE-2006-7254

The CVE concerns the nscd daemon in the GNU C Library (glibc) prior to 2.5. The vulnerability arises because nscd does not close incoming client sockets that it cannot handle, enabling local users to perform a denial of service against the daemon. Affected component: nscd within glibc (before 2.5...

5.5CVSS5.3AI score0.00305EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2019/04/10 7:52 p.m.23 views

CVE-2005-3590

The getgrouplist function in the GNU C library glibc before version 2.3.5, when invoked with a zero argument, writes to the passed pointer even if the specified array size is zero, leading to a buffer overflow and potentially allowing attackers to corrupt memory...

9.8CVSS9.7AI score0.02089EPSS
Exploits0
Fedora
Fedora
added 2019/04/09 1:14 a.m.33 views

[SECURITY] Fedora 28 Update: wget-1.20.3-1.fc28

GNU Wget is a file retrieval utility which can use either the HTTP or FTP protocols. Wget features include the ability to work in the background while you are logged out, recursive retrieval of directories, file name wildcard matching, remote file timestamp storage and comparison, use of Rest wit...

9.8CVSS1AI score0.17249EPSS
Exploits6
Fedora
Fedora
added 2019/04/09 12:5 a.m.38 views

[SECURITY] Fedora 30 Update: wget-1.20.3-1.fc30

GNU Wget is a file retrieval utility which can use either the HTTP or FTP protocols. Wget features include the ability to work in the background while you are logged out, recursive retrieval of directories, file name wildcard matching, remote file timestamp storage and comparison, use of Rest wit...

9.8CVSS1AI score0.05141EPSS
Exploits0
0day.today
0day.today
added 2019/04/09 12:0 a.m.18 views

Linux/x64 - XANAX Encoder Shellcode (127 bytes)

Linux/x64 - XANAX Encoder Shellcode 127 bytes ; Date: 08/04/2019 ; XANAX Encoder ; Author: Alan Vivona ; Description: Uses xor-add-not-add-xor sequence with a 4 byte key and writes the encoded version to stdout ; Tested on: x86-x64 GNU/Linux global start segment .data keys.xor1 equ 0x29 keys.add1...

0.1AI score
Exploits0
OpenVAS
OpenVAS
added 2019/04/09 12:0 a.m.36 views

Fedora Update for kernel-tools FEDORA-2019-65c6d11eba

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.4AI score
Exploits0References2
exploitpack
exploitpack
added 2019/04/08 12:0 a.m.10506 views

Apache 2.4.17 2.4.38 - apache2ctl graceful logrotate Local Privilege Escalation

Apache 2.4.17 2.4.38 - apache2ctl graceful logrotate Local Privilege Escalation ?php CARPE DIEM: CVE-2019-0211 Apache Root Privilege Escalation Charles Fol @cfreal 2019-04-08 INFOS https://cfreal.github.io/carpe-diem-cve-2019-0211-apache-local-root.html USAGE 1. Upload exploit to Apache HTTP serv...

7.2CVSS0.8AI score0.65005EPSS
Exploits8
Packet Storm
Packet Storm
added 2019/04/08 12:0 a.m.4217 views

CARPE (DIEM) Apache 2.4.x Local Privilege Escalation

?php CARPE DIEM: CVE-2019-0211 Apache Root Privilege Escalation Charles Fol @cfreal 2019-04-08 INFOS https://cfreal.github.io/carpe-diem-cve-2019-0211-apache-local-root.html USAGE 1. Upload exploit to Apache HTTP server 2. Send request to page 3. Await 6:25AM for logrotate to restart Apache 4...

0.5AI score0.65005EPSS
Exploits8
Exploit DB
Exploit DB
added 2019/04/08 12:0 a.m.4845 views

Apache 2.4.17 < 2.4.38 - 'apache2ctl graceful' 'logrotate' Local Privilege Escalation

?php CARPE DIEM: CVE-2019-0211 Apache Root Privilege Escalation Charles Fol @cfreal 2019-04-08 INFOS https://cfreal.github.io/carpe-diem-cve-2019-0211-apache-local-root.html USAGE 1. Upload exploit to Apache HTTP server 2. Send request to page 3. Await 6:25AM for logrotate to restart Apache 4...

7.8CVSS8.3AI score0.65005EPSS
Exploits8
Kitploit
Kitploit
added 2019/04/06 12:49 p.m.166 views

Pyrit - The Famous WPA Precomputed Cracker

Pyrit allows you to create massive databases of pre-computed WPA/WPA2-PSK authentication phase in a space-time-tradeoff. By using the computational power of Multi-Core CPUs and other platforms through ATI-Stream,Nvidia CUDA and OpenCL, it is currently by far the most powerful attack against one o...

7.2AI score
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2019/04/04 12:0 a.m.3 views

The vulnerability of the `load_specificdebug_section` function in the GNU Binutils, related to integer overflow, allows a attacker to cause a service failure.

The vulnerability of the loadspecificdebugsection function in objdump.c within the GNU Binutils package is related to integer overflow, which can lead to buffer overflow attacks. Exploiting this vulnerability could allow an attacker to cause a system failure...

5.5CVSS6.8AI score0.01982EPSS
Exploits1References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2019/04/04 12:0 a.m.3 views

The vulnerability of the processmetadata function in the GNU Libextractor library, related to reading beyond the memory boundaries, allows attackers to cause service failures or disclose protected information.

The vulnerability of the processmetadata function in the GNU Libextractor library is related to the issue of reading beyond the memory boundaries. Exploiting this vulnerability could allow a malicious actor to cause service failures or expose protected information...

6.5CVSS6.7AI score0.02237EPSS
Exploits1References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/04/04 12:0 a.m.4 views

The vulnerability of the processmetadata function in the GNU Libextractor library is related to the pointer manipulation during the processing of OLE files. This allows an attacker to trigger a service failure or disclose protected information using a specially created OLE file.

The vulnerability of the processmetadata function in the GNU Libextractor library is related to the assignment of a null pointer during the processing of OLE files. Exploiting this vulnerability could allow an attacker to cause service failures or reveal memory contents using a specially crafted...

6.5CVSS6.7AI score0.02236EPSS
Exploits1References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/04/04 12:0 a.m.4 views

The vulnerability of the elf_link_add_object_symbols function in the GNU Binutils, related to the pointer manipulation involving NULL, allows a malicious actor to trigger a denial-of-service attack.

The vulnerability of the elflinkaddobjectsymbols function elflink.c in the BFD library, which is part of the GNU Binutils, relates to the dereferencing of the NULL pointer for ETDYN files without a program header. Exploitation of this vulnerability could allow an attacker to cause a service failu...

5.5CVSS6.3AI score0.02257EPSS
Exploits1References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2019/04/04 12:0 a.m.4 views

The vulnerability in the elfcomm.c file of the GNU Binutils, related to memory access after its release, allows a hacker to cause a service failure.

The vulnerability in the elfcomm.c file of the GNU Binutils relates to memory access after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.01825EPSS
Exploits1References8Affected Software3
Tenable Nessus
Tenable Nessus
added 2019/04/04 12:0 a.m.30 views

EulerOS Virtualization 2.5.3 : tar (EulerOS-SA-2019-1262)

According to the version of the tar package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - GNU Tar through 1.30, when --sparse is used, mishandles file shrinkage during read access, which allows local users to cause a denial of...

4.7CVSS6.3AI score0.00526EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/04/04 12:0 a.m.33 views

EulerOS 2.0 SP3 : binutils (EulerOS-SA-2019-1278)

According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in GNU Binutils 2.32. It is a heap-based buffer overflow in processmipsspecific in readelf.c via a malformed MIPS opti...

7.8CVSS6.8AI score0.01976EPSS
Exploits2References3
UbuntuCve
UbuntuCve
added 2019/04/04 12:0 a.m.35 views

CVE-2019-5953

Buffer overflow in GNU Wget 1.20.1 and earlier allows remote attackers to cause a denial-of-service DoS or may execute an arbitrary code via unspecified vectors...

9.8CVSS7.5AI score0.05141EPSS
Exploits0References5
Rows per page
Query Builder