Lucene search
+L

580 matches found

cvelist
cvelist
added 2019/12/16 12:0 a.m.34 views

CVE-2019-19331

knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU utilization. DNS replies with very many resource records might be processed very inefficiently, in extreme cases taking even several CPU seconds for each such uncached message. For example, a few thousand A...

7.5CVSS7.1AI score0.02166EPSS
Exploits1References3
alpinelinux
alpinelinux
added 2019/12/16 12:0 a.m.92 views

CVE-2019-19331

knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU utilization. DNS replies with very many resource records might be processed very inefficiently, in extreme cases taking even several CPU seconds for each such uncached message. For example, a few thousand A...

7.5CVSS7.2AI score0.02166EPSS
Exploits1
nessus
nessus
added 2018/11/09 12:0 a.m.59 views

AIX 7.2 TL 3 : freebsd (IJ09625)

https://vulners.com/cve/CVE-2018-6922 https://vulners.com/cve/CVE-2018-6922 FreeBSD is vulnerable to a denial of service, caused by the use of an inefficient TCP reassembly algorithm. By sending specially-crafted TCP traffic, a remote attacker could exploit this vulnerability to consume all...

5.3CVSS6.3AI score0.03226EPSS
Exploits0References2
n0where
n0where
added 2018/06/20 6:8 p.m.28 views

Detailed Heap Profiler: Memoro

Memoro is a highly detailed heap profiler. Memoro not only shows you where and when your program makes heap allocations, but will show you how your program actually used that memory. Memoro collects detailed information on accesses to the heap, including reads and writes to memory and when they...

6.9AI score
Exploits0References2
osv
osv
added 2018/03/14 7:29 p.m.4 views

CVE-2018-2399

Cross-Site Scripting in Process Monitoring Infrastructure, from 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, due to inefficient encoding of user controlled inputs...

6.1CVSS5.8AI score0.01325EPSS
Exploits0References3
prion
prion
added 2018/03/14 7:29 p.m.16 views

Cross site scripting

Cross-Site Scripting in Process Monitoring Infrastructure, from 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, due to inefficient encoding of user controlled inputs...

4.3CVSS6AI score0.01325EPSS
Exploits0References3Affected Software1
nvd
nvd
added 2018/03/14 7:29 p.m.24 views

CVE-2018-2399

Cross-Site Scripting in Process Monitoring Infrastructure, from 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, due to inefficient encoding of user controlled inputs...

6.1CVSS6AI score0.01325EPSS
Exploits0References3
redhat
redhat
added 2015/10/22 6:34 p.m.8 views

OpenJDK: inefficient use of hash tables and lists during XML parsing (JAXP, 8068842)

Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4893 and CVE-2015-4911...

5CVSS7.3AI score0.05288EPSS
Exploits0References5
nessus
nessus
added 2014/10/02 12:0 a.m.34 views

Mandriva Linux Security Advisory : perl-Email-Address (MDVSA-2014:192)

Updated perl-Email-Address package fixes security vulnerability : The parse function in Email::Address module before 1.905 for Perl uses an inefficient regular expression, which allows remote attackers to cause a denial of service CPU consumption via an empty quoted string in an RFC 2822 address...

5CVSS7.2AI score0.03584EPSS
Exploits2References3
mageia
mageia
added 2014/09/26 3:55 p.m.52 views

Updated perl-Email-Address packages fix security vulnerabilities

Updated perl-Email-Address package fixes security vulnerability: The parse function in Email::Address module before 1.905 for Perl uses an inefficient regular expression, which allows remote attackers to cause a denial of service CPU consumption via an empty quoted string in an RFC 2822 address...

5CVSS6.2AI score0.03584EPSS
Exploits2References2
nvd
nvd
added 2014/07/06 11:55 p.m.21 views

CVE-2014-4720

Email::Address module before 1.904 for Perl uses an inefficient regular expression, which allows remote attackers to cause a denial of service CPU consumption via vectors related to "backtracking into the phrase," a different vulnerability than CVE-2014-0477...

5CVSS7.2AI score0.01864EPSS
Exploits1References2
ubuntucve
ubuntucve
added 2014/07/03 5:55 p.m.31 views

CVE-2014-0477

The parse function in Email::Address module before 1.905 for Perl uses an inefficient regular expression, which allows remote attackers to cause a denial of service CPU consumption via an empty quoted string in an RFC 2822 address...

5CVSS7.1AI score0.03584EPSS
Exploits1References2
cve
cve
added 2014/07/03 5:0 p.m.76 views

CVE-2014-0477

CVE-2014-0477 affects the Perl Email::Address module prior to version 1.905, where an inefficient regular expression in the RFC 2822 address parser allows a remote attacker to trigger CPU consumption and deny service. Public advisories (Fedora, openSUSE, Mandriva/MDVSA, RedHat, Debian) document u...

5CVSS6.4AI score0.03584EPSS
Exploits1References9Affected Software2
openvas
openvas
added 2013/10/29 12:0 a.m.43 views

Ubuntu: Security Advisory (USN-2000-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6CVSS6.4AI score0.02703EPSS
Exploits6References2
openvas
openvas
added 2012/07/30 12:0 a.m.30 views

CentOS Update for tomcat6 CESA-2012:0475 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS5.5AI score0.80318EPSS
Exploits6References2
openvas
openvas
added 2012/02/12 12:0 a.m.38 views

FreeBSD Ports: tomcat

The remote host is missing an update to the system as announced in the referenced advisory. VID 7f5ccb1d-439b-11e1-bc16-0023ae8e59f0 OpenVAS Vulnerability Test $ Description: Auto generated from VID 7f5ccb1d-439b-11e1-bc16-0023ae8e59f0 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

5CVSS5.9AI score0.80318EPSS
Exploits6
nessus
nessus
added 2012/01/23 12:0 a.m.32 views

FreeBSD : tomcat -- Denial of Service (7f5ccb1d-439b-11e1-bc16-0023ae8e59f0)

The Tomcat security team reports : Analysis of the recent hash collision vulnerability identified unrelated inefficiencies with Apache Tomcat's handling of large numbers of parameters and parameter values. These inefficiencies could allow an attacker, via a specially crafted request, to cause lar...

5CVSS5.6AI score0.1086EPSS
Exploits1References5
seebug
seebug
added 2009/01/08 12:0 a.m.17 views

Anope IRC Services With bs_fantasy_ext <= 1.2.0-RC1 mIRC script

No description provided by source. ; bsfantasyext = 1.1.16 Exploit by Phil ; Kudos to MattT for pointing this out ; Only seems to work for non-vhosted unresolved IPs ; Code is a little inefficient, sorry. ; Usage: /getip channel nickname bs bot nickname alias getip if $1 != $null && $2 != $null &...

7.1AI score
Exploits0
exploitdb
exploitdb
added 2009/01/08 12:0 a.m.38 views

Anope IRC Services With bs_fantasy_ext 1.2.0-RC1 - mIRC script

; bsfantasyext alias getip if $1 != $null && $2 != $null && $3 != $null set %exploit.channel $1 set %exploit.nickname $2 set %exploit.botnick $3 set %exploit.prefix !@ set %exploit.counter 1 while %exploit.counter = 9 mode %exploit.channel +b %exploit.prefix $+ %exploit.counter $+ inc...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/11/10 12:0 a.m.25 views

[SA17386] SpamAssassin Long Message Header Denial of Service

TITLE: SpamAssassin Long Message Header Denial of Service SECUNIA ADVISORY ID: SA17386 VERIFY ADVISORY: http://secunia.com/advisories/17386/ CRITICAL: Less critical IMPACT: DoS WHERE: From remote SOFTWARE: SpamAssassin 3.x http://secunia.com/product/4506/ DESCRIPTION: A vulnerability has been...

1.2AI score
Exploits0
Rows per page
Query Builder