580 matches found
CVE-2019-19331
knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU utilization. DNS replies with very many resource records might be processed very inefficiently, in extreme cases taking even several CPU seconds for each such uncached message. For example, a few thousand A...
CVE-2019-19331
knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU utilization. DNS replies with very many resource records might be processed very inefficiently, in extreme cases taking even several CPU seconds for each such uncached message. For example, a few thousand A...
AIX 7.2 TL 3 : freebsd (IJ09625)
https://vulners.com/cve/CVE-2018-6922 https://vulners.com/cve/CVE-2018-6922 FreeBSD is vulnerable to a denial of service, caused by the use of an inefficient TCP reassembly algorithm. By sending specially-crafted TCP traffic, a remote attacker could exploit this vulnerability to consume all...
Detailed Heap Profiler: Memoro
Memoro is a highly detailed heap profiler. Memoro not only shows you where and when your program makes heap allocations, but will show you how your program actually used that memory. Memoro collects detailed information on accesses to the heap, including reads and writes to memory and when they...
CVE-2018-2399
Cross-Site Scripting in Process Monitoring Infrastructure, from 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, due to inefficient encoding of user controlled inputs...
Cross site scripting
Cross-Site Scripting in Process Monitoring Infrastructure, from 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, due to inefficient encoding of user controlled inputs...
CVE-2018-2399
Cross-Site Scripting in Process Monitoring Infrastructure, from 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, due to inefficient encoding of user controlled inputs...
OpenJDK: inefficient use of hash tables and lists during XML parsing (JAXP, 8068842)
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4893 and CVE-2015-4911...
Mandriva Linux Security Advisory : perl-Email-Address (MDVSA-2014:192)
Updated perl-Email-Address package fixes security vulnerability : The parse function in Email::Address module before 1.905 for Perl uses an inefficient regular expression, which allows remote attackers to cause a denial of service CPU consumption via an empty quoted string in an RFC 2822 address...
Updated perl-Email-Address packages fix security vulnerabilities
Updated perl-Email-Address package fixes security vulnerability: The parse function in Email::Address module before 1.905 for Perl uses an inefficient regular expression, which allows remote attackers to cause a denial of service CPU consumption via an empty quoted string in an RFC 2822 address...
CVE-2014-4720
Email::Address module before 1.904 for Perl uses an inefficient regular expression, which allows remote attackers to cause a denial of service CPU consumption via vectors related to "backtracking into the phrase," a different vulnerability than CVE-2014-0477...
CVE-2014-0477
The parse function in Email::Address module before 1.905 for Perl uses an inefficient regular expression, which allows remote attackers to cause a denial of service CPU consumption via an empty quoted string in an RFC 2822 address...
CVE-2014-0477
CVE-2014-0477 affects the Perl Email::Address module prior to version 1.905, where an inefficient regular expression in the RFC 2822 address parser allows a remote attacker to trigger CPU consumption and deny service. Public advisories (Fedora, openSUSE, Mandriva/MDVSA, RedHat, Debian) document u...
Ubuntu: Security Advisory (USN-2000-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CentOS Update for tomcat6 CESA-2012:0475 centos6
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
FreeBSD Ports: tomcat
The remote host is missing an update to the system as announced in the referenced advisory. VID 7f5ccb1d-439b-11e1-bc16-0023ae8e59f0 OpenVAS Vulnerability Test $ Description: Auto generated from VID 7f5ccb1d-439b-11e1-bc16-0023ae8e59f0 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
FreeBSD : tomcat -- Denial of Service (7f5ccb1d-439b-11e1-bc16-0023ae8e59f0)
The Tomcat security team reports : Analysis of the recent hash collision vulnerability identified unrelated inefficiencies with Apache Tomcat's handling of large numbers of parameters and parameter values. These inefficiencies could allow an attacker, via a specially crafted request, to cause lar...
Anope IRC Services With bs_fantasy_ext <= 1.2.0-RC1 mIRC script
No description provided by source. ; bsfantasyext = 1.1.16 Exploit by Phil ; Kudos to MattT for pointing this out ; Only seems to work for non-vhosted unresolved IPs ; Code is a little inefficient, sorry. ; Usage: /getip channel nickname bs bot nickname alias getip if $1 != $null && $2 != $null &...
Anope IRC Services With bs_fantasy_ext 1.2.0-RC1 - mIRC script
; bsfantasyext alias getip if $1 != $null && $2 != $null && $3 != $null set %exploit.channel $1 set %exploit.nickname $2 set %exploit.botnick $3 set %exploit.prefix !@ set %exploit.counter 1 while %exploit.counter = 9 mode %exploit.channel +b %exploit.prefix $+ %exploit.counter $+ inc...
[SA17386] SpamAssassin Long Message Header Denial of Service
TITLE: SpamAssassin Long Message Header Denial of Service SECUNIA ADVISORY ID: SA17386 VERIFY ADVISORY: http://secunia.com/advisories/17386/ CRITICAL: Less critical IMPACT: DoS WHERE: From remote SOFTWARE: SpamAssassin 3.x http://secunia.com/product/4506/ DESCRIPTION: A vulnerability has been...