Lucene search
+L

1149 matches found

UbuntuCve
UbuntuCve
added 2016/12/11 12:0 a.m.41 views

CVE-2016-9431

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page...

6.5CVSS7AI score0.0241EPSS
Exploits0References4
OSV
OSV
added 2016/12/11 12:0 a.m.4 views

UBUNTU-CVE-2016-9625

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page...

6.5CVSS7AI score0.01824EPSS
Exploits0References4
OSV
OSV
added 2016/12/11 12:0 a.m.3 views

UBUNTU-CVE-2016-9431

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page...

6.5CVSS7AI score0.0241EPSS
Exploits0References5
OSV
OSV
added 2016/12/11 12:0 a.m.2 views

UBUNTU-CVE-2016-9439

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page...

6.5CVSS7AI score0.01817EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2016/11/29 3:49 p.m.24 views

CVE-2016-9626

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page...

6.5CVSS4.7AI score0.02407EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/11/15 11:40 a.m.7 views

pcre: infinite recursion compiling pattern with zero-repeated groups that include recursive back reference (8.36/19)

PCRE before 8.36 mishandles the /a\2|a\g/ pattern and related patterns with certain internal recursive back references, which allows remote attackers to cause a denial of service segmentation fault or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a...

7.5CVSS7.4AI score0.04049EPSS
Exploits1References4
CNVD
CNVD
added 2016/10/11 12:0 a.m.3 views

foxmail Stack Buffer Overflow Vulnerability

Foxmail is email client software. A stack buffer overflow vulnerability exists in foxmail. A denial of service is caused by a stack buffer overflow due to an infinite recursive call in foxmail when replying to a maliciously constructed email...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/08/12 12:0 a.m.49 views

FreeBSD : FreeBSD -- Multiple vulnerabilities in file(1) and libmagic(3) (70140f20-6007-11e6-a6c3-14dae9d210b8)

A specifically crafted Composite Document File CDF file can trigger an out-of-bounds read or an invalid pointer dereference. CVE-2012-1571 A flaw in regular expression in the awk script detector makes use of multiple wildcards with unlimited repetitions. CVE-2013-7345 A malicious input file could...

6.5CVSS7.2AI score0.0507EPSS
Exploits3References5
RedhatCVE
RedhatCVE
added 2016/07/19 8:48 a.m.25 views

CVE-2016-2775

It was found that the lightweight resolver protocol implementation in BIND could enter an infinite recursion and crash when asked to resolve a query name which, when combined with a search list entry, exceeds the maximum allowable length. A remote attacker could use this flaw to crash lwresd or...

5.9CVSS3.6AI score0.63346EPSS
Exploits0References2
CNVD
CNVD
added 2016/07/05 12:0 a.m.4 views

Libiberty Demangler Stack Buffer Overflow Vulnerability

Libiberty is a software library containing several routes used by GNU programs.Demangler is one of the reduction functions. A stack buffer overflow vulnerability exists in Libiberty's Demangler that can be exploited by an attacker to cause a denial of service host application crash and infinite...

7.5CVSS9.2AI score0.04619EPSS
Exploits0References1
Talos
Talos
added 2016/06/14 12:0 a.m.40 views

Adobe Flash Player Infinite Recursion Arbitrary Read Access Violation

SUMMARY A potentially exploitable read access violation vulnerability exists in the a way Adobe Flash Player handles infinitely recursive calls. A specially crafted ActionScript code can cause a read access violation which can potentially be further abused. To trriger this vulnerability user...

9.3CVSS8.9AI score0.03977EPSS
Exploits1
OSV
OSV
added 2016/05/20 11:38 a.m.9 views

MGASA-2016-0187 Updated libxml2 packages fix security vulnerability

When running in recovery mode, certain invalid XML documents would trigger an infinite recursion in libxml2 that ran until all stack space was exhausted. This vulnerability could have been used to facilitate a denial-of-sevice attack CVE-2016-3627. libxml2 limits the number of recursions an XML...

7.5CVSS6.4AI score0.07025EPSS
Exploits1References4
OSV
OSV
added 2016/05/17 2:8 p.m.3 views

DEBIAN-CVE-2016-3627

The xmlStringGetNodeList function in tree.c in libxml2 2.9.3 and earlier, when used in recovery mode, allows context-dependent attackers to cause a denial of service infinite recursion, stack consumption, and application crash via a crafted XML document...

7.5CVSS6.3AI score0.07025EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2016/05/17 2:0 p.m.51 views

CVE-2016-3627

The xmlStringGetNodeList function in tree.c in libxml2 2.9.3 and earlier, when used in recovery mode, allows context-dependent attackers to cause a denial of service infinite recursion, stack consumption, and application crash via a crafted XML document...

7.5CVSS6.9AI score0.07025EPSS
Exploits1
NVD
NVD
added 2016/05/05 6:59 p.m.19 views

CVE-2016-4008

The asn1extractderoctet function in lib/decoding.c in GNU Libtasn1 before 4.8, when used without the ASN1DECODEFLAGSTRICTDER flag, allows remote attackers to cause a denial of service infinite recursion via a crafted certificate...

5.9CVSS5.5AI score0.29572EPSS
Exploits0References13
OSV
OSV
added 2016/05/05 6:59 p.m.2 views

DEBIAN-CVE-2016-4008

The asn1extractderoctet function in lib/decoding.c in GNU Libtasn1 before 4.8, when used without the ASN1DECODEFLAGSTRICTDER flag, allows remote attackers to cause a denial of service infinite recursion via a crafted certificate...

5.9CVSS6.4AI score0.29572EPSS
Exploits0References1
OSV
OSV
added 2016/05/05 6:59 p.m.7 views

CVE-2016-4008

The asn1extractderoctet function in lib/decoding.c in GNU Libtasn1 before 4.8, when used without the ASN1DECODEFLAGSTRICTDER flag, allows remote attackers to cause a denial of service infinite recursion via a crafted certificate...

5.9CVSS5.5AI score
Exploits0References13
Debian CVE
Debian CVE
added 2016/05/05 6:0 p.m.56 views

CVE-2016-4008

The asn1extractderoctet function in lib/decoding.c in GNU Libtasn1 before 4.8, when used without the ASN1DECODEFLAGSTRICTDER flag, allows remote attackers to cause a denial of service infinite recursion via a crafted certificate...

5.9CVSS5.8AI score0.29572EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/05/04 12:0 a.m.43 views

SUSE SLED12 / SLES12 Security Update : libxml2 (SUSE-SU-2016:1204-1)

This update for libxml2 fixes two security issues : - libxml2 limits the number of recursions an XML document can contain so to protect against the 'Billion Laughs' denial-of-service attack. Unfortunately, the underlying counter was not incremented properly in all necessary locations. Therefore,...

7.5CVSS6.5AI score0.07025EPSS
Exploits1References5
OSV
OSV
added 2016/05/03 2:22 p.m.8 views

SUSE-SU-2016:1205-1 Security update for libxml2

This update for libxml2 fixes two security issues: - libxml2 limits the number of recursions an XML document can contain so to protect against the 'Billion Laughs' denial-of-service attack. Unfortunately, the underlying counter was not incremented properly in all necessary locations. Therefore,...

7.5CVSS6.5AI score0.07025EPSS
Exploits1References4
Rows per page
Query Builder