Lucene search
+L

1149 matches found

OpenVAS
OpenVAS
added 2011/03/15 12:0 a.m.34 views

Mandriva Update for wireshark MDVSA-2011:044 (wireshark)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.7AI score
Exploits0References2
Metasploit
Metasploit
added 2011/03/02 1:44 p.m.46 views

Wireshark CLDAP Dissector DOS

This module causes infinite recursion to occur within the CLDAP dissector by sending a specially crafted UDP packet. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Wireshark CLDAP Dissector...

4.3CVSS0.5AI score0.13064EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2008/01/14 12:0 a.m.23 views

openSUSE 10 Security Update : libexif (libexif-4886)

Two bugs in libexif were identified by a Google Security Audit done by Meder Kydyraliev. CVE-2007-6351: Loading EXIF data could be used to cause a infinite recursion and crash CVE-2007-6352: Integer overflows in the thumbnail handler could be used to overflow buffers and potentially execute code ...

6.8CVSS8.2AI score0.02727EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2007/12/31 12:0 a.m.25 views

GLSA-200712-17 : exiftags: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200712-17 exiftags: Multiple vulnerabilities Meder Kydyraliev Google Security discovered that Exif metadata is not properly sanitized before being processed, resulting in illegal memory access in the postprop and other functions...

10CVSS6AI score0.0264EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2007/12/31 12:0 a.m.28 views

GLSA-200712-15 : libexif: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200712-15 libexif: Multiple vulnerabilities Meder Kydyraliev Google Security discovered an integer overflow vulnerability in the exifdataloaddatathumbnail function leading to a memory corruption CVE-2007-6352 and an infinite...

6.8CVSS8.8AI score0.02727EPSS
Exploits0References3
Gentoo Linux
Gentoo Linux
added 2007/12/29 12:0 a.m.30 views

libexif: Multiple vulnerabilities

Background libexif is a library for parsing, editing and saving Exif metadata from images. Exif, the Exchangeable image file format, specifies the addition of metadata tags to JPEG, TIFF and RIFF files. Description Meder Kydyraliev Google Security discovered an integer overflow vulnerability in t...

6.8CVSS7.4AI score0.02727EPSS
Exploits0
securityvulns
securityvulns
added 2007/12/29 12:0 a.m.57 views

[Full-disclosure] [ GLSA 200712-15 ] libexif: Multiple vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200712-15 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - -...

6.8CVSS9.7AI score0.02727EPSS
Exploits0
CVE
CVE
added 2007/12/20 2:0 a.m.77 views

CVE-2007-6351

CVE-2007-6351 affects libexif up to version 0.6.16 and earlier via crafted Exif tags, causing an infinite recursion that can crash the application; CVE-2007-6352 is an accompanying integer-overflow issue in the same Exif parsing path that could crash or, in some contexts, allow code execution. Th...

4.3CVSS6AI score0.01675EPSS
Exploits0References29Affected Software1
RedHat Linux
RedHat Linux
added 2007/12/19 3:34 p.m.30 views

Moderate: Red Hat Security Advisory: libexif security update

Updated libexif packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The libexif packages contain the Exif library. Exif is an image file format specificatio...

6.8CVSS7.5AI score0.02727EPSS
Exploits0References3
Gentoo Linux
Gentoo Linux
added 2007/08/11 12:0 a.m.27 views

Net::DNS: Multiple vulnerabilities

Background Net::DNS is a Perl implementation of a DNS resolver. Description hjp discovered an error when handling DNS query IDs which make them partially predictable. Steffen Ullrich discovered an error in the dnexpand function which could lead to an endless loop. Impact A remote attacker could...

7.5CVSS6.3AI score0.03489EPSS
Exploits1
securityvulns
securityvulns
added 2007/07/27 12:0 a.m.26 views

Breakpoint Security: Encase Pre-Advisory

Breakpoint Security Advisory Affected Vendor: Guidance Software Affected Products: Encase 5.0 and possibly other version Background: With Encase's recent response to the iSec's security report and their ability to both market their product while at the same time minimizing their products issues,...

7.3AI score
Exploits0
RedHat Linux
RedHat Linux
added 2007/05/16 6:32 p.m.7 views

infinite recursion in netlink

The nlfiblookup function in net/ipv4/fibfrontend.c in Linux Kernel before 2.6.20.8 allows attackers to cause a denial of service kernel panic via NETLINKFIBLOOKUP replies, which trigger infinite recursion and a stack overflow...

4.9CVSS5.9AI score0.01024EPSS
Exploits0References4
NVD
NVD
added 2007/05/07 7:19 p.m.21 views

CVE-2007-1861

The nlfiblookup function in net/ipv4/fibfrontend.c in Linux Kernel before 2.6.20.8 allows attackers to cause a denial of service kernel panic via NETLINKFIBLOOKUP replies, which trigger infinite recursion and a stack overflow...

4.9CVSS6.1AI score0.01024EPSS
Exploits0References24
UbuntuCve
UbuntuCve
added 2007/05/07 7:19 p.m.33 views

CVE-2007-1861

The nlfiblookup function in net/ipv4/fibfrontend.c in Linux Kernel before 2.6.20.8 allows attackers to cause a denial of service kernel panic via NETLINKFIBLOOKUP replies, which trigger infinite recursion and a stack overflow...

4.9CVSS6AI score0.01024EPSS
Exploits0References3
Cvelist
Cvelist
added 2007/05/07 7:0 p.m.27 views

CVE-2007-1861

The nlfiblookup function in net/ipv4/fibfrontend.c in Linux Kernel before 2.6.20.8 allows attackers to cause a denial of service kernel panic via NETLINKFIBLOOKUP replies, which trigger infinite recursion and a stack overflow...

8.9AI score0.01024EPSS
Exploits0References24
exploitpack
exploitpack
added 2007/04/26 12:0 a.m.14 views

Linux Kernel 2.6.x - NETLINK_FIB_LOOKUP Local Denial of Service

Linux Kernel 2.6.x - NETLINKFIBLOOKUP Local Denial of Service / source: https://www.securityfocus.com/bid/23677/info The Linux kernel is prone to a denial-of-service vulnerability. This issue presents itself when a NETLINK message is misrouted. A local attacker may exploit this issue to trigger a...

7.3AI score
Exploits0
Exploit DB
Exploit DB
added 2007/04/26 12:0 a.m.35 views

Linux Kernel 2.6.x - NETLINK_FIB_LOOKUP Local Denial of Service

/ source: https://www.securityfocus.com/bid/23677/info The Linux kernel is prone to a denial-of-service vulnerability. This issue presents itself when a NETLINK message is misrouted. A local attacker may exploit this issue to trigger an infinite-recursion stack-based overflow in the kernel. This...

7.4AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2006/12/05 11:28 a.m.4 views

CVE-2006-6297

Stack consumption vulnerability in the KFILE JPEG kfilejpeg plugin in kdegraphics 3, as used by konqueror, digikam, and other KDE image browsers, allows remote attackers to cause a denial of service stack consumption via a crafted EXIF section in a JPEG file, which results in an infinite recursio...

5CVSS5.6AI score0.02145EPSS
Exploits0References12
UbuntuCve
UbuntuCve
added 2006/12/05 11:28 a.m.37 views

CVE-2006-6297

Stack consumption vulnerability in the KFILE JPEG kfilejpeg plugin in kdegraphics 3, as used by konqueror, digikam, and other KDE image browsers, allows remote attackers to cause a denial of service stack consumption via a crafted EXIF section in a JPEG file, which results in an infinite recursio...

5CVSS6AI score0.02145EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2006/05/24 9:31 a.m.5 views

security flaw

Linux SCTP lksctp before 2.6.17 allows remote attackers to cause a denial of service infinite recursion and crash via a packet that contains two or more DATA fragments, which causes an skb pointer to refer back to itself when the full message is reassembled, leading to infinite recursion in the...

5CVSS5.9AI score0.03815EPSS
Exploits0References4
Rows per page
Query Builder