Ruby: 'net/ftp': Uncontrolled Resource Consumption (Memory/CPU)

Current TIMEPARSER implementation allows attackers to cause a denial of service memory consumption via a large integer value for the fractions property. The problem code: ruby TIMEPARSER = -value, local = false unless /\A?\d4?\d2?\d2 ?\d2?\d2?\d2 ?:.?\d+?/x = value raise FTPProtoError, "invalid...

CVE-2019-12940

LiveZilla Server before 8.0.1.1 is vulnerable to Denial Of Service memory consumption in knowledgebase.php via a large integer value of the depth parameter...

docker: Memory exhaustion via large integer used with --cpuset-mems or --cpuset-cpus

Docker Engine before 18.09 allows attackers to cause a denial of service dockerd memory consumption via a large integer in a --cpuset-mems or --cpuset-cpus value, related to daemon/daemonunix.go, pkg/parsers/parsers.go, and pkg/sysinfo/sysinfo.go...

LIVE555 Buffer Overflow Vulnerability

LIVE555 is a set of open source C++ libraries for multimedia streaming. Live555 suffers from a buffer overflow vulnerability. The vulnerability stems from handleRequestBytes having an unrestricted memmove, which can be exploited to cause a denial of service via a large integer in the Content-Leng...

Denial Of Service (DoS)

github.com/moby/moby is vulnerable to denial of service DoS attacks. The vulnerability exists due to the lack of validation of cpuset-mems or cpuset-cpus, where a memory exhaustion could occur with a large integer...

CVE-2018-20699

Docker Engine before 18.09 allows attackers to cause a denial of service dockerd memory consumption via a large integer in a --cpuset-mems or --cpuset-cpus value, related to daemon/daemonunix.go, pkg/parsers/parsers.go, and pkg/sysinfo/sysinfo.go...

CVE-2018-20699

Docker Engine before 18.09 allows attackers to cause a denial of service dockerd memory consumption via a large integer in a --cpuset-mems or --cpuset-cpus value, related to daemon/daemonunix.go, pkg/parsers/parsers.go, and pkg/sysinfo/sysinfo.go...

CVE-2016-9391

The jpcbitstreamgetbits function in jpcbs.c in JasPer before 2.0.10 allows remote attackers to cause a denial of service assertion failure via a very large integer...

UBUNTU-CVE-2016-9391

The jpcbitstreamgetbits function in jpcbs.c in JasPer before 2.0.10 allows remote attackers to cause a denial of service assertion failure via a very large integer...

CVE-2016-9391

The jpcbitstreamgetbits function in jpcbs.c in JasPer before 2.0.10 allows remote attackers to cause a denial of service assertion failure via a very large integer...

Google Go Denial of Service Vulnerability

Google Go is a programming language optimized for programming applications on multiprocessor systems by Google. A denial of service vulnerability exists in the Verify function in the crypto/dsa/dsa.go file in Google Go versions prior to 1.5.4 and 1.6.x versions prior to 1.6.1, which stems from a...

[Doona] Network Protocol Fuzzer

Doona is a fork of the Bruteforce Exploit Detector, it was renamed to avoid confusion as it has a large number of of changes. You should get a copy from github if you want to try it: https://github.com/wireghoul/doona. It's currently a little short on documentation, so I will let the changelog...

Opera Large Integer Argument Denial of Service Vulnerability (Linux)

The host is installed with Opera and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: gboperalargeintargdosvulnlin.nasl 6022 2017-04-25 12:51:04Z teissa $ Opera Large Integer Argument Denial of Service Vulnerability Linux Authors: Rachana Shetty Copyright: Copyright c...

Opera Large Integer Argument Denial of Service Vulnerability (Mac OS X)

The host is installed with Opera and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: gboperalargeintargdosvulnmacosx.nasl 5988 2017-04-20 09:02:29Z teissa $ Opera Large Integer Argument Denial of Service Vulnerability Mac OS X Authors: Rachana Shetty Copyright:...

Opera Large Integer Argument Denial of Service Vulnerability - Mac OS X

Opera is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Design/Logic Flaw

The VEGAOpBitmap::AddLine function in Opera before 10.61 does not properly initialize memory during processing of the SIZE attribute of a SELECT element, which allows remote attackers to trigger an invalid memory write operation, and consequently cause a denial of service application crash or...

KDE Konqueror Select Object Denial of Service Vulnerability

This host is installed with KDE Konqueror and is prone to Denial of Service Vulnerability. OpenVAS Vulnerability Test $Id: secpodkdekonquerorselectdosvuln.nasl 5055 2017-01-20 14:08:39Z teissa $ KDE Konqueror Select Object Denial of Service Vulnerability Authors: Nikita MR Copyright c 2009 SecPod...

CVE-2009-2535

Mozilla Firefox before 2.0.0.19 and 3.x before 3.0.5, SeaMonkey, and Thunderbird allow remote attackers to cause a denial of service memory consumption and application crash via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692...

Python Multiple Integer Overflow Vulnerabilities (Windows)

This host has Python installed and is prone to integer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbpythonintgroverflowvulnwin.nasl 5370 2017-02-20 15:24:26Z cfi $ Python Multiple Integer Overflow Vulnerabilities Windows Authors: Chandan S Copyright: Copyright c 2008 Greenbone Networ...

CVE-2008-4864

Multiple integer overflows in imageop.c in the imageop module in Python 1.5.2 through 2.5.1 allow context-dependent attackers to break out of the Python VM and execute arbitrary code via large integer values in certain arguments to the crop function, leading to a buffer overflow, a different...