Lucene search
+L

36 matches found

Veracode
Veracode
added 2020/06/12 4:33 a.m.12 views

Denial Of Service (DoS)

github.com/vmihailenco/msgpack is vulnerable to denial of serviceDoS attacks. The library does not limit the decoding message size, allowing an attacker to submit large size of messages which cause an application to crash...

3.6AI score
Exploits0
NVD
NVD
added 2019/11/09 4:15 a.m.24 views

CVE-2009-5004

qpid-cpp 1.0 crashes when a large message is sent and the Digest-MD5 mechanism with a security layer is in use...

6.5CVSS6.5AI score0.02559EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2019/11/09 4:15 a.m.4 views

CVE-2009-5004

qpid-cpp 1.0 crashes when a large message is sent and the Digest-MD5 mechanism with a security layer is in use...

6.5CVSS5.5AI score0.02559EPSS
Exploits0References5Affected Software1
FreeBSD
FreeBSD
added 2016/09/26 12:0 a.m.52 views

OpenSSL -- multiple vulnerabilities

OpenSSL reports: Critical vulnerability in OpenSSL 1.1.0a Fix Use After Free for large message sizes CVE-2016-6309 Moderate vulnerability in OpenSSL 1.0.2i Missing CRL sanity check CVE-2016-7052...

10CVSS1.7AI score0.70223EPSS
Exploits1References1
OpenSSL
OpenSSL
added 2016/09/26 12:0 a.m.51 views

Vulnerability in OpenSSL - Fix Use After Free for large message sizes

This issue only affects OpenSSL 1.1.0a, released on 22nd September 2016. The patch applied to address CVE-2016-6307 resulted in an issue where if a message larger than approx 16k is received then the underlying buffer to store the incoming message is reallocated and moved. Unfortunately a danglin...

7.9AI score0.70223EPSS
Exploits0Affected Software1
OSV
OSV
added 2014/11/30 1:59 a.m.2 views

DEBIAN-CVE-2014-8884

Stack-based buffer overflow in the ttusbdecfedvbsdiseqcsendmastercmd function in drivers/media/usb/ttusb-dec/ttusbdecfe.c in the Linux kernel before 3.17.4 allows local users to cause a denial of service system crash or possibly gain privileges via a large message length in an ioctl call...

6.1CVSS6.4AI score0.00638EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.20 views

KaZaA Media Desktop 1.7.1 Large Message Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5317/info KaZaA may consume large amounts of CPU when processing a sequence of large messages. It is possible for an attacker to flood a vulnerable system with a large number of messages, resulting in a denial of service...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2013/11/02 7:0 p.m.31 views

CVE-2013-4416

The Ocaml xenstored implementation oxenstored in Xen 4.1.x, 4.2.x, and 4.3.x allows local guest domains to cause a denial of service domain shutdown via a large message reply...

5.8AI score0.0055EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2013/11/02 7:0 p.m.49 views

CVE-2013-4416

The Ocaml xenstored implementation oxenstored in Xen 4.1.x, 4.2.x, and 4.3.x allows local guest domains to cause a denial of service domain shutdown via a large message reply...

5.2CVSS3.2AI score0.0055EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2010/10/08 1:48 a.m.41 views

Moderate: Red Hat Security Advisory: Red Hat Enterprise MRG Messaging security and bug fix update 1.2.2

Updated Red Hat Enterprise MRG Messaging packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, whic...

4.3CVSS5.8AI score0.04711EPSS
Exploits0References11
securityvulns
securityvulns
added 2007/10/20 12:0 a.m.65 views

GMail Mobile DoS

DoS on large message recevied during composing the message...

2.4AI score
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2006/12/02 2:28 a.m.3 views

CVE-2006-6227

The Core::Receive function in neonet/core.cpp for NeoEngine 0.8.2 and earlier, and CVS 3422, allow remote attackers to cause a denial of service engine crash via a message with a large uiMessageLength that produces a failed memory allocation and a null pointer dereference...

5CVSS5.5AI score0.0229EPSS
Exploits0References6
OSV
OSV
added 2006/06/19 6:2 p.m.6 views

CVE-2006-3082

parse-packet.c in GnuPG gpg 1.4.3 and 1.9.20, and earlier versions, allows remote attackers to cause a denial of service gpg crash and possibly overwrite memory via a message packet with a large length long user ID string, which could lead to an integer overflow, as demonstrated using the...

6.4AI score
Exploits0References33
Prion
Prion
added 2006/03/14 2:2 a.m.22 views

Integer overflow

Integer overflow in the machmsgsend function in the kernel for Mac OS X might allow local users to execute arbitrary code via unknown attack vectors related to a large message header size, which leads to a heap-based buffer overflow...

4.6CVSS8.3AI score0.00561EPSS
Exploits1References3Affected Software2
securityvulns
securityvulns
added 2005/03/22 12:0 a.m.32 views

Buffer overflow in multiple IMAP clients

Buffer overflows on long replies, large message sizes, etc...

2.8AI score
Exploits0References2Affected Software8
securityvulns
securityvulns
added 2002/07/25 12:0 a.m.29 views

Buffer overflow in Pegasus Mail

Buffer overflow on large message headers...

4AI score
Exploits0References1Affected Software1
Rows per page
Query Builder