Lucene search
K

160 matches found

BDU FSTEC
BDU FSTEC
added 2017/06/23 12:0 a.m.5 views

The vulnerability of the xfrm_replay_verify_len function in the Linux operating system allows a hacker to trigger a service failure or gain superuser privileges.

The vulnerability of the xfrmreplayverifylen function in the Linux operating system arises due to the lack of verification of the XFRMMSGNEWAE size after updates. Exploiting this vulnerability can allow a local attacker to gain superuser privileges or cause service failures...

7.2CVSS5.5AI score
Exploits0References9Affected Software1
OSV
OSV
added 2017/03/19 12:0 a.m.2 views

UBUNTU-CVE-2017-7184

The xfrmreplayverifylen function in net/xfrm/xfrmuser.c in the Linux kernel through 4.10.6 does not validate certain size data after an XFRMMSGNEWAE update, which allows local users to obtain root privileges or cause a denial of service heap-based out-of-bounds access by leveraging the CAPNETADMI...

7.8CVSS6.7AI score0.01798EPSS
Exploits4References15
Tenable Nessus
Tenable Nessus
added 2017/02/24 12:0 a.m.85 views

Oracle Linux 6 : kernel (ELSA-2017-0307)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-0307 advisory. - net dccp: fix freeing skb too early for IPV6RECVPKTINFO Hannes Frederic Sowa 1424626 1424628 CVE-2017-6074 - net sctp: validate chunk len before...

10CVSS7AI score0.09144EPSS
Exploits13References3
Lenovo
Lenovo
added 2017/01/26 12:0 a.m.3 views

DOM-Based Cross-Site Scripting Vulnerability in the Advanced Management Module (AMM) - Lenovo Support US

No description provided...

6.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/01/18 12:0 a.m.77 views

Oracle Linux 7 : kernel (ELSA-2017-0086)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-0086 advisory. - net sctp: validate chunk len before actually using it Hangbin Liu 1399458 1399459 CVE-2016-9555 - net sctp: rename WORDTRUNC/ROUND macros Hangbin Liu...

10CVSS6.7AI score0.24299EPSS
Exploits5References4
Tenable Nessus
Tenable Nessus
added 2016/12/13 12:0 a.m.63 views

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3651)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-3651 advisory. - sctp: validate chunk len before actually using it Marcelo Ricardo Leitner Orabug: 25142879 CVE-2016-9555 Tenable has extracted the preceding...

10CVSS6.6AI score0.09144EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2016/12/09 12:0 a.m.66 views

Unbreakable Enterprise kernel security update

2.6.39-400.293.1 - logging errors that get masked to EIO inside drivers/block/loop.c Manjunath Patil Orabug: 21962821 - sched/core: Clear the rootdomain cpumasks in initrootdomain Xunlei Pang Orabug: 23518650 - bio allocation failure due to biogetnrvecs Darrick J. Wong Orabug: 23852442 - mlx4:...

10CVSS0.5AI score0.09144EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/12/08 12:0 a.m.73 views

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3648)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-3648 advisory. - mpi: Fix NULL ptr dereference in mpipowm ver 3 Andrey Ryabinin Orabug: 25154096 CVE-2016-8650 CVE-2016-8650 - sctp: validate chunk len before...

10CVSS6.6AI score0.09144EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2016/12/07 12:0 a.m.69 views

Unbreakable Enterprise kernel security update

kernel-uek 4.1.12-61.1.22 - ocfs2: fix trans extend while free cached blocks Junxiao Bi Orabug: 25136991 - ocfs2: fix trans extend while flush truncate log Junxiao Bi Orabug: 25136991 - ocfs2: extend enough credits for freeing one truncate record while replaying truncate records Xue jiufei Orabug...

10CVSS0.5AI score0.09144EPSS
Exploits0
Lenovo
Lenovo
added 2016/07/22 12:0 a.m.262 views

GNU C Library (glibc) __nss_hostname_digits_dots() function vulnerable to buffer overflow ("GHOST")

Lenovo Security Advisory: LEN-2015-007 Potential Impact: Execution of Arbitrary Code Severity: High Summary: A vulnerability has been found in the GNU C Library glibc nsshostnamedigitsdots function that allows both local and remote users to cause a buffer overflow in network function calls...

10CVSS8.2AI score0.94859EPSS
Exploits29
hackapp
hackapp
added 2016/04/01 9:51 a.m.12 views

Tien Len - Southern Poker - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Tien Len - Southern Poker published at the 'play' market has multiple vulnerabilities...

0.3AI score
Exploits0References1Affected Software1
FreeBSD
FreeBSD
added 2016/02/24 12:0 a.m.29 views

git -- integer overflow

Debian reports: integer overflow due to a loop which adds more to "len"...

10CVSS3.4AI score0.18808EPSS
Exploits0References2
0day.today
0day.today
added 2015/11/02 12:0 a.m.27 views

Python 2.7 check_multiply_size() Integer Overflow Vulnerability

Several functions within the imageop module are vulnerable to exploitable buffer overflows due to unsafe arithmetic in checkmultiplysize. The problem exists because the check to confirm that size == product / y / x does not take remainders into account. Title: Python 2.7 checkmultiplysize Integer...

7.1AI score
Exploits0
OSV
OSV
added 2015/05/19 6:59 p.m.2 views

DEBIAN-CVE-2015-3885

Integer overflow in the ljpegstart function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service crash via a crafted image, which triggers a buffer overflow, related to the len variable...

4.3CVSS6.3AI score0.05434EPSS
Exploits0References1
Prion
Prion
added 2015/05/19 6:59 p.m.23 views

Integer overflow

Integer overflow in the ljpegstart function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service crash via a crafted image, which triggers a buffer overflow, related to the len variable...

4.3CVSS7.3AI score0.05434EPSS
Exploits0References17Affected Software2
Debian CVE
Debian CVE
added 2015/05/19 6:0 p.m.76 views

CVE-2015-3885

Integer overflow in the ljpegstart function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service crash via a crafted image, which triggers a buffer overflow, related to the len variable...

4.3CVSS6.8AI score0.05434EPSS
Exploits0
Kitploit
Kitploit
added 2014/04/29 2:5 p.m.55 views

Hashcat-Utils - Set of small utilities that are useful in advanced password cracking

Hashcat-utils are a set of small utilities that are useful in advanced password cracking. They all are packed into multiple stand-alone binaries. All of these utils are designed to execute only one specific function. Since they all work with STDIN and STDOUT you can group them into chains. The...

7.5AI score
Exploits0
UbuntuCve
UbuntuCve
added 2014/02/20 12:0 a.m.26 views

CVE-2013-4541

The usbdevicepostload function in hw/usb/bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, related to a negative setuplen or setupindex value...

7.5CVSS7.2AI score0.03975EPSS
Exploits0References4
OSV
OSV
added 2011/11/23 12:0 a.m.5 views

UBUNTU-CVE-2011-4330

Stack-based buffer overflow in the hfsmac2asc function in fs/hfs/trans.c in the Linux kernel 2.6 allows local users to cause a denial of service crash and possibly execute arbitrary code via an HFS image with a crafted len field...

7.2CVSS6.4AI score0.00444EPSS
Exploits1References20
Exploit DB
Exploit DB
added 2009/04/13 12:0 a.m.32 views

HTML Email Creator 2.1b668 - html Local Overwrite (SEH)

/ :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered and Exploited by dun HTML Email Creator or or 520 | | NOPs jmp 11 pop-pop-ret NOPs shellcode NOPs 56 4 4 40 343 73 Greetz: suN8Hclf, str0ke...

7.4AI score
Exploits0
Rows per page
Query Builder