Lucene search
K

6942 matches found

OSV
OSV
added 2015/12/15 9:59 p.m.5 views

CVE-2015-8242

The xmlSAX2TextNode function in SAX2.c in the push interface in the HTML parser in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service stack-based buffer over-read and application crash or obtain sensitive information via crafted XML data...

6.4AI score
Exploits0References31
OSV
OSV
added 2015/12/15 9:59 p.m.1 views

DEBIAN-CVE-2015-8242

The xmlSAX2TextNode function in SAX2.c in the push interface in the HTML parser in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service stack-based buffer over-read and application crash or obtain sensitive information via crafted XML data...

5.8CVSS9.2AI score0.04268EPSS
Exploits0References1
NVD
NVD
added 2015/12/15 9:59 p.m.23 views

CVE-2015-8241

The xmlNextChar function in libxml2 2.9.2 does not properly check the state, which allows context-dependent attackers to cause a denial of service heap-based buffer over-read and application crash or obtain sensitive information via crafted XML data...

6.4CVSS9.3AI score0.06908EPSS
Exploits0References18
OSV
OSV
added 2015/12/15 9:59 p.m.6 views

CVE-2015-8241

The xmlNextChar function in libxml2 2.9.2 does not properly check the state, which allows context-dependent attackers to cause a denial of service heap-based buffer over-read and application crash or obtain sensitive information via crafted XML data...

9.3AI score
Exploits0References19
OSV
OSV
added 2015/12/15 9:59 p.m.2 views

DEBIAN-CVE-2015-8241

The xmlNextChar function in libxml2 2.9.2 does not properly check the state, which allows context-dependent attackers to cause a denial of service heap-based buffer over-read and application crash or obtain sensitive information via crafted XML data...

6.4CVSS8.9AI score0.06908EPSS
Exploits0References1
NVD
NVD
added 2015/12/15 9:59 p.m.16 views

CVE-2015-7500

The xmlParseMisc function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service out-of-bounds heap read via unspecified vectors related to incorrect entities boundaries and start tags...

5CVSS7AI score0.05917EPSS
Exploits0References25
OSV
OSV
added 2015/12/15 9:59 p.m.0 views

DEBIAN-CVE-2015-7500

The xmlParseMisc function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service out-of-bounds heap read via unspecified vectors related to incorrect entities boundaries and start tags...

5CVSS9AI score0.05917EPSS
Exploits0References1
OSV
OSV
added 2015/12/15 9:59 p.m.6 views

CVE-2015-7500

The xmlParseMisc function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service out-of-bounds heap read via unspecified vectors related to incorrect entities boundaries and start tags...

6.1AI score
Exploits0References29
NVD
NVD
added 2015/12/15 9:59 p.m.17 views

CVE-2015-7499

Heap-based buffer overflow in the xmlGROW function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive process memory information via unspecified vectors...

5CVSS7.4AI score0.06464EPSS
Exploits0References25
OSV
OSV
added 2015/12/15 9:59 p.m.6 views

CVE-2015-7499

Heap-based buffer overflow in the xmlGROW function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive process memory information via unspecified vectors...

6.4AI score
Exploits0References33
OSV
OSV
added 2015/12/15 9:59 p.m.2 views

DEBIAN-CVE-2015-7499

Heap-based buffer overflow in the xmlGROW function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive process memory information via unspecified vectors...

5CVSS9.4AI score0.06464EPSS
Exploits0References1
OSV
OSV
added 2015/12/15 9:59 p.m.1 views

DEBIAN-CVE-2015-7498

Heap-based buffer overflow in the xmlParseXmlDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service via unspecified vectors related to extracting errors after an encoding conversion failure...

5CVSS9.3AI score0.07017EPSS
Exploits0References1
NVD
NVD
added 2015/12/15 9:59 p.m.17 views

CVE-2015-7498

Heap-based buffer overflow in the xmlParseXmlDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service via unspecified vectors related to extracting errors after an encoding conversion failure...

5CVSS9.3AI score0.07017EPSS
Exploits0References16
OSV
OSV
added 2015/12/15 9:59 p.m.8 views

CVE-2015-7498

Heap-based buffer overflow in the xmlParseXmlDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service via unspecified vectors related to extracting errors after an encoding conversion failure...

6.4AI score
Exploits0References17
NVD
NVD
added 2015/12/15 9:59 p.m.17 views

CVE-2015-7497

Heap-based buffer overflow in the xmlDictComputeFastQKey function in dict.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service via unspecified vectors...

5CVSS9.3AI score0.0721EPSS
Exploits0References16
OSV
OSV
added 2015/12/15 9:59 p.m.0 views

DEBIAN-CVE-2015-7497

Heap-based buffer overflow in the xmlDictComputeFastQKey function in dict.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service via unspecified vectors...

5CVSS8.1AI score0.0721EPSS
Exploits0References1
OSV
OSV
added 2015/12/15 9:59 p.m.4 views

CVE-2015-7497

Heap-based buffer overflow in the xmlDictComputeFastQKey function in dict.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service via unspecified vectors...

6.4AI score
Exploits0References17
Prion
Prion
added 2015/12/15 9:59 p.m.23 views

Heap overflow

Heap-based buffer overflow in the xmlGROW function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive process memory information via unspecified vectors...

5CVSS6.9AI score0.06464EPSS
Exploits0References25Affected Software15
Prion
Prion
added 2015/12/15 9:59 p.m.37 views

Code injection

The xmlStringLenDecodeEntities function in parser.c in libxml2 before 2.9.3 does not properly prevent entity expansion, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted XML data, a different vulnerability than CVE-2014-3660...

7.1CVSS6.6AI score0.04537EPSS
Exploits1References25Affected Software13
Prion
Prion
added 2015/12/15 9:59 p.m.26 views

Heap overflow

The xmlNextChar function in libxml2 2.9.2 does not properly check the state, which allows context-dependent attackers to cause a denial of service heap-based buffer over-read and application crash or obtain sensitive information via crafted XML data...

6.4CVSS7.1AI score0.06908EPSS
Exploits0References18Affected Software9
Rows per page
Query Builder