Lucene search
K

40 matches found

EUVD
EUVD
added 2026/06/25 6:1 p.m.6 views

EUVD-2026-39515

Hydra through 9.7, fixed in commit 9cc84c2, contains a stack buffer overflow in NTLM authentication across SMTP, POP3, IMAP, NNTP, HTTP, HTTP-Proxy, and HTTP-Proxy-Urlenum modules when processing malicious NTLM Type-2 challenges. A malicious server can send a crafted NTLM Type-2 challenge with an...

8.8CVSS6.8AI score0.00474EPSS
Exploits2References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in isc-dhcp

In ISC DHCP 1.0 - 4.4.3, and ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1, a system with access to a DHCP server that sends DHCP packets containing FQDN labels longer than 63 bytes, might eventually cause the server to run out of memory...

6.5CVSS6.7AI score0.0062EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in Python 3.7, Python 2.7

A issue was discovered in Python before version 3.11.1. An unnecessary quadratic algorithm exists in one path when processing certain inputs to the IDNA RFC 3490 decoder. This could lead to a CPU denial of service if a maliciously crafted, unreasonably long hostname is provided to the decoder...

7.5CVSS6.9AI score0.02453EPSS
Exploits1References2
GithubExploit
GithubExploit
added 2026/02/26 9:1 a.m.150 views

Exploit for CVE-2025-5688

CVE-2025-5688 – FreeRTOS-Plus-TCP Out-of-Bounds Write Exploit...

7.5CVSS6AI score0.00305EPSS
Exploits1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-1999-0954

Malware in sbrugna...

10CVSS6.4AI score0.0347EPSS
Exploits0References2
OSV
OSV
added 2025/06/04 5:15 p.m.5 views

CVE-2025-5688

We have identified a buffer overflow issue allowing out-of-bounds write when processing LLMNR or mDNS queries with very long DNS names. This issue only affects systems using Buffer Allocation Scheme 1 with LLMNR or mDNS enabled. Users should upgrade to the latest version and ensure any forked or...

7.5CVSS7.8AI score
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/06/10 8:16 a.m.4 views

bind9: Parsing large DNS messages may cause excessive CPU load

A flaw was found in the bind package. This issue may allow a remote attacker with no specific privileges to craft a specially long DNS message leading to an excessive and uncontrolled CPU usage, the server being unavailable, and a Denial of Service...

7.5CVSS6.7AI score0.01327EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/05/16 5:40 p.m.5 views

bind9: Parsing large DNS messages may cause excessive CPU load

A flaw was found in the bind package. This issue may allow a remote attacker with no specific privileges to craft a specially long DNS message leading to an excessive and uncontrolled CPU usage, the server being unavailable, and a Denial of Service...

7.5CVSS6.7AI score0.01327EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/05/07 7:56 a.m.3 views

bind9: Parsing large DNS messages may cause excessive CPU load

A flaw was found in the bind package. This issue may allow a remote attacker with no specific privileges to craft a specially long DNS message leading to an excessive and uncontrolled CPU usage, the server being unavailable, and a Denial of Service...

7.5CVSS6.7AI score0.01327EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/04/30 1:32 p.m.3 views

bind9: Parsing large DNS messages may cause excessive CPU load

A flaw was found in the bind package. This issue may allow a remote attacker with no specific privileges to craft a specially long DNS message leading to an excessive and uncontrolled CPU usage, the server being unavailable, and a Denial of Service...

7.5CVSS6.7AI score0.01327EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/04/15 1:53 a.m.4 views

bind9: Parsing large DNS messages may cause excessive CPU load

A flaw was found in the bind package. This issue may allow a remote attacker with no specific privileges to craft a specially long DNS message leading to an excessive and uncontrolled CPU usage, the server being unavailable, and a Denial of Service...

7.5CVSS6.7AI score0.01327EPSS
Exploits0References5
OSV
OSV
added 2023/03/14 2:37 p.m.11 views

SUSE-SU-2023:0724-1 Security update for python

This update for python fixes the following issues: - CVE-2023-24329: Fixed blocklist bypass via the urllib.parse component when supplying a URL that starts with blank characters bsc1208471. - CVE-2022-45061: Fixed DoS when IDNA decodes extremely long domain names bsc1205244. The following...

7.5CVSS7.8AI score0.20459EPSS
Exploits4References6
SUSE CVE
SUSE CVE
added 2023/02/15 6:3 a.m.2 views

SUSE CVE-2009-2470

Mozilla Firefox before 3.0.12, and 3.5.x before 3.5.2, allows remote SOCKS5 proxy servers to cause a denial of service data stream corruption via a long domain name in a reply...

5CVSS8.5AI score0.01991EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:54 a.m.6 views

SUSE CVE-2011-0901

Multiple stack-based buffer overflows in the tsclaunchremote function src/support.c in Terminal Server Client tsclient 0.150, and possibly other versions, allow user-assisted remote attackers to execute arbitrary code via a .RDP file with a long 1 username, 2 password, or 3 domain argument. NOTE:...

6.8CVSS7.9AI score0.04523EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:33 a.m.3 views

SUSE CVE-2013-7114

Multiple buffer overflows in the createntlmsspv2key function in epan/dissectors/packet-ntlmssp.c in the NTLMSSP v2 dissector in Wireshark 1.8.x before 1.8.12 and 1.10.x before 1.10.4 allow remote attackers to cause a denial of service application crash via a long domain name in a packet...

5CVSS7.5AI score0.02241EPSS
Exploits0References4
OSV
OSV
added 2022/11/28 2:38 p.m.7 views

SUSE-SU-2022:4258-1 Security update for python3

This update for python3 fixes the following issues: - CVE-2022-45061: Fixed possible DoS when IDNA decoding extremely long domain names bsc1205244...

7.5CVSS7.7AI score0.02453EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/10/05 12:1 p.m.2 views

CVE-2022-2929

In ISC DHCP 1.0 - 4.4.3, ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1 a system with access to a DHCP server, sending DHCP packets crafted to include fqdn labels longer than 63 bytes, could eventually cause the server to run out of memory...

6.5CVSS5.9AI score0.0062EPSS
Exploits0References11
OSV
OSV
added 2021/05/07 2:15 p.m.4 views

CVE-2021-22671

Multiple integer overflow issues exist while processing long domain names, which may allow an attacker to remotely execute code on the SimpleLink Wi-Fi MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prio...

9.8CVSS6AI score0.01752EPSS
Exploits0References1
Veracode
Veracode
added 2021/02/03 7:38 a.m.21 views

Buffer Overflow

libidn2 is vulnerable to buffer overflow. An attacker is able to exploit the vulnerability via a long domain string...

9.8CVSS4.8AI score0.03708EPSS
Exploits1References16Affected Software1
CNNVD
CNNVD
added 2021/01/11 12:0 a.m.6 views

Opera Mini for Android security vulnerability

Opera Mini is a web browser application. A security vulnerability exists in Opera Mini for Android below 53.1, which can be exploited by an attacker to spoof a URL with a long domain name, such as www.safe.opera.com.attacker.com, where the user will only see the exact number of preceding parts e....

5.3CVSS6AI score0.00751EPSS
Exploits0References2
Rows per page
Query Builder