52 matches found
EUVD-2002-2269
Malware in sbrugna...
EUVD-2008-7150
Malware in sbrugna...
EUVD-2005-2160
Malware in sbrugna...
EUVD-2003-0439
Malware in sbrugna...
CVE-2008-7191
Unspecified vulnerability in Polipo before 1.0.4 allows remote attackers to cause a denial of service crash via a long request URL...
UBUNTU-CVE-2025-46336
Rack::Session is a session management implementation for Rack. In versions starting from 2.0.0 to before 2.1.1, when using the Rack::Session::Pool middleware, and provided the attacker can acquire a session cookie already a major issue, the session may be restored if the attacker can trigger a lo...
PT-2024-19199 · Unknown · Lotos Webserver
Name of the Vulnerable Software and Affected Versions: Lotos WebServer versions through 0.1.1 Description: The issue is related to a use-after-free in the buffer avail function at buffer.h, which occurs when handling a long URI. This is due to the mishandling of realloc. Recommendations: For...
CVE-2022-45460
Multiple Xiongmai NVR devices, including MBD6304T V4.02.R11.00000117.10001.131900.00000 and NBD6808T-PL V4.02.R11.C7431119.12001.130000.00000, allow an unauthenticated and remote user to exploit a stack-based buffer overflow and crash the web server, resulting in a system reboot. An unauthenticat...
SUSE CVE-2007-6423
Unspecified vulnerability in modproxybalancer for Apache HTTP Server 2.2.x before 2.2.7-dev, when running on Windows, allows remote attackers to trigger memory corruption via a long URL. NOTE: the vendor could not reproduce this issue...
SUSE CVE-2011-0530
Buffer overflow in the mainloop function in nbd-server.c in the server in Network Block Device nbd before 2.9.20 might allow remote attackers to execute arbitrary code via a long request. NOTE: this issue exists because of a CVE-2005-3534 regression...
PT-2022-27678 · Unknown · Drachtio-Server
Name of the Vulnerable Software and Affected Versions: drachtio-server versions prior to 0.8.19 Description: The issue is a heap-based buffer over-read that occurs when a long Request-URI is sent in an INVITE request. This can be exploited via the Request-URI in an INVITE request. Recommendations...
CVE-2021-22124
An uncontrolled resource consumption denial of service vulnerability in the login modules of FortiSandbox 3.2.0 through 3.2.2, 3.1.0 through 3.1.4, and 3.0.0 through 3.0.6; and FortiAuthenticator before 6.0.6 may allow an unauthenticated attacker to bring the device into an unresponsive state via...
Denial of service
An uncontrolled resource consumption denial of service vulnerability in the login modules of FortiSandbox 3.2.0 through 3.2.2, 3.1.0 through 3.1.4, and 3.0.0 through 3.0.6; and FortiAuthenticator before 6.0.6 may allow an unauthenticated attacker to bring the device into an unresponsive state via...
Uncontrolled Resource Consumption (Unauthenticated Denial of Service) in login module
An uncontrolled resource consumption denial of service vulnerability in FortiSandbox and FortiAuthenticator login modules may allow an unauthenticated attacker to bring the device into an unresponsive state via specifically-crafted long request parameters...
Fortinet FortiSandbox 和 Fortinet FortiAuthenticator 资源管理错误漏洞
Fortinet FortiSandbox is an APT Advanced Persistent Threat protection appliance. Fortinet FortiAuthenticator is a centralized user identity management solution. denial-of-service vulnerability, which can be exploited by an unauthenticated attacker to put the device into an unresponsive state via...
GHSA-6X33-PW7P-HMPQ Denial of Service in http-proxy
Versions of http-proxy prior to 1.18.1 are vulnerable to Denial of Service. An HTTP request with a long body triggers an ERRHTTPHEADERSSENT unhandled exception that crashes the proxy server. This is only possible when the proxy server sets headers in the proxy request using the proxyReq.setHeader...
Flexense SyncBreeze Enterprise HTTP Server Buffer Overflow Vulnerability
Flexense SyncBreeze Enterprise is a set of file synchronization tools from Flexense Canada. The tool has features such as file management and data synchronization.HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the HTTP server in Flexense SyncBreeze Enterprise...
CVE-2017-11517
Stack-based buffer overflow in GCoreServer.exe in the server in Geutebrueck Gcore 1.3.8.42 and 1.4.2.37 allows remote attackers to execute arbitrary code via a long URI in a GET request...
CVE-2017-6187
Buffer overflow in the built-in web server in DiskSavvy Enterprise 9.4.18 allows remote attackers to execute arbitrary code via a long URI in a GET request...
CVE-2016-9564
Buffer overflow in sendredirect in Boa Webserver 0.92r allows remote attackers to DoS via an HTTP GET request requesting a long URI with only '/' and '.' characters...