Lucene search
K

3906 matches found

Cvelist
Cvelist
added 2013/08/09 10:0 p.m.30 views

CVE-2013-4115

Buffer overflow in the idnsALookup function in dnsinternal.cc in Squid 3.2 through 3.2.11 and 3.3 through 3.3.6 allows remote attackers to cause a denial of service memory corruption and server termination via a long name in a DNS lookup request...

8.6AI score0.43261EPSS
Exploits0References18
OSV
OSV
added 2013/07/21 8:18 p.m.5 views

MGASA-2013-0228 Updated squid packages fix security vulnerabilities

Due to incorrect data validation Squid is vulnerable to a buffer overflow attack when processing specially crafted HTTP requests. This problem allows any trusted client or client script who can generate HTTP requests to trigger a buffer overflow in Squid, resulting in a termination of the Squid...

7.5CVSS8.8AI score0.80451EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2013/07/15 8:32 p.m.5 views

OpenJDK: ImagingLib byte lookup processing (2D, 8011243)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2...

10CVSS6.8AI score0.22988EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.47 views

Oracle Linux 5 : kernel (ELSA-2010-0723)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2010-0723 advisory. - misc make compatallocuserspace incorporate the accessok Don Howard 634463 634464 CVE-2010-3081 - fs xfs: fix missing untrusted inode lookup tag Dave...

8.1CVSS6.6AI score0.17009EPSS
Exploits9References8
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.31 views

Oracle Linux 5 : vim (ELSA-2008-0580)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2008-0580 advisory. - fixes CVE-2008-3074 tar plugin - fixes CVE-2008-3075 zip plugin - fixes CVE-2008-3076 netrw plugin - fixes CVE-2008-4101 keyword and tag lookup - fix...

9.3CVSS6.5AI score0.15044EPSS
Exploits7References7
RedHat Linux
RedHat Linux
added 2013/07/03 5:4 p.m.7 views

OpenJDK: ImagingLib byte lookup processing (2D, 8011243)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2...

10CVSS6.8AI score0.22988EPSS
Exploits4References5
UbuntuCve
UbuntuCve
added 2013/07/02 3:43 a.m.29 views

CVE-2013-2171

The vmmaplookup function in sys/vm/vmmap.c in the mmap implementation in the kernel in FreeBSD 9.0 through 9.1-RELEASE-p4 does not properly determine whether a task should have write access to a memory location, which allows local users to bypass filesystem write permissions and consequently gain...

6.9CVSS5.9AI score0.06942EPSS
Exploits10References1
RedHat Linux
RedHat Linux
added 2013/06/25 8:10 p.m.4 views

Mozilla: Memory corruption found using Address Sanitizer (MFSA 2013-50)

Use-after-free vulnerability in the mozilla::dom::HTMLMediaElement::LookupMediaElementURITable function in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 allows remote attackers to execute arbitrary code or cause a...

9.3CVSS7.8AI score0.03537EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/06/25 7:51 p.m.8 views

Mozilla: Memory corruption found using Address Sanitizer (MFSA 2013-50)

Use-after-free vulnerability in the mozilla::dom::HTMLMediaElement::LookupMediaElementURITable function in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 allows remote attackers to execute arbitrary code or cause a...

9.3CVSS7.8AI score0.03537EPSS
Exploits0References5
NVD
NVD
added 2013/06/18 10:55 p.m.36 views

CVE-2013-2470

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2...

10CVSS8.1AI score0.22988EPSS
Exploits4References31
Prion
Prion
added 2013/06/18 10:55 p.m.24 views

Design/Logic Flaw

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2...

10CVSS5.8AI score0.22988EPSS
Exploits4References31Affected Software2
OpenVAS
OpenVAS
added 2013/05/17 12:0 a.m.21 views

RedHat Update for openswan RHSA-2013:0827-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.02427EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/05/16 12:0 a.m.39 views

RHEL 5 / 6 : openswan (RHSA-2013:0827)

Updated openswan packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...

6.8CVSS6.2AI score0.02427EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/05/16 12:0 a.m.26 views

Scientific Linux Security Update : openswan on SL5.x, SL6.x i386/x86_64 (20130515)

A buffer overflow flaw was found in Openswan. If Opportunistic Encryption were enabled 'oe=yes' in '/etc/ipsec.conf' and an RSA key configured, an attacker able to cause a system to perform a DNS lookup for an attacker- controlled domain containing malicious records such as by sending an email th...

6.8CVSS6.1AI score0.02427EPSS
Exploits0References2
Cent OS
Cent OS
added 2013/05/15 11:11 p.m.64 views

openswan security update

CentOS Errata and Security Advisory CESA-2013:0827 Updated openswan packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS...

6.8CVSS6.1AI score0.02427EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2013/05/15 5:40 p.m.26 views

Important: Red Hat Security Advisory: openswan security update

Updated openswan packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...

6.8CVSS6.1AI score0.02427EPSS
Exploits0References2
Cent OS
Cent OS
added 2013/04/24 8:56 p.m.84 views

java security update

CentOS Errata and Security Advisory CESA-2013:0770 Updated java-1.6.0-openjdk packages that fix various security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scorin...

10CVSS6.9AI score0.87227EPSS
Exploits15References8
Tenable Nessus
Tenable Nessus
added 2013/04/20 12:0 a.m.24 views

Mandriva Linux Security Advisory : nss-pam-ldapd (MDVSA-2013:106)

Updated nss-pam-ldapd packages fixes the following security vulnerability : Garth Mollett discovered that a file descriptor overflow issue in the use of FDSET in nss-pam-ldapd can lead to a stack-based buffer overflow. An attacker could, under some circumstances, use this flaw to cause a process...

6.8CVSS6.6AI score0.03582EPSS
Exploits0References1
NVD
NVD
added 2013/04/16 2:4 p.m.25 views

CVE-2012-5415

Race condition on Cisco Adaptive Security Appliances ASA devices allows remote attackers to cause a denial of service CPU consumption or device reload by establishing multiple connections, leading to improper handling of hash lookups for secondary flows, aka Bug IDs CSCue31622 and CSCuc71272...

5.4CVSS6.9AI score0.00803EPSS
Exploits0References1
Kitploit
Kitploit
added 2013/04/02 4:0 p.m.20 views

[Bluelog v1.1.1] Simple Bluetooth Scanner

Bluelog is a simple Bluetooth scanner designed to tell you how many discoverable devices there are in an area as quickly as possible. It is intended to be used as a site survey tool, identifying the number of possible Bluetooth targets there are in the surrounding environment. Changelog v1.1.1...

6.9AI score
Exploits0
Rows per page
Query Builder