19 matches found
EUVD-2020-5570
Malware in sbrugna...
EUVD-2005-0500
Malware in sbrugna...
EUVD-2008-3324
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2021-22145
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A memory disclosure vulnerability was identified in Elasticsearch 7.10.0 to 7.13.3 error reporting. A user with the ability to submit arbitrary queries to...
SUSE CVE-2008-3337
PowerDNS Authoritative Server before 2.9.21.1 drops malformed queries, which might make it easier for remote attackers to poison DNS caches of other products running on other servers, a different issue than CVE-2008-1447 and CVE-2008-3217...
GHSA-Q394-H7F5-7F44 Generation of Error Message Containing Sensitive Information in Elasticsearch
A memory disclosure vulnerability was identified in Elasticsearch 7.10.0 to 7.13.3 error reporting. A user with the ability to submit arbitrary queries to Elasticsearch could submit a malformed query that would result in an error message returned containing previously used portions of a data...
Graphw00F - GraphQL fingerprinting tool for GQL endpoints
Credits to Nick Aleks for the logo! How does it work? graphw00f inspired by wafw00f is the GraphQL fingerprinting tool for GQL endpoints, it sends a mix of benign and malformed queries to determine the GraphQL engine running behind the scenes. graphw00f will provide insights into what security...
UBUNTU-CVE-2021-22145
A memory disclosure vulnerability was identified in Elasticsearch 7.10.0 to 7.13.3 error reporting. A user with the ability to submit arbitrary queries to Elasticsearch could submit a malformed query that would result in an error message returned containing previously used portions of a data...
Denial of service
A vulnerability was discovered in GitLab runner versions before 13.1.3, 13.2.3 and 13.3.1. It was possible to make the gitlab-runner process crash by sending malformed queries, resulting in a denial of service...
UBUNTU-CVE-2020-13310
A vulnerability was discovered in GitLab runner versions before 13.1.3, 13.2.3 and 13.3.1. It was possible to make the gitlab-runner process crash by sending malformed queries, resulting in a denial of service...
PT-2020-13451 · Gitlab · Gitlab Runner +1
Name of the Vulnerable Software and Affected Versions: GitLab runner versions prior to 13.1.3 GitLab runner versions prior to 13.2.3 GitLab runner versions prior to 13.3.1 Description: A denial of service issue was discovered, allowing the gitlab-runner process to crash by sending malformed...
EUVD-2018-13059
SQLite 3.25.2, when queries are run on a table with a malformed PRIMARY KEY, allows remote attackers to cause a denial of service application crash by leveraging the ability to run arbitrary SQL statements such as in certain WebSQL use cases...
BIND 9 Denial of Service Flaw Patched
A denial-of-service vulnerability in certain versions of BIND name servers has been patched, and network managers are urged to upgrade quickly to a secure version of the DNS software. Attackers sending specially crafted queries with malformed data to a vulnerable BIND server could cause the syste...
GLSA-200812-19 : PowerDNS: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200812-19 PowerDNS: Multiple vulnerabilities Daniel Drown reported an error when receiving a HINFO CH query CVE-2008-5277. Brian J. Dowling of Simplicity Communications discovered a previously unknown security implication of the...
DEBIAN-CVE-2008-3337
PowerDNS Authoritative Server before 2.9.21.1 drops malformed queries, which might make it easier for remote attackers to poison DNS caches of other products running on other servers, a different issue than CVE-2008-1447 and CVE-2008-3217...
CVE-2008-3337
PowerDNS Authoritative Server before 2.9.21.1 drops malformed queries, which might make it easier for remote attackers to poison DNS caches of other products running on other servers, a different issue than CVE-2008-1447 and CVE-2008-3217...
CVE-2008-3337
PowerDNS Authoritative Server before 2.9.21.1 drops malformed queries, which might make it easier for remote attackers to poison DNS caches of other products running on other servers, a different issue than CVE-2008-1447 and CVE-2008-3217...
CVE-2008-3337
PowerDNS Authoritative Server before 2.9.21.1 drops malformed queries, which might make it easier for remote attackers to poison DNS caches of other products running on other servers, a different issue than CVE-2008-1447 and CVE-2008-3217...
PT-2007-1167 · Sun · Sun One Directory Server +1
Name of the Vulnerable Software and Affected Versions: Sun Java System Directory Server versions 5.2 Patch4 and earlier ONE Directory Server versions 5.1 and 5.2 Description: The issue allows remote attackers to cause a denial of service, resulting in a crash, by sending malformed queries to the...