Lucene search
K

53 matches found

OSV
OSV
added 2014/02/28 6:18 a.m.9 views

CVE-2014-1690

The help function in net/netfilter/nfnatirc.c in the Linux kernel before 3.12.8 allows remote attackers to obtain sensitive information from kernel memory by establishing an IRC DCC session in which incorrect packet data is transmitted during use of the NAT mangle feature...

5.7AI score
Exploits0References16
OSV
OSV
added 2014/02/28 6:18 a.m.1 views

DEBIAN-CVE-2014-1690

The help function in net/netfilter/nfnatirc.c in the Linux kernel before 3.12.8 allows remote attackers to obtain sensitive information from kernel memory by establishing an IRC DCC session in which incorrect packet data is transmitted during use of the NAT mangle feature...

2.6CVSS7.7AI score0.03849EPSS
Exploits1References1
NVD
NVD
added 2014/02/28 6:18 a.m.19 views

CVE-2014-1690

The help function in net/netfilter/nfnatirc.c in the Linux kernel before 3.12.8 allows remote attackers to obtain sensitive information from kernel memory by establishing an IRC DCC session in which incorrect packet data is transmitted during use of the NAT mangle feature...

2.6CVSS6.8AI score0.03849EPSS
Exploits1References8
Prion
Prion
added 2014/02/28 6:18 a.m.25 views

Information disclosure

The help function in net/netfilter/nfnatirc.c in the Linux kernel before 3.12.8 allows remote attackers to obtain sensitive information from kernel memory by establishing an IRC DCC session in which incorrect packet data is transmitted during use of the NAT mangle feature...

2.6CVSS6.3AI score0.03849EPSS
Exploits1References8Affected Software2
CVE
CVE
added 2014/02/28 2:0 a.m.103 views

CVE-2014-1690

The vulnerability CVE-2014-1690 affects the Linux kernel’s net/netfilter/nf_nat_irc.c before 3.12.8. An IRC DCC session with incorrect NAT mangle data can allow a remote attacker to read kernel memory. Impact is information disclosure; exploitation context is remote over the network. The fixed ve...

2.6CVSS6.7AI score0.03849EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2014/02/28 2:0 a.m.28 views

CVE-2014-1690

The help function in net/netfilter/nfnatirc.c in the Linux kernel before 3.12.8 allows remote attackers to obtain sensitive information from kernel memory by establishing an IRC DCC session in which incorrect packet data is transmitted during use of the NAT mangle feature...

6.8AI score0.03849EPSS
Exploits1References8
OSV
OSV
added 2014/02/28 12:0 a.m.7 views

UBUNTU-CVE-2014-1690

The help function in net/netfilter/nfnatirc.c in the Linux kernel before 3.12.8 allows remote attackers to obtain sensitive information from kernel memory by establishing an IRC DCC session in which incorrect packet data is transmitted during use of the NAT mangle feature...

2.6CVSS6.8AI score0.03849EPSS
Exploits1References7
UbuntuCve
UbuntuCve
added 2014/02/28 12:0 a.m.31 views

CVE-2014-1690

The help function in net/netfilter/nfnatirc.c in the Linux kernel before 3.12.8 allows remote attackers to obtain sensitive information from kernel memory by establishing an IRC DCC session in which incorrect packet data is transmitted during use of the NAT mangle feature...

2.6CVSS6.8AI score0.03849EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2014/01/16 12:0 a.m.7 views

PT-2014-4293 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.12.8 Description: The issue allows remote attackers to obtain sensitive information from kernel memory. This is achieved by establishing an IRC DCC session where incorrect packet data is transmitted during the...

10CVSS7.3AI score0.22475EPSS
Exploits69References459
w3af
w3af
added 2013/06/10 11:2 p.m.18 views

sed

This plugin is a stream editor for web requests and responses. Three configurable parameters exist: priority expressions fixContentLen Stream edition expressions are strings that tell the sed plugin what to change. Sed plugin uses regular expressions, some examples: qh/User/NotLuser/ This will ma...

7.3AI score
Exploits0
UbuntuCve
UbuntuCve
added 2006/11/24 6:7 p.m.34 views

CVE-2006-6097

GNU tar 1.16 and 1.15.1, and possibly other versions, allows user-assisted attackers to overwrite arbitrary files via a tar file that contains a GNUTYPENAMES record with a symbolic link, which is not properly handled by the extractarchive function in extract.c and extractmangle function in...

4CVSS7.2AI score0.11084EPSS
Exploits1References2
CVE
CVE
added 2006/11/24 6:0 p.m.75 views

CVE-2006-6097

Summary: CVE-2006-6097 affects GNU tar (notably v1.15.1 and v1.16) due to improper handling of GNUTYPE_NAMES symlink records during extraction, enabling a user-assisted attacker to overwrite arbitrary files. Multiple advisories report the issue as a path-traversal vulnerability in tar extraction,...

4CVSS7.5AI score0.11084EPSS
Exploits1References43Affected Software1
Cvelist
Cvelist
added 2006/11/24 6:0 p.m.27 views

CVE-2006-6097

GNU tar 1.16 and 1.15.1, and possibly other versions, allows user-assisted attackers to overwrite arbitrary files via a tar file that contains a GNUTYPENAMES record with a symbolic link, which is not properly handled by the extractarchive function in extract.c and extractmangle function in...

7.5AI score0.11084EPSS
Exploits1References43
Rows per page
Query Builder