Lucene search
K

247 matches found

Tenable Nessus
Tenable Nessus
added 2020/02/24 12:0 a.m.35 views

Debian DLA-2115-2 : proftpd-dfsg regression update

It was discovered that there was a regression in a previous fix for a use-after-free vulnerability in the proftpd-dfsg FTP server. Exploitation of the original vulnerability within the memory pool handling could have allowed a remote attacker to execute arbitrary code on the affected system...

9CVSS6.5AI score0.12045EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2020/02/22 12:0 a.m.36 views

Debian: Security Advisory (DLA-2115-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS8.8AI score0.12045EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2020/02/21 12:0 a.m.37 views

ProFTPD < 1.3.7 Multiple Vulnerabilities

ProFTPD is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:proftpd:proftpd"; ifdescription...

9CVSS6.4AI score0.12045EPSS
Exploits1References2
NVD
NVD
added 2020/02/20 4:15 p.m.14 views

CVE-2020-9273

In ProFTPD 1.3.7, it is possible to corrupt the memory pool by interrupting the data transfer channel. This triggers a use-after-free in allocpool in pool.c, and possible remote code execution...

9CVSS8.8AI score0.12045EPSS
Exploits1References12
OSV
OSV
added 2020/02/20 4:15 p.m.25 views

CVE-2020-9273

In ProFTPD 1.3.7, it is possible to corrupt the memory pool by interrupting the data transfer channel. This triggers a use-after-free in allocpool in pool.c, and possible remote code execution...

8.8CVSS7.5AI score
Exploits0References12
OSV
OSV
added 2020/02/20 4:15 p.m.3 views

UBUNTU-CVE-2020-9273

In ProFTPD 1.3.7, it is possible to corrupt the memory pool by interrupting the data transfer channel. This triggers a use-after-free in allocpool in pool.c, and possible remote code execution...

8.8CVSS6.7AI score0.12045EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2020/02/10 12:0 a.m.4 views

PT-2020-5165 · Proftpd +2 · Proftpd +2

Name of the Vulnerable Software and Affected Versions: ProFTPD versions prior to 1.3.5e+r1.3.5-2+deb8u7 ProFTPD versions prior to 1.3.6-alt0.4.ga73dbfe3b ProFTPD versions prior to 1.3.6-4+deb10u4 ProFTPD version 1.3.7 Description: ProFTPD contains a use-after-free vulnerability within the memory...

10CVSS8.2AI score0.74254EPSS
Exploits8References75
PyPA
PyPA
added 2019/10/14 2:15 a.m.7 views

PYSEC-2019-241

GDAL through 3.0.1 has a poolDestroy double free in OGRExpatRealloc in ogr/ogrexpat.cpp when the 10MB threshold is exceeded...

9.8CVSS7.2AI score0.02577EPSS
Exploits0References15Affected Software1
Broadcom
Broadcom
added 2018/03/30 12:0 a.m.8 views

BSA-2018-553

Security Advisory ID : BSA-2018-553 Component : Apache HTTPD Revision : 2.0: Final When an HTTP/2 stream was destroyed after being handled, the Apache HTTP Server prior to version 2.4.33 could have written a NULL pointer potentially to an already freed memory. The memory pools maintained by the...

5.9CVSS6.5AI score0.13436EPSS
Exploits0
NVD
NVD
added 2018/03/26 3:29 p.m.19 views

CVE-2018-1302

When an HTTP/2 stream was destroyed after being handled, the Apache HTTP Server prior to version 2.4.30 could have written a NULL pointer potentially to an already freed memory. The memory pools maintained by the server make this vulnerability hard to trigger in usual configurations, the reporter...

5.9CVSS5.8AI score0.13436EPSS
Exploits0References23
OSV
OSV
added 2018/03/26 3:29 p.m.7 views

ALPINE-CVE-2018-1302

When an HTTP/2 stream was destroyed after being handled, the Apache HTTP Server prior to version 2.4.30 could have written a NULL pointer potentially to an already freed memory. The memory pools maintained by the server make this vulnerability hard to trigger in usual configurations, the reporter...

5.9CVSS6.9AI score0.13436EPSS
Exploits0References1
seebug.org
seebug.org
added 2015/11/26 12:0 a.m.26 views

Proftpd堆溢出漏洞

=========================== VULNERABILITIES =========================== ../proftpd-master/src/pool.c:89-116 Heap Overflow due to zero length malloc allocation TYPE: CERT MEM04-C; CWE-131 Code Snippet: ............................ ret = mallocsize; if ret == NULL prlogpriPRLOGALERT, "Out of...

7.2AI score
Exploits0
OpenVAS
OpenVAS
added 2015/05/06 12:0 a.m.25 views

Apache Subversion 1.8.x DoS Vulnerability (May 2015)

Apache Subversion is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.8CVSS8AI score0.08026EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.35 views

Scientific Linux Security Update : httpd on SL3.x i386/x86_64

CVE-2009-1891 httpd: possible temporary DoS CPU consumption in moddeflate CVE-2009-2412 apr, apr-util: Integer overflows in memory pool apr and relocatable memory apr-util management Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in the way the Apache Portable...

10CVSS8AI score0.17111EPSS
Exploits5References4
seebug.org
seebug.org
added 2010/08/03 12:0 a.m.15 views

Avast! Internet Security 5.0 aswFW.sys kernel driver IOCTL Memory Pool Corruption

No description provided by source. +-------------------------------------------------------------------------------------+ | Avast! Internet Security 5.0 'aswFW.sys' kernel driver IOCTL Memory Pool Corruption | +-------------------------------------------------------------------------------------...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2010/08/03 12:0 a.m.20 views

Avast! Internet Security 5.0 Denial Of Service

+-------------------------------------------------------------------------------------+ | Avast! Internet Security 5.0 'aswFW.sys' kernel driver IOCTL Memory Pool Corruption | +-------------------------------------------------------------------------------------+ Tested Platform: Avast! Internet...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/08/03 12:0 a.m.30 views

Avast! Internet Security 5.0 - &#039;aswFW.sys&#039; Kernel Driver IOCTL Memory Pool Corruption

+-------------------------------------------------------------------------------------+ | Avast! Internet Security 5.0 'aswFW.sys' kernel driver IOCTL Memory Pool Corruption | +-------------------------------------------------------------------------------------+ Tested Platform: Avast! Internet...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2010/08/03 12:0 a.m.13 views

Avast! Internet Security 5.0 - aswFW.sys Kernel Driver IOCTL Memory Pool Corruption

Avast! Internet Security 5.0 - aswFW.sys Kernel Driver IOCTL Memory Pool Corruption +-------------------------------------------------------------------------------------+ | Avast! Internet Security 5.0 'aswFW.sys' kernel driver IOCTL Memory Pool Corruption |...

0.4AI score
Exploits0
0day.today
0day.today
added 2010/08/03 12:0 a.m.20 views

Avast! 5.0 aswFW.sys kernel driver IOCTL Memory Pool Corruption

Exploit for windows platform in category dos / poc ================================================================================= Avast! Internet Security 5.0 aswFW.sys kernel driver IOCTL Memory Pool Corruption =================================================================================...

7AI score
Exploits0
OpenVAS
OpenVAS
added 2009/12/23 12:0 a.m.24 views

IBM DB2 Multiple Unspecified Vulnerabilities (Linux)

The host is installed with IBM DB2 and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodibmdb2multunspecifiedvulnlin.nasl 5055 2017-01-20 14:08:39Z teissa $ IBM DB2 Multiple Unspecified Vulnerabilities Linux Authors: Antu Sanadi Copyright: Copyright c 2009 SecPod,...

7.2CVSS0.7AI score0.02352EPSS
Exploits1References4
Rows per page
Query Builder