Lucene search
K

69 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

GameSpy 3D 2.62 Packet Amplification Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6636/info A vulnerability has been reported for several games that support the use of the GameSpy network. A game client typically queries a game server using the UDP protocol. It has been reported that a simple query by ...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2014/06/10 12:34 p.m.45 views

Important: Red Hat Security Advisory: tomcat security update

Updated tomcat packages that fix three security issues are now available for Red Hat Enterprise Linux 7. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

5.8CVSS6.6AI score0.16833EPSS
Exploits4References4
RedHat Linux
RedHat Linux
added 2014/05/21 3:45 p.m.61 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Web Server 2.0.1 tomcat6 security update

An update for the Apache Tomcat 6 component for Red Hat JBoss Web Server 2.0.1 that fixes multiple security issues is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having Moderate security impact. Common Vulnerability Scoring System CV...

7.5CVSS6.5AI score0.83175EPSS
Exploits13References6
ThreatPost
ThreatPost
added 2014/04/25 9:50 a.m.12 views

Google Changes Ciphers in Chrome on Android

The emergence of mobile platforms such as iOS and Android have presented a number of challenges in terms of security. Not much can be done about some of these, like users leaving their phones in bars. But engineers at Google have been working on one of the thornier ones of late–how to provide sol...

7.2AI score
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2014/04/24 12:0 a.m.49 views

RHEL 6 : tomcat6 (RHSA-2014:0429)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:0429 advisory. Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. It was found that when Tomcat processed a...

7.5CVSS6.8AI score0.83175EPSS
Exploits12References10
RedHat Linux
RedHat Linux
added 2014/04/23 6:27 p.m.44 views

Moderate: Red Hat Security Advisory: tomcat6 security update

Updated tomcat6 packages that fix three security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

7.5CVSS6.6AI score0.83175EPSS
Exploits12References5
OpenVAS
OpenVAS
added 2013/06/18 12:0 a.m.27 views

Fedora Update for rrdtool FEDORA-2013-10309

Check for the Version of rrdtool OpenVAS Vulnerability Test Fedora Update for rrdtool FEDORA-2013-10309 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

5CVSS7.5AI score0.10912EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/06/14 12:0 a.m.38 views

Scientific Linux Security Update : krb5 on SL5.x, SL6.x i386/x86_64 (20130612)

It was found that kadmind's kpasswd service did not perform any validation on incoming network packets, causing it to reply to all requests. A remote attacker could use this flaw to send spoofed packets to a kpasswd service that appear to come from kadmind on a different server, causing the...

5CVSS7.5AI score0.06485EPSS
Exploits0References2
Cent OS
Cent OS
added 2013/06/13 2:16 a.m.74 views

krb5 security update

CentOS Errata and Security Advisory CESA-2013:0942 Updated krb5 packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base...

5CVSS7AI score0.06485EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2013/06/12 4:46 p.m.37 views

Moderate: Red Hat Security Advisory: krb5 security update

Updated krb5 packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

5CVSS7AI score0.06485EPSS
Exploits0References2
ThreatPost
ThreatPost
added 2012/05/23 2:1 p.m.11 views

Common Firewall Feature Enables TCP Hijacking Attacks

Attackers using a feature that is common to many firewalls, switches and other networking gear could silently hijack Web sessions on mobile and desktop devices, according to a research paper presented by two Ph.D students from the University of Michigan. The two discovered that so-called TCP...

0.3AI score
Exploits0References2
Cisco
Cisco
added 2009/12/08 10:33 p.m.68 views

Network Time Protocol Package Remote Message Loop Denial of Service Vulnerability

The Network Time Protocol NTP package contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. The vulnerability is due to an error in handling certain malformed messages. An unauthenticated, remote attacker could send a malicious N...

5CVSS7.5AI score0.32288EPSS
Exploits3References1
seebug.org
seebug.org
added 2009/06/04 12:0 a.m.47 views

PRTG Traffic Grapher Monitor_Bandwidth函数跨站脚本漏洞

BUGTRAQ ID: 35128 CVECAN ID: CVE-2009-1849 PRTG Traffic Grapher是一个使用方便的Windows软件,能够对网络带宽的使用进行监控和分类。 PRTG Traffic Grapher没有正确地验证对MonitorBandwidth函数所提交的输入参数,如果用户受骗跟随了包含有恶意脚本的链接的话,就会导致在用户浏览器会话中执行跨站脚本。 Paessler PRTG Traffic Grapher 6.2.2.977 厂商补丁: Paessler -------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

4.3CVSS6.4AI score0.01033EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.29 views

Mandriva Linux Security Advisory : avahi (MDVSA-2009:076)

A security vulnerability has been identified and fixed in avahi which could allow remote attackers to cause a denial of service network bandwidth and CPU consumption via a crafted legacy unicast mDNS query packet CVE-2009-0758. The updated packages have been patched to prevent this. %NASLMINLEVEL...

7.8CVSS5.4AI score0.02011EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2009/04/11 12:0 a.m.23 views

GLSA-200904-10 : Avahi: Denial of Service

The remote host is affected by the vulnerability described in GLSA-200904-10 Avahi: Denial of Service Rob Leslie reported that the originatesfromlocallegacyunicastsocket function in avahi-core/server.c does not account for the network byte order of a port number when processing incoming multicast...

7.8CVSS5.5AI score0.02011EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/03/20 12:0 a.m.28 views

Mandrake Security Advisory MDVSA-2009:076 (avahi)

The remote host is missing an update to avahi announced via advisory MDVSA-2009:076. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

7.8CVSS7.6AI score0.02011EPSS
Exploits0References1
NVD
NVD
added 2009/03/03 4:30 p.m.21 views

CVE-2009-0758

The originatesfromlocallegacyunicastsocket function in avahi-core/server.c in avahi-daemon 0.6.23 does not account for the network byte order of a port number when processing incoming multicast packets, which allows remote attackers to cause a denial of service network bandwidth and CPU consumpti...

7.8CVSS6.2AI score0.02011EPSS
Exploits0References7
Cvelist
Cvelist
added 2009/03/03 4:0 p.m.23 views

CVE-2009-0758

The originatesfromlocallegacyunicastsocket function in avahi-core/server.c in avahi-daemon 0.6.23 does not account for the network byte order of a port number when processing incoming multicast packets, which allows remote attackers to cause a denial of service network bandwidth and CPU consumpti...

6.2AI score0.02011EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2009/03/03 12:0 a.m.34 views

CVE-2009-0758

The originatesfromlocallegacyunicastsocket function in avahi-core/server.c in avahi-daemon 0.6.23 does not account for the network byte order of a port number when processing incoming multicast packets, which allows remote attackers to cause a denial of service network bandwidth and CPU consumpti...

7.8CVSS5.9AI score0.02011EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2009/01/21 11:30 a.m.7 views

CVE-2009-0242

Rejected reason: gmetad in Ganglia 3.1.1, when supporting multiple requests per connection on an interactive port, allows remote attackers to cause a denial of service via a request to the gmetad service with a path that does not exist, which causes Ganglia to 1 perform excessive CPU computation...

5.9AI score
Exploits0References1
Rows per page
Query Builder