9 matches found
CVE-2025-39999
The CVE-2025-39999 issue affects the Linux kernel’s blk-mq path, where tags growth via the sysfs nr_requests attribute can lead to a double free: hctx->sched_tags is freed while et->tags (the allocated tags) has already been freed, risking a kernel panic during elevator exit. The documented...
EUVD-2010-2509
Malware in sbrugna...
Exploit for Uncontrolled Resource Consumption in Ietf Http
HTTP2 Rapid Reset Attack: CVE-2023-44487 Quick exploit to test...
Denial Of Service (DoS)
gitlab is vulnerable to Denial of Service DoS attacks. This vulnerability occurs when an attacker can send a large number of requests to read commit details. This could cause GitLab to run out of resources, such as memory or CPU, and could lead to a denial of service...
CVE-2014-0105
The authtoken middleware in the OpenStack Python client library for Keystone aka python-keystoneclient before 0.7.0 does not properly retrieve user tokens from memcache, which allows remote authenticated users to gain privileges in opportunistic circumstances via a large number of requests, relat...
Apache Commons FileUpload and Apache Tomcat - Denial of Service
CVE-2014-0050 Apache Commons FileUpload and Apache Tomcat Denial-of-Service Author: Oren Hafif, Trustwave SpiderLabs Research This is a Proof of Concept code that was created for the sole purpose of assisting system administrators in evaluating whether their applications are vulnerable to this...
Design/Logic Flaw
The remoteDispatchStoragePoolListAllVolumes function in the storage pool manager in libvirt 1.0.5 allows remote attackers to cause a denial of service file descriptor consumption via a large number of requests "to list all volumes for the particular pool."...
http-vhosts NSE Script
Searches for web virtual hostnames by making a large number of HEAD requests against http servers using common hostnames. Each HEAD request provides a different Host header. The hostnames come from a built-in default list. Shows the names that return a document. Also shows the location of...
Apache Tomcat JK Connector: Information disclosure
Background The Apache Tomcat JK Connector aka modjk connects the Tomcat application server with the Apache HTTP Server. Description The Red Hat Security Response Team discovered that modjk does not properly handle 1 requests setting the "Content-Length" header while not providing data and 2 clien...