Lucene search
+L

3576 matches found

nvd
nvd
added 2007/02/13 11:28 p.m.25 views

CVE-2007-0911

Off-by-one error in the strireplace function in PHP 5.2.1 might allow context-dependent attackers to cause a denial of service crash...

7.8CVSS6.3AI score0.05274EPSS
Exploits1References10
prion
prion
added 2007/02/13 11:28 p.m.20 views

Code injection

Off-by-one error in the strireplace function in PHP 5.2.1 might allow context-dependent attackers to cause a denial of service crash...

7.8CVSS6.5AI score0.05274EPSS
Exploits1References10Affected Software1
cvelist
cvelist
added 2007/02/13 11:0 p.m.29 views

CVE-2007-0911

Off-by-one error in the strireplace function in PHP 5.2.1 might allow context-dependent attackers to cause a denial of service crash...

7.3AI score0.05274EPSS
Exploits1References10
euvd
euvd
added 2007/02/13 11:0 p.m.7 views

EUVD-2007-0905

Off-by-one error in the strireplace function in PHP 5.2.1 might allow context-dependent attackers to cause a denial of service crash...

7.8CVSS6.1AI score0.05274EPSS
Exploits1References11
securityvulns
securityvulns
added 2007/02/13 12:0 a.m.47 views

PHP str_ireplace DoS

$Data = strireplace"n", "br", $Data; can cause PHP engine to crash Because of off-by-one overflow...

7.8CVSS1.8AI score0.05274EPSS
Exploits1References1Affected Software1
nessus
nessus
added 2007/01/17 12:0 a.m.28 views

Fedora Core 5 : dovecot-1.0-0.beta8.3.fc5 (2006-1504)

Thu Dec 21 2006 Tomas Janousek - 1.0-0.beta8.3.fc5 - fixed default paths in the example mkcert.sh to match configuration defaults fixes 183151 - fixed off by one 216508, CVE-2006-5973 - Thu Jun 8 2006 Petr Rockai - 1.0-0.beta8.2.fc5 - bring FC-5 branch up to date with the rawhide one bugfixes...

5CVSS5.4AI score0.02645EPSS
Exploits0References1
nessus
nessus
added 2006/12/11 12:0 a.m.23 views

CentOS 4 : mod_auth_kerb (CESA-2006:0746)

Updated modauthkerb packages that fix a security flaw and a bug in multiple realm handling are now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. modauthkerb is module for the Apache HTTP Server designed to...

5CVSS5.3AI score0.03737EPSS
Exploits0References4
redhat
redhat
added 2006/12/06 5:46 p.m.24 views

Low: Red Hat Security Advisory: mod_auth_kerb security update

Updated modauthkerb packages that fix a security flaw and a bug in multiple realm handling are now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. modauthkerb is module for the Apache HTTP Server designed to...

5CVSS5.8AI score0.03737EPSS
Exploits0References2
redhat
redhat
added 2006/12/06 5:46 p.m.11 views

security flaw

Off-by-one error in the dergetoid function in modauthkerb 5.0 allows remote attackers to cause a denial of service crash via a crafted Kerberos message that triggers a heap-based buffer overflow in the component array...

5CVSS6AI score0.03737EPSS
Exploits0References4
oraclelinux
oraclelinux
added 2006/11/30 12:0 a.m.33 views

Moderate nss_ldap security update

226-17 - temporarily disable fixes for 190256 and 206438 for security update 226-16 - include backported fix for off-by-one crasher in various result parsing functions Carsten Clashom, 206438 226-15 - don't suppress policy errors encountered during authentication if the specific policy error isn'...

7.5CVSS3.5AI score0.03831EPSS
Exploits0
zdt
zdt
added 2006/11/27 12:0 a.m.34 views

ProFTPD 1.3.0 (sreplace) Remote Stack Overflow Exploit (meta)

Exploit for linux platform in category remote exploits ============================================================= ProFTPD 1.3.0 sreplace Remote Stack Overflow Exploit meta ============================================================= vdproftpd.pm - Metasploit module for ProFTPD stack overflow...

7.1AI score
Exploits0
exploitdb
exploitdb
added 2006/11/27 12:0 a.m.38 views

ProFTPd 1.3.0 - 'sreplace' Remote Stack Overflow (Metasploit)

vdproftpd.pm - Metasploit module for ProFTPD stack overflow Copyright c 2006 Evgeny Legerov Permission to use, copy, modify, and distribute this software for any purpose with or without fee is hereby granted, provided that the above copyright notice and this permission notice appear in all copies...

7.4AI score
Exploits0
nessus
nessus
added 2006/11/27 12:0 a.m.22 views

GLSA-200611-18 : TIN: Multiple buffer overflows

The remote host is affected by the vulnerability described in GLSA-200611-18 TIN: Multiple buffer overflows Urs Janssen and Aleksey Salow have reported multiple buffer overflows in TIN. Additionally, the OpenPKG project has reported an allocation off-by-one flaw which can lead to a buffer overflo...

7.5CVSS6.5AI score0.02814EPSS
Exploits0References3
osv
osv
added 2006/11/20 9:7 p.m.7 views

CVE-2006-5989

Off-by-one error in the dergetoid function in modauthkerb 5.0 allows remote attackers to cause a denial of service crash via a crafted Kerberos message that triggers a heap-based buffer overflow in the component array...

6.7AI score
Exploits0References15
redhat
redhat
added 2006/11/09 7:3 p.m.10 views

security flaw

Off-by-one error in the MIME Multipart dissector in Wireshark formerly Ethereal 0.10.1 through 0.99.3 allows remote attackers to cause a denial of service crash via certain vectors that trigger an assertion error related to unexpected length values...

7.5CVSS7.2AI score0.04095EPSS
Exploits0References4
nvd
nvd
added 2006/11/03 12:7 a.m.13 views

CVE-2006-5657

Multiple off-by-one errors in src/text.c in Vilistextum before 2.6.9 have unknown impact and attack vectors...

10CVSS6.6AI score0.01532EPSS
Exploits0References3
cve
cve
added 2006/11/03 12:0 a.m.40 views

CVE-2006-5657

Technical details (affected product, component, version, root cause, impact, or fixes) are not provided in the connected documents; no public specifics available for CVE-2006-5657 in this set. Monitor for updates.

10CVSS7AI score0.01532EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2006/11/03 12:0 a.m.20 views

CVE-2006-5657

Multiple off-by-one errors in src/text.c in Vilistextum before 2.6.9 have unknown impact and attack vectors...

6.6AI score0.01532EPSS
Exploits0References3
nessus
nessus
added 2006/11/01 12:0 a.m.37 views

Debian DSA-1201-1 : ethereal - several vulnerabilities

Several remote vulnerabilities have been discovered in the Ethereal network scanner. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2005-4574 It was discovered that the MIME multipart dissector is vulnerable to denial of service caused by an off-by-one...

7.5CVSS7.4AI score0.04095EPSS
Exploits1References6
osv
osv
added 2006/10/28 12:7 a.m.4 views

DEBIAN-CVE-2006-4574

Off-by-one error in the MIME Multipart dissector in Wireshark formerly Ethereal 0.10.1 through 0.99.3 allows remote attackers to cause a denial of service crash via certain vectors that trigger an assertion error related to unexpected length values...

7.5CVSS7.2AI score0.04095EPSS
Exploits0References1
Rows per page
Query Builder