Huawei ALE and GEM-703L Joint Photographic Experts Group Processing Unit Denial of Service Vulnerability

The Huawei ALE smartphone and the GEM-703L smartphone are both smartphones from Huawei, China.Joint Photographic Experts Group Processing Unit JPU is one of the drivers.... A security vulnerability exists in the JPU driver of the Huawei ALE and GEM-703L smartphones. A remote attacker could exploi...

chromium-browser: Use-after-free related to unexpected GPU process termination in unspecified

Use-after-free vulnerability in the GPU process implementation in Google Chrome before 44.0.2403.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging the continued availability of a GPUChannelHost data structure during Blink shutdown,...

chromium-browser: Scheme validation error in WebUI

content/browser/webui/contentwebuicontrollerfactory.cc in Google Chrome before 43.0.2357.130 does not properly consider the scheme in determining whether a URL is associated with a WebUI SiteInstance, which allows remote attackers to bypass intended access restrictions via a similar URL, as...

Cisco IronPort Email Security Appliance Denial of Service Vulnerability

The Cisco IronPort Email Security Appliance is an architectural multi-tier email security management tool. A denial of service vulnerability exists in the Cisco IronPort Email Security Appliance that could be exploited by an attacker to cause excessive CPU usage and launch a denial of service...

httpd: mod_deflate denial of service

A denial of service flaw was found in the way httpd's moddeflate module handled request body decompression configured via the "DEFLATE" input filter. A remote attacker able to send a request whose body would be decompressed could use this flaw to consume an excessive amount of system memory and C...

PT-2014-3524 · Apache +1 · Apache Tomcat 7 +1

Name of the Vulnerable Software and Affected Versions: tomcat7 package for Apache Tomcat 7 in Red Hat Enterprise Linux RHEL 7 Description: A crafted request can cause a denial of service due to CPU consumption. This issue is a result of an unspecified regression. Recommendations: For the tomcat7...

python: hash table collisions CPU usage DoS (oCERT-2011-003)

Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application...

CVE-2011-3047

The GPU process in Google Chrome before 17.0.963.79 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption by leveraging an error in the plug-in loading mechanism...

UBUNTU-CVE-2011-1301

Use-after-free vulnerability in the GPU process in Google Chrome before 10.0.648.205 allows remote attackers to execute arbitrary code via unknown vectors...

UBUNTU-CVE-2011-1302

Heap-based buffer overflow in the GPU process in Google Chrome before 10.0.648.205 allows remote attackers to execute arbitrary code via unknown vectors...

New Version of Google Chrome Fixes Flash Bug, Three Critical GPU Flaws

Google has released a new version of its Chrome browser that includes not only an updated version of Adobe Flash that fixes a critical bug, but also patches for three critical vulnerabilities in the browser’s GPU process. The new version of Chrome, which is version 10.0.648.205, includes the firs...

Rittal CMC-TC Processing Unit II multiple security vulnerabilities

Crossite scripting, session hijacking...

Wiki clone products vulnerable to denial of service attacks

Overview Wiki clones allow a user via a web browser to edit documents on the web server. Some products of Wiki clones contain a vulnerability which consumes large amounts of CPU and memory resources when handling a particular request. Impact A remote attacker could execute a DoS denial of service...

CVE-2007-2038

The Network Processing Unit NPU in the Cisco Wireless LAN Controller WLC before 3.2.193.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service loss of packet forwarding via 1 crafted SNAP packets, 2 malformed 802.11 traffic, or 3...

Code injection

The Network Processing Unit NPU in the Cisco Wireless LAN Controller WLC before 3.2.171.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service loss of packet forwarding via 1 crafted SNAP packets, 2 malformed 802.11 traffic, or 3...

CVE-2007-2039

The Network Processing Unit NPU in the Cisco Wireless LAN Controller WLC before 3.2.171.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service loss of packet forwarding via 1 crafted SNAP packets, 2 malformed 802.11 traffic, or 3...