Lucene search
K

93 matches found

Kaspersky
Kaspersky
added 2020/04/29 12:0 a.m.35 views

KLA11759 Multiple vulnerabilities in VLC media player

Multiple vulnerabilities were found in VLC media player. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Vulnerability related to parsing compressed labels in mDNS messages can be exploited to...

9.8CVSS9.8AI score0.03636EPSS
Exploits6References3
OSV
OSV
added 2020/03/24 10:15 p.m.9 views

UBUNTU-CVE-2020-6816

In Mozilla Bleach before 3.12, a mutation XSS in bleach.clean when RCDATA and either svg or math tags are whitelisted and the keyword argument strip=False...

6.1CVSS6.9AI score0.01301EPSS
Exploits1References6
PyPA
PyPA
added 2020/03/24 10:15 p.m.7 views

PYSEC-2020-28

In Mozilla Bleach before 3.12, a mutation XSS in bleach.clean when RCDATA and either svg or math tags are whitelisted and the keyword argument strip=False...

6.1CVSS6.3AI score0.01301EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2020/03/24 9:15 p.m.22 views

CVE-2020-6080

An exploitable denial-of-service vulnerability exists in the resource allocation handling of Videolabs libmicrodns 0.1.0. When encountering errors while parsing mDNS messages, some allocated data is not freed, possibly leading to a denial-of-service condition via resource exhaustion. An attacker...

7.5CVSS7.8AI score0.02377EPSS
Exploits1References3
Prion
Prion
added 2020/03/24 9:15 p.m.20 views

Integer overflow

An exploitable denial-of-service vulnerability exists in the TXT record-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing the RDATA section in a TXT record in mDNS messages, multiple integer overflows can be triggered, leading to a denial of service. An attacker can send an mDNS...

5CVSS7.6AI score0.02396EPSS
Exploits1References3Affected Software2
Talos
Talos
added 2020/03/23 12:0 a.m.63 views

Videolabs libmicrodns 0.1.0 TXT record RDATA-parsing denial-of-service vulnerability

Summary An exploitable denial-of-service vulnerability exists in the TXT record-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing the RDATA section in a TXT record in mDNS messages, multiple integer overflows can be triggered, leading to a denial of service. An attacker can send ...

7.5CVSS7.4AI score0.02396EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2019/12/11 12:0 a.m.3 views

PT-2019-6122 · Nlnet +8 · Unbound +8

Name of the Vulnerable Software and Affected Versions: Unbound versions prior to 1.9.5 Description: The issue is related to an out-of-bounds write via a compressed name in the rdata copy function. Although the vendor disputes that this is a vulnerability, the code may be vulnerable. However, a...

10CVSS7.7AI score0.03212EPSS
Exploits1References144
n0where
n0where
added 2018/01/01 8:23 p.m.148 views

DNS Traffic Capture: DNSCAP

dnscap is a network capture utility designed specifically for DNS traffic. It produces binary data in pcap3 and other format. This utility is similar to tcpdump1, but has a number of features tailored to DNS transactions and protocol options. DNS-OARC uses dnscap for DITL data collections. Some o...

0.4AI score
Exploits0References1
OpenVAS
OpenVAS
added 2016/01/28 12:0 a.m.32 views

ISC BIND DNS RDATA Handling Remote DoS Vulnerability (Jan 2016)

ISC BIND is prone to a remote denial of service DoS vulnerability. Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

7.8CVSS6.6AI score0.34196EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.24 views

openSUSE Security Update : bind (openSUSE-SU-2012:0722-1)

A remote denial of service in the bind nameserver via zero length rdata fields was fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-316. The text description of this plugin...

8.5CVSS6.8AI score0.13405EPSS
Exploits1References3
rdot
rdot
added 2013/11/14 12:0 a.m.490 views

Перенос таблицы импорта

Всем привет! В этой статье я расскажу о работе с исполняемыми файлами PE-формата, а именно о работе с таблицей импорта. Возникла необходимость перенести таблицу импорта. Перенести в другую секцию, либо в пределах одной секции. В данном случае перенос таблицы импорта осуществляется в пределах одно...

0.7AI score
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2013/08/19 12:4 p.m.45 views

update for bind (important)

A specially crafted query with malicious rdata could have caused a crash DoS in named...

7.8CVSS2.8AI score0.3415EPSS
Exploits1References1
Check Point Advisories
Check Point Advisories
added 2013/08/19 12:0 a.m.20 views

ISC BIND RDATA Handling Assertion Failure Denial of Service (CVE-2012-4244; CVE-2013-4854)

A denial of service vulnerability exists in ISC BIND. The vulnerability is due to an assertion failure that occurs when handling malformed RDATA. A remote attacker could exploit this vulnerability by sending a DNS query response with a specially crafted resource record to an affected server...

7.8CVSS7.1AI score0.36798EPSS
Exploits1
Zero Day Initiative
Zero Day Initiative
added 2013/08/13 12:0 a.m.40 views

ISC BIND rdata Denial Of Service Vulnerability

This vulnerability allows remote attackers to cause a denial of service condition on vulnerable installations of ISC BIND. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of an rdata section with a length that is less than four. The issue...

7.8CVSS1.9AI score0.3415EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2013/08/08 12:0 a.m.17 views

ISC BIND 9 DNS RDATA Handling Remote DoS

Binary data 6964.prm...

7.8CVSS7.3AI score0.3415EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2013/07/30 2:53 a.m.4 views

bind: named crash with an assertion failure on parsing malformed rdata

The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial of service assertion failure and named daemon exit via a query with...

7.8CVSS6.8AI score0.3415EPSS
Exploits1References6
seebug.org
seebug.org
added 2013/07/30 12:0 a.m.1606 views

ISC BIND 9 DNS RDATA处理远程拒绝服务漏洞

Bugtraq ID:61479 CVE ID:CVE-2013-4854 ISC BIND是一款DNS协议的实现 ISC BIND在解析DNS查询中的RDATA数据时存在错误,允许远程攻击者利用漏洞提交包含畸形RDATA数据的特殊查询可触发REQUIRE断言,使服务程序崩溃。此漏洞已经在网络上积极利用,权威和递归服务器都受此漏洞影响 0 ISC BIND 9.8.0 - 9.8.5-P1 ISC BIND 9.9.0 - 9.9.3-P1 厂商解决方案 ISC BIND 9.8.5-P2,9.9.3-P2和9.9.3-S1-P1已经修复此漏洞,建议用户下载更新:...

7.8CVSS6.3AI score0.3415EPSS
Exploits1
Mageia
Mageia
added 2013/07/29 2:2 p.m.54 views

Updated bind package fixes security vulnerability

The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial of service daemon crash via a query with a malformed RDATA section...

7.8CVSS5.8AI score0.3415EPSS
Exploits1References5
Ubuntu
Ubuntu
added 2013/07/29 12:48 p.m.92 views

USN-1910-1: Bind vulnerability

Maxim Shudrak discovered that Bind incorrectly handled certain malformed rdata. A remote attacker could use this flaw with a specially crafted query to cause Bind to stop responding, resulting in a denial of service...

7.8CVSS6.7AI score0.3415EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2013/07/29 12:0 a.m.33 views

ISC BIND 9 RDATA Section Handling DoS

According to its self-reported version number, the remote installation of BIND can be forced to crash via specially crafted queries containing malformed 'rdata' contents. Note that Nessus has only relied on the version itself and has not attempted to determine whether or not the install is actual...

7.8CVSS6.6AI score0.3415EPSS
Exploits1References7
Rows per page
Query Builder