5149 matches found
kernel: udf: Avoid infinite loop when processing indirect ICBs
A stack overflow flaw caused by infinite recursion was found in the way the Linux kernel's Universal Disk Format UDF file system implementation processed indirect Information Control Blocks ICBs. An attacker with physical access to the system could use a specially crafted UDF image to crash the...
unbound: denial of service
The resolver can be tricked into following an endless series of delegations, this consumes a lot of resources. Resolvers fetch the content for domain names by sending queries to authority servers on the internet. One of the responses that authority servers can return is a referral response, which...
OracleVM 3.2 : openssl (OVMSA-2014-0039) (POODLE)
The remote OracleVM system is missing necessary patches to address critical security updates : - add support for fallback SCSV to partially mitigate CVE-2014-3566 padding attack on SSL3 - fix CVE-2014-0221 - recursion in DTLS code leading to DoS - fix CVE-2014-3505 - doublefree in DTLS packet...
CVE-2014-4834
IBM WebSphere Commerce (6.x up to 6.0.0.11 and 7.x up to 7.0.0.8) is affected by a vulnerability where recursion during XML entity expansion is not detected, allowing a remote attacker to cause memory/CPU exhaustion and an application crash via a crafted XML document with many nested entity refer...
V8: Memory Corruption and Stack Overflow
It was discovered that V8 did not properly check the stack size limit in certain cases. A remote attacker able to send a request that caused a script executed by V8 to use deep recursion could trigger a stack overflow, leading to a crash of an application using V8...
DEBIAN-CVE-2014-4877
Absolute path traversal vulnerability in GNU Wget before 1.16, when recursion is enabled, allows remote FTP servers to write to arbitrary files, and consequently execute arbitrary code, via a LIST response that references the same filename within two entries, one of which indicates that the...
UBUNTU-CVE-2014-4877
Absolute path traversal vulnerability in GNU Wget before 1.16, when recursion is enabled, allows remote FTP servers to write to arbitrary files, and consequently execute arbitrary code, via a LIST response that references the same filename within two entries, one of which indicates that the...
SuSE 11.3 Security Update : perl (SAT Patch Number 9858)
This update fixes a memory leak and an infinite recursion in Data::Dumper. CVE-2014-4330 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C Novell, Inc. if...
SUSE-RU-2015:0562-1 Security update for perl
This update fixes a memory leak and an infinite recursion in Data::Dumper. CVE-2014-4330 Security Issues: CVE-2014-4330...
SAP Netweaver Enqueue Server - Denial of Service
Exploit for windows platform in category dos / poc SAP Netweaver Enqueue Server Trace Pattern Denial of Service Vulnerability 1. Advisory Information Title: SAP Netweaver Enqueue Server Trace Pattern Denial of Service Vulnerability Advisory ID: CORE-2014-0007 Advisory URL:...
SAP Netweaver Enqueue Server Trace Pattern Denial Of Service
Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ SAP Netweaver Enqueue Server Trace Pattern Denial of Service Vulnerability 1. Advisory Information Title: SAP Netweaver Enqueue Server Trace Pattern Denial of Service Vulnerability Advisory ID: CORE-2014-0007 Advisory URL:...
SAP Netweaver Enqueue Server Trace Pattern Denial of Service Vulnerability
Advisory ID Internal CORE-2014-0007 1. Advisory Information Title: SAP Netweaver Enqueue Server Trace Pattern Denial of Service Vulnerability Advisory ID: CORE-2014-0007 Advisory...
file: unrestricted recursion in handling of indirect type rules
A denial of service flaw was found in the way the File Information fileinfo extension handled indirect rules. A remote attacker could use this flaw to cause a PHP application using fileinfo to crash or consume an excessive amount of CPU...
libX11: unbounded recursion leading to stack-overflow
Two stack-based buffer overflow flaws were found in the way libX11, the Core X11 protocol client library, processed certain user-specified files. A malicious X11 server could possibly use this flaw to crash an X11 client via a specially crafted file...
Fedora 19 : perl-Data-Dumper-2.154-1.fc19 (2014-11428)
This release fixes CVE-2014-4330 limit recursion when dumping deep data structures and othe small glitches. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as mu...
PT-2019-6288 · Intel +7 · Edk Ii +7
Name of the Vulnerable Software and Affected Versions: EDK II affected versions not specified Description: The issue is related to an unlimited recursion in the EDK II UEFI development environment, specifically in DxeCore. This allows an attacker to access confidential data, compromise its...
DEBIAN-CVE-2014-4330
The Dumper method in Data::Dumper before 2.154, as used in Perl 5.20.1 and earlier, allows context-dependent attackers to cause a denial of service stack consumption and crash via an Array-Reference with many nested Array-References, which triggers a large number of recursive calls to the DDdump...
kernel: isofs: unbound recursion when processing relocated directories
It was found that the parserockridgeinodeinternal function of the Linux kernel's ISOFS implementation did not correctly check relocated directories when processing Rock Ridge child link CL tags. An attacker with physical access to the system could use a specially crafted ISO image to crash the...
kernel: isofs: unbound recursion when processing relocated directories
It was found that the parserockridgeinodeinternal function of the Linux kernel's ISOFS implementation did not correctly check relocated directories when processing Rock Ridge child link CL tags. An attacker with physical access to the system could use a specially crafted ISO image to crash the...
Perl stack overflow
Buffer overflow on recursion...