26 matches found
GO-2026-4841 NATS: Pre-auth remote server crash via WebSocket frame length overflow in wsRead in github.com/nats-io/nats-server
NATS: Pre-auth remote server crash via WebSocket frame length overflow in wsRead in github.com/nats-io/nats-server...
EUVD-2022-40813
Malicious code in bioql PyPI...
OpenSSL 0.9.8 < 0.9.8d Multiple Vulnerabilities
The version of OpenSSL installed on the remote host is prior to 0.9.8d. It is, therefore, affected by multiple vulnerabilities as referenced in the 0.9.8d advisory. - The getserverhello function in the SSLv2 client code in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions...
SUSE-SU-2023:0081-1 Security update for samba
This update for samba fixes the following issues: - Updated to version 4.15.13: - CVE-2022-38023: Removed weak cryptographic algorithms from the Netlogon RPC implementation bsc1206504. - CVE-2022-42898: Fixed several buffer overflow vulnerabilities on 32-bit systems bsc1205126. - CVE-2022-3437:...
MGASA-2022-0299 Updated ldb/samba/sssd packages fix security vulnerability
Fixed AD restrictions bypass associated with changing passwords bsc1201495. CVE-2022-2031 Fixed a memory leak in SMB1 bsc1201496. CVE-2022-32742 Fixed an arbitrary password change request for any AD user bsc1201493. CVE-2022-32744 Fixed a remote server crash with an LDAP add or modify request...
SUSE: Security Advisory (SUSE-SU-2022:2659-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2022:2586-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2022:2582-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2022:2586-2 Security update for ldb, samba
This update for ldb, samba fixes the following issues: - CVE-2022-32746: Fixed a use-after-free occurring in database audit logging bsc1201490. - CVE-2022-32745: Fixed a remote server crash with an LDAP add or modify request bsc1201492. - CVE-2022-2031: Fixed AD restrictions bypass associated wit...
Prototype Pollution
fastify-multipart is vulnerable to prototype pollution. It accepts parsing of multipart requests with proto key as field, allowing an attacker to provide such malicious requests to lead to an application crash in a remote server...
Go SSH servers 0.0.2 - Denial of Service (PoC)
Go SSH servers 0.0.2 - Denial of Service PoC Exploit Title: Go SSH servers 0.0.2 - Denial of Service PoC Author: Mark Adams Date: 2020-02-21 Link: https://github.com/mark-adams/exploits/blob/master/CVE-2020-9283/poc.py CVE: CVE-2020-9283 Running this script may crash the remote SSH server if it i...
[SECURITY] [DLA 1428-1] 389-ds-base security update
Package : 389-ds-base Version : 1.3.3.5-4+deb8u1 CVE ID : CVE-2015-1854 CVE-2017-15134 CVE-2018-1054 CVE-2018-1089 CVE-2018-10850 CVE-2015-1854 A flaw was found while doing authorization of modrdn operations. An unauthenticated attacker able to issue an ldapmodrdn call to the directory server cou...
UBUNTU-CVE-2017-9468
In Irssi before 1.0.3, when receiving a DCC message without source nick/host, it attempts to dereference a NULL pointer. Thus, remote IRC servers can cause a crash...
kernel: nfs4_getfacl decoding kernel oops
The NFSv4 implementation in the Linux kernel before 3.2.2 does not properly handle bitmap sizes in GETACL replies, which allows remote NFS servers to cause a denial of service OOPS by sending an excessive number of bitmap words...
Debian: Security Advisory (DSA-2276-2)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SasCam 2.6.5 - Remote HTTP Server Crash
SasCam 2.6.5 - Remote HTTP Server Crash / DISCLAIMER THIS PROGRAM IS NOT INTENDED TO BE USED ON OTHER COMPUTERS AND IT IS DESTINED FOR PERSONAL RESEARCH ONLY!!!! Also the free software programs provided by fl0 fl0w may be freely distributed and that the disclaimer below is always attached to it...
CVE-2008-7094
The CVE-2008-7094 entry concerns Campaign/CampaignListener in Unica Affinium Campaign 7.2.1.0.55. A crafted length field in the listener server can cause a denial of service (server crash) by triggering connection exhaustion or memory allocation failure. The provided sources show a DoS impact but...
Sguil/PADS Remote Server Crash Vulnerability
No description provided by source. Sguil/PADS Denial of Service exploit by Ataraxia Benjamin Rose Public announcement made 7/15/09. Please visit http://allmybase.com/ my blog for more up-to-date information, and a quick patch. More in-depth article available at: http://allmybase.com/?p=72 This mo...
Sguil/PADS - Remote Server Crash
Sguil/PADS Denial of Service exploit by Ataraxia Benjamin Rose Public announcement made 7/15/09. Please visit http://allmybase.com/ my blog for more up-to-date information, and a quick patch. More in-depth article available at: http://allmybase.com/?p=72 This more in-depth article does include...
BNBT BitTorrent EasyTracker <= 7.7r3 Denial of Service Exploit
No description provided by source. / BNBT BitTorrent EasyTracker Remote Denial Of Service Versions: Version 7.7r3.2004.10.27 and below Vendors: http://bnbt.go-dedicated.com/ http://bnbteasytracker.sourceforge.net/ http://sourceforge.net/projects/bnbtusermods/ Bug find and coded by:...