Lucene search
K

4 matches found

Github Security Blog
Github Security Blog
added 2026/06/11 8:29 p.m.8 views

Russh: SSH identification parsing accepted non-canonical client banners and did not bound pre-banner input

Summary russh did not enforce the SSH identification-string rules as deliberately as OpenSSH. In particular, the server-side identification reader used the same permissive path as the client, allowing pre-banner lines from clients, and the reader did not enforce a bounded number of pre-banner...

5.3CVSS5.7AI score0.00277EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/03/20 2:23 a.m.4 views

CVE-2026-32889 tinytag: Denial of Service via non-terminating SYLT frame parsing loop

tinytag is a Python library for reading audio file metadata. Version 2.2.0 allows an attacker who can supply MP3 files for parsing to trigger a non-terminating loop while the library parses an ID3v2 SYLT synchronized lyrics frame. In server-side deployments that automatically parse...

6.5CVSS5.8AI score0.0041EPSS
Exploits1References6
myhack58
myhack58
added 2007/03/02 12:0 a.m.16 views

The script pictures the back door without echo solutions-vulnerability warning-the black bar safety net

First of all, let us think about why the picture of the back door is not back obvious reason: as you know, we use the include contains picture, the interpreter will put the picture as a text document for searching and automatic parsing% %or??& gt;of the script. So what other html characters such...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2000/10/27 12:0 a.m.47 views

Buffer overflow in iPlanet Web Server 4 server side SHTML parsing module

S.A.F.E.R. Security Bulletin 001026.EXP.1.8 TITLE : Buffer overflow in iPlanet Web Server 4 server side SHTML parsing module DATE : October 26, 2000 NATURE : Remote execution of code, Denial-of-Service AFFECTED : Confirmed on Solaris, Linux and Windows NT PROBLEM: Buffer overflow exists in iPlane...

0.3AI score
Exploits0
Rows per page
Query Builder