2 matches found
Oracle WebLogic Server UnicastRef Insecure Deserialization (CVE-2017-3248)
An insecure deserialization vulnerability has been reported in Oracle WebLogic Server. This vulnerability is due to deseralization of untrusted data while having the UnicastRef class in the code path. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted...
GLSA-200505-15 : gdb: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200505-15 gdb: Multiple vulnerabilities Tavis Ormandy of the Gentoo Linux Security Audit Team discovered an integer overflow in the BFD library, resulting in a heap overflow. A review also showed that by default, gdb insecurely...