Lucene search
K

6911 matches found

Amazon
Amazon
added 2019/10/28 12:0 a.m.71 views

Medium: httpd

Issue Overview: A cross-site scripting vulnerability was found in Apache httpd, affecting the modproxy error page. Under certain circumstances, a crafted link could inject content into the HTML displayed in the error page, potentially leading to client-side exploitation.CVE-2019-10092 A...

7.2CVSS7.1AI score0.81466EPSS
Exploits5
OPENSUSE Linux
OPENSUSE Linux
added 2019/10/26 12:0 a.m.175 views

Security update for procps (important)

openSUSE Security Update: Security update for procps Announcement ID: openSUSE-SU-2019:2376-1 Rating: important References: 1092100 1121753 Cross-References: CVE-2018-1122 CVE-2018-1123 CVE-2018-1124 CVE-2018-1125 CVE-2018-1126 Affected Products: openSUSE Leap 15.1 An update that fixes 5...

9.8CVSS9.5AI score0.09081EPSS
Exploits9References2
Veracode
Veracode
added 2019/10/24 12:22 a.m.36 views

Denial Of Service (DoS)

Mozilla Firefox is vulnerable to denial of service DoS. The attack exists because it causes a Stack buffer overflow in WebRTC networking...

8.8CVSS3.4AI score0.01371EPSS
Exploits0References8Affected Software5
Veracode
Veracode
added 2019/10/24 12:22 a.m.39 views

Denial Of Serivce (DoS)

Mozilla Firefox is vulnerable to denial of service DoS. It causes a Stack buffer overflow in HKDF output...

8.8CVSS3AI score0.01799EPSS
Exploits0References8Affected Software5
Tenable Nessus
Tenable Nessus
added 2019/10/24 12:0 a.m.44 views

Scientific Linux Security Update : firefox on SL7.x x86_64 (20191023)

This update upgrades Firefox to version 68.2.0 ESR. Security Fixes : - Mozilla: Memory safety bugs fixed in Firefox 70 and Firefox ESR 68.2 CVE-2019-11764 - Mozilla: Use-after-free when creating index updates in IndexedDB CVE-2019-11757 - Mozilla: Potentially exploitable crash due to 360 Total...

8.8CVSS7.7AI score0.01799EPSS
Exploits2References9
UbuntuCve
UbuntuCve
added 2019/10/23 12:0 a.m.38 views

CVE-2019-11760

A fixed-size stack buffer could overflow in nrappkit when doing WebRTC signaling. This resulted in a potentially exploitable crash in some instances. This vulnerability affects Firefox 70, Thunderbird 68.2, and Firefox ESR 68.2...

8.8CVSS7.4AI score0.01371EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2019/10/23 12:0 a.m.40 views

CVE-2019-11759

An attacker could have caused 4 bytes of HMAC output to be written past the end of a buffer stored on the stack. This could be used by an attacker to execute arbitrary code or more likely lead to a crash. This vulnerability affects Firefox 70, Thunderbird 68.2, and Firefox ESR 68.2...

8.8CVSS7.5AI score0.01799EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2019/10/23 12:0 a.m.39 views

Mozilla Firefox Security Advisories (MFSA2019-33, MFSA2019-34) - Windows

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

10CVSS7.6AI score0.06643EPSS
Exploits3References2
OSV
OSV
added 2019/10/23 12:0 a.m.1 views

UBUNTU-CVE-2019-11759

An attacker could have caused 4 bytes of HMAC output to be written past the end of a buffer stored on the stack. This could be used by an attacker to execute arbitrary code or more likely lead to a crash. This vulnerability affects Firefox 70, Thunderbird 68.2, and Firefox ESR 68.2...

8.8CVSS7.8AI score0.01799EPSS
Exploits0References6
IBM Security Bulletins
IBM Security Bulletins
added 2019/10/18 3:50 a.m.23 views

Security Bulletin: IBM® InfoSphere Balanced Warehouse, IBM Smart Analytics System and IBM PureData System for Operational Analytics are affected by an IBM DB2® LUW denial of service vulnerability in ALTER MODULE statement handling (CVE-2014-3094)

Summary The IBM InfoSphere Balanced Warehouse C3000, C4000, D5100, IBM Smart Analytics System 1050, 2050, 5600, 5710, 7600, 7700, 7710 and IBM PureData System for Operational Analytics ship with either IBM DB2 Version 9.7 or Version 10.1. IBM DB2 is vulnerable to a stack buffer overflow, caused b...

8.5CVSS0.9AI score0.05044EPSS
Exploits0Affected Software3
Amazon
Amazon
added 2019/10/18 12:0 a.m.146 views

Medium: httpd24

Issue Overview: A vulnerability was found in Apache httpd, in modhttp2. Under certain circumstances, HTTP/2 early pushes could lead to memory corruption, causing a server to crash.CVE-2019-10081 A read-after-free vulnerability was discovered in Apache httpd, in modhttp2. A specially crafted http/...

9.1CVSS7.4AI score0.81466EPSS
Exploits6
ossfuzz
ossfuzz
added 2019/10/17 7:34 a.m.15 views

imagemagick:ping_tiff_fuzzer: Stack-buffer-overflow in _TIFFVGetField

Project: https://github.com/imagemagick/imagemagick.git Detailed Report: https://oss-fuzz.com/testcase?key=5841571697655808 Project: imagemagick Fuzzing Engine: libFuzzer Fuzz Target: pingtifffuzzer Job Type: libfuzzerasani386imagemagick Platform Id: linux Crash Type: Stack-buffer-overflow WRITE ...

6.8AI score
Exploits0Affected Software1
Symantec
Symantec
added 2019/10/17 12:0 a.m.22 views

AVEVA IEC870IP Driver CVE-2019-13537 Stack Buffer Overflow Vulnerability

...

4.3AI score0.01297EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2019/10/16 6:35 a.m.29 views

CVE-2018-17958

An integer overflow issue was found in the RTL8139 NIC emulation in QEMU. It could occur while receiving packets over the network if the size value is greater than INTMAX. Such overflow would lead to stack buffer overflow issue. A user inside guest could use this flaw to crash the QEMU process,...

7.5CVSS2.8AI score0.06169EPSS
Exploits0References2
ossfuzz
ossfuzz
added 2019/10/15 3:30 p.m.17 views

open62541:fuzz_mdns_message: Stack-buffer-overflow in _label

Project: https://github.com/open62541/open62541.git Detailed Report: https://oss-fuzz.com/testcase?key=6309580862128128 Project: open62541 Fuzzing Engine: afl Fuzz Target: fuzzmdnsmessage Job Type: aflasanopen62541 Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 1 Crash Address:...

6.8AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2019/10/14 10:36 p.m.26 views

binutils:fuzz_disassemble: Stack-buffer-overflow in get_indirect_operand

Detailed Report: https://oss-fuzz.com/testcase?key=5663912053178368 Project: binutils Fuzzing Engine: afl Fuzz Target: fuzzdisassemble Job Type: aflasanbinutils Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 1 Crash Address: 0x7f4f3e03ae5a Crash State: getindirectoperand printtwoopera...

6.8AI score
Exploits0Affected Software1
Packet Storm
Packet Storm
added 2019/10/10 12:0 a.m.209 views

ASX To MP3 Converter 3.1.3.7 Stack Overflow

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule "ASX to MP3 converter 3.1.3.7 - '.asx' Local Stack Overflow DEP", 'Description' = %q This module exploits a stack buffer overfl...

6.8CVSS0.6AI score0.05457EPSS
Exploits8
0day.today
0day.today
added 2019/10/10 12:0 a.m.118 views

ASX to MP3 converter 3.1.3.7 - (.asx) Local Stack Overflow (DEP Bypass) Exploit

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule "ASX to MP3 converter 3.1.3.7 - '.asx' Local Stack Overflow DEP", 'Description' = %q This module exploits a stack buffer overfl...

0.1AI score0.05457EPSS
Exploits8
OSV
OSV
added 2019/10/01 2:23 p.m.12 views

OPENSUSE-SU-2019:2235-1 Security update for u-boot

This update for u-boot fixes the following issues: Security issues fixed: - CVE-2019-13106: Fixed stack buffer overflow via a crafted ext4 filesystem that may lead to code execution bsc1144656. - CVE-2019-13104: Fixed an underflow that could cause memcpy to overwrite a very large amount of data v...

8.3CVSS7.9AI score0.0175EPSS
Exploits0References5
OPENSUSE Linux
OPENSUSE Linux
added 2019/10/01 12:0 a.m.133 views

Security update for u-boot (moderate)

openSUSE Security Update: Security update for u-boot Announcement ID: openSUSE-SU-2019:2235-1 Rating: moderate References: 1144656 1144675 Cross-References: CVE-2019-13104 CVE-2019-13106 Affected Products: openSUSE Leap 15.0 An update that fixes two vulnerabilities is now available. Description:...

8.3CVSS9AI score0.0175EPSS
Exploits0References2
Rows per page
Query Builder