CVE-2025-44824

Nagios Log Server before 2024R1.3.2 allows authenticated users with read-only API access to stop the Elasticsearch service via a /nagioslogserver/index.php/api/system/stop?subsystem=elasticsearch call. The service stops even though "message": "Could not stop elasticsearch" is in the API response...

CVE-2025-44824

Nagios Log Server before 2024R1.3.2 allows authenticated users with read-only API access to stop the Elasticsearch service via a /nagioslogserver/index.php/api/system/stop?subsystem=elasticsearch call. The service stops even though "message": "Could not stop elasticsearch" is in the API response...

Security Bulletin: Publicly disclosed vulnerability from Kernel affects IBM Netezza Host Management

Summary Kernel is used by IBM Netezza Host Management. This bulletin provides mitigation for the reported CVE. Vulnerability Details CVEID: CVE-2019-18806 DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by a memory leak in the qlalloclargebuffers function in...

Cisco Adaptive Security Appliance DOS (cisco-sa-20191002-asa-dos)

A denial of service vulnerability exists in the FTP inspection engine of Cisco Adaptive Security Appliance ASA software due to insufficient validation of FTP data. An unauthenticated, remote attacker can exploit this to cause to cause the system to stop responding. Please see the included Cisco...

Windows Denial of Service Vulnerability

A denial of service vulnerability exists when Windows improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding. To exploit this vulnerability, an attacker would have to log on to an affected system and run a...

JVN#56542712: Multiple vulnerabilities in Nablarch

Nablarch provided by TIS Inc. contains multiple vulnerabilities listed below. The vulnerability in the function of generic formatter by XXE attacks CWE-611 - CVE-2019-5918 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H| Base Score: 8.2 CVSS v2|...

Microsoft Windows Denial of Service Vulnerability (CNVD-2017-05724)

Microsoft Windows is the popular computer operating system. Microsoft Windows does not properly handle memory objects and is implemented with a denial-of-service vulnerability that can be exploited by an attacker to cause the target system to stop responding...

Microsoft Windows Kernel Privilege Escalation Vulnerability (971486)

This host is missing a critical security update according to Microsoft Bulletin MS09-058. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Windows Kernel Privilege Escalation Vulnerability (971486)

This host is missing a critical security update according to Microsoft Bulletin MS09-058. OpenVAS Vulnerability Test $Id: secpodms09-058.nasl 5934 2017-04-11 12:28:28Z antu123 $ Microsoft Windows Kernel Privilege Escalation Vulnerability 971486 Authors: Nikita MR Updated By: Madhuri D on 2010-11-...

Microsoft Windows XP2000 - GDI Denial of Service

Microsoft Windows XP2000 - GDI Denial of Service source: https://www.securityfocus.com/bid/3481/info The Windows Graphics Device Interface GDI is a set of Application Programming Interfaces APIs used to display graphical output. A vulnerability exists which causes the GDI to invoke a Kernel Mode...

Атаки через tmpwatch

При удалении каталога tmpwatch запускает отдельный процесс на каждый уровень вложенности. Это позволяет вызвать остановку системы, создав временную директорию с большим уровенм вложенности. Кроме того, при вызове внешнего приложения не проверяются shell-символы в имени файла...