Lucene search
K

36 matches found

Debian CVE
Debian CVE
added 2022/05/24 6:30 p.m.40 views

CVE-2021-42614

A use after free in infowidthinternal in bkinfo.c in Halibut 1.2 allows an attacker to cause a segmentation fault or possibly have unspecified other impact via a crafted text document...

7.8CVSS8.1AI score0.00826EPSS
Exploits1
Cvelist
Cvelist
added 2022/05/24 6:16 p.m.19 views

CVE-2021-42613

A double free in cleanupindex in index.c in Halibut 1.2 allows an attacker to cause a denial of service or possibly have other unspecified impact via a crafted text document...

8AI score0.00826EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2022/05/24 6:16 p.m.40 views

CVE-2021-42613

A double free in cleanupindex in index.c in Halibut 1.2 allows an attacker to cause a denial of service or possibly have other unspecified impact via a crafted text document...

7.8CVSS7.8AI score0.00826EPSS
Exploits1
Cvelist
Cvelist
added 2022/05/24 6:2 p.m.22 views

CVE-2021-42612

A use after free in cleanupindex in index.c in Halibut 1.2 allows an attacker to cause a segmentation fault or possibly have other unspecified impact via a crafted text document...

8.1AI score0.00826EPSS
Exploits1References2
CVE
CVE
added 2022/05/24 6:2 p.m.95 views

CVE-2021-42612

The CVE-2021-42612 issue affects Halibut 1.2, with a use-after-free in cleanup_index() in index.c that can cause a segmentation fault or other unspecified impact when processing a crafted text document. Public sources in vendor advisories and third-party disclosures confirm related fixes and upda...

7.8CVSS7.8AI score0.00826EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVE
added 2022/05/24 6:2 p.m.39 views

CVE-2021-42612

A use after free in cleanupindex in index.c in Halibut 1.2 allows an attacker to cause a segmentation fault or possibly have other unspecified impact via a crafted text document...

7.8CVSS7.9AI score0.00826EPSS
Exploits1
CNNVD
CNNVD
added 2022/05/24 12:0 a.m.4 views

Halibut 资源管理错误漏洞

Halibut is a secure, RPC-based open source communication framework from the individual developers of Octopus Deploy. A security vulnerability exists in Halibut version 1.2, which stems from a post-release reuse issue in cleanupindex in index.c. The vulnerability is caused by an unspecified text...

7.8CVSS7.5AI score0.00826EPSS
Exploits1References3
FreeBSD
FreeBSD
added 2022/05/24 12:0 a.m.8 views

halibut -- Segmentation fault, denial of service or possibly other unspecified impact via a crafted text document

[email protected] reports: CVE-2021-42612: A use after free in cleanupindex in index.c in Halibut 1.2 allows an attacker to cause a segmentation fault or possibly have other unspecified impact via a crafted text document. CVE-2021-42613: A double free in cleanupindex in index.c in Halibut 1.2 allows ...

7.8CVSS7.7AI score0.00826EPSS
Exploits3References3
GithubExploit
GithubExploit
added 2021/01/25 12:44 p.m.25 views

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft

SignHere Introduction CVE-2017-11882 - The unique vulnerab...

9.3CVSS7.8AI score0.99945EPSS
Exploits33
Carbon Black Blog
Carbon Black Blog
added 2020/06/04 1:46 a.m.92 views

TAU Threat Analysis: Medusa Locker Ransomware

In recent weeks Carbon Black’s Threat Analysis Unit TAU has seen an increase in the number of infections attributed to the Medusa Locker ransomware family. There were notable traits exhibited by Medusa Locker in these attacks that warranted further investigation to determine behavioral tactics th...

7.8AI score
Exploits0
NVD
NVD
added 2020/01/14 4:15 p.m.29 views

CVE-2014-5238

XML external entity XXE vulnerability in Open-Xchange OX AppSuite before 7.4.2-rev11 and 7.6.x before 7.6.0-rev9 allows remote attackers to read arbitrary files and possibly other unspecified impact via a crafted OpenDocument Text document...

7.8CVSS7.6AI score0.01931EPSS
Exploits1References3
CVE
CVE
added 2020/01/14 4:0 p.m.48 views

CVE-2014-5238

CVE-2014-5238 concerns an XML external entity (XXE) vulnerability in Open-Xchange AppSuite. The OpenDocument Text handling allows expansion of XML entities (DTD recursive entities), enabling an attacker to read server files via a crafted document. The NVD entry notes the affected products as Open...

7.8CVSS7.5AI score0.01931EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2014/12/01 3:59 p.m.18 views

CVE-2014-5237

Server-side request forgery SSRF vulnerability in the documentconverter component in Open-Xchange OX AppSuite before 7.4.2-rev10 and 7.6.x before 7.6.0-rev10 allows remote attackers to trigger requests to arbitrary servers and embed arbitrary images via a URL in an embedded image in a Text...

4.3CVSS6.7AI score0.02357EPSS
Exploits1References3
Prion
Prion
added 2014/12/01 3:59 p.m.17 views

Server side request forgery (ssrf)

Server-side request forgery SSRF vulnerability in the documentconverter component in Open-Xchange OX AppSuite before 7.4.2-rev10 and 7.6.x before 7.6.0-rev10 allows remote attackers to trigger requests to arbitrary servers and embed arbitrary images via a URL in an embedded image in a Text...

4.3CVSS7.3AI score0.02357EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2014/12/01 3:0 p.m.46 views

CVE-2014-5237

Open-Xchange App Suite (documentconverter) is affected by CVE-2014-5237. The vulnerability allows Server-Side Request Forgery (SSRF) via a URL embedded in an image within a Text document, which is not correctly handled by the image preview. Affected versions are Open-Xchange App Suite before 7.4....

4.3CVSS7.5AI score0.02357EPSS
Exploits1References3Affected Software1
securityvulns
securityvulns
added 2009/04/12 12:0 a.m.24 views

Microsoft Internet Explorer DoS

Browser hangs while trying to determine charset of the text document with large number of random characters...

2.5AI score
Exploits0References1
Rows per page
Query Builder