CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2015/09/06 2:59 a.m.•2 views

DEBIAN-CVE-2015-6826

The ffrv34decodeinitthreadcopy function in libavcodec/rv34.c in FFmpeg before 2.7.2 does not initialize certain structure members, which allows remote attackers to cause a denial of service invalid pointer access or possibly have unspecified other impact via crafted 1 RV30 or 2 RV40 RealVideo dat...

7.5CVSS9.2AI score0.02482EPSS

OSV•added 2015/09/06 2:59 a.m.•1 views

DEBIAN-CVE-2015-6825

The ffframethreadinit function in libavcodec/pthreadframe.c in FFmpeg before 2.7.2 mishandles certain memory-allocation failures, which allows remote attackers to cause a denial of service invalid pointer access or possibly have unspecified other impact via a crafted file, as demonstrated by an A...

7.5CVSS9AI score0.02412EPSS

RedHat Linux•added 2015/09/03 4:6 p.m.•1 views

chromium-browser: Use-after-free in Blink

Use-after-free vulnerability in the shared-timer implementation in Blink, as used in Google Chrome before 45.0.2454.85, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging erroneous timer firing, related to ThreadTimers.cpp and Timer.cpp...

7.5CVSS7.5AI score0.01694EPSS

Exploits0References5

OSV•added 2015/09/02 12:0 a.m.•0 views

UBUNTU-CVE-2015-1299

7.5CVSS7.4AI score0.01694EPSS

Tenable Nessus•added 2015/08/25 12:0 a.m.•45 views

F5 Networks BIG-IP : Linux kernel vulnerability (K17132)

arch/x86/kernel/tls.c in the Thread Local Storage TLS implementation in the Linux kernel through 3.18.1 allows local users to bypass the espfix protection mechanism, and consequently makes it easier for local users to bypass the ASLR protection mechanism, via a crafted application that makes a...

2.1CVSS6.5AI score0.00583EPSS

OpenVAS•added 2015/08/18 12:0 a.m.•32 views

RedHat Update for glibc RHSA-2015:1627-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.1CVSS7.7AI score0.02682EPSS

0day.today•added 2015/08/09 12:0 a.m.•20 views

Filezilla Client 2.2.X - SEH Buffer Overflow Exploit

Exploit for windows platform in category remote exploits Exploit Title: Filezilla client 2.2.X SEH buffer overflow exploit Date: 02/08/2015 Exploit Author: ly0n Vendor Homepage: filezilla-project.org/ Software Link: http://www.oldapps.com/filezilla.php?app=7cdf14e88e9dfa85fb661c1c6e649e90 Version...

7.1AI score

Exploits0

RedHat Linux•added 2015/08/05 7:23 p.m.•2 views

Moderate: Red Hat Bug Fix Advisory: 389-ds-base bug fix update

Updated 389-ds-base packages that fix several bugs are now available for Red Hat Enterprise Linux 7. The 389 Directory Server is an LDAPv3 compliant server. The base packages include the LDAP server and command-line utilities for server administration. This update fixes the following bugs:...

7.5CVSS7AI score0.02573EPSS

RedHat Linux•added 2015/07/20 2:0 p.m.•1 views

kernel: x86: espfix(64) bypass via set_thread_area and CLONE_SETTLS

It was found that the espfix functionality could be bypassed by installing a 16-bit RW data segment into GDT instead of LDT which espfix checks, and using that segment on the stack. A local, unprivileged user could potentially use this flaw to leak kernel stack addresses...

2.1CVSS6.6AI score0.00583EPSS

Tenable Nessus•added 2015/07/16 12:0 a.m.•24 views

MariaDB 10.1.x < 10.1.5 wait_for_workers_idle() Function Worker Thread Handling DoS

The version of MariaDB running on the remote host is 10.1.x prior to 10.1.5. It is, therefore, affected by a denial of service vulnerability due to a flaw in the waitforworkersidle function that occurs when handling worker threads. An authenticated, remote attacker can exploit this to crash the...

5.6AI score

RedHat Linux•added 2015/07/09 5:1 p.m.•3 views

php: Double-free in zend_ts_hash_graceful_destroy()

A double free flaw was found in zendtshashgracefuldestroy function in the PHP ZTS module. This flaw could possibly cause a PHP application to crash...

7.5CVSS6.7AI score0.03664EPSS

myhack58•added 2015/07/05 12:0 a.m.•181 views

Spring3. 2. 1 1 with Quartz2. 2. 1 integrated memory leaks problem solving-vulnerability warning-the black bar safety net

Quartz is a timer task scheduling open-source framework, use up more convenient. And Spring's support package for Quartz with integrated. But the author in the web application using the process but encountered a memory leak problem. Problems of the author in using the Spring+Quartz usage is as...

8AI score

Exploits0

Kitploit•added 2015/07/03 9:23 p.m.•17 views

Blackbone - Windows Memory Hacking Library

Blackbone, Windows Memory Hacking Library Features x86 and x64 support Process interaction Manage PEB32/PEB64 Manage process through WOW64 barrier Process Memory Allocate and free virtual memory Change memory protection Read/Write virtual memory Process modules Enumerate all 32/64 bit modules...

8AI score

OSV•added 2015/06/11 6:7 p.m.•11 views

USN-2639-1 openssl vulnerabilities

Praveen Kariyanahalli, Ivan Fratric and Felix Groebert discovered that OpenSSL incorrectly handled memory when buffering DTLS data. A remote attacker could use this issue to cause OpenSSL to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2014-8176 Joseph...

7.5CVSS6.4AI score0.9986EPSS

Exploits1References7

Kitploit•added 2015/06/09 10:21 p.m.•42 views

Medusa - Speedy, Parallel and Modular Login Brute-Forcer

Medusa is intended to be a speedy, massively parallel, modular, login brute-forcer. The goal is to support as many services which allow remote authentication as possible. The author considers following items as some of the key features of this application: Thread-based parallel testing. Brute-for...

7.5AI score

RedHat Linux•added 2015/06/09 2:47 p.m.•2 views

kernel: partial ASLR bypass through TLS base addresses leak

An information leak flaw was found in the way the Linux kernel changed certain segment registers and thread-local storage TLS during a context switch. A local, unprivileged user could use this flaw to leak the user space TLS base address of an arbitrary process...

2.1CVSS6.8AI score0.00436EPSS