Lucene search
K

38 matches found

EUVD
EUVD
added 5 hours ago3 views

EUVD-2026-42866

mtr is vulnerable to Out-of-bound read vulnerability in ipinfolookup function. An attacker who can influence the TXT response used for AS lookups can trigger this bug by returning a DNS response that is larger than 512 bytes and uses a crafted compression pointer in the answer NAME...

5.1CVSS6.1AI score
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-4301

Malware in sbrugna...

4.3CVSS6.4AI score0.01534EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2013-2036

Malware in sbrugna...

5.1CVSS6.1AI score0.02018EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2025/06/11 10:27 a.m.365 views

Exploit for Use After Free in Apple Ipados

CVE-2025-24252 iOS "Airborne" Vulnerabilities - Log Artifact E...

9.8CVSS6.1AI score0.0127EPSS
Exploits2
OSV
OSV
added 2025/04/03 10:22 a.m.15 views

CLSA-2025-1743675732 avahi: Fix of 8 CVEs

CVE-2021-3468: handle termination event on avahi Unix socket to prevent infinite loop - CVE-2023-1981: prevent avahi daemon crash by emitting an error if the requested D-Bus service is not found - CVE-2021-3502: fix avahi-daemon crashing from NULL pointer assertions - CVE-2023-38469: reject...

6.2CVSS6.6AI score0.0045EPSS
Exploits2References1
SUSE Linux
SUSE Linux
added 2025/02/03 8:52 a.m.2 views

Security update for avahi

This update for avahi fixes the following issues: Security issues fixed: CVE-2023-38471: Extract host name using avahiunescapelabel bsc1216594. CVE-2023-38469: Reject overly long TXT resource records bsc1216598. Non-security issue fixed: no longer supply bogus services to callbacks bsc1226586...

6.2CVSS7.3AI score0.00314EPSS
Exploits0References10
OSV
OSV
added 2025/02/03 8:52 a.m.4 views

SUSE-SU-2025:20032-1 Security update for avahi

This update for avahi fixes the following issues: Security issues fixed: - CVE-2023-38471: Extract host name using avahiunescapelabel bsc1216594. - CVE-2023-38469: Reject overly long TXT resource records bsc1216598. Non-security issue fixed: - no longer supply bogus services to callbacks bsc12265...

6.2CVSS5.8AI score0.00314EPSS
Exploits0References6
The Hacker News
The Hacker News
added 2024/01/23 12:27 p.m.28 views

"Activator" Alert: MacOS Malware Hides in Cracked Apps, Targeting Crypto Wallets

Cracked software have been observed infecting Apple macOS users with a previously undocumented stealer malware capable of harvesting system information and cryptocurrency wallet data. Kaspersky, which identified the artifacts in the wild, said they are designed to target machines running macOS...

7AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 5:39 a.m.4 views

SUSE CVE-2013-2052

Buffer overflow in the atodn function in libreswan 3.0 and 3.1, when Opportunistic Encryption is enabled and an RSA key is being used, allows remote attackers to cause a denial of service pluto IKE daemon crash and possibly execute arbitrary code via crafted DNS TXT records. NOTE: this might be t...

5.1CVSS7.8AI score0.0175EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2015:0480-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS7.4AI score0.65683EPSS
Exploits5References18
Hacker One
Hacker One
added 2020/08/20 3:33 a.m.125 views

Dropcontact: No Valid SPF Records

Hiii, There is any issue No valid SPF Records Desciprition : There is a email spoofing vulnerability.Email spoofing is the forgery of an email header so that the message appears to have originated from someone or somewhere other than the actual source. Email spoofing is a tactic used in phishing...

7.1AI score
Exploits0
OSV
OSV
added 2020/03/24 9:15 p.m.1 views

DEBIAN-CVE-2020-6080

An exploitable denial-of-service vulnerability exists in the resource allocation handling of Videolabs libmicrodns 0.1.0. When encountering errors while parsing mDNS messages, some allocated data is not freed, possibly leading to a denial-of-service condition via resource exhaustion. An attacker...

7.5CVSS7.3AI score0.02377EPSS
Exploits1References1
OSV
OSV
added 2020/03/24 9:15 p.m.2 views

UBUNTU-CVE-2020-6080

An exploitable denial-of-service vulnerability exists in the resource allocation handling of Videolabs libmicrodns 0.1.0. When encountering errors while parsing mDNS messages, some allocated data is not freed, possibly leading to a denial-of-service condition via resource exhaustion. An attacker...

7.5CVSS7.1AI score0.02377EPSS
Exploits1References4
Kitploit
Kitploit
added 2020/02/24 9:0 p.m.74 views

Dnssearch - A Subdomain Enumeration Tool

This software is a subdomain enumeration tool. Purpose dnssearch takes an input domain -domain parameter and a wordlist -wordlist parameter , it will then perform concurrent DNS requests using the lines of the wordlist as sub domains eventually bruteforcing every sub domain available on the top...

7.3AI score
Exploits0References1
Kitploit
Kitploit
added 2019/11/20 12:0 p.m.75 views

Ddoor - Cross Platform Backdoor Using Dns Txt Records

Cross-platform backdoor using dns txt records. What is ddor? ddor is a cross platform light weight backdoor that uses txt records to execute commands on infected machines. Features Allows a single txt record to have seperate commands for both linux and windows machines List of around 10 public DN...

7.5AI score
Exploits0References1
Hacker One
Hacker One
added 2019/06/25 12:18 p.m.86 views

Chainlink: No Valid SPF Records.

Hiii, There is any issue No valid SPF Records Desciprition : There is a email spoofing vulnerability.Email spoofing is the forgery of an email header so that the message appears to have originated from someone or somewhere other than the actual source. Email spoofing is a tactic used in phishing...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2018/09/13 9:19 p.m.15 views

OilRig APT Continues Its Ongoing Malware Evolution

OilRig, an APT group believed to have ties to Iran, has been spotted in yet another campaign in the Middle East – this time targeting victims within an undisclosed government using an evolved variant of the BondUpdater trojan. The group, which is also called Cobalt Gypsy, Crambus, Helix Kitten or...

7.5AI score
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2016/07/06 12:0 a.m.5 views

Vulnerability of PHP software, which allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information

Overloading of buffers in dynamic memory in the phpparserr function in ext/standard/dns.c in PHP allows remote servers to trigger a failure in service abrupt termination of operations and execute arbitrary code, using specially crafted TXT records in DNS. This vulnerability is related to the...

5.1CVSS7.2AI score0.1091EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2016/03/14 12:0 a.m.4 views

Samba Internal DNS Server Out-of-Bounds Read Vulnerability

Samba is a freeware implementation of the SMB protocol on Linux and UNIX systems, consisting of a server and a client program. When Samba versions 4.0.0 through 4.4.0rc3 are deployed as an AD DC and running an internal DNS server, an out-of-bounds read vulnerability exists in the processing of DN...

5.9CVSS7.5AI score0.02762EPSS
Exploits0References1
Hacker One
Hacker One
added 2016/02/18 3:7 p.m.12 views

Gratipay: SPF/DKIM/DMARC for aspen.io

1.aspen.io 2.grtp.co SPF record lookup and validation for: grtp.co SPF records are published in DNS as TXT records. The TXT records found for your domain are: Checking to see if there is a valid SPF record. No valid SPF record found of either type TXT or type SPF. SPF record lookup and validation...

7AI score
Exploits0
Rows per page
Query Builder