Lucene search
K

203 matches found

OSV
OSV
added 2015/12/16 9:59 p.m.8 views

CVE-2015-8370

Multiple integer underflows in Grub2 1.98 through 2.02 allow physically proximate attackers to bypass authentication, obtain sensitive information, or cause a denial of service disk corruption via backspace characters in the 1 grubusernameget function in grub-core/normal/auth.c or the 2...

7.4CVSS7.5AI score0.01104EPSS
Exploits1References23
Prion
Prion
added 2015/12/16 9:59 p.m.27 views

Integer overflow

Multiple integer underflows in Grub2 1.98 through 2.02 allow physically proximate attackers to bypass authentication, obtain sensitive information, or cause a denial of service disk corruption via backspace characters in the 1 grubusernameget function in grub-core/normal/auth.c or the 2...

6.9CVSS9.2AI score0.01104EPSS
Exploits1References23Affected Software2
Cvelist
Cvelist
added 2015/12/16 12:0 a.m.26 views

CVE-2015-8370

Multiple integer underflows in Grub2 1.98 through 2.02 allow physically proximate attackers to bypass authentication, obtain sensitive information, or cause a denial of service disk corruption via backspace characters in the 1 grubusernameget function in grub-core/normal/auth.c or the 2...

9.3AI score0.01104EPSS
Exploits1References23
Vulnrichment
Vulnrichment
added 2015/12/16 12:0 a.m.16 views

CVE-2015-8370

Multiple integer underflows in Grub2 1.98 through 2.02 allow physically proximate attackers to bypass authentication, obtain sensitive information, or cause a denial of service disk corruption via backspace characters in the 1 grubusernameget function in grub-core/normal/auth.c or the 2...

7AI score0.01104EPSS
Exploits1References23
Debian CVE
Debian CVE
added 2015/12/16 12:0 a.m.26 views

CVE-2015-8370

Multiple integer underflows in Grub2 1.98 through 2.02 allow physically proximate attackers to bypass authentication, obtain sensitive information, or cause a denial of service disk corruption via backspace characters in the 1 grubusernameget function in grub-core/normal/auth.c or the 2...

7.4CVSS8.1AI score0.01104EPSS
Exploits1
Mozilla
Mozilla
added 2015/12/15 12:0 a.m.52 views

DOS due to malformed frames in HTTP/2 — Mozilla

Security researcher Stuart Larsen reported two issues with HTTP/2 resulting in integer underflows that lead to intentional aborts when the errors are detected...

5CVSS6.7AI score0.02888EPSS
Exploits0References4Affected Software2
UbuntuCve
UbuntuCve
added 2015/12/11 12:0 a.m.23 views

CVE-2015-8370

Multiple integer underflows in Grub2 1.98 through 2.02 allow physically proximate attackers to bypass authentication, obtain sensitive information, or cause a denial of service disk corruption via backspace characters in the 1 grubusernameget function in grub-core/normal/auth.c or the 2...

7.4CVSS7AI score0.01104EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2015/11/05 12:0 a.m.19 views

Debian DSA-3392-1 : freeimage - security update

Pengsu Cheng discovered that FreeImage, a library for graphic image formats, contained multiple integer underflows that could lead to a denial of service: remote attackers were able to trigger a crash by supplying a specially crafted image. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

5CVSS7.5AI score0.02975EPSS
Exploits0References5
Debian
Debian
added 2015/11/04 9:54 a.m.24 views

[SECURITY] [DSA 3392-1] freeimage security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3392-1 [email protected] https://www.debian.org/security/ Sebastien Delafond November 04, 2015 https://www.debian.org/security/faq -...

5CVSS1.9AI score0.02975EPSS
Exploits0
OSV
OSV
added 2015/11/04 12:0 a.m.11 views

DSA-3392-1 freeimage - security update

Bulletin has no description...

5CVSS6.3AI score0.02975EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/11/03 12:0 a.m.20 views

Debian: Security Advisory (DSA-3392-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS8.2AI score0.02975EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/10/19 12:0 a.m.28 views

Debian DLA-327-1 : freeimage security update

Multiple integer underflows in PluginPCX.cpp in FreeImage 3.17.0 and earlier allow remote attackers to cause a denial of service heap memory corruption via vectors related to the height and width of a window. NOTE: Tenable Network Security has extracted the preceding description block directly fr...

5CVSS7.4AI score0.02975EPSS
Exploits0References3
Debian
Debian
added 2015/10/18 4:16 p.m.22 views

[SECURITY] [DLA 327-1] freeimage security update

Package : freeimage Version : 3.10.0-4+deb6u1 CVE ID : CVE-2015-0852 Multiple integer underflows in PluginPCX.cpp in FreeImage 3.17.0 and earlier allow remote attackers to cause a denial of service heap memory corruption via vectors related to the height and width of a window...

5CVSS7.4AI score0.02975EPSS
Exploits0
OSV
OSV
added 2015/10/18 12:0 a.m.8 views

DLA-327-1 freeimage - security update

Bulletin has no description...

5CVSS6.3AI score0.02975EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/10/16 12:0 a.m.44 views

SUSE: Security Advisory for Linux (SUSE-SU-2014:0696-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.6AI score
Exploits0References3
NVD
NVD
added 2015/10/01 12:59 a.m.27 views

CVE-2015-1539

Multiple integer underflows in the ESDS::parseESDescriptor function in ESDS.cpp in libstagefright in Android before 5.1.1 LMY48I allow remote attackers to execute arbitrary code via crafted ESDS atoms, aka internal bug 20139950, a related issue to CVE-2015-4493...

10CVSS9.5AI score0.85792EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2015/10/01 12:59 a.m.26 views

CVE-2015-1539

Multiple integer underflows in the ESDS::parseESDescriptor function in ESDS.cpp in libstagefright in Android before 5.1.1 LMY48I allow remote attackers to execute arbitrary code via crafted ESDS atoms, aka internal bug 20139950, a related issue to CVE-2015-4493...

10CVSS6.3AI score0.85792EPSS
Exploits0References2
Cvelist
Cvelist
added 2015/10/01 12:0 a.m.30 views

CVE-2015-1539

Multiple integer underflows in the ESDS::parseESDescriptor function in ESDS.cpp in libstagefright in Android before 5.1.1 LMY48I allow remote attackers to execute arbitrary code via crafted ESDS atoms, aka internal bug 20139950, a related issue to CVE-2015-4493...

9.6AI score0.85792EPSS
Exploits0References6
CVE
CVE
added 2015/10/01 12:0 a.m.61 views

CVE-2015-1539

The CVE-2015-1539 issue is a remote-code-execution vulnerability in Android’s libstagefright, caused by integer underflows in ESDS::parseESDescriptor during MP4 atom processing. It affects Android releases prior to 5.1.1 LMY48I; the Android bulletins (e.g., Nexus/Android security bulletin) note t...

10CVSS7.6AI score0.85792EPSS
Exploits0References6Affected Software1
UbuntuCve
UbuntuCve
added 2015/09/29 6:59 p.m.22 views

CVE-2015-0852

Multiple integer underflows in PluginPCX.cpp in FreeImage 3.17.0 and earlier allow remote attackers to cause a denial of service heap memory corruption via vectors related to the height and width of a window...

5CVSS7.2AI score0.02975EPSS
Exploits0References4
Rows per page
Query Builder