Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2017-5923

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libyara/grammar.y in YARA 3.5.0 allows remote attackers to cause a denial of service heap-based out-of- bounds read and application crash via a crafted rule tha...

7.5CVSS7.2AI score0.01647EPSS
Exploits1References2
OSV
OSV
added 2022/01/27 12:2 a.m.12 views

OSV-2022-94 Heap-buffer-overflow in cli_strlcat

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=44087 Crash type: Heap-buffer-overflow WRITE 1 Crash state: clistrlcat yarayyparse yrlexparserulesfile...

7.2AI score
Exploits0References1
OSV
OSV
added 2021/01/13 12:1 a.m.7 views

OSV-2018-170 Heap-use-after-free in yr_re_ast_split_at_chaining_point

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=11752 Crash type: Heap-use-after-free READ 4 Crash state: yrreastsplitatchainingpoint yrparserreducestringdeclaration yarayyparse...

7.2AI score
Exploits0References1
OSV
OSV
added 2020/07/01 12:0 a.m.9 views

OSV-2020-345 Index-out-of-bounds in yara_yyparse

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=18942 Crash type: Index-out-of-bounds Crash state: yarayyparse yrlexparserulesstring rulesfuzzer.cc...

7.2AI score
Exploits0References1
CNVD
CNVD
added 2017/05/24 12:0 a.m.3 views

YARA 'yara_yyparse()' function denial of service vulnerability

YARA is a set of tools used to help software researchers identify and categorize malware samples. regex component is one of the regular expression components. A denial of service vulnerability exists in the YARA 'yarayyparse' function. A remote attacker can exploit this vulnerability to cause a...

7.5CVSS6.8AI score0.01647EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2017/04/03 5:59 a.m.15 views

CVE-2017-5923

libyara/grammar.y in YARA 3.5.0 allows remote attackers to cause a denial of service heap-based out-of-bounds read and application crash via a crafted rule that is mishandled in the yarayyparse function...

7.5CVSS7.1AI score0.01647EPSS
Exploits1References2
Prion
Prion
added 2017/04/03 5:59 a.m.17 views

Heap overflow

libyara/grammar.y in YARA 3.5.0 allows remote attackers to cause a denial of service heap-based out-of-bounds read and application crash via a crafted rule that is mishandled in the yarayyparse function...

5CVSS7.1AI score0.01647EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder