38341 matches found
Arbitrary Code Execution
kernel is vulnerable to arbitrary code execution. A buffer overflow flaw was found in the way the Linux kernel's XFS file system implementation handled links with overly long path names. A local, unprivileged user could use this flaw to cause a denial of service or escalate their privileges by...
Denial Of Service (DoS)
kernel is vulnerable to denial of service. A missing validation flaw was found in the Linux kernel's mstop implementation. A local, unprivileged user could use this flaw to trigger a denial of service...
Arbitrary Code Execution
libarchive is vulnerable to arbitrary code execution. The vulnerability exists when a user were tricked into expanding a specially-crafted ISO 9660 CD-ROM image or tar archive with an application using libarchive, it could cause the application to crash or, potentially, execute arbitrary code wit...
Privilege Escalation
qemu-kvm is vulnerable to privilege escalation. It was found that qemu-kvm did not properly drop supplemental group privileges when the root user started guests from the command line "/usr/libexec/qemu-kvm" with the "-runas" option. A qemu-kvm process started this way could use this flaw to gain...
Denial Of Service (DoS)
php is vulnerable to denial of service DoS. The vulnerability exists as multiple memory leak flaws were found in the PHP OpenSSL extension. A remote attacker able to make a PHP script use opensslencrypt or openssldecrypt repeatedly could cause the PHP interpreter to use an excessive amount of...
Authentication Bypass
openldap is vulnerable to authentication bypass. The vulnerability exists as a flaw was found in the way OpenLDAP handled authentication failures being passed from an OpenLDAP slave to the master. If OpenLDAP was configured with a chain overlay and it forwarded authentication failures, OpenLDAP...
HTTP Response Splitting
perl is vulnerable to HTTP response splitting. The vulnerability exists as it was found that the Perl CGI module used a hard-coded value for the MIME boundary string in multipart/x-mixed-replace content. A remote attacker could possibly use this flaw to conduct an HTTP response splitting attack v...
Denial Of Service (DoS)
kernel is vulnerable to denial of service. A divide-by-zero flaw was found in the tcpselectinitialwindow function in the Linux kernel's TCP/IP protocol suite implementation. A local, unprivileged user could use this flaw to trigger a denial of service by calling setsockopt with certain options...
Denial Of Service (DoS)
kernel is vulnerable to denial of service. The vulnerability exists as a missing validation check was found in the Linux kernel's signals implementation. A local, unprivileged user could use this flaw to send signals via the sigqueueinfo system call, with the sicode set to SITKILL and with spoofe...
Arbitrary Code Execution
openoffice.org is vulnerable to arbitrary code execution. The vulnerability exists as an array index error and an integer signedness error were found in the way OpenOffice.org parsed certain Rich Text Format RTF files. An attacker could use these flaws to create a specially-crafted RTF file that,...
Cross-site Scripting (XSS)
php is vulnerable to cross-site scripting XSS. The vulnerability exists as a numeric truncation error and an input validation flaw were found in the way the PHP utf8decode function decoded partial multi-byte sequences for some multi-byte encodings, sending them to output without them being escape...
Denial Of Service (DoS)
mysql is vulnerable to denial of service DoS. The vulnerability exists as a flaw in the way MySQL handled LOAD DATA INFILE requests allowed MySQL to send OK packets even when there were errors...
Arbitrary Code Execution
seamonkey is vulnerable to arbitrary code execution. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause SeaMonkey to crash or, potentially, execute arbitrary code with the privileges of the user running SeaMonkey...
Denial Of Service (DoS)
wireshark is vulnerable to denial of service DoS. The vulnerability exists as wireshark could crash or stop responding if it read a malformed packet off a network, or opened a malicious dump file...
Denial Of Service (DoS)
wireshark is vulnerable to denial of service DoS. The vulnerability exists as wireshark could crash or stop responding if it read a malformed packet off a network, or opened a malicious dump file...
Arbitrary Code Execution
tetex is vulnerable to arbitrary code execution. The vulnerability exists through the way teTeX processed special commands when converting DVI files into PostScript. An attacker could create a malicious DVI file that would cause the dvips executable to crash...
Denial Of Service (DoS)
Mozilla Firefox is vulnerable to denial of service DoS. A focus stealing flaw was found in the way Firefox handled focus changes. A malicious website could use this flaw to steal sensitive data from a user, such as user names and passwords...
Authorization Bypass
firefox is vulnerable to authorization bypass. The vulnerability exists as a flaw was found in the Firefox XML document loading security checks. Certain security checks were not being called when an XML document was loaded. This could possibly be leveraged later by an attacker to load certain...
Denial Of Service (DoS)
Mozilla Thunderbird is Denial of Service DoS. It is possible because it processes e-mail attachments with a parser that performs casts and line termination incorrectly, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted...
Cross-site Scripting (XSS)
SeaMonkey is vulnerable to cross-site scripting XSS. The attack is possible because remote attackers can perform cross-origin keystroke capture, and possibly conduct cross-site scripting XSS attacks, by using the addEventListener and setTimeout functions in conjunction with a wrapped object...
Spoofed Content Association
Mozilla Firefox allows spoofed content association. A flaw was found in the way Firefox displayed blank pages after a user navigates to an invalid address. If a user visits an attacker-controlled web page that results in a blank page, the attacker could inject content into that blank page, possib...
Arbitrary Code Execution
ibm java is vulnerable to arbitrary code execution. An attacker is able to execute arbitrary code by modifying certain JNLP file to point a URL to an untrusted application...
Information Disclosure
The kernel package is vulnerable to Information Disclosure. An information leak was found in the Linux kernel. On AMD64 systems, 32-bit processes could access and read certain 64-bit registers by temporarily switching themselves to 64-bit mode...
Arbitrary Code Execution
python is vulnerable to Arbitrary Code Execution. Multiple integer overflow flaws were found in the Python imageop module. If a Python application used the imageop module to process untrusted images, it could cause the application to disclose sensitive information, crash or, potentially, execute...
Denial Of Service (DoS)
cups is vulnerable to denial of service DoS. The vulnerability exists as a null pointer dereference flaw was found in the way CUPS handled subscriptions for printing job completion notifications. A local user could use this flaw to crash the CUPS daemon by submitting a large number of printing jo...
CRLF Injection
Xterm is vulnerable to CRLF Injection. A flaw was found in the xterm handling of Device Control Request Status String DECRQSS escape sequences. An attacker could create a malicious text file or log entry, if unfiltered that could run arbitrary commands if read by a victim inside an xterm window...
Same-Origin Policy Bypass
seamonkey is vulnerable to same-origin policy bypass. Several flaws were found in the way malformed content was processed. A website containing specially-crafted content could potentially trick a SeaMonkey user into surrendering sensitive information...
Privilege Escalation
e2fsprogs is vulnerable to privilege escalation. The vulnerability exists when a victim opens a carefully crafted file system with a program using e2fsprogs, it may be possible to execute arbitrary code with the permissions of the victim. It may be possible to leverage this flaw in a virtualized...
Spoofing Attack
kernel is vulnerable to spoofing attacks. A flaw in the CIFS handling of the mount option sec= that didn't enable integrity checking and didn't produce any error message...
Denial Of Service (DoS)
https is vulnerable to denial of service. A flaw was found in the modproxybalancer module. On sites where modproxybalancer was enabled, an authorized user could send a carefully crafted request that would cause the Apache child process handling that request to crash. This could lead to a denial o...
Arbitrary Code Execution
kernel is vulnerable to arbitrary code execution. A flaw was found in the IA32 system call emulation provided on AMD64 and Intel 64 platforms. An improperly validated 64-bit value could be stored in the %RAX register, which could trigger an out-of-bounds system call table access. An untrusted loc...
Arbitrary Code Execution
php is vulnerable to arbitrary code execution. A buffer overflow flaw was found in the PHP 'soap' extension, regarding the handling of an HTTP redirect response when using the SOAP client provided by this extension with an untrusted SOAP server...
DNS Spoofing
Mozilla Firefox is vulnerable to DNS spoofing. A flaw was found in the Firefox auto-update verification system. An attacker who has the ability to spoof a victim's DNS could get Firefox to download and install malicious code. In order to exploit this issue an attacker would also need to get a...
Use-after-free
Mozilla Firefox is vulnerable to use-after-free in cubeb during stream destruction...
SQL Injection
django is vulnerable to SQL injection. Lack of adequate validation and sanitization of the tolerance parameter allows an attacker to inject and execute arbitrary SQL statements in the database...
Remote Code Execution
jackson-databind is vulnerable to remote code execution. The application does not block the xalan classes during deserialization, which would allow a remote attacker to leverage the vulnerability to execute arbitrary code...
Shell Code Execution
libunbound.so is vulnerable to shell code execution. The attack is possible due to not proper handling of a malicious IPSECKEY answer in the ipsec. The vulnerability can only triggered when the following conditions are met: 1 compiled the library with --enable-ipsecmod support, and ipsecmod is...
Information Disclosure
ansible is vulnerable to information disclosure. The attack is possible due to an incomplete fix of CVE-2019-10206 which does not perform safe type conversions using AnsibleUnsafeBytes and AnsibleUnsafeBytes classes, allowing CLI provided passwords being incorrectly templated when using totext,...
Remote Code Execution (RCE)
jackson-databind is vulnerable to remote code execution. The vulnerability exists as it does not stop classes from the commons-dbcp package from being used as deserialization gadgets...
Sandbox Restrictions Bypass
jenkins-plugin-script-security isv vulnerable to Sandbox bypass. This is possible through method pointer expressions in Script Security Plugin...
Arbitrary File Overwrite
keepalived is vulnerable to arbitrary file overwrite. The vulnerability exists as there is an improper pathname validation that allows for overwrite of arbitrary filenames via symlinks...
Denial Of Service (DoS)
libpoppler.so is vulnerable to denial of service DoS. The attack exists because it does not prevent having integer overflow in the function SplashOutputDev::tilingPatternFill at SplashOutputDev.cc...
Denial Of Service (DoS)
Django is vulnerable to denial of service DoS. It does not properly handle HTML entities in the function striptags, causing excessive HTMLParser recursions...
Open Redirection
spring-security-oauth2 is vulnerable to open redirection. A remote attacker is able to modify the redirecturi parameter and redirect users to a malicious site to steal confidential information such as authorization code, username and password...
Denial Of Service (DoS)
Oracle Java SE is vulnerable to denial of service DoS attacks. The vulnerability exists in Deployment component in the Java SE component of Oracle Java SE. An unauthenticated attacker with network access via multiple protocols could cause denial of service condition with the aid of human...
Buffer Overflow
curl is vulnerable to buffer overflow vulnerability. The vulnerability occurs when doing a large floating point output in libcurl's implementation of the printf functions. The application accepts input format strings without doing a necessary input filtering. A remote attacker could send a format...
Privilege Escalation
cephx is vulnerable to privilege escalation attacks. This is because cephx authentication protocol does not verify ceph clients correctly. An attacker who has access to the ceph cluster network is able to sniff packets on the network...
Out-Of-Bounds Read
PHP is vulnerable to out-of-bounds reads. The vulnerability exists in matchat during regular expression searching because of a logical error involving order of validation and access in matchat...
Heap-Based Buffer Overflow
PHP is vulnerable to heap-based buffer overflow vulnerability. The vulnerability exists in the ext/mysqlnd/mysqlndwireprotocol.c in PHP. Remote MySQL servers could cause a denial of service or possibly have unspecified other impact via crafted field metadata...
Arbitrary Code Execution
GNU C Library is vulnerable to arbitrary code execution. A remote unauthenticated attacker could cause a buffer overflow during unescaping of user names with the operator resulting in denial of service conditions and code execution attacks...