Lucene search

K
DebianDebian Linux

9127 matches found

CVE
CVE
added 2013/03/07 3:55 p.m.54 views

CVE-2013-2488

The DTLS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not validate the fragment offset before invoking the reassembly state machine, which allows remote attackers to cause a denial of service (application crash) via a large offset value that triggers write access to an inv...

5CVSS6.4AI score0.03866EPSS
CVE
CVE
added 2014/07/22 2:55 p.m.54 views

CVE-2014-4911

The ssl_decrypt_buf function in library/ssl_tls.c in PolarSSL before 1.2.11 and 1.3.x before 1.3.8 allows remote attackers to cause a denial of service (crash) via vectors related to the GCM ciphersuites, as demonstrated using the Codenomicon Defensics toolkit.

5CVSS6.3AI score0.00535EPSS
CVE
CVE
added 2016/04/13 2:59 p.m.54 views

CVE-2014-6276

schema.py in Roundup before 1.5.1 does not properly limit attributes included in default user permissions, which might allow remote authenticated users to obtain sensitive user information by viewing user details.

4.3CVSS4AI score0.0013EPSS
CVE
CVE
added 2014/12/09 11:59 p.m.54 views

CVE-2014-9274

UnRTF allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code as demonstrated by a file containing the string "{\cb-999999999".

7.5CVSS7.6AI score0.05942EPSS
CVE
CVE
added 2015/03/09 2:59 p.m.54 views

CVE-2015-1165

RT (aka Request Tracker) 3.8.8 through 4.x before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to obtain sensitive RSS feed URLs and ticket data via unspecified vectors.

5CVSS8.2AI score0.00388EPSS
CVE
CVE
added 2015/02/27 3:59 p.m.54 views

CVE-2015-1414

Integer overflow in FreeBSD before 8.4 p24, 9.x before 9.3 p10. 10.0 before p18, and 10.1 before p6 allows remote attackers to cause a denial of service (crash) via a crafted IGMP packet, which triggers an incorrect size calculation and allocation of insufficient memory.

7.8CVSS6.2AI score0.00564EPSS
CVE
CVE
added 2015/03/31 2:59 p.m.54 views

CVE-2015-2776

The parse_SST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service (memory consumption) via a crafted shared strings table in a workbook.

4.3CVSS6.3AI score0.02007EPSS
CVE
CVE
added 2016/04/12 2:59 p.m.54 views

CVE-2015-8473

The Issues API in Redmine before 2.6.8, 3.0.x before 3.0.6, and 3.1.x before 3.1.2 allows remote authenticated users to obtain sensitive information in changeset messages by leveraging permission to read issues with related changesets from other projects.

4.3CVSS4.5AI score0.00465EPSS
CVE
CVE
added 2017/03/16 2:59 p.m.54 views

CVE-2016-10246

Buffer overflow in the main function in jstest_main.c in Mujstest in Artifex Software, Inc. MuPDF before 1.10 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted file.

5.5CVSS5.8AI score0.00285EPSS
CVE
CVE
added 2017/03/16 2:59 p.m.54 views

CVE-2016-10247

Buffer overflow in the my_getline function in jstest_main.c in Mujstest in Artifex Software, Inc. MuPDF before 1.10 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted file.

5.5CVSS5.5AI score0.0031EPSS
CVE
CVE
added 2018/05/31 8:29 p.m.54 views

CVE-2016-10538

The package node-cli before 1.0.0 insecurely uses the lock_file and log_file. Both of these are temporary, but it allows the starting user to overwrite any file they have access to.

4.9CVSS3.9AI score0.00317EPSS
CVE
CVE
added 2016/01/12 8:59 p.m.54 views

CVE-2016-1231

Directory traversal vulnerability in the HTTP file-serving module (mod_http_files) in Prosody 0.9.x before 0.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) in an unspecified path.

5.9CVSS6.3AI score0.00741EPSS
CVE
CVE
added 2016/04/07 9:59 p.m.54 views

CVE-2016-2511

Cross-site scripting (XSS) vulnerability in WebSVN 2.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the path parameter to log.php.

6.1CVSS5.9AI score0.00388EPSS
Web
CVE
CVE
added 2016/04/12 3:59 p.m.54 views

CVE-2016-3167

Open redirect vulnerability in the drupal_goto function in Drupal 6.x before 6.38, when used with PHP before 5.4.7, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a double-encoded URL in the "destination" parameter.

7.4CVSS7.3AI score0.00285EPSS
CVE
CVE
added 2017/07/29 5:29 a.m.54 views

CVE-2017-11732

A heap-based buffer overflow vulnerability was found in the function dcputs (called from decompileIMPLEMENTS) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

5.5CVSS6.4AI score0.00215EPSS
CVE
CVE
added 2017/08/29 10:29 p.m.54 views

CVE-2017-13756

In The Sleuth Kit (TSK) 4.4.2, opening a crafted disk image triggers infinite recursion in dos_load_ext_table() in tsk/vs/dos.c in libtskvs.a, as demonstrated by mmls.

5.5CVSS5.5AI score0.00214EPSS
CVE
CVE
added 2017/11/13 8:29 p.m.54 views

CVE-2017-16804

In Redmine before 3.2.7 and 3.3.x before 3.3.4, the reminders function in app/models/mailer.rb does not check whether an issue is visible, which allows remote authenticated users to obtain sensitive information by reading e-mail reminder messages.

4.3CVSS5.6AI score0.00345EPSS
CVE
CVE
added 2017/12/27 5:8 p.m.54 views

CVE-2017-17843

An issue was discovered in Enigmail before 1.9.9 that allows remote attackers to trigger use of an intended public key for encryption, because incorrect regular expressions are used for extraction of an e-mail address from a comma-separated list, as demonstrated by a modified Full Name field and a ...

5.9CVSS6.3AI score0.00204EPSS
CVE
CVE
added 2018/02/02 3:29 p.m.54 views

CVE-2017-18122

A signature-validation bypass issue was discovered in SimpleSAMLphp through 1.14.16. A SimpleSAMLphp Service Provider using SAML 1.1 will regard as valid any unsigned SAML response containing more than one signed assertion, provided that the signature of at least one of the assertions is valid. Att...

8.1CVSS8.2AI score0.00308EPSS
CVE
CVE
added 2017/02/24 4:59 a.m.54 views

CVE-2017-6307

An issue was discovered in tnef before 1.4.13. Two OOB Writes have been identified in src/mapi_attr.c:mapi_attr_read(). These might lead to invalid read and write operations, controlled by an attacker.

7.8CVSS7.5AI score0.00408EPSS
CVE
CVE
added 2017/11/15 8:29 a.m.54 views

CVE-2017-8808

MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has XSS when the $wgShowExceptionDetails setting is false and the browser sends non-standard URL escaping.

6.1CVSS7.2AI score0.00362EPSS
CVE
CVE
added 2018/06/05 1:29 p.m.54 views

CVE-2018-11743

The init_copy function in kernel.c in mruby 1.4.1 makes initialize_copy calls for TT_ICLASS objects, which allows attackers to cause a denial of service (mrb_hash_keys uninitialized pointer and application crash) or possibly have unspecified other impact.

9.8CVSS9.6AI score0.00597EPSS
CVE
CVE
added 2018/09/12 1:29 a.m.54 views

CVE-2018-16949

An issue was discovered in OpenAFS before 1.6.23 and 1.8.x before 1.8.2. Several data types used as RPC input variables were implemented as unbounded array types, limited only by the inherent 32-bit length field to 4 GB. An unauthenticated attacker could send, or claim to send, large input values a...

7.5CVSS8.4AI score0.06408EPSS
CVE
CVE
added 2019/09/16 1:15 p.m.54 views

CVE-2018-21016

audio_sample_entry_AddBox() at isomedia/box_code_base.c in GPAC 0.7.1 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file.

6.5CVSS6.3AI score0.00513EPSS
CVE
CVE
added 2018/02/02 1:29 a.m.54 views

CVE-2018-6519

The SAML2 library before 1.10.4, 2.x before 2.3.5, and 3.x before 3.1.1 in SimpleSAMLphp has a Regular Expression Denial of Service vulnerability for fraction-of-seconds data in a timestamp.

7.5CVSS7.5AI score0.00402EPSS
CVE
CVE
added 2018/03/18 3:29 a.m.54 views

CVE-2018-8754

The libevt_record_values_read_event() function in libevt_record_values.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub

5.5CVSS5.4AI score0.0005EPSS
CVE
CVE
added 2019/07/30 1:15 p.m.54 views

CVE-2019-14443

An issue was discovered in Libav 12.3. Division by zero in range_decode_culshift in libavcodec/apedec.c allows remote attackers to cause a denial of service (application crash), as demonstrated by avconv.

6.5CVSS6.7AI score0.00505EPSS
CVE
CVE
added 2021/04/28 7:15 a.m.54 views

CVE-2021-31866

Redmine before 4.0.9 and 4.1.x before 4.1.3 allows an attacker to learn the values of internal authentication keys by observing timing differences in string comparison operations within SysController and MailHandlerController.

5.3CVSS5.5AI score0.00442EPSS
CVE
CVE
added 2022/02/02 6:15 a.m.54 views

CVE-2022-24301

In Minetest before 5.4.0, players can add or subtract items from a different player's inventory.

6.5CVSS6.5AI score0.00273EPSS
CVE
CVE
added 2022/09/19 9:15 p.m.54 views

CVE-2022-28203

A denial-of-service issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1.37.x before 1.37.2. When many files exist, requesting Special:NewFiles with actor as a condition can result in a very long running query.

7.5CVSS7.3AI score0.00163EPSS
CVE
CVE
added 2022/09/15 3:15 p.m.54 views

CVE-2022-38860

Certain The MPlayer Project products are vulnerable to Divide By Zero via function demux_open_avi() of libmpdemux/demux_avi.c which affects mencoder. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.

5.5CVSS5.5AI score0.00034EPSS
CVE
CVE
added 2001/09/18 4:0 a.m.53 views

CVE-2001-0456

postinst installation script for Proftpd in Debian 2.2 does not properly change the "run as uid/gid root" configuration when the user enables anonymous access, which causes the server to run at a higher privilege than intended.

7.5CVSS6.5AI score0.00782EPSS
CVE
CVE
added 2001/06/27 4:0 a.m.53 views

CVE-2001-0458

Multiple buffer overflows in ePerl before 2.2.14-0.7 allow local and remote attackers to execute arbitrary commands.

7.5CVSS7.3AI score0.01717EPSS
CVE
CVE
added 2004/08/06 4:0 a.m.53 views

CVE-2004-0579

Format string vulnerability in super before 3.23 allows local users to execute arbitrary code as root.

7.2CVSS7AI score0.0007EPSS
CVE
CVE
added 2005/01/10 5:0 a.m.53 views

CVE-2004-0915

Multiple unknown vulnerabilities in viewcvs before 0.9.2, when exporting a repository as a tar archive, does not properly implement the hide_cvsroot and forbidden settings, which could allow remote attackers to gain sensitive information.

5CVSS6.6AI score0.00346EPSS
CVE
CVE
added 2005/04/14 4:0 a.m.53 views

CVE-2004-1092

Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by causing mc to free unallocated memory.

5CVSS6.3AI score0.00763EPSS
CVE
CVE
added 2005/11/27 12:3 a.m.53 views

CVE-2005-3847

The handle_stop_signal function in signal.c in Linux kernel 2.6.11 up to other versions before 2.6.13 and 2.6.12.6 allows local users to cause a denial of service (deadlock) by sending a SIGKILL to a real-time threaded process while it is performing a core dump.

5.5CVSS5.1AI score0.00067EPSS
CVE
CVE
added 2019/11/06 4:15 a.m.53 views

CVE-2007-0899

There is a possible heap overflow in libclamav/fsg.c before 0.100.0.

9.8CVSS9.6AI score0.00451EPSS
CVE
CVE
added 2009/03/25 11:30 p.m.53 views

CVE-2009-0784

Race condition in the SystemTap stap tool 0.0.20080705 and 0.0.20090314 allows local users in the stapusr group to insert arbitrary SystemTap kernel modules and gain privileges via unknown vectors.

6.3CVSS6.2AI score0.00039EPSS
Web
CVE
CVE
added 2019/11/14 12:15 a.m.53 views

CVE-2011-0544

phpbb 3.0.x-3.0.6 has an XSS vulnerability via the [flash] BB tag.

6.1CVSS6AI score0.00339EPSS
CVE
CVE
added 2019/11/21 2:15 p.m.53 views

CVE-2012-3543

mono 2.10.x ASP.NET Web Form Hash collision DoS

7.5CVSS7.3AI score0.01146EPSS
CVE
CVE
added 2016/12/16 9:59 a.m.53 views

CVE-2013-1430

An issue was discovered in xrdp before 0.9.1. When successfully logging in using RDP into an xrdp session, the file ~/.vnc/sesman_${username}_passwd is created. Its content is the equivalent of the user's cleartext password, DES encrypted with a known key.

9.8CVSS8.1AI score0.00349EPSS
CVE
CVE
added 2014/12/31 10:59 p.m.53 views

CVE-2014-8145

Multiple heap-based buffer overflows in Sound eXchange (SoX) 14.4.1 and earlier allow remote attackers to have unspecified impact via a crafted WAV file to the (1) start_read or (2) AdpcmReadBlock function.

7.5CVSS6.9AI score0.12998EPSS
CVE
CVE
added 2015/01/09 6:59 p.m.53 views

CVE-2014-9269

Cross-site scripting (XSS) vulnerability in helper_api.php in MantisBT 1.1.0a1 through 1.2.x before 1.2.18, when Extended project browser is enabled, allows remote attackers to inject arbitrary web script or HTML via the project cookie.

2.6CVSS5.3AI score0.00407EPSS
CVE
CVE
added 2015/08/24 2:59 p.m.53 views

CVE-2015-6525

Multiple integer overflows in the evbuffer API in Libevent 2.0.x before 2.0.22 and 2.1.x before 2.1.5-beta allow context-dependent attackers to cause a denial of service or possibly have other unspecified impact via "insanely large inputs" to the (1) evbuffer_add, (2) evbuffer_prepend, (3) evbuffer...

7.5CVSS9.6AI score0.01085EPSS
CVE
CVE
added 2016/05/13 4:59 p.m.53 views

CVE-2016-4024

Integer overflow in imlib2 before 1.4.9 on 32-bit platforms allows remote attackers to execute arbitrary code via large dimensions in an image, which triggers an out-of-bounds heap memory write operation.

9.8CVSS9AI score0.09628EPSS
CVE
CVE
added 2018/04/13 4:29 p.m.53 views

CVE-2017-0366

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw allowing to evade SVG filter using default attribute values in DTD declaration.

5.4CVSS5.6AI score0.00422EPSS
CVE
CVE
added 2018/04/13 4:29 p.m.53 views

CVE-2017-0369

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw, allowing a sysops to undelete pages, although the page is protected against it.

6.5CVSS6.9AI score0.00154EPSS
CVE
CVE
added 2018/04/13 4:29 p.m.53 views

CVE-2017-0370

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw were Spam blacklist is ineffective on encoded URLs inside file inclusion syntax's link parameter.

5.3CVSS5.5AI score0.00258EPSS
CVE
CVE
added 2017/08/29 11:29 p.m.53 views

CVE-2017-13760

In The Sleuth Kit (TSK) 4.4.2, fls hangs on a corrupt exfat image in tsk_img_read() in tsk/img/img_io.c in libtskimg.a.

5.5CVSS5.5AI score0.00273EPSS
Total number of security vulnerabilities9127