Total
2700 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2012-2927 | 2 Atlassian, Tm Software | 4 Jira, Tempo, Tempo6.3.0 and 1 more | 2017-08-29 | 4.0 MEDIUM | N/A |
| The TM Software Tempo plugin before 6.4.3.1, 6.5.x before 6.5.0.2, and 7.x before 7.0.3 for Atlassian JIRA does not properly restrict the capabilities of third-party XML parsers, which allows remote authenticated users to cause a denial of service (resource consumption) via unspecified vectors. | |||||
| CVE-2012-2438 | 1 Awcm-cms | 1 Ar Web Content Manager | 2017-08-29 | 5.0 MEDIUM | N/A |
| ar web content manager (AWCM) 2.2 does not restrict the number of comment records that can be submitted through HTTP requests, which allows remote attackers to cause a denial of service (disk consumption) via the coment parameter to (1) show_video.php or (2) topic.php. | |||||
| CVE-2012-2385 | 1 Keith Winstein | 1 Mosh | 2017-08-29 | 4.0 MEDIUM | N/A |
| The terminal dispatcher in mosh before 1.2.1 allows remote authenticated users to cause a denial of service (long loop and CPU consumption) via an escape sequence with a large repeat count value. | |||||
| CVE-2012-2199 | 2 Ibm, Oracle | 2 Websphere Mq, Solaris | 2017-08-29 | 5.0 MEDIUM | N/A |
| The server message channel agent in the queue manager in the server in IBM WebSphere MQ 7.0.1 before 7.0.1.9, 7.1, and 7.5 on Solaris allows remote attackers to cause a denial of service (invalid address alignment exception and daemon crash) via vectors involving a multiplexed channel. | |||||
| CVE-2012-2147 | 1 Munin-monitoring | 1 Munin | 2017-08-29 | 5.0 MEDIUM | N/A |
| munin-cgi-graph in Munin 2.0 rc4 allows remote attackers to cause a denial of service (disk or memory consumption) via many image requests with large values in the (1) size_x or (2) size_y parameters. | |||||
| CVE-2012-2145 | 1 Apache | 1 Qpid | 2017-08-29 | 5.0 MEDIUM | N/A |
| Apache Qpid 0.17 and earlier does not properly restrict incoming client connections, which allows remote attackers to cause a denial of service (file descriptor consumption) via a large number of incomplete connections. | |||||
| CVE-2012-1813 | 1 C3-ilex | 1 Eoscada | 2017-08-29 | 7.8 HIGH | N/A |
| eosfailoverservice.exe in C3-ilex EOScada before 11.0.19.2 allows remote attackers to cause a denial of service by sending a large amount of data to TCP port 12000. | |||||
| CVE-2012-1811 | 1 C3-ilex | 1 Eoscada | 2017-08-29 | 7.8 HIGH | N/A |
| EOSDataServer.exe in C3-ilex EOScada before 11.0.19.2 allows remote attackers to cause a denial of service by sending a large amount of data to TCP port 24006. | |||||
| CVE-2012-1663 | 1 Gnu | 1 Gnutls | 2017-08-29 | 7.5 HIGH | N/A |
| Double free vulnerability in libgnutls in GnuTLS before 3.0.14 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted certificate list. | |||||
| CVE-2012-1616 | 2 Argyllcms, Color | 2 Argyllcms, Icclib | 2017-08-29 | 9.3 HIGH | N/A |
| Use-after-free vulnerability in icclib before 2.13, as used by Argyll CMS before 1.4 and possibly other programs, allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted ICC profile file. | |||||
| CVE-2012-1502 | 1 Pypam | 1 Pypam | 2017-08-29 | 7.5 HIGH | N/A |
| Double free vulnerability in the PyPAM_conv in PAMmodule.c in PyPam 0.5.0 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a NULL byte in a password string. | |||||
| CVE-2012-0383 | 1 Cisco | 1 Ios | 2017-08-29 | 7.8 HIGH | N/A |
| Memory leak in the NAT feature in Cisco IOS 12.4, 15.0, and 15.1 allows remote attackers to cause a denial of service (memory consumption, and device hang or reload) via SIP packets that require translation, related to a "memory starvation vulnerability," aka Bug ID CSCti35326. | |||||
| CVE-2011-4874 | 1 Microsys | 1 Promotic | 2017-08-29 | 7.9 HIGH | N/A |
| Use-after-free vulnerability in MICROSYS PROMOTIC before 8.1.7 allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (data corruption and application crash) via a crafted project (aka .pra) file. | |||||
| CVE-2011-4869 | 1 Unbound | 1 Unbound | 2017-08-29 | 7.8 HIGH | N/A |
| validator/val_nsec3.c in Unbound before 1.4.13p2 does not properly perform proof processing for NSEC3-signed zones, which allows remote DNS servers to cause a denial of service (daemon crash) via a malformed response that lacks expected NSEC3 records, a different vulnerability than CVE-2011-4528. | |||||
| CVE-2011-4219 | 1 Investintech | 1 Slimpdf Reader | 2017-08-29 | 9.3 HIGH | N/A |
| Investintech.com SlimPDF Reader does not prevent faulting-address data from affecting branch selection, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document. | |||||
| CVE-2011-4218 | 1 Investintech | 1 Slimpdf Reader | 2017-08-29 | 9.3 HIGH | N/A |
| Investintech.com SlimPDF Reader does not prevent faulting-instruction data from affecting write operations, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document. | |||||
| CVE-2011-4109 | 1 Openssl | 1 Openssl | 2017-08-29 | 9.3 HIGH | N/A |
| Double free vulnerability in OpenSSL 0.9.8 before 0.9.8s, when X509_V_FLAG_POLICY_CHECK is enabled, allows remote attackers to have an unspecified impact by triggering failure of a policy check. | |||||
| CVE-2011-4078 | 2 Php, Roundcube | 2 Php, Webmail | 2017-08-29 | 5.0 MEDIUM | N/A |
| include/iniset.php in Roundcube Webmail 0.5.4 and earlier, when PHP 5.3.7 or 5.3.8 is used, allows remote attackers to trigger a GET request for an arbitrary URL, and cause a denial of service (resource consumption and inbox outage), via a Subject header containing only a URL, a related issue to CVE-2011-3379. | |||||
| CVE-2011-3996 | 1 Controlsystemworks | 1 Csworks | 2017-08-29 | 5.0 MEDIUM | N/A |
| The LiveData Service in CSWorks before 2.0.4115.1 allows remote attackers to cause a denial of service (service crash) via crafted TCP packets. | |||||
| CVE-2011-3987 | 1 Daemon-tools | 1 Daemon Tools | 2017-08-29 | 4.9 MEDIUM | N/A |
| dtsoftbus01.sys in DAEMON Tools Lite before 4.41.3, Pro Standard before 4.41.0315, and Pro Advanced before 4.41.0315 allows local users to cause a denial of service (system crash) via an invalid DeviceIoControl request to \\.\dtsoftbusctl. | |||||