VYPR

linux

by Debian

Source repositories

CVEs (3,007)

  • CVE-2013-4081Jun 9, 2013
    risk 0.00cvss epss 0.03

    The http_payload_subdissector function in epan/dissectors/packet-http.c in the HTTP dissector in Wireshark 1.6.x before 1.6.16 and 1.8.x before 1.8.8 does not properly determine when to use a recursive approach, which allows remote attackers to cause a denial of service (stack…

  • CVE-2013-4078Jun 9, 2013
    risk 0.00cvss epss 0.03

    epan/dissectors/packet-rdp.c in the RDP dissector in Wireshark 1.8.x before 1.8.8 does not validate return values during checks for data availability, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

  • CVE-2013-4077Jun 9, 2013
    risk 0.00cvss epss 0.03

    Array index error in the NBAP dissector in Wireshark 1.8.x before 1.8.8 allows remote attackers to cause a denial of service (application crash) via a crafted packet, related to nbap.cnf and packet-nbap.c.

  • CVE-2013-4076Jun 9, 2013
    risk 0.00cvss epss 0.04

    Buffer overflow in the dissect_iphc_crtp_fh function in epan/dissectors/packet-ppp.c in the PPP dissector in Wireshark 1.8.x before 1.8.8 allows remote attackers to cause a denial of service (application crash) via a crafted packet.

  • CVE-2013-4075Jun 9, 2013
    risk 0.00cvss epss 0.03

    epan/dissectors/packet-gmr1_bcch.c in the GMR-1 BCCH dissector in Wireshark 1.8.x before 1.8.8 does not properly initialize memory, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

  • CVE-2013-2852Jun 7, 2013
    risk 0.00cvss epss 0.01

    Format string vulnerability in the b43_request_firmware function in drivers/net/wireless/b43/main.c in the Broadcom B43 wireless driver in the Linux kernel through 3.9.4 allows local users to gain privileges by leveraging root access and including format string specifiers in an…

  • CVE-2013-2865Jun 5, 2013
    risk 0.00cvss epss 0.01

    Multiple unspecified vulnerabilities in Google Chrome before 27.0.1453.110 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

  • CVE-2013-2863Jun 5, 2013
    risk 0.00cvss epss 0.04

    Google Chrome before 27.0.1453.110 does not properly handle SSL sockets, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

  • CVE-2013-2862Jun 5, 2013
    risk 0.00cvss epss 0.01

    Skia, as used in Google Chrome before 27.0.1453.110, does not properly handle GPU acceleration, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

  • CVE-2013-2861Jun 5, 2013
    risk 0.00cvss epss 0.01

    Use-after-free vulnerability in the SVG implementation in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

  • CVE-2013-2860Jun 5, 2013
    risk 0.00cvss epss 0.01

    Use-after-free vulnerability in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving access to a database API by a worker process.

  • CVE-2013-2859Jun 5, 2013
    risk 0.00cvss epss 0.01

    Google Chrome before 27.0.1453.110 allows remote attackers to bypass the Same Origin Policy and trigger namespace pollution via unspecified vectors.

  • CVE-2013-2858Jun 5, 2013
    risk 0.00cvss epss 0.01

    Use-after-free vulnerability in the HTML5 Audio implementation in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

  • CVE-2013-2857Jun 5, 2013
    risk 0.00cvss epss 0.01

    Use-after-free vulnerability in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of images.

  • CVE-2013-2856Jun 5, 2013
    risk 0.00cvss epss 0.01

    Use-after-free vulnerability in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of input.

  • CVE-2013-2855Jun 5, 2013
    risk 0.00cvss epss 0.01

    The Developer Tools API in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

  • CVE-2002-2443May 29, 2013
    risk 0.00cvss epss 0.06

    schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 (aka krb5) before 1.11.3 does not properly validate UDP packets before sending responses, which allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via a forged packet that triggers a…

  • CVE-2013-3562May 25, 2013
    risk 0.00cvss epss 0.03

    Multiple integer signedness errors in the tvb_unmasked function in epan/dissectors/packet-websocket.c in the Websocket dissector in Wireshark 1.8.x before 1.8.7 allow remote attackers to cause a denial of service (application crash) via a malformed packet.

  • CVE-2013-3561May 25, 2013
    risk 0.00cvss epss 0.02

    Multiple integer overflows in Wireshark 1.8.x before 1.8.7 allow remote attackers to cause a denial of service (loop or application crash) via a malformed packet, related to a crash of the Websocket dissector, an infinite loop in the MySQL dissector, and a large loop in the ETCH…

  • CVE-2013-3560May 25, 2013
    risk 0.00cvss epss 0.02

    The dissect_dsmcc_un_download function in epan/dissectors/packet-mpeg-dsmcc.c in the MPEG DSM-CC dissector in Wireshark 1.8.x before 1.8.7 uses an incorrect format string, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

Page 129 of 151