VYPR

Boinc Client

by Berkeley

CVEs (5)

  • CVE-2013-7386Jun 2, 2014
    risk 0.00cvss epss 0.04

    Format string vulnerability in the PROJECT::write_account_file function in client/cs_account.cpp in BOINC, possibly 7.2.33, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via format string specifiers in the gui_urls item in an…

  • CVE-2013-2298Jun 2, 2014
    risk 0.00cvss epss 0.03

    Multiple stack-based buffer overflows in the XML parser in BOINC 7.x allow attackers to have unspecified impact via a crafted XML file, related to the scheduler.

  • CVE-2013-2019Jun 2, 2014
    risk 0.00cvss epss 0.02

    Stack-based buffer overflow in BOINC 6.10.58 and 6.12.34 allows remote attackers to have unspecified impact via multiple file_signature elements.

  • CVE-2011-5280Jun 2, 2014
    risk 0.00cvss epss 0.03

    Multiple stack-based buffer overflows in BOINC 6.13.x allow remote attackers to cause a denial of service (crash) via a long trickle-up to (1) client/cs_trickle.cpp or (2) db/db_base.cpp.

  • CVE-2009-0126Jan 15, 2009
    risk 0.00cvss epss 0.02

    The decrypt_public function in lib/crypt.cpp in the client in Berkeley Open Infrastructure for Network Computing (BOINC) 6.2.14 and 6.4.5 does not check the return value from the OpenSSL RSA_public_decrypt function, which allows remote attackers to bypass validation of the…