CVE-2015-3414
- EPSS 5.65%
- Veröffentlicht 24.04.2015 17:59:00
- Zuletzt bearbeitet 12.04.2025 10:46:40
SQLite before 3.8.9 does not properly implement the dequoting of collation-sequence names, which allows context-dependent attackers to cause a denial of service (uninitialized memory access and application crash) or possibly have unspecified other im...
CVE-2013-0340
- EPSS 0.07%
- Veröffentlicht 21.01.2014 18:55:09
- Zuletzt bearbeitet 25.11.2025 17:15:47
expat before version 2.4.0 does not properly handle entities expansion unless an application developer uses the XML_SetEntityDeclHandler function, which allows remote attackers to cause a denial of service (resource consumption), send HTTP requests t...
CVE-2013-3951
- EPSS 0.06%
- Veröffentlicht 05.06.2013 14:39:55
- Zuletzt bearbeitet 11.04.2025 00:51:21
sys/openbsd/stack_protector.c in libc in Apple iOS 6.1.3 and Mac OS X 10.8.x does not properly parse the Apple strings employed in the user-space stack-cookie implementation, which allows local users to bypass cookie randomization by executing a prog...