- EPSS 7.56%
- Veröffentlicht 15.12.2014 18:59:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier does not properly handle attempts to send a large amount of ClientCutText data, which allows remote attackers to cause a denial of service (memor...
CVE-2014-6052
- EPSS 6.76%
- Veröffentlicht 15.12.2014 18:59:04
- Zuletzt bearbeitet 06.05.2026 22:30:45
The HandleRFBServerMessage function in libvncclient/rfbproto.c in LibVNCServer 0.9.9 and earlier does not check certain malloc return values, which allows remote VNC servers to cause a denial of service (application crash) or possibly execute arbitra...
- EPSS 10.78%
- Veröffentlicht 15.12.2014 18:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
The handle_headers function in mod_proxy_fcgi.c in the mod_proxy_fcgi module in the Apache HTTP Server 2.4.10 allows remote FastCGI servers to cause a denial of service (buffer over-read and daemon crash) via long response headers.
CVE-2014-8134
- EPSS 0.7%
- Veröffentlicht 12.12.2014 18:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
The paravirt_ops_setup function in arch/x86/kernel/kvm.c in the Linux kernel through 3.18 uses an improper paravirt_enabled setting for KVM guest kernels, which makes it easier for guest OS users to bypass the ASLR protection mechanism via a crafted ...
CVE-2014-8602
- EPSS 25.21%
- Veröffentlicht 11.12.2014 02:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
iterator.c in NLnet Labs Unbound before 1.5.1 does not limit delegation chaining, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a large or infinite number of referrals.
CVE-2014-8737
- EPSS 1.04%
- Veröffentlicht 09.12.2014 23:59:07
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple directory traversal vulnerabilities in GNU binutils 2.24 and earlier allow local users to delete arbitrary files via a .. (dot dot) or full path name in an archive to (1) strip or (2) objcopy or create arbitrary files via (3) a .. (dot dot) ...
CVE-2014-8504
- EPSS 6.2%
- Veröffentlicht 09.12.2014 23:59:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
Stack-based buffer overflow in the srec_scan function in bfd/srec.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly have other unspecified impact via a crafted file.
CVE-2014-8503
- EPSS 6.2%
- Veröffentlicht 09.12.2014 23:59:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
Stack-based buffer overflow in the ihex_scan function in bfd/ihex.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly have other unspecified impact via a crafted ihex file.
CVE-2014-8502
- EPSS 4.91%
- Veröffentlicht 09.12.2014 23:59:04
- Zuletzt bearbeitet 06.05.2026 22:30:45
Heap-based buffer overflow in the pe_print_edata function in bfd/peXXigen.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly have other unspecified impact via a truncated export table in a PE ...
CVE-2014-8501
- EPSS 5.16%
- Veröffentlicht 09.12.2014 23:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
The _bfd_XXi_swap_aouthdr_in function in bfd/peXXigen.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (out-of-bounds write) and possibly have other unspecified impact via a crafted NumberOfRvaAndSizes field in ...