Headline

CVE-2016-0797

Multiple integer overflows in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allow remote attackers to cause a denial of service (heap memory corruption or NULL pointer dereference) or possibly have unspecified other impact via a long digit string that is mishandled by the (1) BN_dec2bn or (2) BN_hex2bn function, related to crypto/bn/bn.h and crypto/bn/bn_print.c.

8 years ago

CVE

Open in Source

#dos #git #ssl

The Bosch Ethernet switch PRA-ES8P2S with software version 1.01.05 runs its web server with root privilege. In combination with CVE-2022-23534 this could give an attacker root access to the switch.

2 years ago

CVE

Open in Source

#vulnerability #web #mac #windows #microsoft #linux #cisco #red_hat #dos #git #oracle #intel #perl #buffer_overflow #auth #ssh #ssl

CVE-2016-3471: Oracle Critical Patch Update - July 2016

Unspecified vulnerability in Oracle MySQL 5.5.45 and earlier and 5.6.26 and earlier allows local users to affect confidentiality, integrity, and availability via vectors related to Server: Option.

8 years ago

CVE

Open in Source

#sql #vulnerability #web #mac #windows #apple #google #linux #cisco #js #java #oracle #kubernetes #intel #auth #ssh #zero_day #postgres #docker #sap #ssl

CVE-2016-0642: Oracle Critical Patch Update Advisory - April 2016

Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect integrity and availability via vectors related to Federated.

8 years ago

CVE

Open in Source