CVSS: 6.8EPSS: 0%CPEs: 20EXPL: 0CVE-2014-0401 – mysql: unspecified DoS vulnerability (CPU Jan 2014)
https://notcve.org/view.php?id=CVE-2014-0401
15 Jan 2014 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors. Vulnerabilidad no especificada en el componente MySQL Server en Oracle MySQL 5.1.72 y anteriores, 5.5.34 y anteriores, y 5.6.14 y anteriores que permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos. Buffer overflow in client/mysql.cc in Oracle MySQL ... • http://osvdb.org/102071 •
CVSS: 6.8EPSS: 0%CPEs: 20EXPL: 0CVE-2014-0437 – mysql: unspecified vulnerability related to Optimizer DoS (CPU Jan 2014)
https://notcve.org/view.php?id=CVE-2014-0437
15 Jan 2014 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer. Vulnerabilidad no especificada en el componente MySQL Server de Oracle MySQL 5.1.72 y anteriores, 5.5.34 y anteriores y 5.6.14 y anteriores permite a usuarios remotos autenticados afectar la disponibilidad a través de vectores desconocidos relacionados con Optimizer. Buffer ove... • http://osvdb.org/102074 •
CVSS: 8.1EPSS: 0%CPEs: 13EXPL: 0CVE-2014-0420 – mysql: unspecified vulnerability related to Replication DoS (CPU Jan 2014)
https://notcve.org/view.php?id=CVE-2014-0420
15 Jan 2014 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.34 and earlier, and 5.6.14 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Replication. Vulnerabilidad no especificada en el componente MySQL Server de Oracle MySQL 5.534 y anteriores, y 5.6.14 y anteriores permite a usuarios remotos autenticados afectar la disponibilidad a través de vectores desconocidos relacionados con Replication. Buffer overflow in client/mysql.cc in Oracle M... • http://osvdb.org/102077 •
CVSS: 9.1EPSS: 0%CPEs: 20EXPL: 0CVE-2014-0393 – mysql: unspecified vulnerability related to InnoDB affecting integrity (CPU Jan 2014)
https://notcve.org/view.php?id=CVE-2014-0393
15 Jan 2014 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 and earlier, and 5.6.13 and earlier allows remote authenticated users to affect integrity via unknown vectors related to InnoDB. Vulnerabilidad no especificada en el componente MySQL Server de Oracle MySQL 5.1.71 y anteriores, 5.5.33 y anteriores y 5.6.13 y anteriores permite a usuarios remotos autenticados afectar la integridad a través de vectores desconodidos relacionados con InnoDB. Buffer overflow in clie... • http://osvdb.org/102075 •
CVSS: 9.1EPSS: 0%CPEs: 12EXPL: 0CVE-2013-5891 – mysql: unspecified vulnerability related to Partition DoS (CPU Jan 2014)
https://notcve.org/view.php?id=CVE-2013-5891
15 Jan 2014 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.33 and earlier and 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Partition. Vulnerabilidad no especificada en el componente MySQL Server en Oracle MYSQL 5.5.33 y anteriores y 5.6.13 y anteriores permite a usuarios autenticados remotamente afectar a la disponibilidad a través de vectores desconocidos relacionados con "Partition". Buffer overflow in client/mysql.cc in Oracle... • http://osvdb.org/102070 •
CVSS: 7.5EPSS: 5%CPEs: 20EXPL: 0CVE-2013-5908 – mysql: unspecified vulnerability related to Error Handling DoS (CPU Jan 2014)
https://notcve.org/view.php?id=CVE-2013-5908
15 Jan 2014 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote attackers to affect availability via unknown vectors related to Error Handling. Vulnerabilidad no especificada en el componente MySQL Server en Oracle MySQL 5.1.72 y anteriores, 5.5.34 y anteriores, y 5.6.14 y anteriores permite a atacantes remotos afectar a la disponibilidad a través de vectores desconocidos relacionados con Error Handling. Buffer overflow in ... • http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698 •
CVSS: 7.5EPSS: 0%CPEs: 20EXPL: 0CVE-2014-0386 – mysql: unspecified vulnerability related to Optimizer DoS (CPU Jan 2014)
https://notcve.org/view.php?id=CVE-2014-0386
15 Jan 2014 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 and earlier, and 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer. Vulnerabilidad no especificada en el componente de servidor MySQL en Oracle MySQL 5.1.71 y anteriores, 5.5.33 y anteriores, y 5.6.13 y anteriores permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos relacionados con Optimizer. Bu... • http://osvdb.org/102069 •
CVSS: 10.0EPSS: 21%CPEs: 25EXPL: 3CVE-2012-6151 – Net-SNMP - SNMPD AgentX Subagent Timeout Denial of Service
https://notcve.org/view.php?id=CVE-2012-6151
13 Dec 2013 — Net-SNMP 5.7.1 and earlier, when AgentX is registering to handle a MIB and processing GETNEXT requests, allows remote attackers to cause a denial of service (crash or infinite loop, CPU consumption, and hang) by causing the AgentX subagent to timeout. Net-SNMP 5.7.1 y anteriores, cuando AgentX está registrando para manejar una MIB y tramitación de solicitudes de GETNEXT, permite a atacantes remotos provocar una denegación de servicio (caída o bucle infinito, consumo de CPU, y bloqueo) causando timeout en el... • https://www.exploit-db.com/exploits/38854 • CWE-399: Resource Management Errors •
CVSS: 6.5EPSS: 0%CPEs: 9EXPL: 2CVE-2012-6150 – samba: pam_winbind fails open when non-existent group specified to require_membership_of
https://notcve.org/view.php?id=CVE-2012-6150
03 Dec 2013 — The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind.c in Samba through 4.1.2 handles invalid require_membership_of group names by accepting authentication by any user, which allows remote authenticated users to bypass intended access restrictions in opportunistic circumstances by leveraging an administrator's pam_winbind configuration-file mistake. La función winbind_name_list_to_sid_string_list en nsswitch/pam_winbind.c en Samba hasta v4.1.2 maneja nombres de grupo require_membership_... • http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136864.html • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 22%CPEs: 15EXPL: 0CVE-2013-6712 – php: heap-based buffer over-read in DateInterval
https://notcve.org/view.php?id=CVE-2013-6712
28 Nov 2013 — The scan function in ext/date/lib/parse_iso_intervals.c in PHP through 5.5.6 does not properly restrict creation of DateInterval objects, which might allow remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted interval specification. La función de análisis en ext/date/lib/parse_iso_intervals.c de PHP hasta la versión 5.5.6 no restringe adecuadamente la creación de objetos DateInterval, lo que podría permitir a atacantes remotos provocar una denegación de servicio (desbord... • http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=12fe4e90be7bfa2a763197079f68f5568a14e071 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122: Heap-based Buffer Overflow •