Max CVSS 10.0 Min CVSS 2.1 Total Count107
IDCVSSSummaryLast (major) updatePublished
CVE-2018-1041 5.0
A vulnerability was found in the way RemoteMessageChannel, introduced in jboss-remoting versions 3.3.10, reads from an empty buffer. An attacker could use this flaw to cause denial of service via high CPU caused by an infinite loop.
15-02-2018 - 12:29 15-02-2018 - 12:29
CVE-2008-1728 4.0
ConnectionManagerImpl.java in Ignite Realtime Openfire 3.4.5 allows remote authenticated users to cause a denial of service (daemon outage) by triggering large outgoing queues without reading messages.
19-02-2017 - 00:22 11-04-2008 - 15:05
CVE-2014-9708 5.0
Embedthis Appweb before 4.6.6 and 5.x before 5.2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via a Range header with an empty value, as demonstrated by "Range: x=,".
27-01-2017 - 21:59 31-03-2015 - 10:59
CVE-2014-0114 7.5
Apache Commons BeanUtils, as distributed in lib/commons-beanutils-1.8.0.jar in Apache Struts 1.x through 1.3.10 and in other products requiring commons-beanutils through 1.9.2, does not suppress the class property, which allows remote attackers to "m
06-01-2017 - 21:59 30-04-2014 - 06:49
CVE-2014-0113 7.5
CookieInterceptor in Apache Struts before 2.3.16.2, when a wildcard cookiesName value is used, does not properly restrict access to the getClass method, which allows remote attackers to "manipulate" the ClassLoader and execute arbitrary code via a cr
06-01-2017 - 21:59 29-04-2014 - 06:37
CVE-2014-0112 7.5
ParametersInterceptor in Apache Struts before 2.3.16.2 does not properly restrict access to the getClass method, which allows remote attackers to "manipulate" the ClassLoader and execute arbitrary code via a crafted request. NOTE: this vulnerability
06-01-2017 - 21:59 29-04-2014 - 06:37
CVE-2014-8132 5.0
Double free vulnerability in the ssh_packet_kexinit function in kex.c in libssh 0.5.x and 0.6.x before 0.6.4 allows remote attackers to cause a denial of service via a crafted kexinit packet.
02-01-2017 - 21:59 28-12-2014 - 19:59
CVE-2010-5107 5.0
The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodi
28-11-2016 - 14:07 07-03-2013 - 15:55
CVE-2005-2904 5.0
Zebedee 2.4.1, when "allowed redirection port" is not set, allows remote attackers to cause a denial of service (application crash) via a zero in the port number of the protocol option header, which triggers an assert error in the makeConnection func
17-10-2016 - 23:31 14-09-2005 - 16:03
CVE-2005-2806 5.0
client.cpp in BNBT EasyTracker 7.7r3.2004.10.27 and earlier allows remote attackers to cause a denial of service (application hang) via an HTTP header containing only a ":" (colon), possibly leading to an integer signedness error due to a missing fie
17-10-2016 - 23:30 06-09-2005 - 18:03
CVE-2005-2719 5.0
Ventrilo 2.1.2 through 2.3.0 allows remote attackers to cause a denial of service (application crash) via a status packet that contains less data than specified in the packet header sent to UDP port 3784.
17-10-2016 - 23:29 30-08-2005 - 07:45
CVE-2005-2577 5.0
Wyse Winterm 1125SE running firmware 4.2.09f or 4.4.061f allows remote attackers to cause a denial of service (device crash) via a packet with a zero in the IP option length field.
17-10-2016 - 23:28 16-08-2005 - 00:00
CVE-2004-1035 6.4
Multiple integer signedness errors in (1) imapcommon.c, (2) main.c, (3) request.c, and (4) select.c for up-imapproxy IMAP proxy 1.2.2 allow remote attackers to cause a denial of service (server crash) and possibly leak sensitive information via certa
17-10-2016 - 22:50 01-03-2005 - 00:00
CVE-2004-0808 5.0
The process_logon_packet function in the nmbd server for Samba 3.0.6 and earlier, when domain logons are enabled, allows remote attackers to cause a denial of service via a SAM_UAS_CHANGE request with a length value that is larger than the number of
17-10-2016 - 22:49 31-12-2004 - 00:00
CVE-2004-0807 5.0
Samba 3.0.6 and earlier allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via certain malformed requests that cause new processes to be spawned and enter an infinite loop.
17-10-2016 - 22:49 13-09-2004 - 00:00
CVE-2004-0626 5.0
The tcp_find_option function of the netfilter subsystem in Linux kernel 2.6, when using iptables and TCP options rules, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a large option length that produces a
17-10-2016 - 22:47 06-12-2004 - 00:00
CVE-2004-0605 5.0
Non-registered IRC users using (1) ircd-hybrid 7.0.1 and earlier, (2) ircd-ratbox 1.5.1 and earlier, or (3) ircd-ratbox 2.0rc6 and earlier do not have a rate-limit imposed, which could allow remote attackers to cause a denial of service by repeatedly
17-10-2016 - 22:46 06-12-2004 - 00:00
CVE-2004-0230 5.0
TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that u
17-10-2016 - 22:42 18-08-2004 - 00:00
CVE-2003-0795 5.0
The vty layer in Quagga before 0.96.4, and Zebra 0.93b and earlier, does not verify that sub-negotiation is taking place when processing the SE marker, which allows remote attackers to cause a denial of service (crash) via a malformed telnet command
17-10-2016 - 22:37 15-12-2003 - 00:00
CVE-2003-0619 5.0
Integer signedness error in the decode_fh function of nfs3xdr.c in Linux kernel before 2.4.21 allows remote attackers to cause a denial of service (kernel panic) via a negative size value within XDR data of an NFSv3 procedure call.
17-10-2016 - 22:35 27-08-2003 - 00:00
CVE-2001-0954 5.0
Lotus Domino 5.0.5 and 5.0.8, and possibly other versions, allows remote attackers to cause a denial of service (block access to databases that have not been previously accessed) via a URL that includes the . (dot) directory.
17-10-2016 - 22:13 07-12-2001 - 00:00
CVE-2000-0341 5.0
ATRIUM Cassandra NNTP Server 1.10 allows remote attackers to cause a denial of service via a long login name.
17-10-2016 - 22:06 01-05-2000 - 00:00
CVE-2000-0272 7.8
RealNetworks RealServer allows remote attackers to cause a denial of service by sending malformed input to the server at port 7070.
17-10-2016 - 22:06 20-04-2000 - 00:00
CVE-1999-1533 7.5
Eicon Technology Diva LAN ISDN modem allows a remote attacker to cause a denial of service (hang) via a long password argument to the login.htm file in its HTTP service.
17-10-2016 - 22:05 07-11-1999 - 00:00
CVE-1999-1336 5.0
3Com HiPer Access Router Card (HiperARC) 4.0 through 4.2.29 allows remote attackers to cause a denial of service (reboot) via a flood of IAC packets to the telnet port.
17-10-2016 - 22:03 12-08-1999 - 00:00
CVE-1999-1228 7.5
Various modems that do not implement a guard time, or are configured with a guard time of 0, can allow remote attackers to execute arbitrary modem commands such as ATH, ATH0, etc., via a "+++" sequence that appears in ICMP packets, the subject of an
17-10-2016 - 22:02 27-09-1998 - 00:00
CVE-1999-1201 5.0
Windows 95 and Windows 98 systems, when configured with multiple TCP/IP stacks bound to the same MAC address, allow remote attackers to cause a denial of service (traffic amplification) via a certain ICMP echo (ping) packet, which causes all stacks t
17-10-2016 - 22:02 06-02-1999 - 00:00
CVE-2013-1864 4.3
The Portable Tool Library (aka PTLib) before 2.10.10, as used in Ekiga before 4.0.1, does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted PXM
14-01-2015 - 12:24 23-05-2014 - 10:55
CVE-2012-5621 5.0
lib/engine/components/opal/opal-call.cpp in ekiga before 4.0.0 allows remote attackers to cause a denial of service (crash) via an OPAL connection with a party name that contains invalid UTF-8 strings.
30-09-2014 - 14:52 29-09-2014 - 18:55
CVE-2010-4755 4.0
The (1) remote_glob function in sftp-glob.c and the (2) process_put function in sftp.c in OpenSSH 5.8 and earlier, as used in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, OpenBSD 4.7, and other products, allow remote authenticated users to cause a denial of se
08-08-2014 - 17:01 02-03-2011 - 15:00
CVE-2007-2964 5.0
The fsmsh.dll host module in F-Secure Policy Manager Server 7.00 and earlier allows remote attackers to cause a denial of service (application crash) via NTFS reserved words in filenames in URLs.
30-10-2012 - 22:36 31-05-2007 - 19:30
CVE-2007-2876 6.1
The sctp_new function in (1) ip_conntrack_proto_sctp.c and (2) nf_conntrack_proto_sctp.c in Netfilter in Linux kernel 2.6 before 2.6.20.13, and 2.6.21.x before 2.6.21.4, allows remote attackers to cause a denial of service by causing certain invalid
30-10-2012 - 22:36 11-06-2007 - 19:30
CVE-2011-5000 3.5
The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and earlier, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory consumption) via a large value in a certain length fi
21-07-2012 - 23:33 05-04-2012 - 10:55
CVE-2006-2934 5.0
SCTP conntrack (ip_conntrack_proto_sctp.c) in netfilter for Linux kernel 2.6.17 before 2.6.17.3 and 2.6.16 before 2.6.16.23 allows remote attackers to cause a denial of service (crash) via a packet without any chunks, which causes a variable to conta
19-03-2012 - 00:00 30-06-2006 - 17:05
CVE-2011-4063 6.8
chan_sip.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.7.1 and 10.x before 10.0.0-rc1 does not properly initialize variables during request parsing, which allows remote authenticated users to cause a denial of service (daemon c
13-02-2012 - 23:09 21-10-2011 - 06:55
CVE-2009-2346 7.8
The IAX2 protocol implementation in Asterisk Open Source 1.2.x before 1.2.35, 1.4.x before 1.4.26.2, 1.6.0.x before 1.6.0.15, and 1.6.1.x before 1.6.1.6; Business Edition B.x.x before B.2.5.10, C.2.x before C.2.4.3, and C.3.x before C.3.1.1; and s800
21-12-2011 - 00:00 08-09-2009 - 14:30
CVE-2011-2665 5.0
reqresp_parser.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.4.3 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a SIP packet with a Contact header that lacks a < (less than)
06-09-2011 - 23:17 06-07-2011 - 15:55
CVE-2011-2535 5.0
chan_iax2.c in the IAX2 channel driver in Asterisk Open Source 1.4.x before 1.4.41.1, 1.6.2.x before 1.6.2.18.1, and 1.8.x before 1.8.4.3, and Asterisk Business Edition C.3 before C.3.7.3, accesses a memory address contained in an option control fram
06-09-2011 - 23:17 06-07-2011 - 15:55
CVE-2011-2529 5.0
chan_sip.c in the SIP channel driver in Asterisk Open Source 1.6.x before 1.6.2.18.1 and 1.8.x before 1.8.4.3 does not properly handle '\0' characters in SIP packets, which allows remote attackers to cause a denial of service (memory corruption) or p
06-09-2011 - 23:17 06-07-2011 - 15:55
CVE-2011-2216 5.0
reqresp_parser.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.4.2 does not initialize certain strings, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a malformed Contac
06-09-2011 - 23:17 06-06-2011 - 15:55
CVE-2011-1599 9.0
manager.c in the Manager Interface in Asterisk Open Source 1.4.x before 1.4.40.1, 1.6.1.x before 1.6.1.25, 1.6.2.x before 1.6.2.17.3, and 1.8.x before 1.8.3.3 and Asterisk Business Edition C.x.x before C.3.6.4 does not properly check for the system p
06-09-2011 - 23:16 26-04-2011 - 20:55
CVE-2011-1507 5.0
Asterisk Open Source 1.4.x before 1.4.40.1, 1.6.1.x before 1.6.1.25, 1.6.2.x before 1.6.2.17.3, and 1.8.x before 1.8.3.3 and Asterisk Business Edition C.x.x before C.3.6.4 do not restrict the number of unauthenticated sessions to certain interfaces,
06-09-2011 - 23:16 26-04-2011 - 20:55
CVE-2006-5779 5.0
OpenLDAP before 2.3.29 allows remote attackers to cause a denial of service (daemon crash) via LDAP BIND requests with long authcid names, which triggers an assertion failure.
26-08-2011 - 00:00 07-11-2006 - 13:07
CVE-2006-0883 5.0
OpenSSH on FreeBSD 5.3 and 5.4, when used with OpenPAM, does not properly handle when a forked child process terminates during PAM authentication, which allows remote attackers to cause a denial of service (client connection refusal) by connecting mu
26-08-2011 - 00:00 06-03-2006 - 21:02
CVE-2011-1175 5.0
tcptls.c in the TCP/TLS server in Asterisk Open Source 1.6.1.x before 1.6.1.23, 1.6.2.x before 1.6.2.17.1, and 1.8.x before 1.8.3.1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) by establishing many
23-08-2011 - 23:16 31-03-2011 - 18:55
CVE-2011-1174 5.0
manager.c in Asterisk Open Source 1.6.1.x before 1.6.1.24, 1.6.2.x before 1.6.2.17.2, and 1.8.x before 1.8.3.2 allows remote attackers to cause a denial of service (CPU and memory consumption) via a series of manager sessions involving invalid data.
23-08-2011 - 23:16 31-03-2011 - 18:55
CVE-2006-6554 5.0
Unspecified vulnerability in Kerio MailServer before 6.3.1 allows remote attackers to cause a denial of service (segmentation fault and service stop) via certain long LDAP queries, as demonstrated by vd_kms6.pm.
25-07-2011 - 00:00 14-12-2006 - 13:28
CVE-2006-1329 5.0
The SASL negotiation in Jabber Studio jabberd before 2.0s11 allows remote attackers to cause a denial of service ("c2s segfault") by sending a "response stanza before an auth stanza".
16-06-2011 - 00:00 20-03-2006 - 20:06
CVE-2006-3122 5.0
The supersede_lease function in memory.c in ISC DHCP (dhcpd) server 2.0pl5 allows remote attackers to cause a denial of service (application crash) via a DHCPDISCOVER packet with a 32 byte client-identifier, which causes the packet to be interpreted
13-06-2011 - 00:00 09-08-2006 - 18:04
CVE-2005-3534 7.5
Buffer overflow in the Network Block Device (nbd) server 2.7.5 and earlier, and 2.8.0 through 2.8.2, allows remote attackers to execute arbitrary code via a large request, which is written past the end of the buffer because nbd does not account for m
02-06-2011 - 00:00 22-12-2005 - 16:03
CVE-2007-4158 7.8
Memory leak in TIBCO Rendezvous (RV) daemon (rvd) 7.5.2, 7.5.3 and 7.5.4 allows remote attackers to cause a denial of service (memory consumption) via a packet with a length field of zero, a different vulnerability than CVE-2006-2830.
07-04-2011 - 00:00 03-08-2007 - 17:17
CVE-2008-3449 5.0
MailEnable Professional 3.5.2 and Enterprise 3.52 allow remote attackers to cause a denial of service (crash) via multiple IMAP connection requests to the same folder.
07-03-2011 - 22:10 04-08-2008 - 13:41
CVE-2008-3264 7.8
The FWDOWNL firmware-download implementation in Asterisk Open Source 1.0.x, 1.2.x before 1.2.30, and 1.4.x before 1.4.21.2; Business Edition A.x.x, B.x.x before B.2.5.4, and C.x.x before C.1.10.3; AsteriskNOW; Appliance Developer Kit 0.x.x; and s800i
07-03-2011 - 22:10 24-07-2008 - 11:41
CVE-2008-3263 7.8
The IAX2 protocol implementation in Asterisk Open Source 1.0.x, 1.2.x before 1.2.30, and 1.4.x before 1.4.21.2; Business Edition A.x.x, B.x.x before B.2.5.4, and C.x.x before C.1.10.3; AsteriskNOW; Appliance Developer Kit 0.x.x; and s800i 1.0.x befor
07-03-2011 - 22:10 22-07-2008 - 19:41
CVE-2008-1897 4.3
The IAX2 channel driver (chan_iax2) in Asterisk Open Source 1.0.x, 1.2.x before 1.2.28, and 1.4.x before 1.4.19.1; Business Edition A.x.x, B.x.x before B.2.5.2, and C.x.x before C.1.8.1; AsteriskNOW before 1.0.3; Appliance Developer Kit 0.x.x; and s8
07-03-2011 - 22:08 23-04-2008 - 12:05
CVE-2008-0927 5.0
dhost.exe in Novell eDirectory 8.7.3 before sp10 and 8.8.2 allows remote attackers to cause a denial of service (CPU consumption) via an HTTP request with (1) multiple Connection headers or (2) a Connection header with multiple comma-separated values
07-03-2011 - 22:05 14-04-2008 - 12:05
CVE-2008-0243 7.8
Unspecified vulnerability in Lotus Domino 7.0.2 before Fix Pack 3 allows attackers to cause a denial of service via unknown vectors.
07-03-2011 - 22:04 11-01-2008 - 21:46
CVE-2007-4516 4.3
The Volume Manager Scheduler Service (aka VxSchedService.exe) in Symantec Veritas Storage Foundation 5.0 for Windows allows remote attackers to cause a denial of service (daemon crash or hang) via malformed packets.
07-03-2011 - 21:58 21-02-2008 - 15:44
CVE-2007-0634 7.8
Unspecified vulnerability in Sun Solaris 10 before 20070130 allows remote attackers to cause a denial of service (system crash) via certain ICMP packets.
07-03-2011 - 21:50 31-01-2007 - 16:28
CVE-2006-3085 7.8
xt_sctp in netfilter for Linux kernel before 2.6.17.1 allows attackers to cause a denial of service (infinite loop) via an SCTP chunk with a 0 length.
07-03-2011 - 21:37 23-06-2006 - 06:02
CVE-2006-2271 7.8
The ECNE chunk handling in Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (kernel panic) via an unexpected chunk when the session is in CLOSED state.
07-03-2011 - 21:35 09-05-2006 - 12:02
CVE-2006-1527 5.0
The SCTP-netfilter code in Linux kernel before 2.6.16.13 allows remote attackers to trigger a denial of service (infinite loop) via unknown vectors that cause an invalid SCTP chunk size to be processed by the for_each_sctp_chunk function.
07-03-2011 - 21:33 03-05-2006 - 18:02
CVE-2006-1158 7.8
Kerio MailServer before 6.1.3 Patch 1 allows remote attackers to cause a denial of service (application crash) via a crafted IMAP LOGIN command.
07-03-2011 - 21:32 12-03-2006 - 15:02
CVE-2006-0717 5.0
IBM Tivoli Directory Server 6.0 allows remote attackers to cause a denial of service (crash) via a crafted LDAP request, as demonstrated by test 2532 in the ProtoVer Sample LDAP test suite.
07-03-2011 - 21:30 15-02-2006 - 06:06
CVE-2006-0647 5.0
LDAP service in Sun Java System Directory Server 5.2, running on Linux and possibly other platforms, allows remote attackers to cause a denial of service (memory allocation error) via an LDAP packet with a crafted subtree search request, as demonstra
07-03-2011 - 21:30 13-02-2006 - 06:06
CVE-2006-0580 5.0
IBM Lotus Domino Server 7.0 allows remote attackers to cause a denial of service (segmentation fault) via a crafted packet to the LDAP port (389/TCP).
07-03-2011 - 21:30 07-02-2006 - 20:02
CVE-2006-0530 5.0
Computer Associates (CA) Message Queuing (CAM / CAFT) before 1.07 Build 220_16 and 1.11 Build 29_20, as used in multiple CA products, allows remote attackers to cause a denial of service via spoofed CAM control messages.
07-03-2011 - 21:30 02-02-2006 - 15:06
CVE-2006-0529 5.0
Computer Associates (CA) Message Queuing (CAM / CAFT) before 1.07 Build 220_16 and 1.11 Build 29_20, as used in multiple CA products, allows remote attackers to cause a denial of service via a crafted message to TCP port 4105.
07-03-2011 - 21:30 02-02-2006 - 15:06
CVE-2006-0309 4.0
Linksys BEFVP41 VPN Router 2.0 with firmware 1.01.04 allows remote attackers on the local network, to cause a denial of service via IP packets with a null IP option length.
07-03-2011 - 21:29 18-01-2006 - 20:03
CVE-2005-4216 7.8
The Administration Service (FMSAdmin.exe) in Macromedia Flash Media Server 2.0 r1145 allows remote attackers to cause a denial of service (application crash) via a malformed request with a single character to port 1111.
07-03-2011 - 21:27 14-12-2005 - 06:03
CVE-2005-2342 7.8
Research in Motion (RIM) BlackBerry Router allows remote attackers to cause a denial of service (communication disruption) via crafted Server Routing Protocol (SRP) packets.
07-03-2011 - 21:24 31-12-2005 - 00:00
CVE-2005-0398 5.0
The KAME racoon daemon in ipsec-tools before 0.5 allows remote attackers to cause a denial of service (crash) via malformed ISAKMP packets.
07-03-2011 - 21:19 14-03-2005 - 00:00
CVE-2004-0389 7.8
RealNetworks Helix Universal Server 9.0.1 and 9.0.2 allows remote attackers to cause a denial of service (crash) via malformed requests that trigger a null dereference, as demonstrated using (1) GET_PARAMETER or (2) DESCRIBE requests.
07-03-2011 - 21:15 01-06-2004 - 00:00
CVE-2010-1152 5.0
memcached.c in memcached before 1.4.3 allows remote attackers to cause a denial of service (daemon hang or crash) via a long line that triggers excessive memory allocation. NOTE: some of these details are obtained from third party information.
01-03-2011 - 02:01 12-04-2010 - 14:30
CVE-2009-3862 5.0
The NDSD process in Novell eDirectory 8.7.3 before 8.7.3.10 ftf2 and eDirectory 8.8 before 8.8.5 ftf1 does not properly handle certain LDAP search requests, which allows remote attackers to cause a denial of service (application hang) via a search re
05-11-2009 - 00:00 04-11-2009 - 13:30
CVE-1999-0015 5.0
Teardrop IP denial of service.
04-03-2009 - 00:00 16-12-1997 - 00:00
CVE-2009-0609 7.8
Sun Java System Directory Proxy Server in Sun Java System Directory Server Enterprise Edition 6.0 through 6.3, when a JDBC data source is used, does not properly handle (1) a long value in an ADD or (2) long string attributes, which allows remote att
18-02-2009 - 00:00 17-02-2009 - 12:30
CVE-2008-1923 7.1
The IAX2 channel driver (chan_iax2) in Asterisk 1.2 before revision 72630 and 1.4 before revision 65679, when configured to allow unauthenticated calls, sends "early audio" to an unverified source IP address of a NEW message, which allows remote atta
15-11-2008 - 02:12 23-04-2008 - 12:05
CVE-2006-0900 7.8
nfsd in FreeBSD 6.0 kernel allows remote attackers to cause a denial of service via a crafted NFS mount request, as demonstrated by the ProtoVer NFS test suite.
10-09-2008 - 16:03 27-02-2006 - 14:06
CVE-2000-0482 5.0
Check Point Firewall-1 allows remote attackers to cause a denial of service by sending a large number of malformed fragmented IP packets.
10-09-2008 - 15:04 06-06-2000 - 00:00
CVE-2000-0474 7.8
Real Networks RealServer 7.x allows remote attackers to cause a denial of service via a malformed request for a page in the viewsource directory.
10-09-2008 - 15:04 01-06-2000 - 00:00
CVE-2000-0470 7.5
Allegro RomPager HTTP server allows remote attackers to cause a denial of service via a malformed authentication request.
10-09-2008 - 15:04 01-06-2000 - 00:00
CVE-2000-0262 5.0
The AVM KEN! ISDN Proxy server allows remote attackers to cause a denial of service via a malformed request.
10-09-2008 - 15:03 12-04-2000 - 00:00
CVE-2000-0001 5.0
RealMedia server allows remote attackers to cause a denial of service via a long ramgen request.
10-09-2008 - 00:00 23-12-1999 - 00:00
CVE-1999-0770 2.1
Firewall-1 sets a long timeout for connections that begin with ACK or other packets except SYN, allowing an attacker to conduct a denial of service via a large number of connection attempts to unresponsive systems.
09-09-2008 - 08:35 29-07-1999 - 00:00
CVE-1999-0746 5.0
A default configuration of in.identd in SuSE Linux waits 120 seconds between requests, allowing a remote attacker to conduct a denial of service.
09-09-2008 - 08:35 16-08-1999 - 00:00
CVE-1999-0431 5.0
Linux 2.2.3 and earlier allow a remote attacker to perform an IP fragmentation attack, causing a denial of service.
09-09-2008 - 08:34 01-03-1999 - 00:00
CVE-1999-0273 5.0
Denial of service through Solaris 2.5.1 telnet by sending ^D characters.
09-09-2008 - 08:34 01-01-1998 - 00:00
CVE-1999-0258 5.0
Bonk variation of teardrop IP fragmentation denial of service.
09-09-2008 - 08:34 13-02-1998 - 00:00
CVE-1999-0257 5.0
Nestea variation of teardrop IP fragmentation denial of service.
09-09-2008 - 08:34 01-04-1998 - 00:00
CVE-1999-0218 5.0
Livingston portmaster machines could be rebooted via a series of commands.
09-09-2008 - 08:34 01-10-1995 - 00:00
CVE-1999-0153 5.0
Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke.
09-09-2008 - 08:33 01-07-1997 - 00:00
CVE-1999-0103 5.0
Echo and chargen, or other combinations of UDP services, can be used in tandem to flood the server, a.k.a. UDP bomb or UDP packet storm.
09-09-2008 - 08:33 08-02-1996 - 00:00
CVE-1999-0060 5.0
Attackers can cause a denial of service in Ascend MAX and Pipeline routers with a malformed packet to the discard port, which is used by the Java Configurator tool.
09-09-2008 - 08:33 16-03-1998 - 00:00
CVE-1999-0016 5.0
Land IP denial of service.
09-09-2008 - 08:33 01-12-1997 - 00:00
CVE-1999-0918 7.8
Denial of service in various Windows systems via malformed, fragmented IGMP packets.
09-09-2008 - 00:00 03-07-1999 - 00:00
CVE-2008-0638 9.3
Heap-based buffer overflow in the Veritas Enterprise Administrator (VEA) service (aka vxsvc.exe) in Symantec Veritas Storage Foundation 5.0 allows remote attackers to execute arbitrary code via a packet with a crafted value of a certain size field, w
05-09-2008 - 17:35 21-02-2008 - 15:44
CVE-2006-1206 5.0
Matt Johnston Dropbear SSH server 0.47 and earlier, as used in embedded Linux devices and on general-purpose operating systems, allows remote attackers to cause a denial of service (connection slot exhaustion) via a large number of connection attempt
05-09-2008 - 17:01 13-03-2006 - 20:06
CVE-2005-1138 5.0
Unknown vulnerability in WebMail in Kerio MailServer before 6.0.9 allows remote attackers to cause a denial of service (CPU consumption) via certain e-mail messages.
05-09-2008 - 16:48 18-04-2005 - 00:00
CVE-2005-0814 5.0
Unknown vulnerability in lshd in Lysator LSH 1.x and 2.x before 2.0.1 allows remote attackers to cause a denial of service via unknown vectors.
05-09-2008 - 16:47 02-05-2005 - 00:00
CVE-2004-0829 5.0
smbd in Samba before 2.2.11 allows remote attackers to cause a denial of service (daemon crash) by sending a FindNextPrintChangeNotify request without a previous FindFirstPrintChangeNotify, as demonstrated by the SMB client in Windows XP SP2.
05-09-2008 - 16:39 31-12-2004 - 00:00
CVE-2003-1141 7.5
Buffer overflow in NIPrint 4.10 allows remote attackers to execute arbitrary code via a long string to TCP port 515.
05-09-2008 - 16:36 04-11-2003 - 00:00
CVE-2002-0746 10.0
Vulnerability in template.dhcpo in AIX 4.3.3 related to an insecure linker argument.
05-09-2008 - 16:28 12-08-2002 - 00:00
CVE-2001-0270 5.0
Marconi ASX-1000 ASX switches allow remote attackers to cause a denial of service in the telnet and web management interfaces via a malformed packet with the SYN-FIN and More Fragments attributes set.
05-09-2008 - 16:23 03-05-2001 - 00:00
CVE-2000-0543 5.0
The command port for PGP Certificate Server 2.5.0 and 2.5.1 allows remote attackers to cause a denial of service if their hostname does not have a reverse DNS entry and they connect to port 4000.
05-09-2008 - 16:21 14-06-2000 - 00:00
CVE-1999-1196 5.0
Hummingbird Exceed X version 5 allows remote attackers to cause a denial of service via malformed data to port 6000.
05-09-2008 - 16:18 07-04-1999 - 00:00
CVE-2003-1354 5.0
Multiple GameSpy 3D 2.62 compatible gaming servers generate very large UDP responses to small requests, which allows remote attackers to use the servers as an amplifier in DDoS attacks with spoofed UDP query packets, as demonstrated using Battlefield
05-09-2008 - 00:00 31-12-2003 - 00:00
Back to Top Mark selected
Back to Top