Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse opensuse 11.4 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2014-2323
SQL injection vulnerability in mod_mysql_vhost.c in lighttpd prior to 1.4.35 allows remote malicious users to execute arbitrary SQL commands via the host name, related to request_check_hostname.
Lighttpd Lighttpd
Debian Debian Linux 6.0
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Opensuse Opensuse 11.4
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
Suse Linux Enterprise High Availability Extension 11
Suse Linux Enterprise Software Development Kit 11
1 Github repository
NA
CVE-2013-4076
Buffer overflow in the dissect_iphc_crtp_fh function in epan/dissectors/packet-ppp.c in the PPP dissector in Wireshark 1.8.x prior to 1.8.8 allows remote malicious users to cause a denial of service (application crash) via a crafted packet.
Opensuse Opensuse 12.3
Debian Debian Linux 7.0
Opensuse Opensuse 12.2
Opensuse Opensuse 11.4
Wireshark Wireshark 1.8.0
Wireshark Wireshark 1.8.1
Wireshark Wireshark 1.8.2
Wireshark Wireshark 1.8.3
Wireshark Wireshark 1.8.6
Wireshark Wireshark 1.8.7
Wireshark Wireshark 1.8.4
Wireshark Wireshark 1.8.5
NA
CVE-2013-4077
Array index error in the NBAP dissector in Wireshark 1.8.x prior to 1.8.8 allows remote malicious users to cause a denial of service (application crash) via a crafted packet, related to nbap.cnf and packet-nbap.c.
Opensuse Opensuse 12.3
Opensuse Opensuse 12.2
Opensuse Opensuse 11.4
Debian Debian Linux 7.0
Wireshark Wireshark 1.8.2
Wireshark Wireshark 1.8.3
Wireshark Wireshark 1.8.4
Wireshark Wireshark 1.8.5
Wireshark Wireshark 1.8.6
Wireshark Wireshark 1.8.0
Wireshark Wireshark 1.8.1
Wireshark Wireshark 1.8.7
NA
CVE-2013-4078
epan/dissectors/packet-rdp.c in the RDP dissector in Wireshark 1.8.x prior to 1.8.8 does not validate return values during checks for data availability, which allows remote malicious users to cause a denial of service (application crash) via a crafted packet.
Wireshark Wireshark 1.8.2
Wireshark Wireshark 1.8.3
Wireshark Wireshark 1.8.4
Wireshark Wireshark 1.8.5
Wireshark Wireshark 1.8.0
Wireshark Wireshark 1.8.1
Wireshark Wireshark 1.8.6
Wireshark Wireshark 1.8.7
Opensuse Opensuse 12.2
Opensuse Opensuse 12.3
Debian Debian Linux 7.0
Opensuse Opensuse 11.4
NA
CVE-2013-4082
The vwr_read function in wiretap/vwr.c in the Ixia IxVeriWave file parser in Wireshark 1.8.x prior to 1.8.8 does not validate the relationship between a record length and a trailer length, which allows remote malicious users to cause a denial of service (heap-based buffer overflo...
Wireshark Wireshark 1.8.0
Wireshark Wireshark 1.8.7
Wireshark Wireshark 1.8.3
Wireshark Wireshark 1.8.4
Wireshark Wireshark 1.8.5
Wireshark Wireshark 1.8.6
Wireshark Wireshark 1.8.1
Wireshark Wireshark 1.8.2
Opensuse Opensuse 11.4
Debian Debian Linux 7.0
Opensuse Opensuse 12.3
Opensuse Opensuse 12.2
5.5
CVSSv3
CVE-2011-1489
A memory leak in rsyslog prior to 5.7.6 was found in the way deamon processed log messages were logged when multiple rulesets were used and some output batches contained messages belonging to more than one ruleset. A local attacker could cause denial of the rsyslogd daemon servic...
Rsyslog Rsyslog
Opensuse Opensuse 11.4
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
5.5
CVSSv3
CVE-2011-1490
A memory leak in rsyslog prior to 5.7.6 was found in the way deamon processed log messages are logged when multiple rulesets were used and some output batches contained messages belonging to more than one ruleset. A local attacker could cause denial of the rsyslogd daemon service...
Rsyslog Rsyslog
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Opensuse 11.4
5.5
CVSSv3
CVE-2011-1488
A memory leak in rsyslog prior to 5.7.6 was found in the way deamon processed log messages are logged when $RepeatedMsgReduction was enabled. A local attacker could use this flaw to cause a denial of the rsyslogd daemon service by crashing the service via a sequence of repeated l...
Rsyslog Rsyslog
Opensuse Opensuse 11.4
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
NA
CVE-2013-0773
The Chrome Object Wrapper (COW) and System Only Wrapper (SOW) implementations in Mozilla Firefox prior to 19.0, Firefox ESR 17.x prior to 17.0.3, Thunderbird prior to 17.0.3, Thunderbird ESR 17.x prior to 17.0.3, and SeaMonkey prior to 2.16 do not prevent modifications to a proto...
Mozilla Firefox
Mozilla Firefox Esr
Mozilla Seamonkey
Mozilla Thunderbird
Mozilla Thunderbird Esr
Opensuse Opensuse 11.4
Opensuse Opensuse 12.1
Opensuse Opensuse 12.2
Debian Debian Linux 7.0
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
NA
CVE-2014-2324
Multiple directory traversal vulnerabilities in (1) mod_evhost and (2) mod_simple_vhost in lighttpd prior to 1.4.35 allow remote malicious users to read arbitrary files via a .. (dot dot) in the host name, related to request_check_hostname.
Lighttpd Lighttpd
Debian Debian Linux 6.0
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Opensuse Opensuse 11.4
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
Suse Linux Enterprise High Availability Extension 11
Suse Linux Enterprise Software Development Kit 11
Contec Sv-cpt-mc310 Firmware
2 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644
unprivileged
CVE-2024-3494
CVE-2024-22460
CVE-2024-26026
CVE-2024-23473
firewall
CVE-2024-28889
XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »