Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

denial of service vulnerabilities and exploits

(subscribe to this query)

6.8
CVSSv2
CVE-2017-10183
Vulnerability in the Oracle Retail Xstore Point of Service component of Oracle Retail Applications (subcomponent: Point of Sale). Supported versions that are affected are 6.0.x, 6.5.x, 7.0.x, 7.1.x, 15.0.x and 16.0.0. Difficult to exploit vulnerability allows unauthenticated...
Oracle Retail Xstore Point Of Service 6.5.10Oracle Retail Xstore Point Of Service 6.5.11Oracle Retail Xstore Point Of Service 7.0Oracle Retail Xstore Point Of Service 7.0.1Oracle Retail Xstore Point Of Service 7.0.6Oracle Retail Xstore Point Of Service 7.1Oracle Retail Xstore Point Of Service 7.1.1Oracle Retail Xstore Point Of Service 7.1.2Oracle Retail Xstore Point Of Service 6.0.10Oracle Retail Xstore Point Of Service 6.5.4Oracle Retail Xstore Point Of Service 7.0.2Oracle Retail Xstore Point Of Service 15.0Oracle Retail Xstore Point Of Service 16.0.0Oracle Retail Xstore Point Of Service 7.1.3Oracle Retail Xstore Point Of Service 7.0.3Oracle Retail Xstore Point Of Service 7.0.4Oracle Retail Xstore Point Of Service 7.1.6Oracle Retail Xstore Point Of Service 7.1.5Oracle Retail Xstore Point Of Service 7.0.5Oracle Retail Xstore Point Of Service 7.1.4Oracle Retail Xstore Point Of Service 6.0.11Oracle Retail Xstore Point Of Service 15.0.1
6.8
CVSSv2
CVE-2017-10427
Vulnerability in the Oracle Retail Xstore Point of Service component of Oracle Retail Applications (subcomponent: Point of Sale). Supported versions that are affected are 6.0.11, 6.5.11, 7.0.6, 7.1.6 and 15.0.1. Difficult to exploit vulnerability allows unauthenticated attacker...
Oracle Retail Xstore Point Of Service 6.0.11Oracle Retail Xstore Point Of Service 6.5.11Oracle Retail Xstore Point Of Service 7.1.6Oracle Retail Xstore Point Of Service 15.0.1Oracle Retail Xstore Point Of Service 7.0.6
6.8
CVSSv2
CVE-2018-2840
Vulnerability in the Oracle Retail Xstore Point of Service component of Oracle Retail Applications (subcomponent: Xstore Office). Supported versions that are affected are 6.5.11, 7.0.6, 7.1.6, 15.0.1 and 16.0.2. Easily exploitable vulnerability allows unauthenticated attacker...
Oracle Retail Xstore Point Of Service 16.0.2Oracle Retail Xstore Point Of Service 6.5.11Oracle Retail Xstore Point Of Service 7.0.6Oracle Retail Xstore Point Of Service 7.1.6Oracle Retail Xstore Point Of Service 15.0.1
7.5
CVSSv2
CVE-2019-2558
Vulnerability in the Oracle Retail Point-of-Service component of Oracle Retail Applications (subcomponent: Infrastructure). Supported versions that are affected are 13.4, 14.0 and 14.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP...
Oracle Retail Point-of-service 14.1Oracle Retail Point-of-service 13.4Oracle Retail Point-of-service 14.0
5
CVSSv2
CVE-2019-0190
A bug exists in the way mod_ssl handled client renegotiations. A remote attacker could send a carefully crafted request that would cause mod_ssl to enter a loop leading to a denial of service. This bug can be only triggered with Apache HTTP Server version 2.4.37 when using...
Apache Http Server 2.4.37Oracle Enterprise Manager Ops Center 12.3.3Oracle Hospitality Guest Access 4.2.0Oracle Hospitality Guest Access 4.2.1Oracle Instantis Enterprisetrack 17.1Oracle Instantis Enterprisetrack 17.2Oracle Instantis Enterprisetrack 17.3Oracle Retail Xstore Point Of Service 7.0Oracle Retail Xstore Point Of Service 7.1
4.3
CVSSv2
CVE-2008-5514
Off-by-one error in the rfc822_output_char function in the RFC822BUFFER routines in the University of Washington (UW) c-client library, as used by the UW IMAP toolkit before imap-2007e and other applications, allows context-dependent attackers to cause a denial of service...
University Of Washington Imap 2006hUniversity Of Washington Imap 2006gUniversity Of Washington Imap 2006University Of Washington Imap 2004University Of Washington Imap 2004gUniversity Of Washington Imap 2002University Of Washington Imap 2001University Of Washington Imap 2001aUniversity Of Washington Imap 2000University Of Washington Imap 2006jUniversity Of Washington Imap 2006iUniversity Of Washington Imap 2006eUniversity Of Washington Imap 2004bUniversity Of Washington Imap 2004fUniversity Of Washington Imap 2006aUniversity Of Washington Imap 2002fUniversity Of Washington Imap 2006kUniversity Of Washington Imap 2004aUniversity Of Washington Imap 2004cUniversity Of Washington Imap 2006fUniversity Of Washington Imap 2002aUniversity Of Washington ImapUniversity Of Washington Imap 2007University Of Washington Imap 2007aUniversity Of Washington Imap 2007bUniversity Of Washington Imap 2006bUniversity Of Washington Imap 2006cUniversity Of Washington Imap 2004eUniversity Of Washington Imap 2000bUniversity Of Washington Imap 2002bUniversity Of Washington Imap 2000aUniversity Of Washington Imap 2006dUniversity Of Washington Imap 2002eUniversity Of Washington Imap 2004dUniversity Of Washington Imap 2002dUniversity Of Washington Imap 2000cUniversity Of Washington Imap 2002c
5
CVSSv2
CVE-2013-5750
The login form in the FriendsOfSymfony FOSUserBundle bundle before 1.3.3 for Symfony allows remote attackers to cause a denial of service (CPU consumption) via a long password that triggers an expensive hash computation, as demonstrated by a PBKDF2 computation....
Friends Of Symfony Project Fosuserbundle 1.2.4Friends Of Symfony Project Fosuserbundle 1.2.3Friends Of Symfony Project Fosuserbundle 1.2.1Friends Of Symfony Project Fosuserbundle 1.2.0Friends Of Symfony Project Fosuserbundle 1.3.1Friends Of Symfony Project Fosuserbundle 1.2.5Friends Of Symfony Project Fosuserbundle 1.1.0Friends Of Symfony Project FosuserbundleFriends Of Symfony Project Fosuserbundle 1.3.0Friends Of Symfony Project Fosuserbundle 1.0.0
5
CVSSv2
CVE-2002-1320
Pine 4.44 and earlier allows remote attackers to cause a denial of service (core dump and failed restart) via an email message with a From header that contains a large number of quotation marks (")....
University Of Washington Pine 4.10University Of Washington Pine 4.20University Of Washington Pine 3.98University Of Washington Pine 4.33University Of Washington Pine 4.44University Of Washington Pine 4.0.2University Of Washington Pine 4.0.4University Of Washington Pine 4.21University Of Washington Pine 4.30
4.3
CVSSv2
CVE-2018-10237
Unbounded memory allocation in Google Guava 11.0 through 24.x before 24.1.1 allows remote attackers to conduct denial of service attacks against servers that depend on this library and deserialize attacker-provided data, because the AtomicDoubleArray class (when serialized with...
Google GuavaRedhat Openshift Container Platform 3.11Redhat Openstack 13Redhat Satellite 6.4Redhat Satellite Capsule 6.4Redhat Virtualization 4.2Redhat Virtualization Host 4.0Redhat Jboss Enterprise Application Platform 6.0.0Redhat Jboss Enterprise Application Platform 6.4.0Redhat Jboss Enterprise Application Platform 7.1.0Redhat Openshift Container Platform 4.1Redhat Virtualization 4.0Redhat Virtualization Host 4.0Oracle Banking PaymentsOracle Communications Ip Service Activator 7.3.0Oracle Communications Ip Service Activator 7.4.0Oracle Customer Management And Segmentation Foundation 18.0Oracle Database Server 12.2.0.1Oracle Database Server 18cOracle Database Server 19cOracle Flexcube Investor Servicing 12.1.0Oracle Flexcube Investor Servicing 12.3.0Oracle Flexcube Investor Servicing 12.4.0Oracle Flexcube Investor Servicing 14.0.0Oracle Retail Xstore Point Of Service 15.0Oracle Flexcube Private Banking 12.1.0Oracle Retail Xstore Point Of Service 7.1Oracle Flexcube Private Banking 12.0.0Oracle Retail Integration Bus 15.0Oracle Weblogic Server 12.2.1.3.0Oracle Retail Xstore Point Of Service 16.0Oracle Retail Integration Bus 16.0Oracle Flexcube Investor Servicing 14.1.0Oracle Retail Xstore Point Of Service 17.0
5
CVSSv2
CVE-2004-1617
Lynx, lynx-ssl, and lynx-cur before 2.8.6dev.8 allow remote attackers to cause a denial of service (infinite loop) via a web page or HTML email that contains invalid HTML including (1) a TEXTAREA tag with a large COLS value and (2) a large tag name in an element that is not...
University Of Kansas Lynx 2.8.3 Dev22University Of Kansas Lynx 2.8.3 Pre5University Of Kansas Lynx 2.8.5 Dev4University Of Kansas Lynx 2.8.5 Dev5University Of Kansas Lynx 2.7University Of Kansas Lynx 2.8University Of Kansas Lynx 2.8.4 Rel1University Of Kansas Lynx 2.8.5University Of Kansas Lynx 2.8.1University Of Kansas Lynx 2.8.2 Rel1University Of Kansas Lynx 2.8.3University Of Kansas Lynx 2.8.4University Of Kansas Lynx 2.8.5 Dev8University Of Kansas Lynx 2.8.5 Dev3University Of Kansas Lynx 2.8.3 Rel1University Of Kansas Lynx 2.8.5 Dev2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-30860CVE-2021-35211log injectionCVE-2021-39239code executionCVE-2021-41326CVE-2021-36160CVE-2021-1976insecure direct object reference
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook