denial of service vulnerabilities and exploits

(subscribe to this query)

6.5

CVSSv3

Vulnerability in the Oracle Retail Xstore Point of Service component of Oracle Retail Applications (subcomponent: Point of Sale). Supported versions that are affected are 6.0.x, 6.5.x, 7.0.x, 7.1.x, 15.0.x and 16.0.0. Difficult to exploit vulnerability allows unauthenticated...

Oracle Retail Xstore Point Of Service 6.5.10 Oracle Retail Xstore Point Of Service 6.5.11 Oracle Retail Xstore Point Of Service 7.0 Oracle Retail Xstore Point Of Service 7.0.1 Oracle Retail Xstore Point Of Service 7.0.6 Oracle Retail Xstore Point Of Service 7.1 Oracle Retail Xstore Point Of Service 7.1.1 Oracle Retail Xstore Point Of Service 7.1.2 Oracle Retail Xstore Point Of Service 6.0.10 Oracle Retail Xstore Point Of Service 6.5.4 Oracle Retail Xstore Point Of Service 7.0.2 Oracle Retail Xstore Point Of Service 7.0.4 Oracle Retail Xstore Point Of Service 7.1.4 Oracle Retail Xstore Point Of Service 7.1.6 Oracle Retail Xstore Point Of Service 15.0.1 Oracle Retail Xstore Point Of Service 16.0.0 Oracle Retail Xstore Point Of Service 6.0.11 Oracle Retail Xstore Point Of Service 7.0.3 Oracle Retail Xstore Point Of Service 7.0.5 Oracle Retail Xstore Point Of Service 7.1.3 Oracle Retail Xstore Point Of Service 7.1.5 Oracle Retail Xstore Point Of Service 15.0

7.6

CVSSv3

Vulnerability in the Oracle Retail Xstore Point of Service component of Oracle Retail Applications (subcomponent: Xstore Office). Supported versions that are affected are 6.5.11, 7.0.6, 7.1.6, 15.0.1 and 16.0.2. Easily exploitable vulnerability allows unauthenticated attacker...

Oracle Retail Xstore Point Of Service 16.0.2 Oracle Retail Xstore Point Of Service 6.5.11 Oracle Retail Xstore Point Of Service 7.0.6 Oracle Retail Xstore Point Of Service 7.1.6 Oracle Retail Xstore Point Of Service 15.0.1

6.5

CVSSv3

Vulnerability in the Oracle Retail Xstore Point of Service component of Oracle Retail Applications (subcomponent: Point of Sale). Supported versions that are affected are 6.0.11, 6.5.11, 7.0.6, 7.1.6 and 15.0.1. Difficult to exploit vulnerability allows unauthenticated attacker...

Oracle Retail Xstore Point Of Service 6.0.11 Oracle Retail Xstore Point Of Service 6.5.11 Oracle Retail Xstore Point Of Service 7.1.6 Oracle Retail Xstore Point Of Service 15.0.1 Oracle Retail Xstore Point Of Service 7.0.6

7.3

CVSSv3

Vulnerability in the Oracle Retail Point-of-Service component of Oracle Retail Applications (subcomponent: Infrastructure). Supported versions that are affected are 13.4, 14.0 and 14.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP...

Oracle Retail Point-of-service 14.1 Oracle Retail Point-of-service 13.4 Oracle Retail Point-of-service 14.0

7.5

CVSSv3

A Node.js application that allows an attacker to trigger a DNS request for a host of their choice could trigger a Denial of Service in versions < 15.2.1, < 14.15.1, and < 12.19.1 by getting the application to resolve a DNS record with a larger number of responses. This...

Nodejs Node.js Fedoraproject Fedora 32 Fedoraproject Fedora 33 Oracle Graalvm 19.3.4 Oracle Graalvm 20.3.0 Oracle Retail Xstore Point Of Service 16.0.6 Oracle Retail Xstore Point Of Service 17.0.4 Oracle Retail Xstore Point Of Service 18.0.3 Oracle Retail Xstore Point Of Service 19.0.2 Oracle Jd Edwards Enterpriseone Tools Oracle Mysql Cluster Oracle Blockchain Platform C-ares Project C-ares8 Github repositories available

7.5

CVSSv3

XStream is an open source java library to serialize objects to XML and back again. Versions prior to 1.4.19 may allow a remote attacker to allocate 100% CPU time on the target system depending on CPU type or parallel execution of such a payload resulting in a denial of service...

Xstream Project Xstream Fedoraproject Fedora 34 Fedoraproject Fedora 35 Debian Debian Linux 9.0 Oracle Flexcube Private Banking 12.1.0 Oracle Commerce Guided Search 11.3.2 Oracle Retail Xstore Point Of Service 16.0.6 Oracle Retail Xstore Point Of Service 17.0.4 Oracle Retail Xstore Point Of Service 18.0.3 Oracle Retail Xstore Point Of Service 19.0.2 Oracle Retail Xstore Point Of Service 20.0.1 Oracle Communications Cloud Native Core Automated Test Suite 1.9.0 Oracle Communications Policy Management 12.6.0.0.0 Oracle Communications Diameter Intelligence Hub Oracle Communications Brm - Elastic Charging Engine 12.0.0.5.0 Oracle Communications Brm - Elastic Charging Engine

7.5

CVSSv3

A bug exists in the way mod_ssl handled client renegotiations. A remote attacker could send a carefully crafted request that would cause mod_ssl to enter a loop leading to a denial of service. This bug can be only triggered with Apache HTTP Server version 2.4.37 when using...

Apache Http Server 2.4.37 Oracle Enterprise Manager Ops Center 12.3.3 Oracle Hospitality Guest Access 4.2.0 Oracle Hospitality Guest Access 4.2.1 Oracle Instantis Enterprisetrack 17.1 Oracle Instantis Enterprisetrack 17.2 Oracle Instantis Enterprisetrack 17.3 Oracle Retail Xstore Point Of Service 7.0 Oracle Retail Xstore Point Of Service 7.12 Github repositories available

7.5

CVSSv3

The file name encoding algorithm used internally in Apache Commons Compress 1.15 to 1.18 can get into an infinite loop when faced with specially crafted inputs. This can lead to a denial of service attack if an attacker can choose the file names inside of an archive created by...

Apache Commons Compress Fedoraproject Fedora 30 Fedoraproject Fedora 31 Oracle Flexcube Investor Servicing 12.3.0 Oracle Flexcube Investor Servicing 12.1.0 Oracle Retail Xstore Point Of Service 15.0 Oracle Flexcube Private Banking 12.1.0 Oracle Flexcube Private Banking 12.0.0 Oracle Retail Integration Bus 15.0 Oracle Webcenter Portal 12.2.1.3.0 Oracle Flexcube Investor Servicing 12.4.0 Oracle Peoplesoft Enterprise Pt Peopletools 8.56 Oracle Retail Xstore Point Of Service 16.0 Oracle Banking Payments Oracle Banking Platform 2.6.2 Oracle Banking Platform 2.7.0 Oracle Banking Platform 2.8.0 Oracle Banking Platform 2.9.0 Oracle Communications Ip Service Activator 7.3.0 Oracle Communications Ip Service Activator 7.4.0 Oracle Communications Session Route Manager Oracle Customer Management And Segmentation Foundation 18.0 Oracle Flexcube Investor Servicing 14.0.0 Oracle Flexcube Investor Servicing 14.1.0 Oracle Hyperion Infrastructure Technology 11.1.2.4 Oracle Jdeveloper 12.2.1.4.0 Oracle Primavera Gateway Oracle Primavera Gateway 19.12.0 Oracle Retail Integration Bus 16.0 Oracle Retail Xstore Point Of Service 17.0 Oracle Retail Xstore Point Of Service 18.0 Oracle Retail Xstore Point Of Service 19.0 Oracle Webcenter Portal 12.2.1.4.0 Oracle Communications Element Manager Oracle Communications Session Report Manager Oracle Essbase 21.2 Oracle Peoplesoft Enterprise Pt Peopletools 8.57 Oracle Peoplesoft Enterprise Pt Peopletools 8.582 Github repositories available

NA

Off-by-one error in the rfc822_output_char function in the RFC822BUFFER routines in the University of Washington (UW) c-client library, as used by the UW IMAP toolkit before imap-2007e and other applications, allows context-dependent attackers to cause a denial of service...

University Of Washington Imap 2006h University Of Washington Imap 2006g University Of Washington Imap 2006 University Of Washington Imap 2004 University Of Washington Imap 2004g University Of Washington Imap 2002 University Of Washington Imap 2001 University Of Washington Imap 2001a University Of Washington Imap 2000 University Of Washington Imap 2006j University Of Washington Imap 2006i University Of Washington Imap 2006a University Of Washington Imap 2007 University Of Washington Imap 2004e University Of Washington Imap 2004f University Of Washington Imap 2002e University Of Washington Imap 2002f University Of Washington Imap University Of Washington Imap 2007b University Of Washington Imap 2006f University Of Washington Imap 2006e University Of Washington Imap 2006d University Of Washington Imap 2004a University Of Washington Imap 2004b University Of Washington Imap 2002a University Of Washington Imap 2002b University Of Washington Imap 2000a University Of Washington Imap 2000b University Of Washington Imap 2007a University Of Washington Imap 2006k University Of Washington Imap 2006c University Of Washington Imap 2006b University Of Washington Imap 2004c University Of Washington Imap 2004d University Of Washington Imap 2002c University Of Washington Imap 2002d University Of Washington Imap 2000c

NA

The login form in the FriendsOfSymfony FOSUserBundle bundle before 1.3.3 for Symfony allows remote attackers to cause a denial of service (CPU consumption) via a long password that triggers an expensive hash computation, as demonstrated by a PBKDF2 computation....

Friends Of Symfony Project Fosuserbundle 1.2.4 Friends Of Symfony Project Fosuserbundle 1.2.3 Friends Of Symfony Project Fosuserbundle 1.2.1 Friends Of Symfony Project Fosuserbundle 1.2.0 Friends Of Symfony Project Fosuserbundle 1.3.1 Friends Of Symfony Project Fosuserbundle 1.2.5 Friends Of Symfony Project Fosuserbundle 1.1.0 Friends Of Symfony Project Fosuserbundle Friends Of Symfony Project Fosuserbundle 1.3.0 Friends Of Symfony Project Fosuserbundle 1.0.0

Get Started

1 2 3 4 5 6 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook