映射到 CWE-134 的搜索结果 (168)

CVE-2016-4864(发布:2017-05-12 14:29:00)NM
CVSS5.0

[原文]H2O versions 2.0.3 and earlier and 2.1.0-beta2 and earlier allows remote attackers to cause a denial-of-service (DoS) via format string specifiers in a template file via fastcgi, mruby, proxy, redirect or reproxy.

CVE-2015-8107(发布:2017-04-13 10:59:00)NMS
CVSS6.8

[原文]Format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code.

CVE-2015-7271(发布:2017-04-09 23:59:00)NMS
CVSS7.5

[原文]Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has a format string issue in racadm getsystinfo.

CVE-2015-8106(发布:2016-04-18 10:59:01)NMS
CVSS9.3

[原文]Format string vulnerability in the CmdKeywords function in funct1.c in latex2rtf before 2.3.10 allows remote attackers to execute arbitrary code via format string specifiers in the \keywords command in a crafted TeX file.

CVE-2015-8617(发布:2016-01-19 00:59:07)NMS
CVSS10.0

[原文]Format string vulnerability in the zend_throw_or_error function in Zend/zend_execute_API.c in PHP 7.x before 7.0.1 allows remote attackers to execute arbitrary code via format string specifiers in a string that is misused as a class name, leading to incorrect error handling.

CVE-2015-6285(发布:2015-09-13 21:59:03)NMS
CVSS6.4

[原文]Format string vulnerability in Cisco Email Security Appliance (ESA) 7.6.0 and 8.0.0 allows remote attackers to cause a denial of service (memory overwrite or service outage) via format string specifiers in an HTTP request, aka Bug ID CSCug21497.

12345678下一页尾页 第1页 / 共28页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站