|
246811
|
7.8 |
HIGH
Local
|
artifex
redhat
|
ghostscript
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus
enterprise_linux_server_eus
enterprise_linux_server_aus
|
It was found that RHSA-2018:2918 did not fully fix CVE-2018-16509. An attacker could possibly exploit another variant of the flaw and bypass the -dSAFER protection to, for example, execute arbitrary …
|
-
|
CVE-2018-16863
|
2024-11-21 12:53 |
2018-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246812
|
5.7 |
MEDIUM
Physics
|
nettle_project
|
nettle
|
A Bleichenbacher type side-channel based padding oracle attack was found in the way nettle handles endian conversion of RSA decrypted PKCS#1 v1.5 data. An attacker who is able to run a process on the…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2018-16869
|
2024-11-21 12:53 |
2018-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246813
|
5.6 |
MEDIUM
Physics
|
gnu
|
gnutls
|
A Bleichenbacher type side-channel based padding oracle attack was found in the way gnutls handles verification of RSA decrypted PKCS#1 v1.5 data. An attacker who is able to run process on the same p…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2018-16868
|
2024-11-21 12:53 |
2018-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246814
|
7.5 |
HIGH
Network
|
powerdns
|
recursor
|
An issue has been found in PowerDNS Recursor before version 4.1.8 where a remote attacker sending a DNS query can trigger an out-of-bounds memory read while computing the hash of the query for a pack…
|
CWE-125
Out-of-bounds Read
|
CVE-2018-16855
|
2024-11-21 12:53 |
2018-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246815
|
4.4 |
MEDIUM
Local
|
redhat
|
ansible_engine
|
Execution of Ansible playbooks on Windows platforms with PowerShell ScriptBlock logging and Module logging enabled can allow for 'become' passwords to appear in EventLogs in plaintext. A local user w…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2018-16859
|
2024-11-21 12:53 |
2018-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246816
|
5.9 |
MEDIUM
Network
|
freebsd
|
freebsd
|
In FreeBSD before 11.2-STABLE(r340268) and 11.2-RELEASE-p5, due to incorrectly accounting for padding on 64-bit platforms, a buffer underwrite could occur when constructing an ICMP reply packet when …
|
CWE-787
Out-of-bounds Write
|
CVE-2018-17156
|
2024-11-21 12:53 |
2018-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246817
|
5.9 |
MEDIUM
Network
|
samba
|
samba
|
Samba from version 4.9.0 and before version 4.9.3 that have AD DC configurations watching for bad passwords (to restrict brute forcing of passwords) in a window of more than 3 minutes may not watch f…
|
CWE-358
Improperly Implemented Security Check for Standard
|
CVE-2018-16857
|
2024-11-21 12:53 |
2018-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246818
|
4.4 |
MEDIUM
Network
|
samba
|
samba
|
Samba from version 4.9.0 and before version 4.9.3 is vulnerable to a NULL pointer de-reference. During the processing of an DNS zone in the DNS management DCE/RPC server, the internal DNS server or t…
|
CWE-476
NULL Pointer Dereference
|
CVE-2018-16852
|
2024-11-21 12:53 |
2018-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246819
|
5.9 |
MEDIUM
Network
|
samba
|
samba
|
Samba from version 4.7.0 has a vulnerability that allows a user in a Samba AD domain to crash the KDC when Samba is built in the non-default MIT Kerberos configuration. With this advisory the Samba T…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2018-16853
|
2024-11-21 12:53 |
2018-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246820
|
6.5 |
MEDIUM
Network
|
samba
canonical
debian
|
samba
ubuntu_linux
debian_linux
|
Samba from version 4.0.0 and before versions 4.7.12, 4.8.7, 4.9.3 is vulnerable to a denial of service. During the processing of an LDAP search before Samba's AD DC returns the LDAP entries to the cl…
|
CWE-476
NULL Pointer Dereference
|
CVE-2018-16851
|
2024-11-21 12:53 |
2018-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
