This Metasploit module triggers a Denial of Service condition in the VSFTPD server in versions before 2.3.3. So far, it has been tested on 2.3.0, 2.3.1, and 2.3.2.
b641640adf9148a4f15ae3506355045a3a47f8aa883622b9a9d85371e48cb171
iOS version 10.1.x suffers from certificate file memory corruption vulnerability.
7e1e8673a388d4d9b72823a033c26a949f1c575404ff7bd1bd86dbb75dc5eaf8
Apple macOS version 10.12.1 and iOS version 10 suffer from man-in-the-middle and denial of service issues with SecureTransport SSL handshakes.
dd040da5d731f7a4c679a12a2eae20eaa3b0971446f0a9d2625d0635e6c07f4f
Apple's libc security update for OS X El Capitan version 10.11.2 has an incomplete fix.
1e5f9c6d0b83d92011bbf4e96ebccd3cac5637b6b7ee38f795eecf2e67ee7819
glibc catopen() suffers from multiple unbounded stack allocations.
caf84b9ea8ebc32c176093e05bebacaad33f8ab3e8422e642de67c6796682c46
Magento versions 1.9.x suffer from a man-in-the-middle vulnerability.
1a8ec89508ab76d3e1690d5c566a439a7120f88d7945d716564e509ba86b8747
Mac OS X version 10.11 suffered from an FTS deep structure of the file system buffer overflow vulnerability.
ae3851256e0ee57573fd3cac02fe7bcf26b41cfc7bbf09ad64cb3dfcdae81556
MacOS X 10.11 suffers from a hardlink bomb issue that causes resource exhaustion.
4058ea8977e433e0872ba59dabcc96a98e1a41577ee9392d7c6db485784a1396
The MacOS X 10.11 FTS library suffers from a buffer overflow vulnerability.
6e8afd8414e594a1c22b90fded2505f57393097d961dbd2f8a8dcd3ab5996ea9
phpMyAdmin version 4.4.6 suffers from a man-in-the-middle vulnerability when reaching out to github's API.
7874bceeec1e2f481da195934ba9bcdbc30d95e33a128f5b75118b179e149a02
GCC and CLANG C++11 regex functionality suffers from resource exhaustion issues.
83d7378cceea145fb84e0dfdb032d2cfc6a9b87c7c99948a4ad5a9157744b7d8
Multiple vulnerabilities have been reported in HFS, including a hard linking issue that can be used to trigger a denial of service condition.
be35bd5afa319dfac7f6e3e41d1bb757eeeb443aa69504e617ce51aef83f35fb
Mac OS X, Safari, Firefox and Kaspersky all suffer from a regular expression denial of service condition that was discovered long ago in regcomp().
8d9bccde42a49a51d60d66232f596249d63d2b6443263209bcfa4a6ea5ad5d2f
ftpd on Mac OS X 10.8.3 suffers from a denial of service vulnerability. This appears to be an old vulnerability that has not been properly addressed.
13b77811aa62fba78277a75249e3609cc4a3861977ccbcd966b983a25d221503
FreeBSD version 9.1 suffers from a remote ftpd denial of service vulnerability.
ee47445b28383e3aa5a3bd3988e583b7a429051d6f88bc8757efc1a780f4fbf8
cIFrex is a small script written in PHP that supports searching for bugs in the analysis of the source code. It uses a database of regular expressions.
4172d492b1bd172650866495ce29ca87bee838cb96d452d364a667227680e43d
PHP versions 5.4 and 5.3 suffer from a deprecated eregi() memory_limit bypass vulnerability. Proof of concepts included.
b8f9235bcde03d20acafbedaa0aa12b05d9c56034aaaa1a9f164f8fbde699142
PHP version 5.3.8 suffers from multiple NULL pointer dereference vulnerabilities.
38953c5295dc5afd32a246b9cd42af756cdc0d62c5141f04f40ac86c058dcf4f
Recursion and bad memory management in BSD's libc/regcomp(3) can cause denial of service conditions.
745bf11d1ba1563cbd80a1251cff388e13f176d6a07f50f1168101bffb55bcae
PHP version 5.3.6 suffers from a null pointer dereference vulnerability.
672214ec2b4f3ce287d074bc3902a7b5444150b28b017759356019be4b764565
PHP version 5.3.6 ZipArchive suffers from an invalid use of glob(3) vulnerability.
196fc8b1e8e78154b27529d826ddba5612219a4930d20d90583377eb0fb3ae3c
NetBSD version 5.1 libc/net suffers from multiple buffer overflow vulnerabilities.
41dc13e14f5bb04dc98558705af4a4ffaa1774d45a59d6fb6682a19250cf3d47
Multiple vendors libc/fnmatch(3) suffer from a denial of service vulnerability. Affected software includes Apache 2.2.17, NetBSD 5.1, OpenBSD 4.8, FreeBSD, Mac OS X 10.6, and Sun Solaris 10. Apache proof of concept is included.
2c1ae950fb3bfed82e98d5621bda7e64d189490f5059fd8d12ecb495733b1b59
Multiple vendors are affected by a memory exhaustion vulnerability in libc/glob(3) GLOB_BRACE|GLOB_LIMIT.
1d1f0bb940366641cffd2edd81473a10c047934622b6fc4b18eefc826bbb182e
libzip version 0.9.3 allows remote and local attackers to trigger a denial of service condition via a null pointer dereference if ZIP_FL_UNCHANGED flag is set.
4ab977aa3a116d991be0d343936aa1203eccdd3ec80506df3e2493e872a86b24