Show filters
31 Total Results
Displaying 11-20 of 31
Sort by:
Attacker Value
Unknown
CVE-2020-25219
Disclosure Date: September 09, 2020 (last updated February 22, 2025)
url::recvline in url.cpp in libproxy 0.4.x through 0.4.15 allows a remote HTTP server to trigger uncontrolled recursion via a response composed of an infinite stream that lacks a newline character. This leads to stack exhaustion.
0
Attacker Value
Unknown
CVE-2020-12100
Disclosure Date: August 12, 2020 (last updated February 21, 2025)
In Dovecot before 2.3.11.3, uncontrolled recursion in submission, lmtp, and lda allows remote attackers to cause a denial of service (resource consumption) via a crafted e-mail message with deeply nested MIME parts.
0
Attacker Value
Unknown
CVE-2020-9243
Disclosure Date: August 10, 2020 (last updated February 21, 2025)
HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a denial of service vulnerability. The system does not properly limit the depth of recursion, an attacker should trick the user installing and execute a malicious application. Successful exploit could cause a denial of service condition.
0
Attacker Value
Unknown
CVE-2020-16094
Disclosure Date: July 28, 2020 (last updated February 21, 2025)
In imap_scan_tree_recursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree.
0
Attacker Value
Unknown
CVE-2020-15101
Disclosure Date: July 14, 2020 (last updated February 21, 2025)
In freewvs before 0.1.1, a directory structure of more than 1000 nested directories can interrupt a freewvs scan due to Python's recursion limit and os.walk(). This can be problematic in a case where an administrator scans the dirs of potentially untrusted users. This has been patched in 0.1.1.
0
Attacker Value
Unknown
CVE-2020-5591
Disclosure Date: June 05, 2020 (last updated February 21, 2025)
XACK DNS 1.11.0 to 1.11.4, 1.10.0 to 1.10.8, 1.8.0 to 1.8.23, 1.7.0 to 1.7.18, and versions before 1.7.0 allow remote attackers to cause a denial of service condition resulting in degradation of the recursive resolver's performance or compromising the recursive resolver as a reflector in a reflection attack.
0
Attacker Value
Unknown
CVE-2019-20815
Disclosure Date: June 04, 2020 (last updated February 21, 2025)
An issue was discovered in Foxit PhantomPDF before 8.3.12. It allows stack consumption via nested function calls for XML parsing.
0
Attacker Value
Unknown
CVE-2020-13800
Disclosure Date: June 04, 2020 (last updated February 21, 2025)
ati-vga in hw/display/ati.c in QEMU 4.2.0 allows guest OS users to trigger infinite recursion via a crafted mm_index value during an ati_mm_read or ati_mm_write call.
0
Attacker Value
Unknown
CVE-2019-20819
Disclosure Date: June 04, 2020 (last updated February 21, 2025)
An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It allows stack consumption via nested function calls for XML parsing.
0
Attacker Value
Unknown
CVE-2020-13164
Disclosure Date: May 19, 2020 (last updated February 21, 2025)
In Wireshark 3.2.0 to 3.2.3, 3.0.0 to 3.0.10, and 2.6.0 to 2.6.16, the NFS dissector could crash. This was addressed in epan/dissectors/packet-nfs.c by preventing excessive recursion, such as for a cycle in the directory graph on a filesystem.
0