Vulnerabilities > Resource Management Errors
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-03-29 | CVE-2012-0388 | Resource Management Errors vulnerability in Cisco IOS Memory leak in the H.323 inspection feature in the Zone-Based Firewall in Cisco IOS 12.4, 15.0, 15.1, and 15.2 allows remote attackers to cause a denial of service (memory consumption or device reload) via malformed transit H.323 traffic, aka Bug ID CSCtq45553. | 7.8 |
| 2012-03-29 | CVE-2012-0387 | Resource Management Errors vulnerability in Cisco IOS Memory leak in the HTTP Inspection Engine feature in the Zone-Based Firewall in Cisco IOS 12.4, 15.0, 15.1, and 15.2 allows remote attackers to cause a denial of service (memory consumption or device reload) via crafted transit HTTP traffic, aka Bug ID CSCtq36153. | 7.8 |
| 2012-03-29 | CVE-2012-0383 | Resource Management Errors vulnerability in Cisco IOS 12.4/15.0/15.1 Memory leak in the NAT feature in Cisco IOS 12.4, 15.0, and 15.1 allows remote attackers to cause a denial of service (memory consumption, and device hang or reload) via SIP packets that require translation, related to a "memory starvation vulnerability," aka Bug ID CSCti35326. | 7.8 |
| 2012-03-20 | CVE-2012-0712 | Resource Management Errors vulnerability in IBM DB2 9.5/9.7/9.8 The XML feature in IBM DB2 9.5 before FP9, 9.7 through FP5, and 9.8 through FP4 allows remote authenticated users to cause a denial of service (infinite loop) by calling the XMLPARSE function with a crafted string expression. | 4.0 |
| 2012-03-15 | CVE-2012-1165 | Resource Management Errors vulnerability in Openssl The mime_param_cmp function in crypto/asn1/asn_mime.c in OpenSSL before 0.9.8u and 1.x before 1.0.0h allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message, a different vulnerability than CVE-2006-7250. | 5.0 |
| 2012-03-15 | CVE-2012-1178 | Resource Management Errors vulnerability in Pidgin The msn_oim_report_to_user function in oim.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.2 allows remote servers to cause a denial of service (application crash) via an OIM message that lacks UTF-8 encoding. | 5.0 |
| 2012-03-13 | CVE-2012-1663 | Resource Management Errors vulnerability in GNU Gnutls Double free vulnerability in libgnutls in GnuTLS before 3.0.14 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted certificate list. | 7.5 |
| 2012-03-13 | CVE-2012-0006 | Resource Management Errors vulnerability in Microsoft Windows Server 2003 and Windows Server 2008 The DNS server in Microsoft Windows Server 2003 SP2 and Server 2008 SP2, R2, and R2 SP1 does not properly handle objects in memory during record lookup, which allows remote attackers to cause a denial of service (daemon restart) via a crafted query, aka "DNS Denial of Service Vulnerability." | 5.0 |
| 2012-03-13 | CVE-2011-1394 | Resource Management Errors vulnerability in IBM products IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service Desk 6.2; and IBM Tivoli Change and Configuration Management Database (CCMDB) 6.2, 7.1, and 7.2 allow remote attackers to cause a denial of service (memory consumption) by establishing many UI sessions within one HTTP session. | 5.0 |
| 2012-03-12 | CVE-2012-1558 | Resource Management Errors vulnerability in Yassl Cyassl yaSSL CyaSSL before 2.0.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted X.509 certificate. | 5.0 |