Vulnerabilities > Resource Management Errors
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-01-27 | CVE-2011-3626 | Resource Management Errors vulnerability in multiple products Double free vulnerability in the prepare_exec function in src/exec.c in Logsurfer 1.5b and earlier, and Logsurfer+ 1.7 and earlier, allows remote attackers to execute arbitrary commands via crafted strings in a log file. | 7.5 |
| 2012-01-20 | CVE-2012-0904 | Resource Management Errors vulnerability in Videolan VLC Media Player 1.1.11 VLC media player 1.1.11 allows remote attackers to cause a denial of service (crash) via a long string in an amr file. | 4.3 |
| 2012-01-18 | CVE-2012-0781 | Resource Management Errors vulnerability in PHP 5.3.8 The tidy_diagnose function in PHP 5.3.8 might allow remote attackers to cause a denial of service (NULL pointer dereference and application crash) via crafted input to an application that attempts to perform Tidy::diagnose operations on invalid objects, a different vulnerability than CVE-2011-4153. | 5.0 |
| 2012-01-15 | CVE-2011-4868 | Resource Management Errors vulnerability in ISC Dhcp The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update. | 6.1 |
| 2012-01-13 | CVE-2011-4057 | Resource Management Errors vulnerability in Wibu Codemeter Runtime 4.10B/4.20A/4.30C Wibu-Systems AG CodeMeter Runtime 4.30c, 4.10b, and possibly other versions before 4.40 allows remote attackers to cause a denial of service (CodeMeter.exe crash) via certain crafted packets to TCP port 22350. | 5.0 |
| 2012-01-06 | CVE-2012-0027 | Resource Management Errors vulnerability in Openssl The GOST ENGINE in OpenSSL before 1.0.0f does not properly handle invalid parameters for the GOST block cipher, which allows remote attackers to cause a denial of service (daemon crash) via crafted data from a TLS client. | 5.0 |
| 2012-01-06 | CVE-2011-4619 | Resource Management Errors vulnerability in Openssl The Server Gated Cryptography (SGC) implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service (CPU consumption) via unspecified vectors. | 5.0 |
| 2012-01-06 | CVE-2011-4577 | Resource Management Errors vulnerability in Openssl OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attackers to cause a denial of service (assertion failure) via an X.509 certificate containing certificate-extension data associated with (1) IP address blocks or (2) Autonomous System (AS) identifiers. | 4.3 |
| 2012-01-06 | CVE-2011-4109 | Resource Management Errors vulnerability in Openssl Double free vulnerability in OpenSSL 0.9.8 before 0.9.8s, when X509_V_FLAG_POLICY_CHECK is enabled, allows remote attackers to have an unspecified impact by triggering failure of a policy check. | 9.3 |
| 2012-01-05 | CVE-2011-4905 | Resource Management Errors vulnerability in Apache Activemq Apache ActiveMQ before 5.6.0 allows remote attackers to cause a denial of service (file-descriptor exhaustion and broker crash or hang) by sending many openwire failover:tcp:// connection requests. | 5.0 |