antirez

4 exploits Active since Dec 2000
CVE-2013-0178 WRITEUP MEDIUM WRITEUP
Redis < 2.6.0 - Improper Input Validation
Insecure temporary file vulnerability in Redis before 2.6 related to /tmp/redis-%p.vm.
CVSS 5.5
CVE-2016-8339 WRITEUP CRITICAL WRITEUP
Redis 3.2.x <3.2.4 - Buffer Overflow
A buffer overflow in Redis 3.2.x prior to 3.2.4 causes arbitrary code execution when a crafted command is sent. An out of bounds write vulnerability exists in the handling of the client-output-buffer-limit option during the CONFIG SET command for the Redis data structure store. A crafted CONFIG SET command can lead to an out of bounds write potentially resulting in code execution.
CVSS 9.8
CVE-2018-11219 WRITEUP CRITICAL WRITEUP
Redis < 3.2.12 - Integer Overflow
An Integer Overflow issue was discovered in the struct library in the Lua subsystem in Redis before 3.2.12, 4.x before 4.0.10, and 5.x before 5.0 RC2, leading to a failure of bounds checking.
CVSS 9.8
CVE-2000-1029 EXPLOITDB c WORKING POC
ISC BIND host command - Buffer Overflow
Buffer overflow in host command allows a remote attacker to execute arbitrary commands via a long response to an AXFR query.