Cross-site scripting (XSS) vulnerability in Phorum before 5.0.14a allows remote attackers to inject arbitrary web script or HTML via the filename of an attached...
5.7AI Score
0.003EPSS
Multiple cross-site scripting (XSS) vulnerabilities in Phorum before 5.0.15 allow remote attackers to inject arbitrary web script or HTML via (1) the subject line to follow.php or (2) the subject line in the user's personal control...
5.8AI Score
0.003EPSS
Multiple cross-site scripting (XSS) vulnerabilities in Phorum before 5.0.15 allow remote attackers to inject arbitrary web script or HTML via (1) the subject line to follow.php or (2) the subject line in the user's personal control...
5.8AI Score
0.003EPSS
Cross-site scripting (XSS) vulnerability in Phorum before 5.0.14a allows remote attackers to inject arbitrary web script or HTML via the filename of an attached...
5.7AI Score
0.003EPSS
Multiple cross-site scripting (XSS) vulnerabilities in Phorum before 5.0.15 allow remote attackers to inject arbitrary web script or HTML via (1) the subject line to follow.php or (2) the subject line in the user's personal control...
5.8AI Score
0.003EPSS
The version of Phorum installed on the remote host is prone to multiple cross-site scripting vulnerabilities due to its failure to sanitize user input. An attacker can exploit these flaws to potentially cause arbitrary script and HTML code to be rendered by a user's browser in the context of the...
-0.4AI Score
0.003EPSS
Multiple Microsoft Internet Explorer browser security vulnerabilities
Drag-n-Drop vulnerability, URL Decoding Zone Spoofing Vulnerability, DHTML Method Heap Memory Corruption Vulnerability, Channel Definition Format (CDF) Cross Domain Vulnerability. This vulnerability can potentially be used for silent spyware or adware...
0.8AI Score
Phorum 5.0.14 - Multiple Subject and Attachment HTML Injection Vulnerabilities
Phorum 5.0.14 - Multiple Subject and Attachment HTML Injection...
-0.2AI Score
7.4AI Score
EPSS
====================================================================== Secunia Research 09/02/2005 Microsoft Internet Explorer "createControlRange()" Memory Corruption ====================================================================== Table of Contents Affected...
0.2AI Score
0.948EPSS
[Full-Disclosure] WinHKI - CAB File Directory Transversal
Application: WinHKI Vendors: http://www.webtoolmaster.com Versions: 1.4d Platforms: Windows Bug: CAB File Directory Transversal Exploitation: Local (extract file) Date: 24 Dec 2004 Author: Rafel Ivgi, The-Insider E-Mail: [email protected] Website: http://theinsider.deep-ice.com 1) Intro...
-0.4AI Score
[Full-Disclosure] WinHKI - BH File Directory Transversal
Application: WinHKI Vendors: http://www.webtoolmaster.com Versions: 1.4d Platforms: Windows Bug: BH File Directory Transversal Exploitation: Local (extract file) Date: 24 Dec 2004 Author: Rafel Ivgi, The-Insider E-Mail: [email protected] Website: http://theinsider.deep-ice.com 1) Introd...
-0.5AI Score
Alcatel OmniSwitch 7000 and 7800 allows remote attackers to cause a denial of service (reboot) via certain network scans, as demonstrated using a Nessus port scan of ports 1 through 1024 with safe-checks...
6.7AI Score
0.021EPSS
Unspecified vulnerability in Sun Fire 3800/4800/4810/6800, Sun Fire V1280, and Netra 1280 allows remote attackers to cause a denial of service (system controller hang) via IP Packets With Type of Service (TOS) Bits...
6.6AI Score
0.043EPSS
[SA13143] RealVNC Multiple Connections Denial of Service Vulnerability
Monitor, Filter, and Manage Security Information - Filtering and Management of Secunia advisories - Overview, documentation, and detailed reports - Alerting via email and SMS Request Trial: https://ca.secunia.com/?f=l TITLE: RealVNC Multiple Connections Denial of Service Vulnerability SECUNIA...
AI Score
Unknown vulnerability in Microsoft Excel 2000, 2002, 2001 for Mac, and v.X for Mac allows remote attackers to execute arbitrary code via a malicious file containing certain parameters that are not properly...
7.5AI Score
0.775EPSS
Unknown vulnerability in Microsoft Excel 2000, 2002, 2001 for Mac, and v.X for Mac allows remote attackers to execute arbitrary code via a malicious file containing certain parameters that are not properly...
7.5AI Score
0.775EPSS
Unknown vulnerability in Microsoft Excel 2000, 2002, 2001 for Mac, and v.X for Mac allows remote attackers to execute arbitrary code via a malicious file containing certain parameters that are not properly...
7.5AI Score
0.775EPSS
[RLSA_04-2004] QNX crrtrap possible race condition vulnerability
*** rfdslabs security advisory *** Title: QNX crrtrap possible race condition vulnerability [RLSA_04-2004] Versions: QNX RTP 6.1 (possibly others) Vendor: http://www.qnx.com Date: Sep 13 2004 Author: Julio Cesar Fort <julio at rfdslabs com br> Introduction crrtrap is a tool to detect video...
0.5AI Score
Buffer overflow in Photon, format string in FTP client, race conditions in...
2.6AI Score
Alcatel OmniSwitch 7700/7800 switches running AOS 5.1.1 contains a back door telnet server that was intended for development but not removed before distribution, which allows remote attackers to gain administrative...
6.9AI Score
0.009EPSS
Alcatel OmniSwitch 7700/7800 switches running AOS 5.1.1 contains a back door telnet server that was intended for development but not removed before distribution, which allows remote attackers to gain administrative...
6.8AI Score
0.009EPSS
Solaris 2.5.1 (x86) : 104655-05
SunOS 5.5.1_x86: automount/automountd patch. Date this patch was last updated by Sun :...
0.1AI Score
1.4AI Score
Alcatel Omniswitch 7000 series
Running Nessus 2.0.9 against Alcatel 7000 series causing a swith to reboot via buffer overflow(?). Alcatel has multiple services running on the background, with no option to shut them down. Vulnerable ports: 80, 260, 261, 443. Disabling a service via qos policy (suggested by Alcatel) does just...
2.2AI Score
4.7AI Score
[NEWS] PSOProxy Buffer Overflow
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source....
0.3AI Score
Buffer overflow in wall for HP-UX 10.20 through 11.11 may allow local users to execute arbitrary code by calling wall with a large file as an...
7.5AI Score
0.0004EPSS
-0.2AI Score
HMAP Web Server Fingerprinting
Nessus was able to identify the remote web server type by sending several valid and invalid HTTP requests. In some cases, its version can also be approximated, as well as some...
0.1AI Score
0.4AI Score
Gopherd <= 3.0.5 FTP Gateway Remote Overflow Exploit
Exploit for linux platform in category remote...
7.1AI Score
7.1AI Score
7.4AI Score
[SECURITY] [DSA-368-1] New xpcd packages fix buffer overflow
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Debian Security Advisory DSA 368-1 [email protected] http://www.debian.org/security/ Matt Zimmerman August 8th, 2003 http://www.debian.org/security/faq Package : xpcd...
0.1AI Score
0.0004EPSS
[SECURITY] [DSA-368-1] New xpcd packages fix buffer overflow
Debian Security Advisory DSA 368-1 [email protected] http://www.debian.org/security/ Matt Zimmerman August 8th, 2003 http://www.debian.org/security/faq Package : xpcd Vulnerability : buffer overflow Problem-Type :...
6.7AI Score
0.0004EPSS
UMN gopherd[2.x.x/3.x.x]: ftp gateway, and GSisText() buffer overflow exploits.
bordom/fun audit time... been awhile since i did an audit of UMN(University of Minnesota) gopherd+ daemon. figured i would check out the newer v3.0.x series, which has cleaned up the past security issues... while the old issues are resolved, still a few leftovers. two exploits follow... original...
-0.1AI Score
University of Minnesota Gopherd 2.0.x2.33.0.x - FTP Gateway Buffer Overflow
University of Minnesota Gopherd 2.0.x2.33.0.x - FTP Gateway Buffer...
0.4AI Score
7.4AI Score
EPSS
7.4AI Score
AI Score
HPUX 10.2011 Wall Message - Local Buffer Overflow
HPUX 10.2011 Wall Message - Local Buffer...
0.6AI Score
7.4AI Score
EPSS
Product: Efficient Networks 5861 DSL Router http://www.efficient.com/ebz/5800.html Tested version: 5.3.80 (Latest firmware) Advisory date: 10/01/2003 Severity: Moderate Details When using the built in IP filtering to block incoming TCP SYN flags, a...
-0.2AI Score
[VulnWatch] Efficient Networks 5861 DSL Router
Product: Efficient Networks 5861 DSL Router http://www.efficient.com/ebz/5800.html Tested version: 5.3.80 (Latest firmware) Advisory date: 10/01/2003 Severity: Moderate Background "Efficient Networks® Business Class IDSL, ADSL, or SDSL Routers...
0.1AI Score
Alcatel OmniSwitch 7700/7800 switches running AOS 5.1.1 contains a back door telnet server that was intended for development but not removed before distribution, which allows remote attackers to gain administrative...
6.9AI Score
0.009EPSS
Alcatel OmniSwitch 7700/7800 Switches Backdoor Access (deprecated)
This plugin has been deprecated due to excessive false positives since it flags any telnet banner discovered on TCP...
-0.3AI Score
0.009EPSS
CERT Advisory CA-2002-32 Backdoor in Alcatel OmniSwitch AOS
-----BEGIN PGP SIGNED MESSAGE----- CERT Advisory CA-2002-32 Backdoor in Alcatel OmniSwitch AOS Original release date: November 21, 2002 Last revised: -- Source: CERT/CC, Alcatel A complete revision history can be found at the end of this file. Systems Affected * Alcatel OmniSwitch ...
AI Score
0.009EPSS
4.1AI Score
Alcatel Operating System (AOS) does not require a password for accessing the telnet server
Overview The OmniSwitch 7700/7800 running Alcatel Operating System (AOS) version 5.1.1 has TCP port 6778 listening as a telnet server. This gives anyone access to the OmniSwitch's Vx-Works operating system without requiring a password. Description During an NMAP audit of the AOS 5.1.1 code that...
0.1AI Score
0.009EPSS