Debian Security Advisory DSA 1270-2 (openoffice.org)
The remote host is missing an update to openoffice.org announced via advisory DSA 1270-2. Several security related problems have been discovered in OpenOffice.org, the free office suite. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2007-0002 iDefense...
0.7AI Score
0.55EPSS
7.7AI Score
0.029EPSS
Debian Security Advisory DSA 1419-1 (openoffice.org, hsqldb)
The remote host is missing an update to openoffice.org, hsqldb announced via advisory DSA...
0.6AI Score
0.029EPSS
Debian Security Advisory DSA 1246-1 (openoffice.org)
The remote host is missing an update to openoffice.org announced via advisory DSA 1246-1. John Heasman from Next Generation Security Software discovered a heap overflow in the handling of Windows Metafiles in OpenOffice.org, the free office suite, which could lead to a denial of service and...
0.7AI Score
0.118EPSS
6.7AI Score
0.118EPSS
Debian Security Advisory DSA 1104-2 (openoffice.org)
The remote host is missing an update to openoffice.org announced via advisory DSA 1104-2. Loading malformed XML documents can cause buffer overflows in OpenOffice.org, a free office suite, and cause a denial of service or execute arbitrary code. It turned out that the correction in DSA 1104-1 was.....
1.3AI Score
0.011EPSS
6.7AI Score
0.55EPSS
6.6AI Score
0.666EPSS
Debian Security Advisory DSA 1270-1 (openoffice.org)
The remote host is missing an update to openoffice.org announced via advisory DSA 1270-1. Several security related problems have been discovered in OpenOffice.org, the free office suite. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2007-0002 iDefense...
0.4AI Score
0.55EPSS
Determine OS and list of installed packages via SSH login
This script will, if given a userid/password or key to the remote system, login to that system, determine the OS it is running, and for supported systems, extract the list of installed...
7.3AI Score
Debian Security Advisory DSA 1307-1 (openoffice.org)
The remote host is missing an update to openoffice.org announced via advisory DSA...
0.9AI Score
0.666EPSS
Debian Security Advisory DSA 1375-1 (openoffice.org)
The remote host is missing an update to openoffice.org announced via advisory DSA...
1AI Score
0.926EPSS
6.6AI Score
0.926EPSS
Fedora 8 : moodle-1.8.4-1.fc8 (2008-0610)
Upgrade to 1.8.4, fix CVE-2008-0123. Added Tamil (Sri Lanka) support. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...
-0.1AI Score
0.017EPSS
Fedora 7 : moodle-1.8.4-1.fc7 (2008-0627)
Upgrade to 1.8.4, fix CVE-2008-0123. Added Tamil (Sri Lanka) support. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...
-0.1AI Score
0.017EPSS
-0.2AI Score
Level-One WBR-3460A Grants Root Access
Advisory: Level-One WBR-3460A Grants Root Access Risk: High Vendor Status: Vendor has not released an updated version Release Date: 08/01/2008 Last Modified: 01/01/2008 Author: Anastasios Monachos [anastasiosm(at)gmail(dot)com] I Affected Products: Level-One WBR-3460A latest firmware available...
-0.1AI Score
openSUSE 10 Security Update : OpenOffice_org (OpenOffice_org-4802)
This update of OpenOffice_org adds restrictions to SQL statements of Java-based databases to avoid the execution of native Jave code by creating procedures....
AI Score
0.029EPSS
Web Server Malicious JavaScript Link Detection
The remote web server seems to link to malicious JavaScript files hosted on a third-party website. This typically means that the remote web server has been compromised, and it may infect its visitors as...
-0.5AI Score
Mandrake Linux Security Advisory : mozilla-firefox (MDKSA-2007:246)
A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 2.0.0.11. This update provides the latest Firefox to correct these issues. As well, it provides Firefox 2.0.0.11 for older...
7AI Score
0.94EPSS
remote code execution in OpenOffice_org
OpenOffice_org was updated to add restrictions to SQL statements of Java-based databases to avoid the execution of native Java code by creating procedures. (CVE-2007-4575) Solution There is no known workaround, please install the update...
3.9AI Score
0.029EPSS
Debian DSA-1419-1 : openoffice.org - programming error
A vulnerability has been discovered in HSQLDB, the default database engine shipped with OpenOffice.org. This could result in the execution of arbitrary Java code embedded in a OpenOffice.org database document with the user's privilege. This update requires an update of both openoffice.org and...
6.8AI Score
0.029EPSS
[SECURITY] [DSA 1419-1] New OpenOffice.org packages fix arbitrary Java code execution
Debian Security Advisory DSA 1419-1 [email protected] http://www.debian.org/security/ Martin Schulze December 5th, 2007 http://www.debian.org/security/faq Package : openoffice.org, hsqldb Vulnerability : programming...
6.1AI Score
0.029EPSS
Unfixed XSS vulnerability at www.teach12.com
Security researcher SCRiPToRiuM, has submitted on 12/02/2007 a cross-site-scripting (XSS) vulnerability affecting www.teach12.com, which at the time of submission ranked 64154 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 12/02/2007. It is...
AI Score
Ubuntu 5.04 / 6.06 LTS : openoffice.org-amd64, openoffice.org vulnerabilities (USN-313-1)
It was possible to embed Basic macros in documents in a way that OpenOffice.org would not ask for confirmation about executing them. By tricking a user into opening a malicious document, this could be exploited to run arbitrary Basic code (including local file access and modification) with the...
7.2AI Score
0.021EPSS
Fedora 7 : moodle-1.8.2-1.fc7 (2007-1445)
Upgrade to 1.8.2, Security fixes for 247582. Also corrects bug 245750, cron job problem. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...
-0.2AI Score
openSUSE 10 Security Update : moodle (moodle-3959)
This update fixes the following issues : possible remote file inclusion (CVE-2007-1429) XSS injection in SCORM 1.2 reports Fixed XSS in login block Additionally changes : Fixed visibility of site blogs moodle-config.php is now located in /etc/moodle/ added safe_mode and...
-0.3AI Score
0.011EPSS
openSUSE 10 Security Update : OpenOffice_org (OpenOffice_org-4319)
This update of OpenOffice_org fixes a bug in TIFF parsing code that leads to a heap overflow. (CVE-2007-2834) This bug can be exploited with user assistance to execute arbitrary...
7.2AI Score
0.926EPSS
openSUSE 10 Security Update : OpenOffice_org (OpenOffice_org-2682)
Following security problems were fixed in OpenOffice_org : This update also brings OpenOffice_org to version 2.0.4.17, same as SUSE Linux Enterprise Desktop 10 and contains lots of bugfixes. CVE-2007-0002: Various problems were fixed in the Wordperfect converter library libwpd in OpenOffice_org...
7.1AI Score
0.55EPSS
openSUSE 10 Security Update : OpenOffice_org (OpenOffice_org-1698)
Following security problems were found in OpenOffice_org : CVE-2006-2198: A security vulnerability in OpenOffice.org may make it possible to inject basic code into documents which is executed upon loading of the document. The user will not be asked or notified and the macro will...
7.4AI Score
0.021EPSS
Stack-based buffer overflow in the Line Printer Daemon (LPD) in Cisco IOS before 12.2(18)SXF11, 12.4(16a), and 12.4(2)T6 allow remote attackers to execute arbitrary code by setting a long hostname on the target system, then causing an error message to be printed, as demonstrated by a telnet...
8.7AI Score
0.868EPSS
Stack-based buffer overflow in the Line Printer Daemon (LPD) in Cisco IOS before 12.2(18)SXF11, 12.4(16a), and 12.4(2)T6 allow remote attackers to execute arbitrary code by setting a long hostname on the target system, then causing an error message to be printed, as demonstrated by a telnet...
8AI Score
0.868EPSS
SUSE-SA:2007:052: OpenOffice_org
The remote host is missing the patch for the advisory SUSE-SA:2007:052...
-0.1AI Score
Debian DSA-1375-1 : openoffice.org - buffer overflow
A heap overflow vulnerability has been discovered in the TIFF parsing code of the OpenOffice.org suite. The parser uses untrusted values from the TIFF file to calculate the number of bytes of memory to allocate. A specially crafted TIFF image could trigger an integer overflow and subsequently a...
7.3AI Score
0.926EPSS
Mandrake Linux Security Advisory : openoffice.org (MDKSA-2007:186)
An integer overflow in the TIFF parser in OpenOffice.org prior to version 2.3 allows remote attackers to execute arbitrary code via a TIFF file with crafted values which triggers the allocation of an incorrect amount of memory which results in a heap-based buffer overflow. Updated packages have...
1.9AI Score
0.926EPSS
remote code execution in OpenOffice_org
OpenOffice_org was updated to fix a bug in TIFF parsing code that lead to a heap overflow. (CVE-2007-2834) Solution There is no known workaround, please install the update...
5.6AI Score
0.926EPSS
[SECURITY] [DSA 1375-1] New OpenOffice.org packages fix arbitrary code execution
Debian Security Advisory DSA 1375-1 [email protected] http://www.debian.org/security/ Martin Schulze September 17th, 2007 http://www.debian.org/security/faq Package : openoffice.org Vulnerability : buffer overflow Problem...
6.4AI Score
0.926EPSS
MDKA-2007:086 : mozilla-firefox
The previous Mozilla Firefox updates did not properly handle the default and GNOME themes which prevented buttons from being displayed. As well, there were some problems with language support. These updated packages are being provided to correct the...
0.4AI Score
Cisco IOS Show IP BGP Regexp远程拒绝服务漏洞
Cisco IOS是一款流行的网络操作系统。 Cisco IOS不正确处理部分CLI命令,远程攻击者可以利用漏洞对系统进行拒绝服务攻击,可导致设备重启。 问题存在于处理"show ip bgp regexp"命令时,如果提交部分规则表达式作为参数并执行,结果可导致路由器重启或重建BGP路由表。如果多次成功利用此问题,可导致路由器变的重复不可用。 Cisco IOS XR 3.4.1 Cisco IOS XR 3.4 Cisco IOS XR 3.3.4 Cisco IOS XR 3.3.3 Cisco IOS XR 3.3.2 Cisco IOS XR 3.3.1 Cisco IOS XR....
7.1AI Score
1.6AI Score
0.894EPSS
Mandrake Linux Security Advisory : mozilla-firefox (MDKSA-2007:152)
A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 2.0.0.6. This update provides the latest Firefox to correct these issues. As well, it provides Firefox 2.0.0.6 for older...
0.4AI Score
0.957EPSS
-0.3AI Score
[Full-disclosure] Element CMS script insertion vulnerability
========================================================================= TeamIntell Security Advisory TISA2007-06-Public Element CMS "s" parameter script insertion vulnerability Release Date: 14.7.2007 Severity: Less critical Impact: Cross-site scripting (XSS) Status: ...
-0.1AI Score
Mandrake Linux Security Advisory : openoffice.org (MDKSA-2007:144)
A heap overflow flaw was found in the RTF import filter of OpenOffice.org. If a victim were to open a specially crafted RTF file, OpenOffice.org could crash or possibly execute arbitrary code. Updated packages have been patched to prevent the above...
1.4AI Score
0.666EPSS
Mandrake Linux Security Advisory : mozilla-thunderbird (MDKSA-2007:119)
A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Thunderbird program, version 1.5.0.12. This update provides the latest Thunderbird to correct these...
7AI Score
0.969EPSS
Mandrake Linux Security Advisory : mozilla-firefox (MDKSA-2007:120)
A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 1.5.0.12. This update provides the latest Firefox to correct these...
7AI Score
0.969EPSS
Debian DSA-1307-1 : openoffice.org - heap overflow
John Heasman discovered a heap overflow in the routines of OpenOffice.org that parse RTF files. A specially crafted RTF file could cause the filter to overwrite data on the heap, which may lead to the execution of arbitrary...
0.9AI Score
0.666EPSS
[SECURITY] [DSA 1307-1] New OpenOffice.org packages fix arbitrary code execution
Debian Security Advisory DSA 1307-1 [email protected] http://www.debian.org/security/ Martin Schulze June 12th, 2007 http://www.debian.org/security/faq Package : openoffice.org Vulnerability : heap overflow Problem...
6.2AI Score
0.666EPSS
SUSE-SA:2007:023: OpenOffice_org,libwpd
The remote host is missing the patch for the advisory SUSE-SA:2007:023...
0.1AI Score
Foreword Cmd Shell(command line interaction)is a hack eternal topic. It is historic and enduring. This article is intended to introduce and summarize some of the command line under control of the Windows System. These methods are as far as possible use the system comes with the tools to...
AI Score