CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2006/01/25 11:0 a.m.•52 views

CVE-2006-0418

Affected product: 123 Flash Chat Server 5.0 and 5.1. Vulnerable: eval injection in username handling that allows arbitrary code execution. Root cause: crafted username processed in a way that enables code execution. Impact: potential compromise of confidentiality, integrity, and availability (as ...

7.5CVSS7.8AI score0.03611EPSS

Exploits1References2Affected Software1

RedHat Linux•added 2006/01/19 4:3 p.m.•55 views

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix several security issues in the Red Hat Enterprise Linux 3 kernel are now available. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the operating syste...

7.8CVSS6AI score0.05357EPSS

Exploits11References13

Metasploit•added 2006/01/16 2:59 a.m.•23 views

Veritas Backup Exec Windows Remote Agent Overflow

This module exploits a stack buffer overflow in the Veritas BackupExec Windows Agent software. This vulnerability occurs when a client authentication request is received with type '3' and a long password argument. Reliable execution is obtained by abusing the stack buffer overflow to smash a SEH...

7.5CVSS7.9AI score0.86365EPSS

Tenable Nessus•added 2006/01/15 12:0 a.m.•48 views

Ubuntu 4.10 / 5.04 : linux-source-2.6.10, linux-source-2.6.8.1 vulnerabilities (USN-199-1)

A Denial of Service vulnerability was discovered in the syssetmempolicy function. By calling the function with a negative first argument, a local attacker could cause a kernel crash. CAN-2005-3053 A race condition was discovered in the handling of shared memory mappings with CLONEVM. A local...

4.7CVSS5.7AI score0.0338EPSS

Exploits1References6

Tenable Nessus•added 2006/01/15 12:0 a.m.•41 views

Ubuntu 4.10 / 5.04 : linux-source-2.6.10, linux-source-2.6.8.1 vulnerabilities (USN-178-1)

Oleg Nesterov discovered a local Denial of Service vulnerability in the timer handling. When a non group-leader thread called exec to execute a different program while an itimer was pending, the timer expiry would signal the old group leader task, which did not exist any more. This caused a kerne...

7.5CVSS5.9AI score0.03906EPSS

Exploits2References6

NVD•added 2005/12/31 5:0 a.m.•20 views

CVE-2005-4779

verifiedexecioctl in verifiedexec.c in NetBSD 2.0.2 calls NDINIT with UIOUSERSPACE rather than UIDSYSSPACE, which removes the functionality of the verified exec kernel subsystem and might allow local users to execute Trojan horse programs...

3.6CVSS6.5AI score0.00334EPSS

Exploits0References4

Exploit DB•added 2005/12/23 12:0 a.m.•24 views

win32 Download & Exec Shellcode 226 bytes+

win32 Download & Exec Shellcode 226 bytes+. Shellcode exploit for win32 platform / \ WINSHELLCODE / :: win32 download & exec shellcode :: \ :: by Darkeagle of Unl0ck Research Team http://exploiterz.org :: / :: to avoid 0x00 use ^^xor^^ : :: \ :: greets goes to: Sowhat, 0x557 guys, 55k7 guys,...

7.4AI score

Saint•added 2005/12/22 12:0 a.m.•24 views

VERITAS Backup Exec CONNECT_CLIENT_AUTH buffer overflow

Added: 12/22/2005 CVE: CVE-2005-0773 BID: 14022 OSVDB: 17624 Background VERITAS Backup Exec is a network backup solution for Windows and Netware servers. Problem VERITAS Backup Exec is affected by a buffer overflow when handling CONNECTCLIENTAUTH requests with the Windows user authentication type...

Saint•added 2005/12/22 12:0 a.m.•26 views

VERITAS Backup Exec CONNECT_CLIENT_AUTH buffer overflow

Saint•added 2005/12/22 12:0 a.m.•35 views

VERITAS Backup Exec CONNECT_CLIENT_AUTH buffer overflow

Saint•added 2005/12/22 12:0 a.m.•17 views

VERITAS Backup Exec CONNECT_CLIENT_AUTH buffer overflow

Metasploit•added 2005/12/05 4:57 a.m.•51 views

Veritas Backup Exec Name Service Overflow

This module exploits a vulnerability in the Veritas Backup Exec Agent Browser service. This vulnerability occurs when a recv call has a length value too long for the destination stack buffer. By sending an agent name value of 63 bytes or more, we can overwrite the return address of the recv...

10CVSS6.9AI score0.81791EPSS

Exploits7

Tenable Nessus•added 2005/11/10 12:0 a.m.•32 views

VERITAS Backup Agent Detection

The remote host is running a Backup Agent that uses the Network Data Management Protocol NDMP. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid20175; scriptversion"1.16"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/10/12";...

5.5AI score

Exploit DB•added 2005/11/09 12:0 a.m.•25 views

linux/ppc - read & exec shellcode 32 bytes

linux/ppc read & exec shellcode 32 bytes. Shellcode exploit for linuxppc platform / readnexecppc-core.c by Charles Stevenson / char hellcode = / read0,stack,1028; stack; linux/ppc by core / "\x7c\x63\x1a\x79" / xor. r3,r3,r3 / "\x38\xa0\x04\x04" / li r5,1028 / "\x30\x05\xfb\xff" / addic r0,r5,-10...

0.1AI score

OpenVAS•added 2005/11/03 12:0 a.m.•14 views

AWStats configdir parameter arbitrary cmd exec

The remote host is running AWStats, a free real-time logfile analyzer. The remote version of this software is prone to an input validation vulnerability. The issue is reported to exist because user supplied OpenVAS Vulnerability Test $Id: awstatsconfigdir.nasl 6056 2017-05-02 09:02:50Z teissa $...

0.3AI score