Lucene search
K

7659 matches found

Zero Day Initiative
Zero Day Initiative
added 2014/04/10 12:0 a.m.39 views

Microsoft Internet Explorer CAttrArray Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.4AI score0.20344EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
added 2014/04/08 12:0 a.m.21 views

SolarWinds Server and Application Monitor Apex Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SolarWinds Server and Application Monitor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exis...

7.5CVSS7.2AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2014/04/08 12:0 a.m.25 views

Adobe Flash Player Regular Expression Stack Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the usage of...

7.5CVSS6.6AI score0.06442EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2014/04/08 12:0 a.m.65 views

Slackware 14.0 / 14.1 / current : openssl (SSA:2014-098-01)

New openssl packages are available for Slackware 14.0, 14.1, and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2014-098-01. The text itself is copyright C...

7.5CVSS8.3AI score0.99999EPSS
Exploits88References3
Zero Day Initiative
Zero Day Initiative
added 2014/04/03 12:0 a.m.60 views

Schneider-Electric ClearSCADA ServerMain.exe OPF File Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider-Electric ClearSCADA. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

6.8CVSS6.4AI score0.01487EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2014/04/03 12:0 a.m.42 views

Mozilla Firefox imgRequestProxy Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS9AI score0.07072EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
added 2014/04/03 12:0 a.m.25 views

Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS2.9AI score0.13659EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
added 2014/04/03 12:0 a.m.42 views

Apple Mobile Safari isindex Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS5.2AI score0.02133EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2014/03/31 12:0 a.m.39 views

Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / current : curl (SSA:2014-086-01)

New curl packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2014-086-01. The text itsel...

6.4CVSS6.2AI score0.0508EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2014/03/31 12:0 a.m.14 views

Slackware 14.0 / 14.1 / current : seamonkey (SSA:2014-086-07)

New seamonkey packages are available for Slackware 14.0, 14.1, and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2014-086-07. The text itself is copyright...

7AI score
Exploits0References1
Slackware Linux
Slackware Linux
added 2014/03/28 10:55 p.m.15 views

[slackware-security] seamonkey

New seamonkey packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/seamonkey-2.25-i486-1slack14.1.txz: Upgraded. This update contains security fixes and improvements. For more information, se...

7AI score
Exploits0
Slackware Linux
Slackware Linux
added 2014/03/28 10:54 p.m.19 views

[slackware-security] mozilla-thunderbird

New mozilla-thunderbird packages are available for Slackware 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/mozilla-thunderbird-24.4.0-i486-1slack14.1.txz: Upgraded. This release contains security fixes and improvements. For mor...

7AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2014/03/20 12:0 a.m.31 views

Microsoft Internet Explorer CSelectElement Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.5CVSS3.3AI score0.21573EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
added 2014/03/20 12:0 a.m.35 views

Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS2.9AI score0.12736EPSS
Exploits1References1
securityvulns
securityvulns
added 2014/03/18 12:0 a.m.56 views

[slackware-security] samba (SSA:2014-072-01)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 slackware-security samba SSA:2014-072-01 New samba packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+...

5.8CVSS8.8AI score0.10642EPSS
Exploits1
securityvulns
securityvulns
added 2014/03/13 12:0 a.m.62 views

[slackware-security] udisks, udisks2 (SSA:2014-070-01)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 slackware-security udisks, udisks2 SSA:2014-070-01 New udisks and udisks2 packages are available for Slackware 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+...

6.9CVSS7.7AI score0.0043EPSS
Exploits1
0day.today
0day.today
added 2014/03/10 12:0 a.m.63 views

Kentico CMS 7.0.75 - User Information Disclosure

Exploit for asp platform in category web applications This vulnerability is an unprotected page on the site where you can view all current users and usernames. To find out if a Kentico CMS is vulnerable go to http://site.com/CMSModules/Messaging/CMSPages/PublicMessageUserSelector.aspx assuming th...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/02/28 12:0 a.m.27 views

Slackware 14.0 / 14.1 / current : subversion (SSA:2014-058-01)

New subversion packages are available for Slackware 14.0, 14.1, and -current to fix denial-of-service issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2014-058-01. The text itself is...

4.3CVSS8.6AI score0.11052EPSS
Exploits0References4
OSV
OSV
added 2014/02/26 2:55 p.m.2 views

DEBIAN-CVE-2014-2094

Untrusted search path vulnerability in Catfish through 0.4.0.3, when a Fedora package such as 0.4.0.2-2 is not used, allows local users to gain privileges via a Trojan horse catfish.pyc in the current working directory...

4.6CVSS7AI score0.00417EPSS
Exploits0References1
Prion
Prion
added 2014/02/26 2:55 p.m.12 views

Design/Logic Flaw

Untrusted search path vulnerability in Catfish 0.6.0 through 1.0.0, when a Fedora package such as 0.8.2-1 is not used, allows local users to gain privileges via a Trojan horse bin/catfish.pyc under the current working directory...

4.6CVSS6.9AI score0.00417EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder