83 matches found
CVE-2011-0331
CVE-2011-0331 affects Honeywell ScanServer ActiveX control 780.0.20.5. The documented flaw is a use-after-free in the addOSPLext method, allowing remote code execution via a crafted HTML document. Affected product: Honeywell ScanServer ActiveX control; root cause: use-after-free vulnerability in ...
KLA10196 ACE vulnerability in Honeywell ScanServer ActiveX
A use-after-free vulnerability was found in Honeywell ScanServer ActiveX control. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed HTML. Original advisories - Related products...
CVE-2010-0331
The vulnerability concerns the TYPO3 TV21 Talkshow extension (tv21_talkshow) version 1.0.1 and earlier. A Cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Affected software: TYPO3 extension tv21_talkshow ≤ 1.0.1. Root cause: ...
CVE-2010-0331
Cross-site scripting XSS vulnerability in the TV21 Talkshow tv21talkshow extension 1.0.1 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CentOS 4 : kernel (CESA-2009:0331)
Updated kernel packages that resolve several security issues and fix various bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any...
CentOS Security Advisory CESA-2009:0331 (kernel)
The remote host is missing updates to kernel announced in advisory CESA-2009:0331. CESA-2009:0331 63902 2 $Id: ovcesa20090331.nasl 6650 2017-07-10 11:43:12Z cfischer $ Description: Auto-generated from advisory CESA-2009:0331 kernel Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
CVE-2009-0331
The vulnerability described across sources affects Enhanced Simple PHP Gallery (ESPG) 1.72 in the file gallery/comment.php . It is a directory traversal issue that allows remote attackers to read arbitrary files via a .. (dot dot) component in the parameter named file . The note repeatedly sugges...
CVE-2009-0331
Directory traversal vulnerability in gallery/comment.php in Enhanced Simple PHP Gallery ESPG 1.72 allows remote attackers to read arbitrary files via a .. dot dot in the file parameter. NOTE: the vulnerability may be in my little homepage Comment script. If so, then this should not be treated as ...
CVE-2009-0331
creationtimestamp| type| source ---|---|--- 2009-01-18 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/7819...
Fedora Core 10 FEDORA-2009-0331 (openssl)
The remote host is missing an update to openssl announced via advisory FEDORA-2009-0331. OpenVAS Vulnerability Test $Id: fcore20090331.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-0331 openssl Authors: Thomas Reinke Copyright: Copyright c 2009...
CVE-2008-0331
CVE-2008-0331 affects Funkwerk System Software on certain Funkwerk Router/VPN devices prior to 7.4.1 PATCH 9. The issue is a vulnerability that allows remote attackers to cause a denial of service (panic and reboot) via unspecified DNS requests. Root cause details are not provided in the availabl...
CVE-2007-0331
Cross-site scripting XSS vulnerability in liens.php3 in liensdynamiques 2.1 allows remote attackers to inject arbitrary web script or HTML by using the ajouter=1 query string and the add menu...
CVE-2006-0331
The CVE-2006-0331 vulnerability affects the Change passwd 3.1 (chpasswd) SquirrelMail plugin, where a buffer overflow allows a local user to potentially execute arbitrary code by supplying long command line arguments. The issue is documented in NVD as a buffer overflow in the SquirrelMail plugin,...
CVE-2005-0331
CVE-2005-0331 describes a directory traversal vulnerability in WinRAR 3.42 and earlier. When a user clicks a ZIP file to extract it, an attacker can cause arbitrary files to be created via a ". . ." (triple dot) in the ZIP filename, enabling potential arbitrary write on the user’s system if the a...
CVE-2004-0331
Heap-based buffer overflow in Dell OpenManage Web Server 3.4.0 allows remote attackers to cause a denial of service crash via a HTTP POST with a long application variable...
CVE-2004-0331
CVE-2004-0331 describes a heap-based buffer overflow in Dell OpenManage Web Server (omws32.exe) due to a boundary error when handling POST requests. Affected versions include 3.2.0–3.7.1 (per connected advisories and the MSF module), with exploitation possible via a remote HTTP POST containing an...
CVE-2002-0331
CVE-2002-0331 describes a directory traversal vulnerability in the HTTP server of BPM Studio Pro 4.2, enabling remote attackers to read arbitrary files by using a dot-dot sequence in the HTTP request. Per the provided records, the impact is listed as confidentiality: none , integrity: partial , a...
CVE-2001-0331
CVE-2001-0331 describes a buffer overflow in SGI IRIX Embedded Support Partner (ESP) daemon rpc.espd, affecting IRIX 6.5.8 and earlier. The vulnerability allows remote attackers to execute arbitrary commands with superuser privileges, with the ESP daemon enabled by default on IRIX installations a...
CVE-2001-0331
Buffer overflow in Embedded Support Partner ESP daemon rpc.espd in IRIX 6.5.8 and earlier allows remote attackers to execute arbitrary commands...
CVE-2000-0331
Buffer overflow in Microsoft command processor CMD.EXE for Windows NT and Windows 2000 allows a local user to cause a denial of service via a long environment variable, aka the "Malformed Environment Variable" vulnerability...