Lucene search
+L

83 matches found

CVE
CVE
added 2014/03/06 11:0 a.m.61 views

CVE-2014-0890

IBM Sametime Connect (LAN/Enterprise) clients 8.5.1 to 9.0.0.1 are affected by an information-disclosure vulnerability (CVE-2014-0890). When a specific verbose logging level is enabled for Audio/Video chat, passwords are logged in plaintext or unencrypted in log files, allowing local users to obt...

1.9CVSS5.6AI score0.00341EPSS
Exploits2References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.63 views

Oracle Linux 5 : Moderate: / php (ELSA-2007-0890)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2007-0890 advisory. 5.1.6-15.el5 - improve fix for CVE-2007-3997 278411 5.1.6-14.el5 - fix backport for CVE-2007-3996 278411 5.1.6-13.el5 - add security fixes for...

7.5CVSS6.8AI score0.13818EPSS
Exploits8References8
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.37 views

Oracle Linux 5 : wireshark (ELSA-2008-0890)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2008-0890 advisory. 1.0.3-4.0.1.el52 - Add oracle-ocfs2-network.patch 1.0.3-4 - fix pam session file, wireshark requires root pswd everytime its started 1.0.3-3 - fix pie...

10CVSS5.6AI score0.50693EPSS
Exploits5References15
OpenVAS
OpenVAS
added 2013/03/01 12:0 a.m.36 views

Google Chrome Multiple Vulnerabilities-01 March 2013 (Windows)

This host is installed with Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvuln01mar13win.nasl 6074 2017-05-05 09:03:14Z teissa $ Google Chrome Multiple Vulnerabilities-01 March 2013 Windows Authors: Arun Kallavi Copyright: Copyright c 20...

7.5CVSS0.6AI score0.0225EPSS
Exploits0References4
CVE
CVE
added 2013/02/23 9:0 p.m.66 views

CVE-2013-0890

CVE-2013-0890 corresponds to multiple memory-safety vulnerabilities in the IPC layer of Google Chrome. The initial description states that Chrome before 25.0.1364.97 (Windows/Linux) and before 25.0.1364.99 (macOS) is affected, leading to potential memory corruption and a remote denial of service ...

7.5CVSS7AI score0.01412EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2011/03/25 6:0 p.m.61 views

CVE-2011-0890

Summary: CVE-2011-0890 affects HP DDMI versions 7.50, 7.51, 7.60, 7.61, 7.70, and 9.30. The issue arises because the Windows SNMP service is launched with its default configuration, allowing remote attackers to access read-only SNMP data via the public read community. Impact (as documented): Remo...

5CVSS7.7AI score0.02538EPSS
Exploits0References6Affected Software1
securityvulns
securityvulns
added 2011/03/23 12:0 a.m.47 views

[security bulletin] HPSBMA02647 SSRT100383 rev.1 - HP Discovery & Dependency Mapping Inventory (DDMI) Running on Windows, Insecure SNMP Configuration

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02757867 Version: 1 HPSBMA02647 SSRT100383 rev.1 - HP Discovery & Dependency Mapping Inventory DDMI Running on Windows, Insecure SNMP Configuration NOTICE: The information in this Security Bullet...

5CVSS0.1AI score0.02538EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/11/18 12:0 a.m.20 views

RHEL 6 : pidgin (RHSA-2010:0890)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2010:0890 advisory. Pidgin is an instant messaging program which can log in to multiple accounts on multiple instant messaging networks simultaneously. Multiple NULL...

4CVSS5.6AI score0.0327EPSS
Exploits1References5
CVE
CVE
added 2010/04/13 10:0 p.m.52 views

CVE-2010-0890

CVE-2010-0890 affects Solaris/OpenSolaris: Solaris component in Oracle Sun Product Suite 10 and OpenSolaris snv_01–snv_98 has an unspecified vulnerability that allows local users to affect availability via kernel-related vectors. The NVD entry provides limited detail (no explicit root cause, vect...

2.1CVSS5.6AI score0.00444EPSS
Exploits0References9Affected Software2
Cvelist
Cvelist
added 2010/04/13 10:0 p.m.21 views

CVE-2010-0890

Unspecified vulnerability in the Solaris component in Oracle Sun Product Suite 10 and OpenSolaris snv01 through snv98 allows local users to affect availability via unknown vectors related to the Kernel...

5.5AI score0.00444EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.31 views

CentOS Update for wireshark CESA-2008:0890 centos3 x86_64

Check for the Version of wireshark OpenVAS Vulnerability Test CentOS Update for wireshark CESA-2008:0890 centos3 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

10CVSS0.2AI score0.50693EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.28 views

CentOS Update for wireshark CESA-2008:0890 centos3 x86_64

Check for the Version of wireshark OpenVAS Vulnerability Test CentOS Update for wireshark CESA-2008:0890 centos3 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

10CVSS0.1AI score0.50693EPSS
Exploits5References2
CVE
CVE
added 2008/03/12 12:0 a.m.59 views

CVE-2008-0890

CVE-2008-0890 affects Red Hat Directory Server 7.1 prior to SP4. The issue is insecure permissions on certain directories that allow a local user to replace Java ARchive (JAR) files and execute arbitrary code with the server’s privileges. The official Red Hat advisory RHSA-2008:0173 documents the...

4.6CVSS7.2AI score0.00374EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2007/02/12 11:0 p.m.70 views

CVE-2007-0890

CVE-2007-0890 is an XSS vulnerability in cPanel WebHost Manager (WHM) up to version 11.0.0, in the scripts/passwdmysql component. The vulnerability allows remote attackers to inject arbitrary web script or HTML via the password parameter. The provided connected documents confirm the affected prod...

4.3CVSS5.9AI score0.01765EPSS
Exploits1References6Affected Software1
CVE
CVE
added 2006/02/25 11:0 a.m.49 views

CVE-2006-0890

CVE-2006-0890 describes a directory traversal vulnerability in SpeedProject Squeez 5.1, used by ZipStar 5.1 and SpeedCommander 11.01.4450. The flaw allows remote attackers to overwrite arbitrary files via unspecified manipulations in a (1) JAR or (2) ZIP archive. The underlying issue is a directo...

5CVSS6.9AI score0.01764EPSS
Exploits0References6Affected Software3
Kaspersky
Kaspersky
added 2006/02/25 12:0 a.m.29 views

KLA10339 WLF vulnerability in SpeedProject

A directory traversal vulnerability was found in SpeedProject products. By exploiting this vulnerability malicious users can overwrite local files. This vulnerability can be exploited remotely at a point related to the JAR and ZIP archives. Original advisories - Related products...

5CVSS6.4AI score0.01764EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2005/01/10 5:0 a.m.0 views

CVE-2004-0890

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reasons: This candidate is a reservation duplicate of another candidate. Notes: All references and descriptions in this candidate have been removed to prevent accidental usage...

5.8AI score
Exploits0References1
CVE
CVE
added 2004/12/08 5:0 a.m.22 views

CVE-2004-0890

CVE-2004-0890 is a rejected candidate; this CVE ID is not used and does not represent an active vulnerability entry.

6.6AI score
Exploits0
CVE
CVE
added 2002/07/23 4:0 a.m.51 views

CVE-2001-0890

The CVE-2001-0890 entry describes a vulnerability in backend drivers of the SANE library (1.0.3 and earlier), used by frontend tools such as XSane, where a local user can modify files via a symlink attack on temporary files. The root cause is a symlink-related flaw in temporary file handling with...

2.1CVSS6.6AI score0.00382EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2001/05/07 4:0 a.m.56 views

CVE-2000-0890

CVE-2000-0890 is a race-condition vulnerability affecting the FreeBSD periodic script (and possibly other systems) that allows a local user to overwrite arbitrary files via symlink manipulation of temporary files named like /tmp/periodic.*_$PID. The issue arises because periodic creates predictab...

1.2CVSS6.5AI score0.00333EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder