Lucene search
+L

532 matches found

Tenable Nessus
Tenable Nessus
added 2010/11/05 12:0 a.m.33 views

Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : cups, cupsys vulnerability (USN-1012-1)

Emmanuel Bouillon discovered that CUPS did not properly handle certain Internet Printing Protocol IPP packets. A remote attacker could use this flaw to cause a denial of service or possibly execute arbitrary code. In the default installation in Ubuntu 8.04 LTS and later, attackers would be isolat...

9.8CVSS8.1AI score0.0647EPSS
Exploits0References2
CVE
CVE
added 2010/03/19 6:35 p.m.44 views

CVE-2010-1012

CVE-2010-1012 affects the TYPO3 CleanDB (nf_cleandb) extension, up to version 1.0.7, with a SQL injection vulnerability that allows remote attackers to execute arbitrary SQL commands via unspecified vectors. The issue is documented across multiple feeds (NVD, Red Hat listing, CVE records) with id...

7.5CVSS8.7AI score0.01001EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2009/04/15 10:0 a.m.61 views

CVE-2009-1012

Affected software: Oracle BEA WebLogic Server plug-ins for Apache and IIS web servers (versions 7.0 Gold–SP7, 8.1 Gold–SP6, 9.0/9.1/9.2 Gold–MP3, 10.0 Gold–MP1, 10.3). The vulnerability is described as an integer overflow in an unspecified plug-in that parses HTTP requests, potentially causing a ...

10CVSS6.6AI score0.03922EPSS
Exploits1References8Affected Software1
CVE
CVE
added 2008/03/20 10:0 a.m.55 views

CVE-2008-1012

The CVE-2008-1012 issue affects Apple AirPort Extreme Base Station Firmware 7.3.1, where the AFP protocol handler fails input validation on malformed requests. The vulnerability allows remote attackers to trigger a denial of service, causing the file sharing service to hang. Affected component: A...

4.3CVSS6.1AI score0.01453EPSS
Exploits1References7Affected Software1
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.24 views

Debian Security Advisory DSA 407-1 (ethereal)

The remote host is missing an update to ethereal announced via advisory DSA 407-1. OpenVAS Vulnerability Test $Id: deb4071.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 407-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

7.5CVSS0.7AI score0.05658EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.27 views

Debian Security Advisory DSA 1012-1 (unzip)

The remote host is missing an update to unzip announced via advisory DSA 1012-1. A buffer overflow in the command line argument parsing has been discovered in unzip, the de-archiver for ZIP files that could lead to the execution of arbitrary code. For the old stable distribution woody this proble...

3.7CVSS0.3AI score0.01516EPSS
Exploits1
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.16 views

Debian Security Advisory DSA 407-1 (ethereal)

The remote host is missing an update to ethereal announced via advisory DSA 407-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.05658EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2006/10/14 12:0 a.m.30 views

Debian DSA-1012-1 : unzip - buffer overflow

A buffer overflow in the command line argument parsing has been discovered in unzip, the de-archiver for ZIP files, that could lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

3.7CVSS6AI score0.01516EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2006/03/06 9:2 p.m.29 views

CVE-2006-1012

SQL injection vulnerability in WordPress 1.5.2, and possibly other versions before 2.0, allows remote attackers to execute arbitrary SQL commands via the User-Agent field in an HTTP header for a comment...

7.5CVSS6.2AI score0.02907EPSS
Exploits0References1
CVE
CVE
added 2006/03/06 9:0 p.m.63 views

CVE-2006-1012

CVE-2006-1012 describes a SQL injection in WordPress 1.5.2, and possibly earlier versions before 2.0, where an attacker can cause arbitrary SQL execution through the User-Agent header of a comment HTTP request. OpenVAS GLSA 200603-01 and related entries confirm WordPress as the affected software,...

7.5CVSS8.2AI score0.02907EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2005/04/08 4:0 a.m.52 views

CVE-2005-1012

CVE-2005-1012 is an XSS vulnerability in Iatek SiteEnable. The issue allows remote attackers to inject arbitrary web script or HTML through (1) contenttype in content.asp, (2) the title, or (3) the description. The NVD entry confirms the affected component as SiteEnable and the impact is reflecte...

4.3CVSS5.7AI score0.01242EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2005/01/10 5:0 a.m.24 views

CVE-2004-1012

The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arbitrary code via a certain command "bodyp" that is treated as a different command "body.peek" and causes an index increment error that leads to an out-of-bounds memory...

10CVSS9.4AI score0.05951EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2004/12/02 12:0 a.m.30 views

Fedora Core 3 : cyrus-imapd-2.2.10-1.fc3 (2004-487)

Fix several buffer overflow problems that could be used as an exploit. Fixes the following security advisories: CVE-2004-1011 CVE-2004-1012 CVE-2004-1013 CVE-2004-1015 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...

10CVSS5.7AI score0.05951EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/12/02 12:0 a.m.31 views

Fedora Core 2 : cyrus-imapd-2.2.10-1.fc2 (2004-489)

Fix several buffer overflow problems that could be used as an exploit. Fixes the following security advisories: CVE-2004-1011 CVE-2004-1012 CVE-2004-1013 CVE-2004-1015 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...

10CVSS5.7AI score0.05951EPSS
Exploits0References1
CVE
CVE
added 2004/12/01 5:0 a.m.112 views

CVE-2004-1012

CVE-2004-1012 affects Cyrus IMAP Server 2.2.6 and earlier. The vulnerability arises in the PARTIAL command argument parsing: a command like body[ p is treated as body.peek, triggering an index increment error and out-of-bounds memory corruption that enables remote authenticated code execution. Co...

10CVSS9.3AI score0.05951EPSS
Exploits0References10Affected Software3
Cvelist
Cvelist
added 2004/12/01 5:0 a.m.44 views

CVE-2004-1012

The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arbitrary code via a certain command "bodyp" that is treated as a different command "body.peek" and causes an index increment error that leads to an out-of-bounds memory...

9.3AI score0.05951EPSS
Exploits0References10
Debian CVE
Debian CVE
added 2004/12/01 5:0 a.m.29 views

CVE-2004-1012

The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arbitrary code via a certain command "bodyp" that is treated as a different command "body.peek" and causes an index increment error that leads to an out-of-bounds memory...

10CVSS7.1AI score0.05951EPSS
Exploits0
NVD
NVD
added 2004/01/05 5:0 a.m.20 views

CVE-2003-1012

The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets...

5CVSS6.4AI score0.02714EPSS
Exploits0References13
CVE
CVE
added 2003/12/17 5:0 a.m.53 views

CVE-2003-1012

CVE-2003-1012 relates to Ethereal (Wireshark predecessor). The SMB dissector in Ethereal before 0.10.0 is vulnerable to remote denial of service via a malformed SMB packet that triggers a segmentation fault during processing of selected packets. Several vendor advisories (Red Hat RHSA-2004:002, D...

5CVSS7.2AI score0.02714EPSS
Exploits0References13Affected Software1
Cvelist
Cvelist
added 2003/12/17 5:0 a.m.26 views

CVE-2003-1012

The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets...

7.2AI score0.02714EPSS
Exploits0References13
Rows per page
Query Builder