Lucene search
+L

108 matches found

Tenable Nessus
Tenable Nessus
added 2012/04/19 12:0 a.m.47 views

MySQL 5.1 < 5.1.62 Multiple Vulnerabilities

The version of MySQL 5.1 installed on the remote host is earlier than 5.1.62. It is, therefore, affected by the following vulnerabilities : - An error exists related to the included yaSSL component that could allow arbitrary code execution. CVE-2012-0882 - Errors exist related to 'Server...

7.5CVSS6.8AI score0.05305EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2010/09/04 12:0 a.m.11 views

Debian DSA-2102-1 : barnowl - unchecked return value

It has been discovered that in barnowl, a curses-based instant-messaging client, the return codes of calls to the ZPending and ZReceiveNotice functions in libzephyr were not checked, allowing attackers to cause a denial of service crash of the application, and possibly execute arbitrary code...

7.5CVSS5.8AI score0.02935EPSS
Exploits0References3
CVE
CVE
added 2010/05/27 10:0 p.m.43 views

CVE-2010-2102

CVE-2010-2102 describes a buffer overflow in Webby Webserver 1.01 triggered by a long HTTP GET request, enabling remote execution of arbitrary code. This is documented across multiple sources (NVD, CVE list) with a high impact score. The connected documents confirm the affected product/version an...

10CVSS8.1AI score0.06621EPSS
Exploits1References4Affected Software1
Circl
Circl
added 2010/05/25 12:0 a.m.4 views

CVE-2010-2102

creationtimestamp| type| source ---|---|--- 2010-05-25 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/12740...

10CVSS5.8AI score0.06621EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2010/03/19 12:0 a.m.33 views

openSUSE Security Update : cups (cups-2102)

lppasswd when running setuid or setgid still honors environment variables that specify the location of message files. Local attackers could exploit that to gather information by using crafted format strings CVE-2010-0393. The previous fix for a use-after-free vulnerability CVE-2009-3553 was...

7.5CVSS6.3AI score0.03913EPSS
Exploits1References5
NVD
NVD
added 2009/06/17 5:30 p.m.19 views

CVE-2009-2102

SQL injection vulnerability in the Jumi comjumi component 2.0.3 and possibly other versions for Joomla allows remote attackers to execute arbitrary SQL commands via the fileid parameter to index.php...

7.5CVSS8.4AI score0.02043EPSS
Exploits2References4
CVE
CVE
added 2009/06/17 5:0 p.m.64 views

CVE-2009-2102

The CVE relates to the Jumi (com_jumi) Joomla extension, specifically version 2.0.3 and possibly earlier/newer ones. The underlying issue is an SQL injection in the fileid parameter of index.php, allowing an unauthenticated, remote attacker to manipulate database queries and potentially disclose ...

7.5CVSS8.7AI score0.02043EPSS
Exploits2References4Affected Software1
Circl
Circl
added 2009/06/15 12:0 a.m.3 views

CVE-2009-2102

creationtimestamp| type| source ---|---|--- 2009-06-15 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/8968...

7.5CVSS5.8AI score0.02043EPSS
Exploits2References1
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.29 views

Gentoo Security Advisory GLSA 200508-06 (Gaim)

The remote host is missing updates announced in advisory GLSA 200508-06. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.5CVSS0.4AI score0.16055EPSS
Exploits0
Prion
Prion
added 2008/05/06 4:20 p.m.12 views

Code injection

Linksys SPA-2102 Phone Adapter 3.3.6 allows remote attackers to cause a denial of service crash via a long ping packet "ping of death". NOTE: the severity of this issue has been disputed since there are limited attack scenarios...

7.8CVSS7.1AI score0.0394EPSS
Exploits1References8Affected Software1
NVD
NVD
added 2008/05/06 4:20 p.m.17 views

CVE-2008-2092

Linksys SPA-2102 Phone Adapter 3.3.6 allows remote attackers to cause a denial of service crash via a long ping packet "ping of death". NOTE: the severity of this issue has been disputed since there are limited attack scenarios...

7.8CVSS6.6AI score0.0394EPSS
Exploits1References8
Cvelist
Cvelist
added 2008/05/06 4:0 p.m.18 views

CVE-2008-2092

Linksys SPA-2102 Phone Adapter 3.3.6 allows remote attackers to cause a denial of service crash via a long ping packet "ping of death". NOTE: the severity of this issue has been disputed since there are limited attack scenarios...

6.6AI score0.0394EPSS
Exploits1References8
CVE
CVE
added 2008/05/06 4:0 p.m.41 views

CVE-2008-2092

The CVE-2008-2092 issue affects the Linksys SPA-2102 Phone Adapter with firmware 3.3.6, where a remote attacker can cause a denial-of-service (crash) by sending a long ping packet (ping of death) over the network. The available records state this is a network-facing flaw with high impact (CVSS v2...

7.8CVSS6.6AI score0.0394EPSS
Exploits1References8Affected Software1
securityvulns
securityvulns
added 2008/03/25 12:0 a.m.23 views

Linksys SPA-2102 wireless IP phones DoS

Large ICMP packets cause device to crash...

2.5AI score
Exploits0References1
securityvulns
securityvulns
added 2008/03/25 12:0 a.m.31 views

Linksys phone adapter denial of service

Linksys phone adapter denial of service Product Information Product Name: SPA-2102 Serial Number: FM500G582390 Software Version: 3.3.6 Hardware Version: 1.2.5a Another device hit with the PoD! ping -l 65500 192.168.0.1 Only seems to work on the internal network. discovered by sipher...

1.4AI score
Exploits0
exploitpack
exploitpack
added 2008/03/24 12:0 a.m.20 views

Linksys SPA-2102 Phone Adapter Packet Handling - Denial of Service

Linksys SPA-2102 Phone Adapter Packet Handling - Denial of Service source: https://www.securityfocus.com/bid/28414/info Linksys SPA-2102 Phone Adapter is prone to a denial-of-service vulnerability when handling multiple packets in quick succession. Attackers can exploit this issue to deny access ...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/03/24 12:0 a.m.36 views

Linksys SPA-2102 Phone Adapter Packet Handling - Denial of Service

source: https://www.securityfocus.com/bid/28414/info Linksys SPA-2102 Phone Adapter is prone to a denial-of-service vulnerability when handling multiple packets in quick succession. Attackers can exploit this issue to deny access to the device's control center for legitimate users. Reports indica...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/12/13 12:0 a.m.32 views

SuSE 10 Security Update : PHP5 (ZYPP Patch Number 2102)

the CURL module lacked checks for control characters CVE-2006-2563 - strrepeat contained an integer overflow - ext/wddx contained a buffer overflow - memorylimit lacked checks for integer overflows - a bug in sscanf could potentially be exploited to execute arbitrary code. CVE-2006-4020 - an...

4.6CVSS6.1AI score0.02011EPSS
Exploits2References4
CVE
CVE
added 2007/04/18 10:0 a.m.49 views

CVE-2007-2102

CVE-2007-2102 is a cross-site scripting (XSS) vulnerability in the weblog.php component of my little weblog . The provided details specify that the vulnerability can be triggered by supplying a crafted value to the id parameter, allowing remote attackers to inject arbitrary web script or HTML. Th...

6.8CVSS5.6AI score0.01176EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2007/04/18 10:0 a.m.21 views

CVE-2007-2102

Cross-site scripting XSS vulnerability in weblog.php in my little weblog allows remote attackers to inject arbitrary web script or HTML via the id parameter, a different vector than CVE-2006-6087...

5.6AI score0.01176EPSS
Exploits0References5
Rows per page
Query Builder