Lucene search
+L

93 matches found

Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.44 views

Fedora 19 : kernel-3.9.5-301.fc19 (2013-10689)

Update to latest upstream stable release, Linux v3.9.5. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

6.9CVSS6.7AI score0.01022EPSS
Exploits4References13
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.43 views

Fedora 17 : kernel-3.9.8-100.fc17 (2013-9123)

Rebase to 3.9.8 now that 3.8 is no longer maintained. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

7.9CVSS6.7AI score0.07313EPSS
Exploits5References15
OpenVAS
OpenVAS
added 2013/07/02 12:0 a.m.28 views

Fedora Update for kernel FEDORA-2013-9123

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.9CVSS8.4AI score0.07313EPSS
Exploits36References2
OSV
OSV
added 2013/06/07 2:3 p.m.8 views

CVE-2013-2148

The filleventmetadata function in fs/notify/fanotify/fanotifyuser.c in the Linux kernel through 3.9.4 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel memory via a read operation on the fanotify descriptor...

7AI score
Exploits0References8
CVE
CVE
added 2013/06/07 10:0 a.m.105 views

CVE-2013-2148

CVE-2013-2148: In Linux kernel 3.9.x, fill_event_metadata in fs/notify/fanotify/fanotify_user.c does not initialize a structure member, enabling local users to read kernel memory via a fanotify descriptor; vulnerability affects kernels up to version 3.9.4. No remediation details provided in the d...

2.1CVSS7.7AI score0.00359EPSS
Exploits0References8Affected Software1
securityvulns
securityvulns
added 2011/08/17 12:0 a.m.79 views

ZDI-11-263: Symantec Veritas Storage Foundation vxsvc.exe ASCII String Unpacking Remote Code Execution Vulnerability

ZDI-11-263: Symantec Veritas Storage Foundation vxsvc.exe ASCII String Unpacking Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-263 August 16, 2011 -- CVE ID: CVE-2011-0547 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Symantec -- Affected...

10CVSS0.5AI score0.06646EPSS
Exploits0
securityvulns
securityvulns
added 2011/08/17 12:0 a.m.36 views

Symantec Veritas Storage Foundation multiple security vulnerabilities

Multiple vulnerabilities on TCP/2148 request parsing...

10CVSS3AI score0.06646EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2011/08/16 12:0 a.m.29 views

Symantec Veritas Storage Foundation vxsvc.exe Unicode String Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Veritas Storage Foundation. Authentication is not required to exploit this vulnerability. The specific flaw exists within the vxsvc.exe process. The problem affecting the part of the serve...

10CVSS5.7AI score0.06646EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2011/08/16 12:0 a.m.29 views

Symantec Veritas Storage Foundation vxsvc.exe Value Unpacking Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Veritas Storage Foundation Administrator Service. Authentication is not required to exploit this vulnerability. The specific flaw exists within vxsvc.exe process. The problem affecting the...

10CVSS3.5AI score0.06646EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2011/08/16 12:0 a.m.35 views

Symantec Veritas Storage Foundation vxsvc.exe ASCII String Unpacking Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Veritas Storage Foundation Administrator Service. Authentication is not required to exploit this vulnerability. The specific flaw exists within vxsvc.exe. The problem affecting the part of...

10CVSS3.2AI score0.06646EPSS
Exploits0References1
Cvelist
Cvelist
added 2011/05/20 10:0 p.m.22 views

CVE-2011-2148

Admin/frmSite.aspx in the SmarterTools SmarterStats 6.0 web server allows remote attackers to execute arbitrary commands via vectors involving a leading and trailing & ampersand character, and 1 an STTTState cookie, 2 the ctl00%24MPH%24txtAdminNewPasswordSettingText parameter, 3 the...

7.7AI score0.05321EPSS
Exploits0References4
CVE
CVE
added 2011/05/20 10:0 p.m.52 views

CVE-2011-2148

CVE-2011-2148 affects SmarterTools SmarterStats 6.0: Admin/frmSite.aspx allows remote command execution via OS command injection. The attacker can exploit a leading/trailing & and specific parameters (STTTState cookie; txtAdminNewPassword_SettingText; txtSmarterLogDirectory; ucSiteSeoSearchEngine...

10CVSS7.9AI score0.05321EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2011/03/07 12:0 a.m.25 views

Debian Security Advisory DSA 2148-1 (tor)

The remote host is missing an update to tor announced via advisory DSA 2148-1. OpenVAS Vulnerability Test $Id: deb21481.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2148-1 tor Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

6.8CVSS0.2AI score0.04444EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/01/18 12:0 a.m.20 views

Debian DSA-2148-1 : tor - several vulnerabilities

The developers of Tor, an anonymizing overlay network for TCP, found three security issues during a security audit. A heap overflow allowed the execution of arbitrary code CVE-2011-0427 , a denial of service vulnerability was found in the zlib compression handling and some key memory was...

6.8CVSS8.6AI score0.04444EPSS
Exploits0References4
CVE
CVE
added 2010/06/03 2:0 p.m.41 views

CVE-2010-2148

CVE-2010-2148 affects the Joomla! My Car (com_mycar) component version 1.0, where an SQL injection via the pagina parameter to index.php allows remote attackers to execute arbitrary SQL commands. This is the stated impact: partial confidentiality, integrity, and availability concerns. The connect...

7.5CVSS8.7AI score0.02402EPSS
Exploits1References7Affected Software1
Circl
Circl
added 2010/05/28 12:0 a.m.5 views

CVE-2010-2148

creationtimestamp| type| source ---|---|--- 2010-05-28 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/12779...

7.5CVSS5.8AI score0.02402EPSS
Exploits1References1
CVE
CVE
added 2009/06/22 2:0 p.m.46 views

CVE-2009-2148

CVE-2009-2148 refers to an SQL injection vulnerability in Campus Virtual-LMS, specifically in news/index.php, exploitable via the id parameter. The underlying issue allows remote attackers to execute arbitrary SQL commands and could lead to unauthorized access or data manipulation. Affected softw...

7.5CVSS8.7AI score0.0097EPSS
Exploits0References2Affected Software1
Circl
Circl
added 2009/06/12 12:0 a.m.7 views

CVE-2009-2148

creationtimestamp| type| source ---|---|--- 2009-06-12 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/8937...

7.5CVSS5.8AI score0.0097EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-625-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.7AI score0.07091EPSS
Exploits12References2
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.15 views

FreeBSD Ports: cacti

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

10CVSS6.6AI score0.16552EPSS
Exploits0References2
Rows per page
Query Builder