Lucene search
+L

90 matches found

checkpoint_advisories
checkpoint_advisories
added 2017/02/14 12:0 a.m.7 views

Adobe Flash Player Heap Buffer Overflow (APSB17-04: CVE-2017-2986)

A heap buffer overflow vulnerability exists in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted file...

9.3CVSS4.5AI score0.30873EPSS
Exploits3
cve
cve
added 2016/11/25 3:38 a.m.64 views

CVE-2016-2986

IBM CVE-2016-2986 affects IBM Jazz-based products in CLM/RQM/RTC/RDNG/RELM/Rhapsody DM (versions 6.0.x prior to fixed 6.0.1 iFix6). The vulnerability is an XSS that lets remote authenticated users inject arbitrary JavaScript/HTML via unspecified vectors, potentially impacting credentials in a tru...

5.4CVSS4.9AI score0.00615EPSS
Exploits0References2Affected Software1
nessus
nessus
added 2016/06/01 12:0 a.m.30 views

Ubuntu 14.04 LTS / 16.04 LTS : dosfstools vulnerabilities (USN-2986-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2986-1 advisory. Hanno Bck discovered that dosfstools incorrectly handled certain malformed filesystems. A local attacker could use this issue to cause...

6.2CVSS7.2AI score0.00448EPSS
Exploits0References3
cve
cve
added 2015/09/05 5:0 p.m.67 views

CVE-2015-2986

The CVE pertains to rakuto.net hitSuji (rktSNS2) 0.2.2b, described as a cross‑site scripting (XSS) vulnerability that could allow remote attackers to inject arbitrary script or HTML via unspecified vectors. The NVD/NIST entries report a base CVSSv2 score of 4.3 (Medium), with impact limited to pa...

4.3CVSS5.8AI score0.0095EPSS
Exploits0References2Affected Software1
openvas
openvas
added 2014/07/22 12:0 a.m.32 views

Debian: Security Advisory (DSA-2986-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.6AI score0.06109EPSS
Exploits0References3
cve
cve
added 2014/04/28 2:0 p.m.70 views

CVE-2014-2986

The CVE-2014-2986 issue affects Xen 4.4.x running on ARM, where the vgic_distr_mmio_write function in the GIC distributor (arch/arm/vgic.c) can dereference an invalid pointer via unspecified vectors, enabling a local guest to trigger a denial of service and host crash. Multiple sources (including...

5.5CVSS6.3AI score0.00639EPSS
Exploits0References6Affected Software1
cve
cve
added 2012/08/20 10:0 p.m.50 views

CVE-2012-2986

Affected software/variant: HP SAN/iQ Virtual SAN Appliance (9.5 released prior) with the lhn/public/network/ping component. Vulnerability details: Remote authenticated users can execute arbitrary commands via shell metacharacters in specific parameters (the first, third, or fourth parameter as ci...

7.7CVSS7.4AI score0.0442EPSS
Exploits0References1Affected Software1
circl
circl
added 2012/02/17 12:0 a.m.6 views

CVE-2012-2986

creationtimestamp| type| source ---|---|--- 2012-02-17 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18893 2012-05-21 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18901...

7.7CVSS5.8AI score0.0442EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2011/11/09 11:55 a.m.23 views

CVE-2011-3649

Mozilla Firefox 7.0 and Thunderbird 7.0, when the Direct2D aka D2D API is used on Windows in conjunction with the Azure graphics back-end, allow remote attackers to bypass the Same Origin Policy, and obtain sensitive image data from a different domain, by inserting this data into a canvas. NOTE:...

2.6CVSS5.8AI score0.0095EPSS
Exploits0References1
prion
prion
added 2011/11/09 11:55 a.m.19 views

Design/Logic Flaw

Mozilla Firefox 7.0 and Thunderbird 7.0, when the Direct2D aka D2D API is used on Windows in conjunction with the Azure graphics back-end, allow remote attackers to bypass the Same Origin Policy, and obtain sensitive image data from a different domain, by inserting this data into a canvas. NOTE:...

2.6CVSS6.5AI score0.01185EPSS
Exploits1References5Affected Software2
cve
cve
added 2011/11/09 11:0 a.m.73 views

CVE-2011-3649

CVE-2011-3649 affects Mozilla Firefox 7.0 and Thunderbird 7.0 on Windows when using Direct2D with the Azure graphics backend, allowing cross-origin image data to be read via a manipulated canvas (Same Origin Policy bypass). The issue stems from a regression introduced by CVE-2011-2986. According ...

2.6CVSS9.2AI score0.0095EPSS
Exploits0References5Affected Software2
openvas
openvas
added 2011/09/09 12:0 a.m.32 views

Mozilla Products Multiple Vulnerabilities (Sep 2011) - Windows

Mozilla Firefox/Thunderbird/Seamonkey is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.6AI score0.0544EPSS
Exploits1References9
openvas
openvas
added 2011/09/09 12:0 a.m.31 views

Mozilla Products Multiple Vulnerabilities - Sep 11 (Windows)

The host is installed with Mozilla firefox/thunderbird/seamonkey and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillaprdtsmultvulnsep11win02.nasl 7024 2017-08-30 11:51:43Z teissa $ Mozilla Products Multiple Vulnerabilities - Sep 11 Windows Authors: Madhuri D...

10CVSS0.3AI score0.0544EPSS
Exploits1References2
openvas
openvas
added 2011/09/07 12:0 a.m.46 views

SUSE: Security Advisory for MozillaFirefox, MozillaThunderbird, seamonkey (SUSE-SA:2011:037)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.5AI score0.05556EPSS
Exploits5References5
openvas
openvas
added 2011/08/19 12:0 a.m.28 views

Fedora Update for mozvoikko FEDORA-2011-11106

Check for the Version of mozvoikko OpenVAS Vulnerability Test Fedora Update for mozvoikko FEDORA-2011-11106 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

10CVSS0.4AI score0.0544EPSS
Exploits1References2
openvas
openvas
added 2011/08/19 12:0 a.m.42 views

Fedora Update for perl-Gtk2-MozEmbed FEDORA-2011-11106

Check for the Version of perl-Gtk2-MozEmbed OpenVAS Vulnerability Test Fedora Update for perl-Gtk2-MozEmbed FEDORA-2011-11106 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

10CVSS0.2AI score0.0544EPSS
Exploits1References2
openvas
openvas
added 2011/08/19 12:0 a.m.26 views

Fedora Update for xulrunner FEDORA-2011-11106

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

10CVSS9.8AI score0.0544EPSS
Exploits1References2
openvas
openvas
added 2011/08/19 12:0 a.m.30 views

Fedora Update for firefox FEDORA-2011-11106

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

10CVSS9.8AI score0.0544EPSS
Exploits1References2
openvas
openvas
added 2011/08/19 12:0 a.m.27 views

Fedora Update for gnome-python2-extras FEDORA-2011-11106

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

10CVSS9.8AI score0.0544EPSS
Exploits1References2
openvas
openvas
added 2011/08/19 12:0 a.m.235 views

Fedora Update for mozvoikko FEDORA-2011-11106

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

10CVSS9.8AI score0.0544EPSS
Exploits1References2
Rows per page
Query Builder