Lucene search
+L

84 matches found

CVE
CVE
added 2018/03/16 2:4 p.m.24 views

CVE-2017-3939

CVE-2017-3939 is rejected/not used and does not represent an active vulnerability entry.

7.3AI score
Exploits0
Cvelist
Cvelist
added 2018/03/16 2:4 p.m.8 views

CVE-2017-3939

...

Exploits0
Tenable Nessus
Tenable Nessus
added 2017/08/14 12:0 a.m.32 views

Debian DSA-3939-1 : botan1.10 - security update

Aleksandar Nikolic discovered that an error in the x509 parser of the Botan crypto library could result in an out-of-bounds memory read, resulting in denial of service or an information leak if processing a malformed certificate. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptiv...

9.8CVSS7.6AI score0.01317EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2017/08/11 12:0 a.m.31 views

Debian: Security Advisory (DSA-3939-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.5AI score0.01317EPSS
Exploits2References3
CVE
CVE
added 2016/10/10 10:0 a.m.46 views

CVE-2016-3939

CVE-2016-3939 affects the Qualcomm video driver (drivers/video/msm/mdss/mdss_debug.c) in Android on Nexus 5X, Nexus 6, Nexus 6P, and Android One devices. Root cause is in the Qualcomm mdss_debug path that allows a crafted application to gain privileges locally. Public details indicate an elevatio...

9.3CVSS8AI score0.00439EPSS
Exploits0References2Affected Software1
Openbugbounty
Openbugbounty
added 2015/10/06 4:48 p.m.6 views

irishtimes.com XSS vulnerability

Vulnerable URL: http://www.irishtimes.com/search/search-7.1213540?q=ipsum%22%3E%3C!--%20--%3E%3Csvg%2Fonload=%22alert%28%2FXSSPOSED%2F%29 Details: Description| Value ---|--- Patched:| Yes, at 09.11.2017 Latest check for patch:| 09.11.2017 11:29 GMT Vulnerability type:| XSS Vulnerability status:|...

6.4AI score
Exploits0
CVE
CVE
added 2015/05/31 5:0 p.m.53 views

CVE-2015-3939

CVE-2015-3939 describes a directory traversal vulnerability in the NC854 and NC856 modules of the IDS RTU 850C devices. The root cause is improper path handling in an internal web server, allowing remote authenticated users to read arbitrary files (demonstrated by TELNET credentials). Affected pr...

6.8CVSS6.5AI score0.02605EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2015/05/31 5:0 p.m.23 views

CVE-2015-3939

Directory traversal vulnerability in the NC854 and NC856 modules for IDS RTU 850C devices allows remote authenticated users to read arbitrary files via unspecified vectors involving an internal web server, as demonstrated by reading a TELNET credentials file...

6.4AI score0.02605EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/08/25 12:0 a.m.38 views

Autodesk SketchBook Pro < 6.2.6 Multiple Overflow Vulnerabilities

The version of Autodesk SketchBook Pro installed on the remote Mac OS X host is prior to 6.2.6. It is, therefore, affected by integer and heap-based buffer overflow vulnerabilities. Using a specially crafted PSD or PXD file, an attacker could cause a denial of service or execute arbitrary code. C...

9.3CVSS6.2AI score0.05984EPSS
Exploits0References3
CVE
CVE
added 2014/07/23 2:0 p.m.50 views

CVE-2014-3939

Autodesk SketchBook Pro is affected by CVE-2014-3939 (and related CVE-2014-3938). Prior to version 6.2.6, the product is vulnerable to a heap-based buffer overflow when processing layer bitmap data in PXD files (and similar via PSD/PXD inputs as per connected advisories). The root cause is a heap...

9.3CVSS8.2AI score0.05984EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/01/08 12:0 a.m.41 views

XnView 2.x < 2.13 Multiple Buffer Overflows

The version of XnView 2.x installed on the remote Windows host is earlier than 2.13. It is, therefore, reportedly affected by the following buffer overflow vulnerabilities: - A remote, heap-based buffer overflow vulnerability exists due to an error in the 'xnview.exe' file when processing BMP...

9.8CVSS7.9AI score0.02757EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.58 views

Oracle Linux 5 : kernel (ELSA-2010-0046)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2010-0046 advisory. - firewire ohci: handle receive packets with zero data Jay Fenlason 547241 547242 CVE-2009-4138 - fs respect flag in docoredump Danny Feng 544188 54418...

7.8CVSS7.1AI score0.11051EPSS
Exploits14References12
Tenable Nessus
Tenable Nessus
added 2012/10/26 12:0 a.m.23 views

Cisco WebEx WRF Player Multiple Buffer Overflows (cisco-sa-20121010-webex)

The version of Cisco WebEx WRF Player installed on the remote host has multiple buffer overflow vulnerabilities. A remote attacker could exploit these issues by tricking a user into opening a malicious WRF file, resulting in arbitrary code execution. C Tenable Network Security, Inc...

9.3CVSS6.3AI score0.05262EPSS
Exploits1References8
CVE
CVE
added 2012/10/25 2:0 p.m.50 views

CVE-2012-3939

CVE-2012-3939 affects Cisco WebEx Recording Format (WRF) Player prior to LD SP32 EP10 for T27 and before T28.4 for T28. The issue is a memory corruption caused by buffer overflows in atas32.dll when processing crafted WRF files, enabling remote code execution (or memory corruption/DoS) if a user ...

9.3CVSS8.1AI score0.05155EPSS
Exploits1References4Affected Software1
Check Point Advisories
Check Point Advisories
added 2012/10/15 12:0 a.m.4 views

Cisco WebEx Recording Format Player atas32.dll Memory Corruption (CVE-2012-3939)

A remote code execution vulnerability has been reported in Cisco WebEx Recording Format WRF Player. The vulnerability is due to a memory corruption when the WRF player handles specially crafted WRF files. A remote attacker can exploit this issue by enticing an affected user to open a specially...

9.3CVSS7.5AI score0.05155EPSS
Exploits1
0day.today
0day.today
added 2012/10/12 12:0 a.m.51 views

Cisco WebEx .wrf Memory Corruption

Exploit for hardware platform in category local exploits -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Cisco WebEx .wrf Memory Corruption Vulnerability 1. Advisory Information Title: Cisco WebEx .wrf Memory Corruption Vulnerabili...

6.5AI score0.05155EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2012/05/17 12:0 a.m.59 views

SuSE 10 Security Update : Linux Kernel (x86_64) (ZYPP Patch Number 6697)

This update fixes various bugs and some security issues in the SUSE Linux Enterprise 10 SP 3 kernel. The following security issues were fixed: CVE-2009-3939: A sysctl variable of the megaraidsas driver was worldwriteable, allowing local users to cause a denial of service or potential code...

7.8CVSS7.1AI score0.12EPSS
Exploits8References20
Tenable Nessus
Tenable Nessus
added 2011/03/17 12:0 a.m.59 views

SuSE 11 Security Update : Linux kernel (SAT Patch Number 1753)

Indications Everyone using the Linux Kernel on s390x architecture should update. Contraindications None. Problem description The SUSE Linux Enterprise 11 Kernel was updated to 2.6.27.42 fixing various bugs and security issues. The following security issues were fixed : - A underflow in the e1000...

10CVSS7.8AI score0.0838EPSS
Exploits10References49
seebug.org
seebug.org
added 2010/12/19 12:0 a.m.42 views

Microsoft Windows &quot;Win32k.sys&quot; 驱动程序多个安全漏洞(MS10-098)

CVE ID: CVE-2010-3943,CVE-2010-3944,CVE-2010-3939,CVE-2010-3940,CVE-2010-3941,CVE-2010-3942 Microsoft Windows是微软发布的非常流行的操作系统。 Microsoft Windows在实现上存在多个漏洞,本地攻击者可利用这些漏洞导致拒绝服务或提升自己的权限。 此漏洞源于: 1)"win32k.sys"驱动程序在从用户模式复制数据时存在内存分配错误,导致在内核中执行任意代码; 2)"win32k.sys"驱动程序在处理PFE对象时存在双重释放错误,导致在内核中执行任意代码;...

7.2CVSS6.3AI score0.03764EPSS
Exploits7
CVE
CVE
added 2010/12/16 7:0 p.m.82 views

CVE-2010-3939

CVE-2010-3939 describes a local privilege-escalation vulnerability in the Windows kernel via the win32k.sys driver. Affected products include Windows XP (SP2/SP3), Windows Server 2003 (SP2), Windows Vista (SP1/SP2), Windows Server 2008 (Gold, SP2, and R2), and Windows 7. The root cause is imprope...

7.2CVSS6.8AI score0.01938EPSS
Exploits1References4Affected Software6
Rows per page
Query Builder