55 matches found
CVE-2015-6246
The dissectwapayload function in epan/dissectors/packet-waveagent.c in the WaveAgent dissector in Wireshark 1.12.x before 1.12.7 mishandles large tag values, which allows remote attackers to cause a denial of service application crash via a crafted packet...
CVE-2015-6246
The dissectwapayload function in epan/dissectors/packet-waveagent.c in the WaveAgent dissector in Wireshark 1.12.x before 1.12.7 mishandles large tag values, which allows remote attackers to cause a denial of service application crash via a crafted packet...
CVE-2015-6246
Wireshark 1.12.x before 1.12.7 is affected by CVE-2015-6246 due to the dissect_wa_payload function in epan/dissectors/packet-waveagent.c (WaveAgent dissector) mishandling large tag values, allowing a remote attacker to crash the application via a crafted packet (network vector, medium complexity,...
CVE-2013-6246
CVE-2013-6246 affects Dell Quest One Password Manager (possibly v5.0). The vulnerability allows remote attackers to bypass CAPTCHA protections and obtain a user’s full name by sending a login request with a valid domain and username but missing CaptchaType, UseCaptchaEveryTime, and CaptchaRespons...
CVE-2013-6246
creationtimestamp| type| source ---|---|--- 2011-10-21 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38812...
CVE-2008-6246
CVE-2008-6246 describes an SQL injection vulnerability in the category.php script of Scripts For Sites (SFS) EZ Webring. The vulnerability allows remote attackers to execute arbitrary SQL commands via the cat parameter, potentially impacting the database. Documents explicitly state the affected c...
CVE-2008-6246
creationtimestamp| type| source ---|---|--- 2008-10-31 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6913...
Gentoo Security Advisory GLSA 200801-07 (netscape-flash)
The remote host is missing updates announced in advisory GLSA 200801-07. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
FreeBSD Ports: linux-flashplugin
The remote host is missing an update to the system as announced in the referenced advisory. VID 562cf6c4-b9f1-11dc-a302-000102cc8983 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD Ports: linux-flashplugin
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
SuSE 10 Security Update : flash-player (ZYPP Patch Number 4856)
This flash player update to version 9.0.115.0 fixes several security problems. In the worst case an attacker could potentially have flash-player execute arbitrary code via specially crafted files. CVE-2007-4324 / CVE-2007-4768 / CVE-2007-5275 / CVE-2007-6242 / CVE-2007-6243 / CVE-2007-6244 /...
CVE-2007-6246
Adobe Flash Player 7.x/8.x/9.x on Linux is affected by CVE-2007-6246, where insecure memory permissions could allow local users to gain privileges. The vulnerability is part of a family of issues reported for Flash Player (alongside CVE-2007-6242, 6243, 6244, 6245, 6246, 4324, 4768) and is cited ...
CVE-2007-6246
Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0, when running on Linux, uses insecure permissions for memory, which might allow local users to gain privileges...
Flash Player < 7.0.73.0 / 9.0.115.0 Multiple Vulnerabilities (APSB07-20)
According to its version number, the instance of Flash Player on the remote Windows host is affected by multiple issues, including several which could allow for arbitrary code execution by means of a malicious SWF file. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
CVE-2006-6246
CVE-2006-6246 affects Photo Organizer 2.32b and earlier. The issue is improper ownership checks on objects, enabling remote attackers to gain unauthorized access through vectors including (1) camera delete, (2) camera edit, (3) folder/album deletion, (4) photo.move, (5) content.indexer, and (6) f...