Lucene search
+L

104 matches found

OSV
OSV
added 2017/03/06 2:59 a.m.2 views

DEBIAN-CVE-2017-6497

An issue was discovered in ImageMagick 6.9.7. A specially crafted psd file could lead to a NULL pointer dereference thus, a DoS...

7.5CVSS6.8AI score0.02047EPSS
Exploits0References1
OSV
OSV
added 2017/03/06 2:59 a.m.5 views

CVE-2017-6497

An issue was discovered in ImageMagick 6.9.7. A specially crafted psd file could lead to a NULL pointer dereference thus, a DoS...

7.5CVSS7.3AI score
Exploits0References3
CVE
CVE
added 2017/03/06 2:0 a.m.71 views

CVE-2017-6497

CVE-2017-6497 entry is rejected by its CNA and is not a valid vulnerability.

7.5CVSS7.1AI score0.02047EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2017/01/18 10:0 p.m.25 views

CVE-2016-6497

main/java/org/apache/directory/groovyldap/LDAP.java in the Groovy LDAP API in Apache allows attackers to conduct LDAP entry poisoning attacks by leveraging setting returnObjFlag to true for all search methods...

7.7AI score0.05729EPSS
Exploits0References5
CVE
CVE
added 2017/01/18 10:0 p.m.70 views

CVE-2016-6497

The CVE-2016-6497 issue affects Apache Groovy LDAP API (Groovy LDAP), specifically main/java/org/apache/directory/groovyldap/LDAP.java. The vulnerability stems from enabling returnObjFlag to true for all search methods, which attackers could abuse to perform LDAP entry poisoning attacks. The prov...

7.5CVSS7.9AI score0.05729EPSS
Exploits0References5Affected Software1
Openbugbounty
Openbugbounty
added 2016/05/17 1:38 p.m.13 views

seatguru.com XSS vulnerability

Vulnerable URL: http://www.seatguru.com/findseatmap/findseatmap.php Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 6497 VIP website status:| Yes Check seatguru.com SSL connection:| Grade: C+ Coordinated Disclosu...

6.2AI score
Exploits0
OpenVAS
OpenVAS
added 2015/10/16 12:0 a.m.28 views

SUSE: Security Advisory for clamav (SUSE-SU-2014:1571-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.8AI score0.04878EPSS
Exploits2References1
OpenVAS
OpenVAS
added 2015/10/13 12:0 a.m.23 views

SUSE: Security Advisory for clamav (SUSE-SU-2014:1574-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.8AI score0.04878EPSS
Exploits1References1
0day.today
0day.today
added 2015/09/16 12:0 a.m.200 views

Magento 1.9.2 File Inclusion Vulnerability

Magento versions 1.9.2 and below suffer from an autoloaded file inclusion vulnerability. ------------------------------------------------------------------------------- Magento fault'datainvalid'; 113. 114. 115. $this-checkProductTypeExists$type; 116. $this-checkProductAttributeSet$set; 117. 118....

8.7AI score0.0737EPSS
Exploits4
Packet Storm
Packet Storm
added 2015/09/14 12:0 a.m.110 views

Magento 1.9.2 File Inclusion

------------------------------------------------------------------------------- Magento fault'datainvalid'; 113. 114. 115. $this-checkProductTypeExists$type; 116. $this-checkProductAttributeSet$set; 117. 118. / @var $product MageCatalogModelProduct / 119. $product = Mage::getModel'catalog/product...

8.8AI score0.0737EPSS
Exploits4
seebug.org
seebug.org
added 2015/09/14 12:0 a.m.55 views

Magento <= 1.9.2 (catalogProductCreate) Autoloaded File Inclusion Vulnerability

Software Link:http://magento.com/- Affected Versions:Version 1.9.2 and prior versions.- Vulnerability Description:The vulnerability is caused by the "catalogProductCreate" SOAP API implementation,which is defined into the /app/code/core/Mage/Catalog/Model/Product/Api/V2.php script:109. public...

8.9AI score0.0737EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2015/03/26 12:0 a.m.32 views

Debian DLA-95-1 : clamav security update

Two bugs were discovered in clamav and are fixed by this release. One issue is in clamscan, the command line anti-virus scanner included in the package, which could lead to crashes when scanning certain files. CVE-2013-6497 The second issue is in libclamav which caused a heap buffer overflow when...

5CVSS7AI score0.04878EPSS
Exploits1References4
Amazon
Amazon
added 2014/12/08 12:0 a.m.51 views

Low: clamav

Issue Overview: clamscan in ClamAV before 0.98.5, when using -a option, allows remote attackers to cause a denial of service crash as demonstrated by the jwplayer.js file. Affected Packages: clamav Issue Correction: Run yum update clamav or yum update --advisory ALAS-2014-457 to update your syste...

2.1CVSS6.5AI score0.01133EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/12/06 12:0 a.m.36 views

SuSE 11.3 Security Update : clamav (SAT Patch Number 10016)

clamav was updated to version 0.98.5 to fix three security issues and several non-security issues. These security issues have been fixed : - Crash when scanning maliciously crafted yoda's crypter files. CVE-2013-6497 - Heap-based buffer overflow when scanning crypted PE files. CVE-2014-9050 - Cra...

5CVSS7.2AI score0.04878EPSS
Exploits1References9
OpenVAS
OpenVAS
added 2014/12/06 12:0 a.m.22 views

openSUSE: Security Advisory for clamav (openSUSE-SU-2014:1560-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.8AI score0.04878EPSS
Exploits1References1
OPENSUSE Linux
OPENSUSE Linux
added 2014/12/05 10:4 a.m.40 views

Security update for clamav (important)

clamav was updated to version 0.98.5 to fix two security issues. These security issues were fixed: - Segmentation fault when processing certain files CVE-2013-6497. - Heap-based buffer overflow when scanning crypted PE files CVE-2014-9050. The following non-security issues were fixed: - Support f...

5CVSS0.6AI score0.04878EPSS
Exploits1References5
Debian
Debian
added 2014/12/02 9:37 p.m.46 views

[SECURITY] [DLA 95-1] clamav security update

this was initially sent on 2014-11-27, but did not reach the list due to a mistake on my side Package : clamav Version : 0.98.1+dfsg-1+deb6u4 CVE ID : CVE-2014-9050 CVE-2013-6497 Debian Bug : 770985 Two bugs were discovered in clamav and are fixed by this release. One issue is in clamscan, the...

5CVSS6.4AI score0.04878EPSS
Exploits1
OSV
OSV
added 2014/12/01 3:59 p.m.5 views

CVE-2013-6497

clamscan in ClamAV before 0.98.5, when using -a option, allows remote attackers to cause a denial of service crash as demonstrated by the jwplayer.js file...

6.2AI score
Exploits0References18
OpenVAS
OpenVAS
added 2014/11/28 12:0 a.m.37 views

Fedora Update for clamav FEDORA-2014-15463

Check the version of clamav SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868522";...

6.2AI score
Exploits0References2
OSV
OSV
added 2014/11/27 12:0 a.m.34 views

DLA-95-1 clamav - security update

Bulletin has no description...

5CVSS5.9AI score0.04878EPSS
Exploits1
Rows per page
Query Builder