Lucene search
K

11 matches found

Japan Vulnerability Notes
Japan Vulnerability Notes
added 2023/10/02 12:0 a.m.26 views

JVN#39596244: Improper restriction of XML external entity references (XXE) in FD Application

FD Application provided by Ministry of Health, Labour and Welfare improperly restricts XML external entity references XXE CWE-611. Impact By processing a specially crafted XML file, arbitrary files on the system may be read by an attacker. Solution Update the Software Update the software to the...

5.5CVSS5.4AI score0.00195EPSS
Exploits0
NVD
NVD
added 2021/10/18 1:15 p.m.14 views

CVE-2021-33023

Advantech WebAccess versions 9.02 and prior are vulnerable to a heap-based buffer overflow, which may allow an attacker to remotely execute code...

9.8CVSS0.02206EPSS
Exploits0References1
NVD
NVD
added 2021/10/18 1:15 p.m.12 views

CVE-2021-38389

Advantech WebAccess versions 9.02 and prior are vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute code...

9.8CVSS0.10367EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/10/12 12:0 a.m.7 views

Advantech WebAccess 缓冲区错误漏洞

Advantech WebAccess is Advantech's suite of HMI/SCADA software based on browser architecture. A stack buffer overflow vulnerability exists in Advantech WebAccess 9.02 and earlier versions. An attacker could exploit this vulnerability to remotely execute code...

9.8CVSS6.1AI score0.10367EPSS
Exploits0References6
OSV
OSV
added 2021/09/09 12:15 p.m.1 views

CVE-2021-38408

A stack-based buffer overflow vulnerability in Advantech WebAccess Versions 9.02 and prior caused by a lack of proper validation of the length of user-supplied data may allow remote code execution...

9.8CVSS6.4AI score
Exploits0References1
exploitpack
exploitpack
added 2009/10/20 12:0 a.m.12 views

South River Technologies WebDrive 9.02 build 2232 - Local Privilege Escalation

South River Technologies WebDrive 9.02 build 2232 - Local Privilege Escalation South River Technologies WebDrive Service Bad Security Descriptor Local Elevation Of Privileges by Nine:Situations:Group::bellick site: http://retrogod.altervista.org/ Software site: http://www.webdrive.com/ Download...

0.7AI score
Exploits0
Prion
Prion
added 2007/01/09 2:28 a.m.22 views

Heap overflow

Heap-based buffer overflow in Opera 9.02 allows remote attackers to execute arbitrary code via a JPEG file with an invalid number of index bytes in the Define Huffman Table DHT marker...

9.3CVSS8.2AI score0.10966EPSS
Exploits0References11Affected Software1
CVE
CVE
added 2007/01/09 2:0 a.m.59 views

CVE-2007-0126

CVE-2007-0126 concerns Opera 9.02 where a heap-based overflow in processing a JPEG Define Huffman Table (DHT) marker can allow remote code execution. Connected advisories alsoreference CVE-2007-0127 related to a typecasting issue in Opera’s SVG handling. Mitigation documented in GLSA 200701-08 an...

9.3CVSS7.7AI score0.10966EPSS
Exploits0References11Affected Software1
Tenable Nessus
Tenable Nessus
added 2006/10/18 12:0 a.m.25 views

Opera < 9.02 Multiple Vulnerabilities

The version of Opera installed on the remote host reportedly contains a heap-based buffer overflow vulnerability that can be triggered by a long link. Successful exploitation of this issue may result in a crash of the application or even allow for execution of arbitrary code subject to the user's...

5.1CVSS6.2AI score0.04724EPSS
Exploits0References4
Opera Security Advisories
Opera Security Advisories
added 2006/10/17 12:0 a.m.8 views

Very large link addresses can cause Opera to crash – Opera Security Advisories

Very large link addresses can cause Opera to crash – Opera Security Advisories OPCOM Team | October 17, 2006 Summary: Very large link addresses can cause Opera to crash. Severity: Moderate Problem description An extremely long link address can cause Opera to crash.A specially crafted long link...

5.8AI score
Exploits0References1
Opera Security Advisories
Opera Security Advisories
added 2006/09/21 12:0 a.m.7 views

A forged SSL server certificate can be accepted by Opera as a valid certificate – Opera Security Advisories

A forged SSL server certificate can be accepted by Opera as a valid certificate – Opera Security Advisories OPCOM Team | September 21, 2006 Summary: A forged SSL server certificate can be accepted by Opera as a valid certificate. Severity: Highly critical Vulnerable versions: Opera for desktop...

5.7AI score
Exploits0References1
Rows per page
Query Builder