Lucene search
+L

2418 matches found

NVD
NVD
added 2005/11/20 9:3 p.m.34 views

CVE-2005-3346

Buffer overflow in the environment variable substitution code in main.c in OSH 1.7-14 allows local users to inject arbitrary environment variables, such as LDPRELOAD, via pathname arguments of the form "$VAR/EVAR=arg", which cause the EVAR portion to be appended to a buffer returned by a getenv...

7.2CVSS6.7AI score0.00847EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2005/11/20 9:3 p.m.44 views

CVE-2005-3346

Buffer overflow in the environment variable substitution code in main.c in OSH 1.7-14 allows local users to inject arbitrary environment variables, such as LDPRELOAD, via pathname arguments of the form "$VAR/EVAR=arg", which cause the EVAR portion to be appended to a buffer returned by a getenv...

7.2CVSS6.3AI score0.00847EPSS
Exploits0References1
CVE
CVE
added 2005/11/20 9:0 p.m.66 views

CVE-2005-3346

CVE-2005-3346 affects osh (OSHevironment) 1.7-14, where a buffer overflow in the environment variable substitution code (main.c) can be triggered by pathname args like "$VAR/EVAR=arg". This allows a local attacker to inject arbitrary environment variables (e.g., LD_PRELOAD) and, per Debian's advi...

7.2CVSS6.7AI score0.00847EPSS
Exploits0References9Affected Software1
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.42 views

wu-ftpd ls -W memory exhaustion

The FTP server does not filter arguments to the ls command. It is possible to consume all available memory on the machine by sending ls '-w 1000000 -C' See http://www.guninski.com/binls.html OpenVAS Vulnerability Test $Id: wuftpdlsDoS.nasl 6053 2017-05-01 09:02:51Z teissa $ Description: wu-ftpd l...

5CVSS0.2AI score0.10444EPSS
Exploits1References2
CVE
CVE
added 2005/10/25 4:0 a.m.57 views

CVE-2004-2515

Technical details for CVE-2004-2515 are not publicly available in the provided documents. The description notes a format-string vulnerability in VMware Workstation 4.5.2 but no specifics on affected components, root cause, or fixes are included here. Monitor for updates.

7.2CVSS7.8AI score0.00546EPSS
Exploits1References4Affected Software1
UbuntuCve
UbuntuCve
added 2005/10/24 10:2 a.m.25 views

CVE-2005-3301

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin before 2.6.4-pl3 allow remote attackers to inject arbitrary web script or HTML via certain arguments to 1 left.php, 2 queryframe.php, or 3 serverdatabases.php...

4.3CVSS6AI score0.05617EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2005/10/24 4:0 a.m.41 views

CVE-2005-3301

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin before 2.6.4-pl3 allow remote attackers to inject arbitrary web script or HTML via certain arguments to 1 left.php, 2 queryframe.php, or 3 serverdatabases.php...

4.3CVSS5.6AI score0.05617EPSS
Exploits0
securityvulns
securityvulns
added 2005/09/15 12:0 a.m.30 views

VisualBoyAdvanced Nintendo emulator buffer overflow

Buffer overflow on command line arguments parsing...

4.7AI score
Exploits0References1Affected Software1
OSV
OSV
added 2005/09/02 11:3 p.m.4 views

DEBIAN-CVE-2005-2772

Multiple stack-based buffer overflows in University of Minnesota gopher client 3.0.9 allow remote malicious servers to execute arbitrary code via 1 a long "+VIEWS:" reply, which is not properly handled in the VIfromLine function, and 2 certain arguments when launching third party programs such as...

7.5CVSS7.8AI score0.10038EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2005/08/30 5:3 p.m.18 views

CVE-2005-2655

lockmail in maildrop before 1.5.3 does not drop privileges before executing commands, which allows local users to gain privileges via command line arguments...

10CVSS5.9AI score0.01481EPSS
Exploits0References1
Cvelist
Cvelist
added 2005/08/19 4:0 a.m.25 views

CVE-2005-2505

Buffer overflow in CoreFoundation in Mac OS X 10.3.9 allows attackers to execute arbitrary code via command line arguments to an application that uses CoreFoundation...

9.9AI score0.02341EPSS
Exploits0References3
NVD
NVD
added 2005/08/19 4:0 a.m.15 views

CVE-2005-2505

Buffer overflow in CoreFoundation in Mac OS X 10.3.9 allows attackers to execute arbitrary code via command line arguments to an application that uses CoreFoundation...

7.5CVSS9.9AI score0.02341EPSS
Exploits0References3
Cvelist
Cvelist
added 2005/08/07 4:0 a.m.20 views

CVE-2005-2483

Eval injection vulnerability in Karrigell before 2.1.8 allows remote attackers to execute arbitrary Python code via modified arguments to a Karrigell services .ks script, which can reference functions from libraries that are used by that script...

7.7AI score0.03068EPSS
Exploits0References6
CVE
CVE
added 2005/07/12 4:0 a.m.71 views

CVE-2005-2236

CVE-2005-2236 describes a format string vulnerability in the paginit command for IBM AIX 5.3 (and possibly other versions). The issue could allow local users to execute arbitrary code via format strings supplied in command line arguments. This is a local privilege concern with an impact described...

7.2CVSS7.7AI score0.01074EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2005/07/12 4:0 a.m.22 views

CVE-2005-2236

Format string vulnerability in the paginit command in IBM AIX 5.3, and possibly other versions, might allow local users to execute arbitrary code via format strings in command line arguments...

7.3AI score0.01074EPSS
Exploits1References3
securityvulns
securityvulns
added 2005/05/30 12:0 a.m.28 views

Fast n Furious DtDNS Updater information leak

Command line arguments are visible in process list...

2.2AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2005/05/30 12:0 a.m.39 views

[SA15544] Fast n Furious DtDNS Updater Command Line Argument Disclosure

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

0.1AI score
Exploits0
Cvelist
Cvelist
added 2005/05/12 4:0 a.m.22 views

CVE-2005-0974

Unknown vulnerability in the nfsmount call in Mac OS X 10.3.9 and earlier allows local users to gain privileges via crafted arguments...

6.5AI score0.00411EPSS
Exploits0References3
Cvelist
Cvelist
added 2005/05/12 4:0 a.m.25 views

CVE-2005-0973

Unknown vulnerability in the setsockopt system call in Mac OS X 10.3.9 and earlier allows local users to cause a denial of service memory exhaustion via crafted arguments...

6.2AI score0.00287EPSS
Exploits0References1
NVD
NVD
added 2005/05/12 4:0 a.m.23 views

CVE-2005-0974

Unknown vulnerability in the nfsmount call in Mac OS X 10.3.9 and earlier allows local users to gain privileges via crafted arguments...

7.2CVSS6.5AI score0.00411EPSS
Exploits0References3
Rows per page
Query Builder