Lucene search
+L

160 matches found

NVD
NVD
added 2009/01/28 8:30 p.m.26 views

CVE-2008-6005

Multiple buffer overflows in the CheckUniqueName function in W3C Amaya Web Browser 10.0.1, and possibly other versions including 11.0.1, might allow remote attackers to execute arbitrary code via "duplicated" attribute value inputs...

10CVSS7.7AI score0.04597EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2009/01/28 8:30 p.m.38 views

CVE-2008-6005

Multiple buffer overflows in the CheckUniqueName function in W3C Amaya Web Browser 10.0.1, and possibly other versions including 11.0.1, might allow remote attackers to execute arbitrary code via "duplicated" attribute value inputs...

10CVSS6.3AI score0.04597EPSS
Exploits1References1
Prion
Prion
added 2009/01/28 8:30 p.m.18 views

Buffer overflow

Multiple buffer overflows in the CheckUniqueName function in W3C Amaya Web Browser 10.0.1, and possibly other versions including 11.0.1, might allow remote attackers to execute arbitrary code via "duplicated" attribute value inputs...

10CVSS8.1AI score0.04597EPSS
Exploits1References2Affected Software1
Exploit DB
Exploit DB
added 2009/01/28 12:0 a.m.62 views

Amaya Web Editor 11.0 - XML / HTML Parser

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Amaya web editor XML and HTML parser vulnerabilities 1. Advisory Information Title: Amaya web editor XML and HTML parser vulnerabilities Advisory ID: CORE-2008-1211...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/11/12 12:0 a.m.42 views

Net-SNMP 5.1.45.2.45.4.1 Perl Module - Buffer Overflow (PoC)

Net-SNMP 5.1.45.2.45.4.1 Perl Module - Buffer Overflow PoC !usr/bin/perl -w Buffer overflow in the snprintvalue function in snmpget in Net-SNMP 5.1.4, 5.2.4, and 5.4.1, as used in SNMP.xs for Perl, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via ...

6.8CVSS0.08443EPSS
Exploits7
NVD
NVD
added 2008/08/27 8:41 p.m.28 views

CVE-2008-3281

libxml2 2.6.32 and earlier does not properly detect recursion during entity expansion in an attribute value, which allows context-dependent attackers to cause a denial of service memory and CPU consumption via a crafted XML document...

6.5CVSS6.3AI score0.02507EPSS
Exploits1References42
Cvelist
Cvelist
added 2008/08/27 8:0 p.m.27 views

CVE-2008-3281

libxml2 2.6.32 and earlier does not properly detect recursion during entity expansion in an attribute value, which allows context-dependent attackers to cause a denial of service memory and CPU consumption via a crafted XML document...

6.3AI score0.02507EPSS
Exploits1References42
Debian CVE
Debian CVE
added 2008/08/27 8:0 p.m.38 views

CVE-2008-3281

libxml2 2.6.32 and earlier does not properly detect recursion during entity expansion in an attribute value, which allows context-dependent attackers to cause a denial of service memory and CPU consumption via a crafted XML document...

6.5CVSS6AI score0.02507EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2008/08/21 4:8 p.m.6 views

libxml2 denial of service

libxml2 2.6.32 and earlier does not properly detect recursion during entity expansion in an attribute value, which allows context-dependent attackers to cause a denial of service memory and CPU consumption via a crafted XML document...

6.5CVSS6.8AI score0.02507EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2008/06/10 2:7 p.m.7 views

net-snmp: buffer overflow in perl module's Perl Module __snprint_value()

Buffer overflow in the snprintvalue function in snmpget in Net-SNMP 5.1.4, 5.2.4, and 5.4.1, as used in SNMP.xs for Perl, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large OCTETSTRING in an attribute value pair AVP...

6.8CVSS6.3AI score0.08443EPSS
Exploits7References4
Prion
Prion
added 2008/05/18 2:20 p.m.24 views

Buffer overflow

Buffer overflow in the snprintvalue function in snmpget in Net-SNMP 5.1.4, 5.2.4, and 5.4.1, as used in SNMP.xs for Perl, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large OCTETSTRING in an attribute value pair AVP...

6.8CVSS8.1AI score0.08443EPSS
Exploits7References30Affected Software1
OSV
OSV
added 2008/05/18 2:20 p.m.6 views

DEBIAN-CVE-2008-2292

Buffer overflow in the snprintvalue function in snmpget in Net-SNMP 5.1.4, 5.2.4, and 5.4.1, as used in SNMP.xs for Perl, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large OCTETSTRING in an attribute value pair AVP...

6.8CVSS7.7AI score0.08443EPSS
Exploits7References1
NVD
NVD
added 2008/03/20 6:44 p.m.21 views

CVE-2008-1428

Multiple cross-site scripting XSS vulnerabilities in the Ubercart 5.x before 5.x-1.0-beta7 module for Drupal allow remote attackers to inject arbitrary web script or HTML via a text attribute value for a product...

4.3CVSS5.6AI score0.01022EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.27 views

Debian Security Advisory DSA 152-1 (l2tpd)

The remote host is missing an update to l2tpd announced via advisory DSA 152-1. OpenVAS Vulnerability Test $Id: deb1521.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 152-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

7.5CVSS0.5AI score0.01612EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.22 views

Debian Security Advisory DSA 152-1 (l2tpd)

The remote host is missing an update to l2tpd announced via advisory DSA 152-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.01612EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2006/05/13 12:0 a.m.22 views

FreeBSD : amaya -- Attribute Value Buffer Overflow Vulnerabilities (dc930435-d59f-11da-8098-00123ffe8333)

Secunia reports : Amaya have two vulnerabilities, which can be exploited by malicious people to compromise a user's system. The vulnerabilities are caused due to boundary errors within the parsing of various attribute values. This can be exploited to cause stack-based buffer overflows when a user...

7.6CVSS6.2AI score0.16545EPSS
Exploits1References4
OSV
OSV
added 2006/02/02 10:2 p.m.1 views

DEBIAN-CVE-2006-0297

Multiple integer overflows in Mozilla Firefox 1.5, Thunderbird 1.5 if Javascript is enabled in mail, and SeaMonkey before 1.0 might allow remote attackers to execute arbitrary code via the 1 EscapeAttributeValue in jsxml.c for E4X, 2 nsSVGCairoSurface::Init in SVG, and 3...

5.1CVSS7.5AI score0.03852EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/09/29 12:0 a.m.26 views

Debian DSA-152-1 : l2tpd - missing random seed

Current versions of l2tpd, a layer 2 tunneling client/server program, forgot to initialize the random generator which made it vulnerable since all generated random number were 100% guessable. When dealing with the size of the value in an attribute value pair, too many bytes were able to be copied...

7.5CVSS5.4AI score0.01612EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2004/03/30 5:6 p.m.12 views

security flaw

The dissectattributevaluepairs function in packet-radius.c for Ethereal 0.8.13 to 0.10.2 allows remote attackers to cause a denial of service crash via a malformed RADIUS packet that triggers a null dereference...

7.5CVSS5.9AI score0.05891EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2004/03/25 12:0 a.m.4 views

PT-2004-1519 · Ethereal · Ethereal

Name of the Vulnerable Software and Affected Versions: Ethereal versions 0.8.13 through 0.10.2 Description: The issue allows remote attackers to cause a denial of service crash via a malformed RADIUS packet that triggers a null dereference in the dissect attribute value pairs function...

7.5CVSS7.1AI score0.05891EPSS
Exploits0References17
Rows per page
Query Builder