Lucene search
K

2241 matches found

Metasploit
Metasploit
added 2015/04/15 10:45 p.m.14 views

WordPress Mobile Edition File Read Vulnerability

This module exploits a directory traversal vulnerability in WordPress Plugin "WP Mobile Edition" version 2.2.7, allowing to read arbitrary files with the web server privileges. This module requires Metasploit: https://metasploit.com/download Current source:...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/01/06 12:0 a.m.29 views

SuSE 11.3 Security Update : bind (SAT Patch Number 10100)

bind has been updated to version 9.9.6P1, fixing the following security issue : - A flaw in delegation handling could be exploited to put named into an infinite loop. This has been addressed by placing limits on the number of levels of recursion named will allow default 7, and the number of...

7.8CVSS6.6AI score0.65683EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2014/12/15 12:0 a.m.39 views

FreeBSD : bind -- denial of service vulnerability (ab3e98d9-8175-11e4-907d-d050992ecde8)

ISC reports : We have today posted updated versions of 9.9.6 and 9.10.1 to address a significant security vulnerability in DNS resolution. The flaw was discovered by Florian Maury of ANSSI, and applies to any recursive resolver that does not support a limit on the number of recursions...

7.8CVSS6.7AI score0.65683EPSS
Exploits0References4
MSRC
MSRC
added 2014/11/19 8:0 a.m.7 views

Security Bulletin MS14-068 released

Today, we released an out-of-band security update to address a vulnerability in Kerberos which could allow Elevation of Privilege. This update is for all supported versions of Windows Server and includes a defense-in-depth update for all supported versions of Windows. We strongly encourage...

6.8AI score
Exploits0
securityvulns
securityvulns
added 2014/10/16 12:0 a.m.75 views

Weak Local Database Credentials in Infoblox Network Automation

Product: Network Automation • NetMRI • Switch Port Manager • Automation Change Manager • Security Device Controller Vendor: InfoBlox Vulnerable Versions: 6.4.X.X-6.8.4.X Tested Version: 6.8.2.11 Vendor Notification: May 12th, 2014 Public Disclosure: July 9th, 2014 Vulnerability Type: OS Command...

7.2CVSS0.3AI score0.00459EPSS
Exploits3
securityvulns
securityvulns
added 2014/10/16 12:0 a.m.102 views

OS Command Injection Infoblox Network Automation

Product: Network Automation, licensed as: • NetMRI • Switch Port Manager • Automation Change Manager • Security Device Controller Vendor: Infoblox Vulnerable Versions: 6.4.X.X-6.8.4.X Tested Version: 6.8.2.11 Vendor Notification: May 12th, 2014 Vendor Patch Availability to Customers: May 16th, 20...

10CVSS0.7AI score0.07171EPSS
Exploits6
Kitploit
Kitploit
added 2014/08/11 11:53 p.m.20 views

PWGen - Generator of cryptographically-strong passwords

PWGen is a professional password generator capable of creating large amounts of cryptographically-secure passwords or passphrases consisting of words from a word list. It uses a “random pool ” technique to generate random data based on user inputs keystrokes, mouse handling and volatile system...

7.4AI score
Exploits0
MSRC
MSRC
added 2014/07/31 7:0 a.m.7 views

General Availability for Enhanced Mitigation Experience Toolkit (EMET) 5.0

Today, we are excited to announce the general availability of Enhanced Mitigation Experience Toolkit EMET 5.0. EMET is a free tool, designed to help customers with their defense in depth strategies against cyberattacks, by helping block and terminate the most common techniques adversaries might u...

6.9AI score
Exploits0
MSRC
MSRC
added 2014/07/31 7:0 a.m.9 views

Announcing EMET 5.0

Today, we are excited to announce the general availability of the Enhanced Mitigation Experience Toolkit EMET 5.0. As many of you already know, EMET is a free tool, designed to help customers with their defense in depth strategies against cyberattacks, by helping detect and block exploitation...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/07/22 12:0 a.m.27 views

RHEL 5 : MRG (RHSA-2012:1278)

Updated Grid component packages that fix several security issues, add various enhancements and fix multiple bugs are now available for Red Hat Enterprise MRG 2 for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common...

7.5CVSS6.3AI score0.03184EPSS
Exploits4References24
NVD
NVD
added 2014/07/19 7:55 p.m.27 views

CVE-2014-3532

dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6, when running on Linux 2.6.37-rc4 or later, allows local users to cause a denial of service system-bus disconnect of other services or applications by sending a message containing a file descriptor, then exceeding the maximum recursion depth before...

2.1CVSS6AI score0.00446EPSS
Exploits0References10
seebug.org
seebug.org
added 2014/07/11 12:0 a.m.52 views

Infoblox 6.8.2.11 - OS Command Injection

No description provided by source. Product: Network Automation, licensed as: • NetMRI • Switch Port Manager • Automation Change Manager • Security Device Controller Vendor: Infoblox Vulnerable Versions: 6.4.X.X-6.8.4.X Tested Version: 6.8.2.11 Vendor Notification: May 12th, 2014 Vendor Patch...

10CVSS6.5AI score0.07171EPSS
Exploits6
0day.today
0day.today
added 2014/07/10 12:0 a.m.98 views

Infoblox 6.8.2.11 - OS Command Injection / Weak MySQL Password Vulnerability

Infoblox versions 6.4.x.x through 6.8.4.x suffer from a remote OS command injection and use a default login of root with password root on their MySQL instances. Product: Network Automation, licensed as: • NetMRI • Switch Port Manager • Automation Change Manager • Security Device Controller Vendor...

10CVSS0.07171EPSS
Exploits8
exploitpack
exploitpack
added 2014/07/10 12:0 a.m.57 views

Infoblox 6.8.2.11 - OS Command Injection

Infoblox 6.8.2.11 - OS Command Injection Product: Network Automation, licensed as: • NetMRI • Switch Port Manager • Automation Change Manager • Security Device Controller Vendor: Infoblox Vulnerable Versions: 6.4.X.X-6.8.4.X Tested Version: 6.8.2.11 Vendor Notification: May 12th, 2014 Vendor Patc...

10CVSS0.1AI score0.07171EPSS
Exploits6
Exploit DB
Exploit DB
added 2014/07/10 12:0 a.m.59 views

Infoblox 6.8.2.11 - OS Command Injection

Product: Network Automation, licensed as: • NetMRI • Switch Port Manager • Automation Change Manager • Security Device Controller Vendor: Infoblox Vulnerable Versions: 6.4.X.X-6.8.4.X Tested Version: 6.8.2.11 Vendor Notification: May 12th, 2014 Vendor Patch Availability to Customers: May 16th, 20...

10CVSS6.9AI score0.07171EPSS
Exploits6
Packet Storm
Packet Storm
added 2014/07/09 12:0 a.m.64 views

Infoblox 6.8.4.x OS Command Injection

Product: Network Automation, licensed as: • NetMRI • Switch Port Manager • Automation Change Manager • Security Device Controller Vendor: Infoblox Vulnerable Versions: 6.4.X.X-6.8.4.X Tested Version: 6.8.2.11 Vendor Notification: May 12th, 2014 Vendor Patch Availability to Customers: May 16th, 20...

10CVSS0.1AI score0.07171EPSS
Exploits6
Packet Storm
Packet Storm
added 2014/07/09 12:0 a.m.74 views

Infoblox 6.8.4.x Weak MySQL Password

Product: Network Automation • NetMRI • Switch Port Manager • Automation Change Manager • Security Device Controller Vendor: InfoBlox Vulnerable Versions: 6.4.X.X-6.8.4.X Tested Version: 6.8.2.11 Vendor Notification: May 12th, 2014 Public Disclosure: July 9th, 2014 Vulnerability Type: OS Command...

7.2CVSS9.6AI score0.00459EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2014/07/04 12:0 a.m.35 views

FreeBSD : dbus -- multiple vulnerabilities (e6a7636a-02d0-11e4-88b6-080027671656)

Simon McVittie reports : Alban Crequy at Collabora Ltd. discovered a bug in dbus-daemon's support for file descriptor passing. A malicious process could force system services or user applications to be disconnected from the D-Bus system bus by sending them a message containing a file descriptor,...

2.1CVSS5.4AI score0.00446EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2014/07/02 12:0 a.m.27 views

dbus -- multiple vulnerabilities

Simon McVittie reports: Alban Crequy at Collabora Ltd. discovered a bug in dbus-daemon's support for file descriptor passing. A malicious process could force system services or user applications to be disconnected from the D-Bus system bus by sending them a message containing a file descriptor,...

2.1CVSS5.8AI score0.00446EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

Neon WebDAV Client Library 0.2x Format String Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/10136/info It has been reported that the Neon client library is prone to multiple remote format string vulnerabilities. This issue is due to a failure of the application to properly implement format string functions...

7.1AI score
Exploits0
Rows per page
Query Builder