Lucene search
K

9306 matches found

canvas
canvas
added 2012/01/08 3:55 p.m.87 views

Immunity Canvas: STRUTSCODEINJECTION

Name| strutsCodeInjection ---|--- CVE| CVE-2012-0394 Exploit Pack| CANVAS Description| Struts Code Injector Notes| CVE Name: CVE-2012-0394 VENDOR: Apache Notes: CVE-2012-0394 - Struts = 2.2.1.1 ExceptionDelegator When an exception occurs while applying parameter values to properties, the value is...

6.8CVSS2AI score0.91079EPSS
Exploits30
Ubuntu
Ubuntu
added 2012/01/06 8:46 p.m.59 views

USN-1306-2: Mozvoikko and ubufox update

USN-1306-1 fixed vulnerabilities in Firefox. This update provides updated Mozvoikko and ubufox packages for use with Firefox 9. Original advisory details: Alexandre Poirot, Chris Blizzard, Kyle Huey, Scoobidiver, Christian Holler, David Baron, Gary Kwong, Jim Blandy, Bob Clary, Jesse Ruderman,...

8.9AI score
Exploits0References1
Ubuntu
Ubuntu
added 2012/01/06 7:34 p.m.60 views

USN-1306-1: Firefox vulnerabilities

Alexandre Poirot, Chris Blizzard, Kyle Huey, Scoobidiver, Christian Holler, David Baron, Gary Kwong, Jim Blandy, Bob Clary, Jesse Ruderman, Marcia Knous, and Rober Longson discovered several memory safety issues which could possibly be exploited to crash Firefox or execute arbitrary code as the...

10CVSS8.8AI score0.69882EPSS
Exploits11References1
OPENSUSE Linux
OPENSUSE Linux
added 2012/01/05 12:35 p.m.27 views

seamonkey (important)

seamonkey version 2.6 fixes several security issues: MFSA 2011-53/CVE-2011-3660: Miscellaneous memory safety hazards MFSA 2011-54/CVE-2011-3661: Potentially exploitable crash in the YARR regular expression library MFSA 2011-55/CVE-2011-3658: nsSVGValue out-of-bounds access MFSA...

10CVSS3.8AI score0.69882EPSS
Exploits11References1
OPENSUSE Linux
OPENSUSE Linux
added 2012/01/05 12:8 p.m.27 views

seamonkey (important)

seamonkey version 2.6 fixes several security issues: MFSA 2011-53/CVE-2011-3660: Miscellaneous memory safety hazards MFSA 2011-54/CVE-2011-3661: Potentially exploitable crash in the YARR regular expression library MFSA 2011-55/CVE-2011-3658: nsSVGValue out-of-bounds access MFSA...

10CVSS3.8AI score0.69882EPSS
Exploits11References1
Amazon
Amazon
added 2012/01/05 12:0 a.m.38 views

Medium: dhcp

Issue Overview: A denial of service flaw was found in the way the dhcpd daemon handled DHCP request packets when regular expression matching was used in "/etc/dhcp/dhcpd.conf". A remote attacker could use this flaw to crash dhcpd. CVE-2011-4539 Affected Packages: dhcp Issue Correction: Run yum...

5CVSS6.6AI score0.15478EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2011/12/29 12:0 a.m.6 views

PT-2011-5168 · Php · Phpids

Name of the Vulnerable Software and Affected Versions: PHPIDS versions prior to 0.7 Description: The issue allows remote attackers to bypass rulesets and add PHP sequences to a file due to improper implementation of Regular Expression Denial of Service ReDoS filters. Recommendations: For versions...

7.5CVSS6.7AI score0.01466EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2011/12/28 6:21 p.m.10 views

Kuwait Government will suspend Twitter accounts of Anonymous Users

Kuwait Government will suspend Twitter accounts of Anonymous Users In Kuwait, the Ministry of Interior is in the process of enforcing a rule of their own on Twitter which prevents Kuwaiti users from using anonymous accounts. The ministry said in a press statement that such measure comes in order ...

6.9AI score
Exploits0
Packet Storm
Packet Storm
added 2011/12/23 12:0 a.m.41 views

Tiki Wiki CMS Groupware 8.2 Code Injection

------------------------------------------------------------------------- Tiki Wiki CMS Groupware /tiki-8.2/snarfajax.php?url=1&regexres=phpinfo&regex=//e%00/ Tiki internal filters remove all null bytes from user input, but for some strange reason this doesn't happen within admin sessions. So,...

0.2AI score0.04271EPSS
Exploits7
Exploit DB
Exploit DB
added 2011/12/22 12:0 a.m.41 views

Tiki Wiki CMS Groupware 8.2 - 'snarf_ajax.php' Remote PHP Code Injection

------------------------------------------------------------------------- Tiki Wiki CMS Groupware /tiki-8.2/snarfajax.php?url=1&regexres=phpinfo&regex=//e%00/ Tiki internal filters remove all null bytes from user input, but for some strange reason this doesn't happen within admin sessions. So,...

7.2CVSS7AI score0.04271EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2011/12/21 12:0 a.m.20 views

Mozilla Firefox 8.0 Multiple Vulnerabilities

Binary data 801379.prm...

10CVSS9.8AI score0.69882EPSS
Exploits11References13
Tenable Nessus
Tenable Nessus
added 2011/12/21 12:0 a.m.45 views

FreeBSD : mozilla -- multiple vulnerabilities (e3ff776b-2ba6-11e1-93c6-0011856a6e37)

The Mozilla Project reports : MFSA 2011-53 Miscellaneous memory safety hazards rv:9.0 MFSA 2011-54 Potentially exploitable crash in the YARR regular expression library MFSA 2011-55 nsSVGValue out-of-bounds access MFSA 2011-56 Key detection without JavaScript via SVG animation MFSA 2011-58 Crash...

10CVSS8.3AI score0.69882EPSS
Exploits11References11
Tenable Nessus
Tenable Nessus
added 2011/12/20 12:0 a.m.28 views

Firefox < 9.0 Multiple Vulnerabilities

The installed version of Firefox is earlier than 9.0 and thus, is potentially affected by the following security issues : - An out-of-bounds memory access error exists in the 'SVG' implementation and can be triggered when 'SVG' elements are removed during a 'DOMAttrModified' event handler...

10CVSS7.6AI score0.69882EPSS
Exploits11References16
Tenable Nessus
Tenable Nessus
added 2011/12/20 12:0 a.m.41 views

Mozilla Thunderbird < 9.0 Multiple Vulnerabilities

The installed version of Thunderbird is earlier than 9.0 and thus, is potentially affected by the following security issues : - An out-of-bounds memory access error exists in the 'SVG' implementation and can be triggered when 'SVG' elements are removed during a 'DOMAttrModified' event handler...

10CVSS8.9AI score0.69882EPSS
Exploits11References16
Mozilla
Mozilla
added 2011/12/20 12:0 a.m.37 views

Potentially exploitable crash in the YARR regular expression library — Mozilla

Security researcher Aki Helin reported a crash in the YARR regular expression library that could be triggered by javascript in web content...

7.5CVSS1.1AI score0.03732EPSS
Exploits0References3Affected Software3
FreeBSD
FreeBSD
added 2011/12/20 12:0 a.m.32 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2011-53 Miscellaneous memory safety hazards rv:9.0 MFSA 2011-54 Potentially exploitable crash in the YARR regular expression library MFSA 2011-55 nsSVGValue out-of-bounds access MFSA 2011-56 Key detection without JavaScript via SVG animation MFSA 2011-58 Crash...

10CVSS9.4AI score0.69882EPSS
Exploits11References5
FreeBSD
FreeBSD
added 2011/12/07 12:0 a.m.26 views

isc-dhcp-server -- Remote DoS

ISC reports: A bug exists which allows an attacker who is able to send DHCP Request packets, either directly or through a relay, to remotely crash an ISC DHCP server if that server is configured to evaluate expressions using a regular expression i.e. uses the "=" or "" comparison operators...

5CVSS6.4AI score0.15478EPSS
Exploits0
Packet Storm
Packet Storm
added 2011/11/04 12:0 a.m.81 views

BSD libc/regcomp(3) Memory Management / Recursion

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Multiple BSD libc/regcomp3 Multiple Vulnerabilities Author: Maksymilian Arciemowicz http://www.netbsd.org/donations/ http://securityreason.com/ http://cxib.net/ Date: - - Dis.: 05.10.2011 - - Pub.: 04.11.2011 CVE: CVE-2011-3336 Affected Software: - -...

5CVSS7.6AI score0.51298EPSS
Exploits14
Metasploit
Metasploit
added 2011/10/17 1:27 a.m.12 views

HTTP Page Scraper

Scrape defined data from a specific web page based on a regular expression This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HTTP Page Scraper', 'Description' = 'Scrape defined data from a specif...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2011/10/14 12:0 a.m.21 views

Mozilla Firefox Memory Corruption and Integer Underflow Vulnerabilities (MAC OS X)

The host is installed with Mozilla Firefox and is prone to memory corruption and integer underflow vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillafirefoxmemcorrptnintunderflowvulnmacosx.nasl 7015 2017-08-28 11:51:24Z teissa $ Mozilla Firefox Memory Corruption and Integer Underflow...

10CVSS1.5AI score0.05368EPSS
Exploits1References1
Rows per page
Query Builder