Lucene search
K

1948 matches found

Gentoo Linux
Gentoo Linux
added 2005/03/04 12:0 a.m.80 views

Mozilla Firefox: Various vulnerabilities

Background Mozilla Firefox is the popular next-generation browser from the Mozilla project. Description The following vulnerabilities were found and fixed in Mozilla Firefox: Michael Krax reported that plugins can be used to load privileged content and trick the user to interact with it...

7.5CVSS7.4AI score0.20398EPSS
Exploits6
OSV
OSV
added 2005/03/02 5:0 a.m.1 views

DEBIAN-CVE-2005-0638

xloadimage before 4.1-r2, and xli before 1.17, allows attackers to execute arbitrary commands via shell metacharacters in filenames for compressed images, which are not properly quoted when calling the gunzip command...

7.5CVSS7.7AI score0.03603EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2005/03/02 12:0 a.m.40 views

ImageMagick -- format string vulnerability

Tavis Ormandy reports: magemagick-6.2.0-3 fixes an potential issue handling malformed filenames, the flaw may affect webapps or scripts that use the imagemagick utilities for image processing, or applications linked with libMagick. This vulnerability could crash ImageMagick or potentially lead to...

7.5CVSS6.9AI score0.04219EPSS
Exploits0References1
Cvelist
Cvelist
added 2005/02/19 5:0 a.m.22 views

CVE-2005-0484

Format string vulnerability in gprostats for GProFTPD before 8.1.9 may allow remote attackers to execute arbitrary code via an FTP transfer with a crafted filename that causes format string specifiers to be inserted into the ProFTPD transfer log...

7.5AI score0.1085EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2005/02/15 9:19 a.m.5 views

security flaw

Enscript 1.6.3 does not sanitize filenames, which allows remote attackers or local users to execute arbitrary commands via crafted filenames...

7.5CVSS6.2AI score0.04476EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/02/10 5:0 a.m.18 views

CVE-2005-0331

Directory traversal vulnerability in WinRAR 3.42 and earlier, when the user clicks on the ZIP file to extract it, allows remote attackers to create arbitrary files via a ... triple dot in the filename of the ZIP file...

6.7AI score0.01446EPSS
Exploits0References3
NVD
NVD
added 2005/02/09 5:0 a.m.12 views

CVE-2004-0947

Buffer overflow in unarj before 2.63a-r2 allows remote attackers to execute arbitrary code via an arj archive that contains long filenames...

10CVSS7.7AI score0.07369EPSS
Exploits0References6
Cvelist
Cvelist
added 2005/02/06 5:0 a.m.19 views

CVE-2005-0182

The moddosevasive module 1.9 and earlier for Apache creates temporary files with predictable filenames, which could allow remote attackers to overwrite arbitrary files via a symlink attack...

6.8AI score0.01473EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2005/01/29 5:0 a.m.27 views

CVE-2004-1185

Enscript 1.6.3 does not sanitize filenames, which allows remote attackers or local users to execute arbitrary commands via crafted filenames...

7.5CVSS7AI score0.04476EPSS
Exploits0
NVD
NVD
added 2004/12/31 5:0 a.m.21 views

CVE-2004-1442

Cross-site scripting XSS vulnerability in db2www CGI interpreter in IBM Net.Data 7 and 7.2 allows remote attackers to inject arbitrary web script or HTML via a macro filename, which is not properly handled by error messages such as "DTWP001E."...

4.3CVSS5.5AI score0.04252EPSS
Exploits1References9
Cvelist
Cvelist
added 2004/12/01 5:0 a.m.24 views

CVE-2004-0996

main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack...

6AI score0.01145EPSS
Exploits2References13
Debian CVE
Debian CVE
added 2004/12/01 5:0 a.m.41 views

CVE-2004-0996

main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack...

2.1CVSS6.1AI score0.01145EPSS
Exploits2
Cvelist
Cvelist
added 2004/11/24 5:0 a.m.40 views

CVE-2004-0947

Buffer overflow in unarj before 2.63a-r2 allows remote attackers to execute arbitrary code via an arj archive that contains long filenames...

7.6AI score0.07369EPSS
Exploits0References6
CVE
CVE
added 2004/11/24 5:0 a.m.78 views

CVE-2004-0947

CVE-2004-0947 is confirmed across connected docs as a vulnerability in the unarj utility. The issue is a buffer overflow when handling long filenames in arj archives, enabling remote code execution. Related advisories additionally describe a directory-traversal weakness in the -x extract option t...

10CVSS7.6AI score0.07369EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2004/11/24 12:0 a.m.3 views

PT-2004-1120 · Unrarj Team · Unarj

Name of the Vulnerable Software and Affected Versions: unarj versions prior to 2.63a-r2 Description: The issue is caused by a buffer overflow in the unarj library, which handles data archiving. This can be exploited by a remote attacker to execute arbitrary code using an arj archive containing...

10CVSS7.6AI score0.07369EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2004/11/22 12:0 a.m.26 views

GLSA-200411-29 : unarj: Long filenames buffer overflow and a path traversal vulnerability

The remote host is affected by the vulnerability described in GLSA-200411-29 unarj: Long filenames buffer overflow and a path traversal vulnerability unarj has a bounds checking vulnerability within the handling of long filenames in archives. It also fails to properly sanitize paths when extracti...

10CVSS6.3AI score0.07369EPSS
Exploits0References3
Samba
Samba
added 2004/11/15 12:0 a.m.156 views

Possible Buffer Overrun in smbd

Summary: A possible buffer overrun in smbd could lead to code execution by a remote user Patch Availability A patch for Samba 3.0.7 samba-3.0.7-CAN-2004-0882.patch is available from http://www.samba.org/samba/ftp/patches/security/. The patch has been signed with the "Samba Distribution Verificati...

10CVSS0.3AI score0.1373EPSS
Exploits0
FreeBSD
FreeBSD
added 2004/11/15 12:0 a.m.50 views

smbd -- buffer-overrun vulnerability

Caused by improper bounds checking of certain trans2 requests, there is a possible buffer overrun in smbd. The attacker needs to be able to create files with very specific Unicode filenames on the share to take advantage of this issue...

10CVSS6.3AI score0.1373EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2004/11/09 12:0 a.m.27 views

unarj -- long filename buffer overflow

Ludwig Nussel has discovered a buffer overflow vulnerability in unarj's handling of long filenames which could potentially lead to execution of arbitrary code with the permissions of the user running unarj...

10CVSS7.1AI score0.07369EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/09/29 12:0 a.m.19 views

Debian DSA-100-1 : gzip - Potential buffer overflow

GOBBLES found a buffer overflow in gzip that occurs when compressing files with really long filenames. Even though GOBBLES claims to have developed an exploit to take advantage of this bug, it has been said by others that this problem is not likely to be exploitable as other security incidents...

7.5CVSS5.8AI score0.03064EPSS
Exploits0References3
Rows per page
Query Builder