Lucene search
K

330 matches found

UbuntuCve
UbuntuCve
added 2017/11/27 12:0 a.m.32 views

CVE-2017-16944

The receivemsg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to cause a denial of service infinite loop and stack exhaustion via vectors involving BDAT commands and an improper check for a '.' character signifying the end of the content, related to the...

7.5CVSS7.3AI score0.6332EPSS
Exploits7References2
Prion
Prion
added 2017/11/25 5:29 p.m.30 views

Design/Logic Flaw

The receivemsg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to cause a denial of service infinite loop and stack exhaustion via vectors involving BDAT commands and an improper check for a '.' character signifying the end of the content, related to the...

5CVSS7.3AI score0.6332EPSS
Exploits7References9Affected Software2
NVD
NVD
added 2017/11/25 5:29 p.m.20 views

CVE-2017-16944

The receivemsg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to cause a denial of service infinite loop and stack exhaustion via vectors involving BDAT commands and an improper check for a '.' character signifying the end of the content, related to the...

7.5CVSS7.5AI score0.6332EPSS
Exploits7References9
Prion
Prion
added 2017/03/28 2:59 a.m.20 views

Authorization

Nextcloud Server before 9.0.54 and 10.0.0 suffers from an improper authorization check on removing shares. The Sharing Backend as implemented in Nextcloud does differentiate between shares to users and groups. In case of a received group share, users should be able to unshare the file to themselv...

4CVSS6.9AI score0.01624EPSS
Exploits1References7Affected Software1
UbuntuCve
UbuntuCve
added 2016/02/01 9:59 p.m.45 views

CVE-2016-2049

examples/consumer/common.php in JanRain PHP OpenID library aka php-openid improperly checks the openid.realm parameter against the SERVERNAME element in the SERVER superglobal array, which might allow remote attackers to hijack the authentication of arbitrary users via vectors involving a crafted...

8.8CVSS7.3AI score0.02171EPSS
Exploits0References2
Cvelist
Cvelist
added 2013/02/02 12:0 a.m.19 views

CVE-2013-0442

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors relat...

8.3AI score0.08087EPSS
Exploits0References27
UbuntuCve
UbuntuCve
added 2013/02/01 12:0 a.m.46 views

CVE-2013-0442

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors relat...

10CVSS7.2AI score0.08087EPSS
Exploits0References5
exploitpack
exploitpack
added 2010/06/23 12:0 a.m.10 views

Interscan Web Security Virtual Appliance 5.0 - Arbitrary File Download

Interscan Web Security Virtual Appliance 5.0 - Arbitrary File Download Exploit Title: Arbitrary File Download in InterScan Web Security Virtual Appliance 5.0 Date: 22-06-2010 Author: Ivan Huertas Software Link: http://downloadcenter.trendmicro.com/index.php?clk=tbl&clkval=249&regs=NABU?loc=1...

0.1AI score
Exploits0
CVE
CVE
added 1976/01/01 12:0 a.m.126 views

CVE-2024-33427

CVE-2024-33427 is rejected/not used; this CVE entry does not represent an active vulnerability.

6.8AI score
Exploits0
Debian CVE
Debian CVE
added 1976/01/01 12:0 a.m.27 views

CVE-2024-33427

Removed by vendor...

6.1AI score
Exploits0
Rows per page
Query Builder