CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

108 matches found

RedHat Linux•added 2008/07/02 12:21 p.m.•1 views

Firefox arbitrary signed JAR code execution

Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not properly implement JAR signing, which allows remote attackers to execute arbitrary code via 1 injection of JavaScript into documents within a JAR archive or 2 a JAR archive that uses relative URLs to JavaScript files...

7.5CVSS6.2AI score0.03972EPSS

Exploits1References4

RedHat Linux•added 2008/03/11 2:30 p.m.•4 views

Important: Red Hat Security Advisory: Red Hat Directory Server 7.1 Service Pack 4 security update

Red Hat Directory Server 7.1 Service Pack 4: an updated redhat-ds package that fixes a security issue and several bugs is now available. This update has been rated as having important security impact by the Red Hat Security Response Team. Red Hat Directory Server is an LDAPv3 compliant server. It...

4.6CVSS5.8AI score0.00068EPSS

Exploits0References3

NVD•added 2005/05/02 4:0 a.m.•16 views

CVE-2005-1080

Directory traversal vulnerability in the Java Archive Tool Jar utility in J2SE SDK 1.4.2 and 1.5, and OpenJDK, allows remote attackers to create or overwrite arbitrary files via a .. dot dot in filenames in a .jar file...

5CVSS6.5AI score0.04135EPSS

Exploits1References22

OSV•added 2005/05/02 4:0 a.m.•0 views

UBUNTU-CVE-2005-1080

5CVSS5.9AI score0.04135EPSS

Exploits1References4

UbuntuCve•added 2005/05/02 4:0 a.m.•42 views

CVE-2005-1080

5CVSS6.1AI score0.04135EPSS

Exploits1References3

CVE•added 2005/04/12 4:0 a.m.•108 views

CVE-2005-1080

The CVE-2005-1080 entry concerns a directory traversal vulnerability in the jar utility of the Java Archive Tool (Jar) used by J2SE SDK 1.4.2/1.5 and OpenJDK. The underlying issue allows a remote attacker to create or overwrite arbitrary files via a .. sequence in filenames stored inside a .jar f...

5CVSS6.5AI score0.04135EPSS

Exploits1References22Affected Software1

Positive Technologies•added 2002/12/31 12:0 a.m.•2 views

PT-2002-2518 · Hewlett Packard · Chaivm Ezloader

Name of the Vulnerable Software and Affected Versions: ChaiVM EZloader for HP color LaserJet 4500 and 4550 and HP LaserJet 4100 and 8150 affected versions not specified Description: The issue is related to the improper verification of JAR signatures for new services in ChaiVM EZloader. This allow...

7.8CVSS6.6AI score0.00108EPSS

Exploits0References8