Lucene search
K

36 matches found

Tenable Nessus
Tenable Nessus
added 2012/03/05 12:0 a.m.19 views

Debian DSA-2425-1 : plib - buffer overflow

It was discovered that PLIB, a library used by TORCS, contains a buffer overflow in error message processing, which could allow remote attackers to execute arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted fr...

9.3CVSS5.9AI score0.12795EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2012/02/21 12:0 a.m.41 views

Debian DSA-2413-1 : libarchive - buffer overflows

Two buffer overflows have been discovered in libarchive, a library providing a flexible interface for reading and writing archives in various formats. The possible buffer overflows while reading ISO 9660 or tar streams allow remote attackers to execute arbitrary code depending on the application...

6.8CVSS6.2AI score0.04246EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2012/01/24 12:0 a.m.33 views

Debian DSA-2392-1 : openssl - out-of-bounds read

Antonio Martin discovered a denial-of-service vulnerability in OpenSSL, an implementation of TLS and related protocols. A malicious client can cause the DTLS server implementation to crash. Regular, TCP-based TLS is not affected by this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

5CVSS7.4AI score0.13856EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2011/11/14 12:0 a.m.37 views

Debian DSA-2344-1 : python-django-piston - deserialization vulnerability

It was discovered that the Piston framework can deserializes untrusted YAML and Pickle data, leading to remote code execution CVE-2011-4103 . %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory...

7.5CVSS6.3AI score0.02409EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2011/07/05 12:0 a.m.29 views

Debian DSA-2270-1 : qemu-kvm - programming error

It was discovered that incorrect sanitising of virtio queue commands in KVM, a solution for full virtualization on x86 hardware, could lead to denial of service or the execution of arbitrary code. The oldstable distribution lenny is not affected by this problem. %NASLMINLEVEL 70300 C Tenable...

5.8CVSS5.7AI score0.01903EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2011/05/13 12:0 a.m.35 views

Debian DSA-2236-1 : exim4 - command injection

It was discovered that Exim, Debian's default mail transfer agent, is vulnerable to command injection attacks in its DKIM processing code, leading to arbitrary code execution. CVE-2011-1407 The default configuration supplied by Debian does not expose this vulnerability. The oldstable distribution...

7.5CVSS7.4AI score0.03802EPSS
Exploits0References4
Cvelist
Cvelist
added 2010/09/15 5:26 p.m.32 views

CVE-2010-3009

Unspecified vulnerability in HP System Management Homepage SMH for Linux 6.0 and 6.1 allows remote authenticated users to obtain sensitive information and gain root privileges via unknown vectors...

5.9AI score0.03379EPSS
Exploits0References5
seebug.org
seebug.org
added 2009/04/21 12:0 a.m.75 views

CUPS '_cupsImageReadTIFF()'整数溢出漏洞

BUGTRAQ ID: 34571 CVE ID:CVE-2009-0163 CNCVE ID:CNCVE-20090163 Common Unix Printing SystemCUPS是一款通用Unix打印系统,是Unix环境下的跨平台打印解决方案,基于Internet打印协议,提供大多数PostScript和raster打印机服务。 CUPS处理TIFF图像存在整数溢出,远程攻击者可以利用漏洞以应用程序权限执行任意指令。...

6.8CVSS1.1AI score0.04246EPSS
Exploits2
Cvelist
Cvelist
added 2004/03/18 5:0 a.m.18 views

CVE-2004-0267

The 1 inoregupdate, 2 uniftest, or 3 unimove scripts in eTrust InoculateIT for Linux 6.0 allow local users to overwrite arbitrary files via a symlink attack on files in /tmp...

6.5AI score0.00462EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2004/03/18 12:0 a.m.6 views

PT-2004-1421 · Ca · Etrust Inoculateit

Name of the Vulnerable Software and Affected Versions: eTrust InoculateIT for Linux version 6.0 Description: The issue allows local users to overwrite arbitrary files via a symlink attack on files in /tmp, specifically through the inoregupdate, uniftest, or unimove scripts. Recommendations: For...

2.1CVSS6.4AI score0.00462EPSS
Exploits0References9
CVE
CVE
added 2001/09/12 4:0 a.m.60 views

CVE-1999-1495

CVE-1999-1495 describes a local vulnerability in xtvscreen for SuSE Linux 6.0 where a symlink attack on the file “pic000.pnm” lets a local user overwrite arbitrary files. The underlying issue is a symlink-based file-overwrite path within xtvscreen. Documented impact indicates no confidentiality o...

2.1CVSS6.7AI score0.00486EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2000/05/24 4:0 a.m.44 views

CVE-2000-0365

The CVE-2000-0365 entry concerns Red Hat Linux 6.0 where the /dev/pts file system is mounted with insecure modes. This configuration allows local users to write to other tty devices. The provided documents describe the affected component (/dev/pts) and the resulting local access impact but do not...

4.6CVSS6.7AI score0.00378EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2000/05/24 4:0 a.m.54 views

CVE-2000-0364

The CVE-2000-0364 entry concerns Red Hat Linux 6.0 where screen and rxvt fail to properly set tty device modes, enabling a local user to write to other virtual consoles. The vulnerability is localized (attack vector LOCAL) with low complexity and no authentication, and it can impact confidentiali...

4.6CVSS6.7AI score0.00378EPSS
Exploits0References4Affected Software1
exploitpack
exploitpack
added 1999/09/02 12:0 a.m.15 views

ISC INN 2.2 RedHat Linux 6.0 - inews Buffer Overflow

ISC INN 2.2 RedHat Linux 6.0 - inews Buffer Overflow // source: https://www.securityfocus.com/bid/616/info INN versions 2.2 and earlier have a buffer overflow-related security condition in the inews program. inews is a program used to inject new postings into the news system. It is used by many...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 1999/09/02 12:0 a.m.36 views

ISC INN 2.2 / RedHat Linux 6.0 - inews Buffer Overflow

// source: https://www.securityfocus.com/bid/616/info INN versions 2.2 and earlier have a buffer overflow-related security condition in the inews program. inews is a program used to inject new postings into the news system. It is used by many news reading programs and scripts. The default...

7.4AI score
Exploits0
NVD
NVD
added 1999/02/18 5:0 a.m.22 views

CVE-1999-1495

xtvscreen in SuSE Linux 6.0 allows local users to overwrite arbitrary files via a symlink attack on the pic000.pnm file...

2.1CVSS6.3AI score0.00486EPSS
Exploits1References3
Rows per page
Query Builder