CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4826 matches found

seebug.org•added 2009/06/02 12:0 a.m.•123 views

VMware产品Descheduled Time Accounting Driver拒绝服务漏洞

Bugraq ID: 35141 CVE ID：CVE-2009-1805 CNCVE ID：CNCVE-20091805 VMware提供包含多个虚拟主机和服务器的解决方案。 VMware Descheduled Time Accounting driver存在一个未明的安全问题，本地攻击者可以利用漏洞对虚拟机进行拒绝服务攻击。符合如下条件的虚拟机受此漏洞影响： -虚拟机运行在windows操作系统下。 -VMware Descheduled Time Accounting driver安装在虚拟机上。 -VMware Descheduled Time...

4CVSS6.4AI score0.00331EPSS

Exploits1

Packet Storm•added 2009/05/27 12:0 a.m.•21 views

COWON America jetCast 2.0.4.1109 Overflow

?php / COWON America jetCast 2.0.4.1109 .mp3 local heap buffer overlow exploit xp/sp3 by Nine:Situations:Group::pyrokinesis site: http://retrogod.altervista.org/ software site: http://www.jetaudio.com/ Tested against JetAudio pack v.7.5.2...

0.3AI score

Exploits0

seebug.org•added 2009/05/15 12:0 a.m.•20 views

GNOME Evolution '~/.evolution/mail/local'文件权限漏洞

Bugraq ID: 34921 CNCAN ID：CNCAN-2009051302 Evolution是一款个人和工作组信息管理解决方案，可使用在Linux和Unix操作系统下，集成Email、日历、会议安排、联系人管理等功能。 Evolution不安全建立文件权限，本地攻击者可以利用漏洞获得敏感信息。 Evolution默认本地邮件文件夹设置为755，imap mail文件夹为700，但是local,config, vfolder和view为755，可导致泄漏敏感信息 GNOME Evolution 2.24.5 + Ubuntu Ubuntu Linux 8.04 LTS spar...

6.9AI score

Exploits0

seebug.org•added 2009/04/23 12:0 a.m.•18 views

FreeBSD libc Berkley DB接口未初始化内存本地信息泄漏漏洞

BUGTRAQ ID: 34666 CNCAN ID：CNCAN-2009042302 FreeBSD是一款开放源代码的BSD操作系统。 FreeBSD libc Berkeley DB接口写malloc3中获得的未初始化内存到数据库文件，本地攻击者可以利用漏洞获得敏感信息。 FreeBSD FreeBSD 7.1-STABLE FreeBSD FreeBSD 7.1-RELEASE-p4 FreeBSD FreeBSD 7.1 -RELEASE-p2 FreeBSD FreeBSD 7.1 -RELEASE-p1 FreeBSD FreeBSD 7.1 -PRE-RELEASE...

6.9AI score

Exploits0

securityvulns•added 2009/04/13 12:0 a.m.•44 views

[Positive Technologies SA 2009-01] PGP Desktop Pgpdisk.sys And Pgpwded.sys Multiple Vulnerabilities

---------------------------------------------------------------------- PT-2009-01 Positive Technologies Security Advisory PGP Desktop Pgpdisk.sys And Pgpwded.sys Multiple Vulnerabilities ---------------------------------------------------------------------- --- Affected Software PGP Desktop 9.9.0...

7.2CVSS0.9AI score0.00422EPSS

Exploits0

securityvulns•added 2009/04/01 12:0 a.m.•51 views

[Positive Technologies SA 2009-09] Trend Micro Internet Security Pro 2009 tmactmon.sys Priviliege Escalation Vulnerabilities

---------------------------------------------------------------------- PT-2009-09 Positive Technologies Security Advisory Trend Micro Internet Security Pro 2009 tmactmon.sys Priviliege Escalation Vulnerabilities ---------------------------------------------------------------------- --- Affected...

7.2CVSS0.5AI score0.00798EPSS

Exploits2

OpenVAS•added 2009/03/23 12:0 a.m.•35 views

Ubuntu Update for linux-source-2.6.12/2.6.15/2.6.17 vulnerabilities USN-416-1

Ubuntu Update for Linux kernel vulnerabilities USN-416-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4161.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for linux-source-2.6.12/2.6.15/2.6.17 vulnerabilities USN-416-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone...

7.5CVSS0.2AI score0.05605EPSS

Exploits5References2

securityvulns•added 2009/03/15 12:0 a.m.•67 views

[Suspected Spam][PT-2009-11] SlySoft Multiple Products ElbyCDIO.sys Denial of Service

---------------------------------------------------------------------- PT-2009-11 Positive Technologies Security Advisory SlySoft Multiple Products ElbyCDIO.sys Denial of Service ---------------------------------------------------------------------- --- Affected Software SlySoft AnyDVD version...

4.9CVSS1.1AI score0.00725EPSS

Exploits1

seebug.org•added 2009/03/11 12:0 a.m.•23 views

Sun Solaris加密驱动本地拒绝服务漏洞

BUGTRAQ ID: 34000 CVECAN ID: CVE-2009-0838 Solaris是一款由Sun开发和维护的商业UNIX操作系统。 Solaris的加密伪设备驱动没有正确地释放内存，本地攻击者可以通过vmemhashdelete函数导致系统忙碌。如果出现上述漏洞，系统可能出现类似于以下栈追踪的忙碌： vmemhashdelete: bad free vmemhashdelete vmemxfree objectgetattributevalue fopioctl ioctl Sun Solaris 10.0x86 Sun Solaris 10.0 Sun...

4.9CVSS6.3AI score0.00387EPSS

Exploits1

Positive Technologies•added 2009/03/10 12:0 a.m.•3 views

PT-2009-2783 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: The issue arises from the improper handling of invalid pointers by the Windows kernel, allowing local users to gain privileges. This could enable an attacker to run arbitrary...

7.2CVSS6.4AI score0.01461EPSS

Exploits1References13

Tenable Nessus•added 2009/03/08 12:0 a.m.•17 views

GLSA-200903-05 : PDFjam: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200903-05 PDFjam: Multiple vulnerabilities Martin Vaeth reported multiple untrusted search path vulnerabilities CVE-2008-5843. Marcus Meissner of the SUSE Security Team reported that temporary files are created with a predictable...

6.9CVSS5.9AI score0.00406EPSS

Exploits1References3

seebug.org•added 2009/03/03 12:0 a.m.•21 views

VUplayer 2.49 .CUE File Local Buffer Overflow Exploit

No description provided by source. / Author: Assed Edin E-mail: [email protected] GreetS : Xcracker & SimO-s0ft & Ga3 Drari Wlad MArrakech ^^ o Manssawch Lycéé Hassan2 & Str0ke / include string.h include stdlib.h include stdio.h include windows.h define OFFSET 1012 char header1=...

7.1AI score

Exploits0

Prion•added 2009/02/10 10:30 p.m.•17 views

Code injection

The 1 modibmssl and 2 modcgid modules in IBM HTTP Server 6.0.x before 6.0.2.31 and 6.1.x before 6.1.0.19, as used in WebSphere Application Server WAS, set incorrect permissions for AFUNIX sockets, which has unknown impact and local attack vectors...

7.2CVSS6.7AI score0.00372EPSS

Exploits0References7Affected Software1

NVD•added 2009/02/10 10:30 p.m.•24 views

CVE-2009-0436

7.2CVSS6.2AI score0.00372EPSS

Exploits0References7

RedHat Linux•added 2009/02/04 8:59 a.m.•3 views

Firefox Chrome privilege escalation via local .desktop files

Mozilla Firefox before 3.0.6 and SeaMonkey do not block links to the 1 about:plugins and 2 about:config URIs from .desktop files, which allows user-assisted remote attackers to bypass the Same Origin Policy and execute arbitrary code with chrome privileges via vectors involving the URL field in a...

5.1CVSS7.8AI score0.10187EPSS

Exploits1References4

seebug.org•added 2009/02/02 12:0 a.m.•25 views

IBM AIX rmsock及rmsock64工具日志文件本地权限提升漏洞

IBM AIX是一款商业性质的UNIX操作系统。 IBM AIX系统中的rmsock及rmsock64工具实现上存在漏洞，可能允许本地攻击者利用此漏洞提升自己的权限。 rmsock及rmsock64工具没有以安全的方式创建日志文件，本地攻击者可能利用此漏洞向任意系统文件添加数据，导致权限提升。 IBM AIX 6.x IBM AIX 5.x 厂商补丁： IBM --- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://aix.software.ibm.com/aix/efixes/security/rmsockfix.tar...

6.9AI score

Exploits0

Prion•added 2009/01/16 9:30 p.m.•14 views

Design/Logic Flaw

Unspecified vulnerability in convlpd in Sun OpenSolaris has unknown impact and local attack vectors, related to improper handling of temporary files, aka Bug ID 6655641...

7.2CVSS7AI score0.00317EPSS

Exploits0References3

Cvelist•added 2009/01/16 9:0 p.m.•18 views

CVE-2008-5909

Unspecified vulnerability in convlpd in Sun OpenSolaris has unknown impact and local attack vectors, related to improper handling of temporary files, aka Bug ID 6655641...

6.4AI score0.00317EPSS

Exploits0References3

Cvelist•added 2009/01/16 9:0 p.m.•23 views

CVE-2008-5910

Unspecified vulnerability in txzonemgr in Sun OpenSolaris has unknown impact and local attack vectors, related to a "Temporary file vulnerability," aka Bug ID 6653462...

6.4AI score0.00374EPSS

Exploits0References3

CVE•added 2009/01/16 9:0 p.m.•50 views

CVE-2008-5909

CVE-2008-5909: vulnerability in conv_lpd of Sun OpenSolaris related to improper handling of temporary files. Local access required with low complexity; potential impact on confidentiality, integrity and availability is stated as complete. Exploitation details and concrete remediation information ...

7.2CVSS6.6AI score0.00317EPSS

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by