Lucene search
K

137 matches found

Zero Day Initiative
Zero Day Initiative
added 2013/02/14 12:0 a.m.27 views

EMC AlphaStor Device Manager 0x41 Command Remote Code Execution Vulnerability

This vulnerability potentially allows remote attackers to execute arbitrary code on vulnerable installations of EMC AlphaStor for EMC Networker. Authentication is not required to exploit this vulnerability. The specific flaw exists within Device Manager rrobotd.exe which listens by default on por...

7.6CVSS6.9AI score0.02752EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2013/02/14 12:0 a.m.25 views

Microsoft Internet Explorer CDispNode Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific issue is due to the way...

6.8CVSS3.3AI score0.18572EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2013/02/01 12:0 a.m.49 views

Mozilla Firefox XMLSerializer Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the XML...

7.5CVSS4.7AI score0.51324EPSS
Exploits8References1
Packet Storm
Packet Storm
added 2013/01/02 12:0 a.m.53 views

Microsoft Internet Explorer CButton Object Use-After-Free

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "Microsoft Interne...

9.3CVSS7.2AI score0.78823EPSS
Exploits12
canvas
canvas
added 2012/08/15 10:31 a.m.48 views

Immunity Canvas: ADOBE_FLASH_OTF_PARSING

Name| adobeflashotfparsing ---|--- CVE| CVE-2012-1535 Exploit Pack| CANVAS Description| adobeflashotfparsing Notes| CVE Name: CVE-2012-1535 VENDOR: Adobe Notes: This exploit takes advantage of a integer overflow that leads to a heap based buffer overflow. The kerntable contains an integer that wh...

9.3CVSS0.2AI score0.70384EPSS
Exploits11
Tenable Nessus
Tenable Nessus
added 2012/04/24 12:0 a.m.51 views

SuSE 11.2 Security Update : Linux kernel (SAT Patch Numbers 6163 / 6164 / 6172)

The SUSE Linux Enterprise 11 SP2 kernel has been updated to 3.0.26, which fixes a lot of bugs and security issues. The following security issues have been fixed : - A locking problem in transparent hugepage support could be used by local attackers to potentially crash the host, or via kvm a...

7.8CVSS6.9AI score0.00795EPSS
Exploits9References111
UbuntuCve
UbuntuCve
added 2012/03/07 12:0 a.m.22 views

CVE-2012-1146

The memcgroupusageunregisterevent function in mm/memcontrol.c in the Linux kernel before 3.2.10 does not properly handle multiple events that are attached to the same eventfd, which allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have...

5.5CVSS6.1AI score0.0052EPSS
Exploits1References13
OSV
OSV
added 2012/03/07 12:0 a.m.2 views

UBUNTU-CVE-2012-1146

The memcgroupusageunregisterevent function in mm/memcontrol.c in the Linux kernel before 3.2.10 does not properly handle multiple events that are attached to the same eventfd, which allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have...

5.5CVSS6.1AI score0.0052EPSS
Exploits1References14
RedHat Linux
RedHat Linux
added 2011/01/11 7:44 p.m.7 views

kernel: ipc/shm.c: reading uninitialized stack memory

The copyshmidtouser function in ipc/shm.c in the Linux kernel before 2.6.37-rc1 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the shmctl system call and the "old shm interface."...

1.9CVSS6.1AI score0.00384EPSS
Exploits0References4
Metasploit
Metasploit
added 2010/11/01 10:34 p.m.85 views

Adobe Flash Player "Button" Remote Code Execution

This module exploits a vulnerability in the handling of certain SWF movies within versions 9.x and 10.0 of Adobe Flash Player. Adobe Reader and Acrobat are also vulnerable, as are any other applications that may embed Flash player. Arbitrary code execution is achieved by embedding a specially...

9.3CVSS9.3AI score0.69679EPSS
Exploits14
Tenable Nessus
Tenable Nessus
added 2010/09/16 12:0 a.m.27 views

QuickTime < 7.6.8 Multiple Vulnerabilities (Windows)

Binary data 801185.prm...

9.3CVSS6.8AI score0.42668EPSS
Exploits9References7
Packet Storm
Packet Storm
added 2010/06/15 12:0 a.m.53 views

Adobe Flash Player newfunction Invalid Pointer Use

$Id: adobeflashplayernewfunction.rb 9477 2010-06-10 20:55:17Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

9.3CVSS0.6AI score0.82365EPSS
Exploits22
Metasploit
Metasploit
added 2010/06/10 8:28 p.m.47 views

Adobe Flash Player "newfunction" Invalid Pointer Use

This module exploits a vulnerability in the DoABC tag handling within versions 9.x and 10.0 of Adobe Flash Player. Adobe Reader and Acrobat are also vulnerable, as are any other applications that may embed Flash player. Arbitrary code execution is achieved by embedding a specially crafted Flash...

7.8CVSS9.4AI score0.82365EPSS
Exploits22
securityvulns
securityvulns
added 2009/02/25 12:0 a.m.117 views

iDefense Security Advisory 02.24.09: Adobe Flash Player Invalid Object Reference Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDefense Security Advisory 02.24.09 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 24, 2009 I. BACKGROUND Adobe Flash Player is a very popular web browser plugin. It is available for multiple web browsers and platforms, including Windows,...

9.3CVSS7.5AI score0.28484EPSS
Exploits1
myhack58
myhack58
added 2008/05/18 12:0 a.m.28 views

Debian disaster-vulnerability warning-the black bar safety net

by axis 2008-05-16 http://www.ph4nt0m.org The Debian OpenSSL package the algorithms have problems, random number generation is actually in the process pid in the selection, lead to the generation of key can be exhaustive The following extract from the metasploit blog The Bug On May 13th, 2 0 0 8...

0.2AI score
Exploits0
Cvelist
Cvelist
added 2008/01/16 2:0 a.m.23 views

CVE-2007-5656

TIBCO SmartSockets RTserver 6.8.0 and earlier, RTworks before 4.0.4, and Enterprise Message Service EMS 4.0.0 through 4.4.1 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via crafted requests that control loop operations related to memory...

7.7AI score0.05437EPSS
Exploits1References10
securityvulns
securityvulns
added 2005/02/17 12:0 a.m.25 views

Multiple Linux kernel security vulnerabilities

Arbitrary process memory control, race conditions, buffer overflow, DoS, IP filtering bypass...

3.5AI score
Exploits0References1Affected Software1
Rows per page
Query Builder