Lucene search
K

5694 matches found

Packet Storm
Packet Storm
added 2011/03/23 12:0 a.m.20 views

VMCPlayer 1.0 Denial Of Service

done by BraniX www.hackers.org.pl found: 2011.03.22 published: 2011.03.22 tested on: Windows XP SP3 Home Edition App: VMCPlayer 1.0 App Url: http://files.videomobileconverter.com/vmcplayer.exe VMCPlayer.exe MD5: 8a98ffbb404731f8f5ffbf3eaf30a327 VMCPlayer can be DoS'ed in two or probably more ways...

7.4AI score
Exploits0
myhack58
myhack58
added 2011/03/01 12:0 a.m.16 views

phpcms 2 0 0 8 sp4 explosive paths and arbitrary file deletion vulnerabilities and fixes-vulnerability warning-the black bar safety net

phpcms 2 0 0 8 sp4 explosive paths and arbitrary file deletion vulnerability and fix Affected versions: phpcms 2 0 0 8 sp4 Official address: www.phpcms.cn Vulnerability type: explosive paths and arbitrary file deletion Vulnerability Description: a certain page, not as fault-tolerant processing...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/01/21 12:0 a.m.11 views

SuSE 10 Security Update : cvs (ZYPP Patch Number 7302)

cvs fails with 'invalid pathname' error when using relative paths. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid51638; scriptversion"1.7...

7AI score
Exploits0
OpenVAS
OpenVAS
added 2011/01/14 12:0 a.m.23 views

Vulnerability in Windows Kernel Could Allow Elevation of Privilege (943078)

This host is missing a critical security update according to Microsoft Bulletin MS07-066. OpenVAS Vulnerability Test $Id: gbms07-066.nasl 5362 2017-02-20 12:46:39Z cfi $ Vulnerability in Windows Kernel Could Allow Elevation of Privilege 943078 Authors: Madhuri D Copyright: Copyright c 2011...

7.2CVSS1.3AI score0.037EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2011/01/13 12:0 a.m.5 views

subversion: revision properties disclosure to user with partial access

Subversion 1.4.3 and earlier does not properly implement the "partial access" privilege for users who have access to changed paths but not copied paths, which allows remote authenticated users to obtain sensitive information revision properties via svn 1 propget, 2 proplist, or 3 propedit...

2.1CVSS7.4AI score0.01525EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2011/01/05 12:0 a.m.69 views

Fedora 13 : maniadrive-1.2-23.fc13 / php-5.3.4-1.fc13.1 / php-eaccelerator-0.9.6.1-3.fc13 (2010-19011)

Security Enhancements and Fixes in PHP 5.3.4 : - Fixed crash in zip extract method possible CWE-170. - Paths with NULL in them foo\0bar.txt are now considered as invalid CVE-2006-7243. - Fixed a possible double free in imap extension Identified by Mateusz Kocielski. CVE-2010-4150. - Fixed NULL...

6.8CVSS7.4AI score0.18878EPSS
Exploits18References18
securityvulns
securityvulns
added 2010/12/22 12:0 a.m.77 views

nSense-2010-004: Sybase Afaria

nSense Vulnerability Research Security Advisory NSENSE-2010-004 --------------------------------------------------------------- Affected Vendor: SAP Affected Product: Sybase Afaria 6.0 Platform: Windows Impact: User assisted code execution via CSRF Vendor response: Patch CVE: None Credit: Knud...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2010/12/21 12:0 a.m.31 views

Sybase Afaria 6.0 Cross Site Request Forgery

nSense Vulnerability Research Security Advisory NSENSE-2010-004 --------------------------------------------------------------- Affected Vendor: SAP Affected Product: Sybase Afaria 6.0 Platform: Windows Impact: User assisted code execution via CSRF Vendor response: Patch CVE: None Credit: Knud...

0.7AI score
Exploits0
rdot
rdot
added 2010/12/10 12:0 a.m.11 views

Вышел PHP 5.3.4

ChangeLog Выпуск новой версии не был бы настолько примечателен, если бы не следующая строчка в ченджлоге: Цитата: Paths with NULL in them foo\0bar.txt are now considered as invalid. Rasmus --- Видимо усечение пути нулл-байтом теперь останется в прошлом. Решение проблемы на примере функции file: S...

0.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/12/08 12:0 a.m.21 views

Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS : quagga vulnerabilities (USN-1027-1)

It was discovered that Quagga incorrectly handled certain Outbound Route Filtering ORF records. A remote authenticated attacker could use this flaw to cause a denial of service or potentially execute arbitrary code. The default compiler options for Ubuntu 8.04 LTS and later should reduce the...

6.5CVSS5.5AI score0.04041EPSS
Exploits0References3
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2010/11/01 9:51 a.m.3 views

GVim may insecurely load dynamic libraries

Overview GVim may use unsafe methods for determining how to load DLLs. GVim is a text editor. GVim loads certain DLL's when TXT files are opened. GVim contains an issue with the DLL search path, which may lead to insecurely loading dynamic libraries. Makoto Shiotsuki reported this vulnerability t...

9.3CVSS7.5AI score0.09263EPSS
Exploits0References9
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2010/10/25 8:43 a.m.1 views

Multiple Yokka provided products may insecurely load executable files

Overview Multiple products provided by Yokka may use unsafe methods for determining how to load executables .exe. Multiple products provided by Yokka such as text editors, contain an issue with the file search path, which may insecurely load executables. Makoto Shiotsuki reported this vulnerabili...

6.9CVSS7.5AI score0.00279EPSS
Exploits0References7
securityvulns
securityvulns
added 2010/09/12 12:0 a.m.61 views

[SECURITY] [DSA-2104-1] New quagga packages fix denial of service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2104-1 [email protected] http://www.debian.org/security/ Florian Weimer September 06, 2010 http://www.debian.org/security/faq -...

6.5CVSS0.1AI score0.04041EPSS
Exploits0
NVD
NVD
added 2010/09/10 7:0 p.m.16 views

CVE-2010-2949

bgpd in Quagga before 0.99.17 does not properly parse AS paths, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via an unknown AS type in an AS path attribute in a BGP UPDATE message...

5CVSS6.3AI score0.03377EPSS
Exploits0References22
Prion
Prion
added 2010/09/10 7:0 p.m.20 views

Null pointer dereference

bgpd in Quagga before 0.99.17 does not properly parse AS paths, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via an unknown AS type in an AS path attribute in a BGP UPDATE message...

5CVSS6.9AI score0.03377EPSS
Exploits0References22Affected Software1
Debian CVE
Debian CVE
added 2010/09/10 6:0 p.m.32 views

CVE-2010-2949

Removed by vendor...

5CVSS6.6AI score0.03377EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2010/09/10 12:0 a.m.35 views

CVE-2010-2949

bgpd in Quagga before 0.99.17 does not properly parse AS paths, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via an unknown AS type in an AS path attribute in a BGP UPDATE message...

5CVSS5.9AI score0.03377EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2010/09/08 12:0 a.m.31 views

Debian DSA-2104-1 : quagga - several vulnerabilities

Several remote vulnerabilities have been discovered in the BGP implementation of Quagga, a routing daemon. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2010-2948 When processing a crafted Route Refresh message received from a configured, authenticated...

6.5CVSS5.4AI score0.04041EPSS
Exploits0References6
exploitpack
exploitpack
added 2010/08/25 12:0 a.m.16 views

μTorrent (uTorrent) 2.0.3 - DLL Hijacking

μTorrent uTorrent 2.0.3 - DLL Hijacking Title: uTorrent =2.0.3 Dll Hijacking Local Exploits By: DrIDE Tested: Windows 7RC Note: These are additional DLL's with unsafe Load Paths Reference: http://www.exploit-db.com/exploits/14726/ If the payload .DLL file is renamed to any of these files and plac...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/08/25 12:0 a.m.48 views

μTorrent (uTorrent) 2.0.3 - DLL Hijacking

Title: uTorrent =2.0.3 Dll Hijacking Local Exploits By: DrIDE Tested: Windows 7RC Note: These are additional DLL's with unsafe Load Paths Reference: http://www.exploit-db.com/exploits/14726/ If the payload .DLL file is renamed to any of these files and placed in the utorrent.exe directory, the...

7.4AI score
Exploits0
Rows per page
Query Builder