2873 matches found
mysql: unspecified vulnerability related to SROPTZR (CPU July 2014)
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier allows remote authenticated users to affect availability via vectors related to SROPTZR...
mysql: unspecified vulnerability related to SRCHAR (CPU July 2014)
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier, and 5.6.17 and earlier, allows remote authenticated users to affect integrity and availability via vectors related to SRCHAR...
mysql: unspecified vulnerability related to CLIENT:MYSQLADMIN (CPU October 2014)
Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier and 5.6.19 and earlier allows local users to affect confidentiality via vectors related to CLIENT:MYSQLADMIN...
UBUNTU-CVE-2014-6520
Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:DDL...
PT-2014-7265 · Oracle +6 · Mysql Server +6
Name of the Vulnerable Software and Affected Versions: Oracle MySQL Server versions 5.5.38 and earlier Description: The issue allows remote authenticated users to affect availability via vectors related to SERVER:DDL. This means that authenticated users can potentially impact the system's...
UBUNTU-CVE-2014-2494
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier allows remote authenticated users to affect availability via vectors related to ENARC...
mysql: unspecified vulnerability related to RBR (CPU April 2014)
Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to RBR...
PT-2013-6012 · Apache · Apache Tomcat
Name of the Vulnerable Software and Affected Versions: Apache Tomcat versions 5.5.25 and earlier Description: A cross-site request forgery CSRF issue in the Manager application allows remote attackers to hijack the authentication of administrators for requests that manipulate application deployme...
PT-2013-1303 · Oracle +3 · Mysql Server +2
Name of the Vulnerable Software and Affected Versions: Oracle MySQL versions 5.5.31 and earlier Oracle MySQL versions 5.6.11 and earlier Description: The issue is related to errors in the Optimizer code of the MySQL database management system. It allows a remote attacker to affect the availabilit...
PT-2013-4633 · Mysql Server +2 · Mysql Server +2
Name of the Vulnerable Software and Affected Versions: MySQL Server versions 5.5.30 and earlier MySQL Server versions 5.6.10 and earlier Description: The issue affects the availability of the system, allowing remote authenticated users to impact it via unknown vectors related to Server Partition ...
CVE-2013-0275
Multiple cross-site scripting XSS vulnerabilities in Ganglia Web before 3.5.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
tomcat: three DIGEST authentication implementation issues
The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.36, 6.x before 6.0.36, and 7.x before 7.0.30 does not properly check for stale nonce values in conjunction with enforcement of proper credentials, which makes it easier for remote attackers to bypass intended...
PT-2013-2054 · Microsoft · .Net Framework
Name of the Vulnerable Software and Affected Versions: Microsoft .NET Framework versions 2.0 SP2 through 4.5 Description: A buffer overflow issue exists in the System.DirectoryServices.Protocols namespace method, allowing remote attackers to execute arbitrary code via a crafted XAML browser...
PT-2012-6296 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.5.5 Description: The issue concerns the netlink sendmsg function in the Linux kernel, which fails to validate the dst pid field. This allows local users to potentially spoof Netlink messages, although the exac...
DEBIAN-CVE-2012-6063
Double free vulnerability in the sftpmkdir function in sftp.c in libssh before 0.5.3 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unspecified vectors, a different vector than CVE-2012-4559...
mysql: unspecified DoS vulnerability related to Server Optimizer (CPU Apr 2012)
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.61 and earlier, and 5.5.21 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer, a different vulnerability than CVE-2012-1690...
PT-2012-5587 · Microsoft · .Net Framework
Name of the Vulnerable Software and Affected Versions: Microsoft .NET Framework versions 2.0 SP2 through 4.5 Description: The issue allows remote attackers to execute arbitrary JavaScript code by providing crafted data during execution of a .NET Framework application or an XAML browser applicatio...
DEBIAN-CVE-2012-4219
showconfigerrors.php in phpMyAdmin 3.5.x before 3.5.2.1 allows remote attackers to obtain sensitive information via a direct request, which reveals the installation path in an error message, related to lack of inclusion of the common.inc.php library file...
mysql: Server crash on HANDLER READ NEXT after DELETE
MySQL 5.1.x before 5.1.62 and 5.5.x before 5.5.22 allows remote authenticated users to cause a denial of service assertion failure and mysqld abort by deleting a record and using HANDLER READ NEXT...
PT-2012-3670 · Mozilla +3 · Firefox Esr +4
Name of the Vulnerable Software and Affected Versions: Mozilla Firefox ESR versions 10.0 through 10.0.4 Thunderbird ESR versions 10.0 through 10.0.4 Description: The issue allows remote attackers to cause a denial of service, resulting in memory corruption and application crash, or possibly execu...