Lucene search
K

212 matches found

Nmap
Nmap
added 2012/01/02 11:30 a.m.258 views

memcached-info NSE Script

Retrieves information including system architecture, process ID, and server time from distributed memory object caching system memcached. Example Usage nmap -p 11211 --script memcached-info Script Output 11211/udp open unknown | memcached-info: | Process ID: 18568 | Uptime: 6950 seconds | Server...

10CVSS0.1AI score0.99448EPSS
Exploits33
RedHat Linux
RedHat Linux
added 2011/12/05 7:38 p.m.6 views

ruby: Properly initialize the random number generator when forking new process

The SecureRandom.randombytes function in lib/securerandom.rb in Ruby before 1.8.7-p352 and 1.9.x before 1.9.2-p290 relies on PID values for initialization, which makes it easier for context-dependent attackers to predict the result string by leveraging knowledge of random strings obtained in an...

5CVSS5.8AI score0.0195EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2011/06/01 12:0 a.m.11 views

Nmap NSE net: smb-enum-processes

Pulls a list of processes from the remote server over SMB. This will determine all running processes, their process IDs, and their parent processes. It is done by querying the remote registry service, which is disabled by default on Vista; on all other Windows versions, it requires Administrator...

Exploits0
RedHat Linux
RedHat Linux
added 2011/02/22 5:43 p.m.41 views

Moderate: Red Hat Security Advisory: Red Hat Directory Server security update

Updated Red Hat Directory Server and related packages that fix three security issues are now available for Red Hat Directory Server 8.2. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give...

7.5CVSS5.9AI score0.01422EPSS
Exploits0References5
securityvulns
securityvulns
added 2009/09/23 12:0 a.m.39 views

[ MDVSA-2009:244 ] xfig

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2009:244 http://www.mandriva.com/security/ Package : xfig Date : September 23, 2009 Affected: Corporate 4.0 Problem Description: A vulnerability was discovered and corrected in xfig: Xfig in Debian GNU/Linux,...

4.4CVSS6AI score0.00332EPSS
Exploits0
Prion
Prion
added 2009/09/08 10:30 p.m.30 views

Out-of-bounds

Array index error in the SMBv2 protocol implementation in srv2.sys in Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold and SP2, and Windows 7 RC allows remote attackers to execute arbitrary code or cause a denial of service system crash via an & ampersand character in a Proces...

10CVSS8.1AI score0.90121EPSS
Exploits20References18Affected Software1
Cvelist
Cvelist
added 2009/09/08 10:0 p.m.68 views

CVE-2009-3103

Array index error in the SMBv2 protocol implementation in srv2.sys in Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold and SP2, and Windows 7 RC allows remote attackers to execute arbitrary code or cause a denial of service system crash via an & ampersand character in a Proces...

7.4AI score0.90121EPSS
Exploits20References18
Positive Technologies
Positive Technologies
added 2009/09/08 12:0 a.m.7 views

PT-2009-1117

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to a fixed version Description The issue is related to an array index error in the SMBv2 protocol implementation, allowing remote attackers to execute arbitrary code or cause a denial of service via a specially...

10CVSS8.6AI score0.90121EPSS
Exploits20References32
OSV
OSV
added 2009/06/08 1:0 a.m.4 views

CVE-2009-1962

Xfig, possibly 3.2.5, allows local users to read and write arbitrary files via a symlink attack on the 1 xfig-epsPID, 2 xfig-picPID.pix, 3 xfig-picPID.err, 4 xfig-pcxPID.pix, 5 xfig-xfigrcPID, 6 xfigPID, 7 xfig-printPID, 8 xfig-exportPID.err, 9 xfig-batchPID, 10 xfig-expPID, or 11 xfig-spell.PID...

6.5AI score
Exploits0References5
OSV
OSV
added 2009/06/08 1:0 a.m.1 views

DEBIAN-CVE-2009-1962

Xfig, possibly 3.2.5, allows local users to read and write arbitrary files via a symlink attack on the 1 xfig-epsPID, 2 xfig-picPID.pix, 3 xfig-picPID.err, 4 xfig-pcxPID.pix, 5 xfig-xfigrcPID, 6 xfigPID, 7 xfig-printPID, 8 xfig-exportPID.err, 9 xfig-batchPID, 10 xfig-expPID, or 11 xfig-spell.PID...

4.4CVSS6.7AI score0.00332EPSS
Exploits0References1
OSV
OSV
added 2009/06/08 1:0 a.m.1 views

UBUNTU-CVE-2009-1962

Xfig, possibly 3.2.5, allows local users to read and write arbitrary files via a symlink attack on the 1 xfig-epsPID, 2 xfig-picPID.pix, 3 xfig-picPID.err, 4 xfig-pcxPID.pix, 5 xfig-xfigrcPID, 6 xfigPID, 7 xfig-printPID, 8 xfig-exportPID.err, 9 xfig-batchPID, 10 xfig-expPID, or 11 xfig-spell.PID...

4.4CVSS5.9AI score0.00332EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2009/06/03 3:36 p.m.2 views

kernel: 'kill sig -1' must only apply to caller's pid namespace

The killsomethinginfo function in kernel/signal.c in the Linux kernel before 2.6.28 does not consider PID namespaces when processing signals directed to PID -1, which allows local users to bypass the intended namespace isolation, and send arbitrary signals to all processes in all namespaces, via ...

4.6CVSS5.9AI score0.00392EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2008/10/24 12:0 a.m.31 views

apcupsd < 3.8.6 / 3.10.x < 3.10.5 Multiple Vulnerabilities

apcupsd is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2003 Renaud Deraison Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apc:apcupsd"; ifdescription...

10CVSS6.4AI score0.05174EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2007/06/20 10:0 p.m.46 views

CVE-2007-3304

Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to cause a denial of service by modifying the workerscore and processscore arrays to reference an arbitrary process ID, which is sent a SIGUSR1 signal from the master process, aka "SIGUSR1 killer."...

4.7CVSS6.2AI score0.03298EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2005/12/07 12:0 a.m.16 views

GLSA-200511-19 : eix: Insecure temporary file creation

The remote host is affected by the vulnerability described in GLSA-200511-19 eix: Insecure temporary file creation Eric Romang discovered that eix creates a temporary file with a predictable name. eix creates a temporary file in /tmp/eix..sync where is the process ID of the shell running eix...

5CVSS5.6AI score0.01099EPSS
Exploits0References2
Gentoo Linux
Gentoo Linux
added 2005/11/22 12:0 a.m.32 views

eix: Insecure temporary file creation

Background eix is a small utility for searching ebuilds with indexing for fast results. Description Eric Romang discovered that eix creates a temporary file with a predictable name. eix creates a temporary file in /tmp/eix..sync where is the process ID of the shell running eix. Impact A local...

5CVSS6.3AI score0.01099EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2005/02/15 9:56 a.m.11 views

security flaw

The DBI library libdbi-perl for Perl allows local users to overwrite arbitrary files via a symlink attack on a temporary PID file...

2.1CVSS5.8AI score0.00412EPSS
Exploits0References4
Exploit DB
Exploit DB
added 2005/01/16 12:0 a.m.47 views

Peer2Mail 1.4 - Encrypted Password Dumper

/ Peer2Mail Encrypt PassDumper Exploit v1.0 Discoveried & Coded By ATmaCA Copyright ©2002-2005 AtmacaSoft Inc. All Rights Reserved. Web: http://www.atmacasoft.com E-Mail: [email protected] / / Peer2Mail 1.4 and prior versions are affected. Tested for gmail account on Win XP SP2 / include include...

7.4AI score
Exploits0
0day.today
0day.today
added 2004/12/17 12:0 a.m.31 views

Cscope <= 15.5 Symlink Vulnerability Exploit

Exploit for linux platform in category local exploits ============================================ Cscope include include include define BSIZE 64 int mainint ac, char av pidt cur; uint i=0, lst; char bufferBSIZE + 1; fprintfstdout, "\n -- Cscope Exploit --\n"\ " version 15.5 and minor \n" \ "...

6.8AI score
Exploits0
NVD
NVD
added 2004/08/18 4:0 a.m.18 views

CVE-2004-0517

Unknown vulnerability in Mac OS X 10.3.4, related to "handling of process IDs during package installation," a different vulnerability than CVE-2004-0516...

4.6CVSS6.3AI score0.00342EPSS
Exploits0References4
Rows per page
Query Builder