Lucene search
K

102 matches found

BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.6 views

The vulnerability of the Gentoo Linux operating system allows a malicious intruder to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the tiff package up to version 3.8.2-r4 of the Gentoo Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...

6.8CVSS7.1AI score0.0413EPSS
Exploits1References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2012/08/09 12:0 a.m.32 views

RabidHamster R4 Detection

The remote web server is running R4, a standalone OpenGL accelerated program used to produce animated 3D graphics that twist and turn to music. R4 contains a built-in web server that allows you to control the visuals that are produced from a remote device. C Tenable Network Security, Inc...

5.5AI score
Exploits0References1
Metasploit
Metasploit
added 2012/05/25 8:6 a.m.44 views

RabidHamster R4 Log Entry sprintf() Buffer Overflow

This module exploits a vulnerability found in RabidHamster R4's web server. By supplying a malformed HTTP request, it is possible to trigger a stack-based buffer overflow when generating a log, which may result in arbitrary code execution under the context of the user. This module requires...

8.1AI score
Exploits0
0day.today
0day.today
added 2012/05/25 12:0 a.m.32 views

RabidHamster R4 Log Entry sprintf() Buffer Overflow

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2012/05/25 12:0 a.m.34 views

RabidHamster R4 Log Entry sprintf() Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "RabidHamster R4 L...

0.9AI score
Exploits0
Exploit DB
Exploit DB
added 2012/05/25 12:0 a.m.29 views

RabidHamster R4 - Log Entry 'sprintf()' Remote Buffer Overflow (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "RabidHamster R4 L...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2012/02/17 12:0 a.m.29 views

R4 1.25 Overflows / Directory Traversal

Luigi Auriemma Application: R4 http://r4.rabidhamster.org/R4/ Versions: = 1.25 Platforms: Windows Bugs: A stack overflow B heap overflow C directory traversal D screenshot stack overflow Exploitation: remote Date: 09 Feb 2012 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1...

0.4AI score
Exploits0
CVE
CVE
added 2011/12/08 11:0 a.m.105 views

CVE-2011-4539

CVE-2011-4539 affects ISC DHCP: dhcpd in 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 fails to properly handle regular expressions in dhcpd.conf, enabling remote attackers to cause a denial of service (daemon crash) via a crafted request packet. Public advisories and Nessus/OpenSSL patch ref...

5CVSS6.2AI score0.15478EPSS
Exploits0References13Affected Software1
UbuntuCve
UbuntuCve
added 2011/12/08 12:0 a.m.29 views

CVE-2011-4539

dhcpd in ISC DHCP 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 does not properly handle regular expressions in dhcpd.conf, which allows remote attackers to cause a denial of service daemon crash via a crafted request packet...

5CVSS6.6AI score0.15478EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2011/06/02 12:0 a.m.27 views

Mandriva Linux Security Advisory : bind (MDVSA-2011:104)

A vulnerability has been identified and fixed in ISC BIND : Off-by-one error in named in ISC BIND 9.x before 9.7.3-P1, 9.8.x before 9.8.0-P2, 9.4-ESV before 9.4-ESV-R4-P1, and 9.6-ESV before 9.6-ESV-R4-P1 allows remote DNS servers to cause a denial of service assertion failure and daemon exit via...

5CVSS6.4AI score0.24638EPSS
Exploits1References1
The Hacker News
The Hacker News
added 2011/02/27 3:28 a.m.7 views

Nintendo 3DS also got Hacked Within 24 Hours after Release !

The new Nintendo 3DS didn't last 24 hours in Japan before hackers jailbroke the device to support Revolution For DS R4 flash cards that play old Nintendo games. Although R4 cards were built for Nintendo DS, the hackers show how they can use the storage cards to run homebrew and older Nintendo gam...

6.7AI score
Exploits0
Gentoo Linux
Gentoo Linux
added 2008/04/29 12:0 a.m.31 views

KDE start_kdeinit: Multiple vulnerabilities

Background KDE is a feature-rich graphical desktop environment for Linux and Unix-like operating systems. startkdeinit is a wrapper for kdeinit. Description Vulnerabilities have been reported in the processing of user-controlled data by startkdeinit, which is setuid root by default. Impact A loca...

4.6CVSS7.2AI score0.00626EPSS
Exploits2
NVD
NVD
added 2006/06/22 10:6 p.m.14 views

CVE-2006-3141

Cross-site scripting XSS vulnerability in details.cfm in Tradingeye Shop R4 and earlier allows remote attackers to inject arbitrary web script or HTML via the image parameter...

4.3CVSS5.7AI score0.01275EPSS
Exploits0References6
Cvelist
Cvelist
added 2006/06/22 10:0 p.m.14 views

CVE-2006-3141

Cross-site scripting XSS vulnerability in details.cfm in Tradingeye Shop R4 and earlier allows remote attackers to inject arbitrary web script or HTML via the image parameter...

5.7AI score0.01275EPSS
Exploits0References6
CVE
CVE
added 2006/06/22 10:0 p.m.42 views

CVE-2006-3141

CVE-2006-3141 is a documented XSS vulnerability in Tradingeye Shop R4 and earlier, exploitable via the image parameter in details.cfm. The underlying issue is that user-supplied data can inject arbitrary web script or HTML, enabling remote attackers to execute script within victims’ browsers. The...

4.3CVSS6AI score0.01275EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2005/03/29 5:0 a.m.14 views

CVE-2005-0934

Multiple cross-site scripting XSS vulnerabilities in WackoWiki R4 allow remote attackers to inject arbitrary web script or HTML via unknown vectors...

5.8AI score0.00938EPSS
Exploits0References2
CVE
CVE
added 2005/03/29 5:0 a.m.50 views

CVE-2005-0934

CVE-2005-0934 involves multiple cross-site scripting (XSS) vulnerabilities in WackoWiki R4 . The connected records confirm the affected product and the vulnerability class, indicating that remote attackers can inject arbitrary web script or HTML through unknown vectors in the application. The und...

4.3CVSS6AI score0.00938EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2003/06/06 12:0 a.m.8 views

PT-2003-1574 · Port80 · Iisprotect

Name of the Vulnerable Software and Affected Versions: iisPROTECT versions 2.2-r4 and earlier Description: The issue allows remote attackers to insert arbitrary SQL and execute code via certain variables, such as the GroupName variable in the SiteAdmin.ASP page. This can be exploited by attackers...

7.5CVSS8.1AI score0.02481EPSS
Exploits0References4
CVE
CVE
added 2002/08/31 4:0 a.m.41 views

CVE-2002-1010

CVE-2002-1010 affects Lotus Domino R4. The vulnerability allows remote attackers to bypass access restrictions for files in the web root by issuing an HTTP request with a trailing “?”, which is treated as a wildcard and bypasses the web handlers. The available sources describe the issue and its i...

7.5CVSS7.2AI score0.01403EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2002/08/31 4:0 a.m.16 views

CVE-2002-1010

Lotus Domino R4 allows remote attackers to bypass access restrictions for files in the web root via an HTTP request appended with a "?" character, which is treated as a wildcard character and bypasses the web handlers...

6.8AI score0.01403EPSS
Exploits0References1
Rows per page
Query Builder