Lucene search
K

2293 matches found

canvas
canvas
added 2014/05/14 11:13 a.m.100 views

Immunity Canvas: MS14_025

Name| ms14025 ---|--- CVE| CVE-2014-1812 Exploit Pack| CANVAS Description| ms14025 Notes| CVE Name: CVE-2014-1812 VENDOR: Microsoft Commandline: runmodule ms14-025 References: https://technet.microsoft.com/library/security/ms14-025 CVE Url:...

9CVSS1.8AI score0.65117EPSS
Exploits3
OpenVAS
OpenVAS
added 2014/04/25 12:0 a.m.12 views

SSL/TLS: NNTP 'STARTTLS' Command Detection

Checks if the remote NNTP server supports SSL/TLS with the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1AI score
Exploits0References1
OpenVAS
OpenVAS
added 2014/04/25 12:0 a.m.33 views

SSL/TLS: LDAP 'Start TLS OID' Detection

Checks if the remote LDAP server supports SSL/TLS with the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1AI score
Exploits0References1
OpenVAS
OpenVAS
added 2014/04/25 12:0 a.m.7 views

SSL/TLS: XMPP 'STARTTLS' Extension Detection

Checks if the remote XMPP server/client supports SSL/TLS with the Copyright C 2014 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

7.1AI score
Exploits0References1
OpenVAS
OpenVAS
added 2014/04/09 12:0 a.m.14 views

SSL/TLS: IMAP 'STARTTLS' Command Detection

Checks if the remote IMAP server supports SSL/TLS with the Copyright C 2014 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; yo...

0.3AI score
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2014/04/08 12:0 a.m.0 views

w3af Security Scanner

w3af is a vulnerability scanning product. Remote attackers can use w3af to detect vulnerabilities on a target server...

3.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/03/25 12:0 a.m.73 views

3Com Web Management Interface Default Credentials

The remote 3Com Web Management Interface that uses a set of known, default credentials. Knowing these, an attacker can gain control of the device. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid73190;...

5.5AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2014/03/11 12:0 a.m.0 views

OpenVAS Security Scanner

OpenVAS is a vulnerability scanning product. Remote attackers can use OpenVAS to detect vulnerabilities on a target server...

3.2AI score
Exploits0
ThreatPost
ThreatPost
added 2014/02/11 6:1 p.m.13 views

CoinThief Bitcoin Trojan Found on Popular Download Sites

Phony Bitcoin ticker apps hosted on popular sites Download.com and MacUpdate.com are fronts for the OSX/CoinThief Trojan, which was built to steal Bitcoin wallet credentials and keys, and to date has drained a small number of accounts. SecureMac lead developer Nicholas Ptacek said new variants of...

1AI score
Exploits0References2
ThreatPost
ThreatPost
added 2014/02/10 11:25 a.m.6 views

Mac OSX Bitcoin Trojan malware Steals Wallet Credentials

A small number of Bitcoin wallets have been raided by a newly discovered Trojan that gobbles up credentials used to guard the digital currency. OSX/CoinThief.A was found in the wild by a security consultancy specializing in Apple security called SecureMac; the malware was spreading on GitHub via ...

0.1AI score
Exploits0References2
Prion
Prion
added 2014/02/06 4:10 p.m.11 views

Out-of-bounds

The STUN protocol implementation in libpurple in Pidgin before 2.10.8 allows remote STUN servers to cause a denial of service out-of-bounds write operation and application crash by triggering a socket read error...

5CVSS6.8AI score0.02227EPSS
Exploits0References7Affected Software1
RedHat Linux
RedHat Linux
added 2014/02/05 5:42 p.m.161 views

pidgin: Heap-based buffer overflow when parsing chunked HTTP responses

Buffer overflow in util.c in libpurple in Pidgin before 2.10.8 allows remote HTTP servers to cause a denial of service application crash or possibly have unspecified other impact via an invalid chunk-size field in chunked transfer-coding data...

5CVSS6AI score0.02413EPSS
Exploits0References5
ThreatPost
ThreatPost
added 2014/01/20 11:43 a.m.10 views

Patched Microsoft Office 365 XSS Vulnerability Disclosed

A researcher in the UK disclosed the details of a serious cross-site scripting vulnerability in Office 365 that would allow an attacker with a mailbox on Office 365 to gain administrator rights over the Microsoft Web-based application in an organization. An exploit in an enterprise environment...

5.8AI score
Exploits0References3
ThreatPost
ThreatPost
added 2014/01/06 5:50 p.m.11 views

Narrative Authentication System an Alternative to Passwords

Remember the age of text-based gaming where natural language phrasing would help you maneuver a character through scenes in a virtual world? In a gaming context, that has long been a dinosaur, replaced by intricate and massive online role-playing games. But researchers from Carleton University in...

1.2AI score
Exploits0References2
Gentoo Linux
Gentoo Linux
added 2013/11/28 12:0 a.m.34 views

cpio: Arbitrary code execution

Background GNU cpio copies files into or out of a cpio or tar archive. Description Cpio contains a heap-based buffer overflow in the rmtread function in lib/rtapelib.c. Impact A remote server could sending more data than was requested, related to archive filenames that contain a : colon character...

6.8CVSS8.2AI score0.04747EPSS
Exploits2
OpenVAS
OpenVAS
added 2013/11/27 12:0 a.m.14 views

SSL/TLS: Certificate Not Valid Yet

The remote server SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.103956";...

5.8AI score
Exploits0
UbuntuCve
UbuntuCve
added 2013/11/13 3:55 p.m.20 views

CVE-2013-6628

net/socket/sslclientsocketnss.cc in the TLS implementation in Google Chrome before 31.0.1650.48 does not ensure that a server's X.509 certificate is the same during renegotiation as it was before renegotiation, which might allow remote web servers to interfere with trust relationships by...

4.3CVSS7.2AI score0.01017EPSS
Exploits0References4
Gentoo Linux
Gentoo Linux
added 2013/11/04 12:0 a.m.26 views

Mednafen: Arbitrary code execution

Background Mednafen is an advanced NES, GB/GBC/GBA, TurboGrafx 16/CD, NGPC and Lynx emulator. Description An unspecified vulnerability has been discovered in Mednafen when using network play. Impact A remote server could execute arbitrary code with the privileges of the process. Workaround There ...

10CVSS7.4AI score0.03169EPSS
Exploits0
Packet Storm
Packet Storm
added 2013/10/08 12:0 a.m.73 views

davfs2 1.4.6 / 1.4.7 Privilege Escalation

davfs2 1.4.6/1.4.7 local privilege escalation exploit Bug Description: davfs2 is a Linux utility which allows OS users to mount a remote webdav server as a local partition. The bug is well documented at http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=723034. Basically the program "mount.davfs"...

7.2CVSS0.5AI score0.01168EPSS
Exploits2
Exploit DB
Exploit DB
added 2013/10/08 12:0 a.m.523 views

davfs2 1.4.6/1.4.7 - Local Privilege Escalation

davfs2 1.4.6/1.4.7 local privilege escalation exploit Bug Description: davfs2 is a Linux utility which allows OS users to mount a remote webdav server as a local partition. The bug is well documented at http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=723034. Basically the program "mount.davfs"...

7.4AI score
Exploits0
Rows per page
Query Builder