Lucene search
K

2293 matches found

Cvelist
Cvelist
added 2009/03/20 12:0 a.m.21 views

CVE-2008-6499

security/xamppsecurity.php in XAMPP 1.6.8 performs an extract operation on the SERVER superglobal array, which allows remote attackers to spoof critical variables, as demonstrated by setting the REMOTEADDR variable to 127.0.0.1...

6.6AI score0.01556EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/03/20 12:0 a.m.20 views

RedHat Security Advisory RHSA-2009:0341

The remote host is missing updates announced in advisory RHSA-2009:0341. cURL is a tool for getting files from FTP, HTTP, Gopher, Telnet, and Dict servers, using any of the supported protocols. cURL is designed to work without user interaction or any kind of interactivity. David Kierznowski...

6.8CVSS8.2AI score0.07812EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2009/03/20 12:0 a.m.19 views

RedHat Security Advisory RHSA-2009:0341

The remote host is missing updates announced in advisory RHSA-2009:0341. cURL is a tool for getting files from FTP, HTTP, Gopher, Telnet, and Dict servers, using any of the supported protocols. cURL is designed to work without user interaction or any kind of interactivity. David Kierznowski...

6.8CVSS7.8AI score0.07812EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2009/03/20 12:0 a.m.25 views

RHEL 2.1 / 3 / 4 / 5 : curl (RHSA-2009:0341)

Updated curl packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1, 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. cURL is a tool for getting files from FTP, HTTP, Gopher, Telnet, and Dict servers,...

6.8CVSS7AI score0.07812EPSS
Exploits2References3
Packet Storm
Packet Storm
added 2009/02/16 12:0 a.m.19 views

GeoVision ActiveX File Corruption

function sleepn var now = new Date; var exitTime = now.getTime + n1000; while true now = new Date; if now.getTime exitTime return; param name="AutoLogin" v...

0.2AI score
Exploits0
Prion
Prion
added 2009/02/13 12:30 a.m.20 views

Integer overflow

Integer overflow in the SMB component in Apple Mac OS X 10.5.6 allows remote SMB servers to cause a denial of service system shutdown or execute arbitrary code via a crafted SMB file system that triggers a heap-based buffer overflow...

9.3CVSS8.3AI score0.02863EPSS
Exploits1References4Affected Software2
myhack58
myhack58
added 2009/01/21 12:0 a.m.14 views

Via ssh to perform a remote server on the command-vulnerability warning-the black bar safety net

Via SSH to perform a remote server on command, very good very powerful, much more convenient. 1. for i in 3 2 3 5 1 5 ; do ssh [email protected].$ i ps auxH|grep httpd|wc-l ; done; 2. You can list 1 9 2. 1 6 8. 1. 3,23 ,5 ,1 5,four servers on the httpd threads; you can also use1..2 5 0 in order to...

3.6AI score
Exploits0
CVE
CVE
added 2008/12/05 12:0 a.m.47 views

CVE-2008-5329

The CVE-2008-5329 issue affects ClearQuest Web in IBM Rational ClearQuest MultiSite before 7.1 . An attacker could direct a client’s submissions and changes to an arbitrary database by configuring multiple comma-separated server identifiers on the JTLRMIREGISTRYSERVERS line in a jtl.properties fi...

7.5CVSS6.5AI score0.01594EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2008/10/28 7:46 p.m.7 views

CVE-2008-4776

libgadu before 1.8.2 allows remote servers to cause a denial of service crash via a contact description with a large length, which triggers a buffer over-read...

6.5AI score
Exploits0References7
Prion
Prion
added 2008/10/28 7:46 p.m.18 views

Buffer overflow

libgadu before 1.8.2 allows remote servers to cause a denial of service crash via a contact description with a large length, which triggers a buffer over-read...

4.3CVSS6.6AI score0.01264EPSS
Exploits0References7Affected Software1
OpenVAS
OpenVAS
added 2008/10/24 12:0 a.m.21 views

WEBalbum Local File Include Vulnerability

The remote web server is running WEBalbum which is affected by a local file include vulnerability. SPDX-FileCopyrightText: 2008 Josh Zlatin-Amishav Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

5.1CVSS6.7AI score0.03208EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2008/09/12 12:0 a.m.52 views

IBM DB2 8 < Fix Pack 17 Multiple Vulnerabilities

According to its version, the installation of IBM DB2 8 running on the remote host is affected by multiple issues : - By sending malicious DB2 UDB v7 client CONNECT/DETACH requests it may be possible to crash the remote DB2 server. IZ08134 - Failure to switch the owner of the 'DB2FMP' process may...

10CVSS8.1AI score0.03672EPSS
Exploits1References14
CVE
CVE
added 2008/08/27 3:0 p.m.70 views

CVE-2008-3746

CVE-2008-3746 - neon vulnerability details (supported by connected docs) Affected software: neon 0.28.0 through 0.28.2. The issue is described across multiple advisories as a denial of service caused by a NULL pointer dereference in the digest authentication code, related to Digest authentication...

4.3CVSS6.2AI score0.02266EPSS
Exploits0References18Affected Software1
Packet Storm
Packet Storm
added 2008/08/16 12:0 a.m.22018 views

phpizabi-traverse.txt

PHPizabi v0.848b traversal file access Vendor url:http://www.phpizabi.net/ Advisore:http://lostmon.blogspot.com/2008/08/ phpizabi-v0848b-traversal-file-access.html Vendor notify:no exploit available:yes Description By vendor page: PHPizabi is one of the most powerful social networking platforms o...

7.4AI score
Exploits0
Fedora
Fedora
added 2008/07/15 12:20 p.m.12 views

[SECURITY] Fedora 9 Update: newsx-1.6-9.fc9

Newsx is an NNTP client that will connect to a remote NNTP server and post outgoing news articles batched by the news system e.g. INN, as well as fetch incoming articles...

2.1AI score
Exploits0
Fedora
Fedora
added 2008/07/15 12:14 p.m.16 views

[SECURITY] Fedora 8 Update: newsx-1.6-8.fc8

Newsx is an NNTP client that will connect to a remote NNTP server and post outgoing news articles batched by the news system e.g. INN, as well as fetch incoming articles...

2.1AI score
Exploits0
securityvulns
securityvulns
added 2008/07/03 12:0 a.m.60 views

Mozilla Foundation Security Advisory 2008-27

Mozilla Foundation Security Advisory 2008-27 Title: Arbitrary file upload via originalTarget and DOM Range Impact: High Announced: July 1, 2008 Reporter: Claudio Santambrogio Products: Firefox, SeaMonkey Fixed in: Firefox 2.0.0.15 SeaMonkey 1.1.10 Description Opera developer Claudio Santambrogio...

5CVSS0.7AI score0.02245EPSS
Exploits1
Mozilla
Mozilla
added 2008/07/01 12:0 a.m.27 views

Arbitrary file upload via originalTarget and DOM Range — Mozilla

Opera Software reported a vulnerability which allows malicious content to force the browser into uploading local files to the remote server. This could be used by an attacker to steal files from known locations on a victim's computer...

5CVSS4AI score0.02245EPSS
Exploits1References2Affected Software2
ATTACKERKB
ATTACKERKB
added 2008/06/23 5:41 p.m.2 views

CVE-2008-2822

Multiple directory traversal vulnerabilities in the FTP client in 3D-FTP Client 8.01 8.0 build 1 allow remote FTP servers to create or overwrite arbitrary files via a .. dot dot in a response to a 1 LIST or 2 MLSD command...

9.3CVSS5.8AI score0.03037EPSS
Exploits1References7
ATTACKERKB
ATTACKERKB
added 2008/06/20 11:48 a.m.3 views

CVE-2008-2795

Directory traversal vulnerability in the FTP and SFTP clients in IDM Computer Solutions Inc UltraEdit 14.00b allows remote FTP servers to create or overwrite arbitrary files via a .. dot dot or a ..\ dot dot backslash in a response to a LIST command...

4.3CVSS5.8AI score0.08069EPSS
Exploits1References6
Rows per page
Query Builder