Lucene search
+L

8753 matches found

cvelist
cvelist
added 2005/11/18 11:0 a.m.21 views

CVE-2005-2940

Unquoted Windows search path vulnerability in Microsoft Antispyware 1.0.509 Beta 1 might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, involving the programs 1 GIANTAntiSpywareMain.exe, 2 gcASNotice.exe, 3 gcasServ.exe, 4 gcasSWUpdater.exe, or 5...

6.4AI score0.02339EPSS
Exploits0References3
cvelist
cvelist
added 2005/11/18 11:0 a.m.23 views

CVE-2005-2939

Unquoted Windows search path vulnerability in VMWare Workstation 5.0.0 build-13124 might allow local users to gain privileges via a malicious "program.exe" file in the C: folder...

6.5AI score0.00337EPSS
Exploits0References3
cvelist
cvelist
added 2005/11/18 11:0 a.m.25 views

CVE-2005-3663

Unquoted Windows search path vulnerability in Kaspersky Anti-Virus 5.0 might allow local users to gain privileges via a malicious "program.exe" file in the C: folder...

6.5AI score0.00346EPSS
Exploits0References3
cve
cve
added 2005/11/18 11:0 a.m.55 views

CVE-2005-2940

CVE-2005-2940 describes an unquoted Windows search path vulnerability in Microsoft Antispyware 1.0.509 (Beta 1). Local users could gain privileges by placing a malicious file named program.exe in the C: drive, which could be executed by one of several Antispyware components: GIANTAntiSpywareMain....

7.2CVSS6.5AI score0.02339EPSS
Exploits0References3Affected Software1
cve
cve
added 2005/11/18 11:0 a.m.50 views

CVE-2005-2938

CVE-2005-2938 affects Apple iTunes for Windows (iTunesHelper.exe) prior to iTunes 6. The vulnerability is an unquoted Windows search path in iTunesHelper.exe, which could allow a local user to gain privileges by placing a malicious C:\program.exe. Affected versions include iTunes 4.7.1.30 and iTu...

7.2CVSS6.5AI score0.00386EPSS
Exploits0References3Affected Software1
nvd
nvd
added 2005/11/18 6:3 a.m.24 views

CVE-2005-2940

Unquoted Windows search path vulnerability in Microsoft Antispyware 1.0.509 Beta 1 might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, involving the programs 1 GIANTAntiSpywareMain.exe, 2 gcASNotice.exe, 3 gcasServ.exe, 4 gcasSWUpdater.exe, or 5...

7.2CVSS6.4AI score0.02339EPSS
Exploits0References3
nvd
nvd
added 2005/11/18 6:3 a.m.20 views

CVE-2005-2939

Unquoted Windows search path vulnerability in VMWare Workstation 5.0.0 build-13124 might allow local users to gain privileges via a malicious "program.exe" file in the C: folder...

7.2CVSS6.5AI score0.00337EPSS
Exploits0References3
nvd
nvd
added 2005/11/16 7:42 a.m.20 views

CVE-2005-3580

QDBM before 1.8.33-r2 allows local users in the portage group to increase privileges via a shared object in the Portage temporary build directory, which is added to the search path allowing objects in it to be loaded at runtime...

7.2CVSS6.2AI score0.00401EPSS
Exploits0References5
debiancve
debiancve
added 2005/11/16 7:37 a.m.44 views

CVE-2005-3580

QDBM before 1.8.33-r2 allows local users in the portage group to increase privileges via a shared object in the Portage temporary build directory, which is added to the search path allowing objects in it to be loaded at runtime...

7.2CVSS6AI score0.00401EPSS
Exploits0
debiancve
debiancve
added 2005/11/16 7:37 a.m.39 views

CVE-2005-3581

GDAL before 1.3.0-r1 allows local users in the portage group to increase privileges via a shared object in the Portage temporary build directory, which is added to the search path allowing objects in it to be loaded at runtime...

7.2CVSS6AI score0.00401EPSS
Exploits0
cve
cve
added 2005/10/20 4:0 a.m.53 views

CVE-2005-3270

The CVE-2005-3270 entry concerns Symantec Norton AntiVirus 9.0.3 and a DiskMountNotify component. The vulnerability is an untrusted search path that allows local users to gain privileges by modifying the PATH to reference a malicious (1) ps or (2) grep file. This is a local privilege escalation i...

7.2CVSS6.9AI score0.00358EPSS
Exploits0References5Affected Software1
securityvulns
securityvulns
added 2005/10/19 12:0 a.m.26 views

Gentoo Linux multiple ports privilege escalation

User from portage group can place dynamic library into search path of vulnerable library. Vulnerable ports are perl, Qt-UnixODBC, CMake...

2.1AI score
Exploits0References1Affected Software3
cvelist
cvelist
added 2005/09/15 4:0 a.m.21 views

CVE-2005-2935

Unquoted Windows search path vulnerability in Microsoft AntiSpyware might allow local users to execute code via a malicious c:\program.exe file, which is run by AntiSpywareMain.exe when it attempts to execute gsasDtServ.exe. NOTE: it is not clear whether this overlaps CVE-2005-2940...

6.5AI score0.01934EPSS
Exploits1References2
nvd
nvd
added 2005/09/07 6:3 p.m.19 views

CVE-2005-2811

Untrusted search path vulnerability in Net-SNMP 5.2.1.2 and earlier, on Gentoo Linux, installs certain Perl modules with an insecure DTRPATH, which could allow local users to gain privileges...

4.6CVSS6.4AI score0.00371EPSS
Exploits0References1
cvelist
cvelist
added 2005/09/07 4:0 a.m.25 views

CVE-2005-2811

Untrusted search path vulnerability in Net-SNMP 5.2.1.2 and earlier, on Gentoo Linux, installs certain Perl modules with an insecure DTRPATH, which could allow local users to gain privileges...

6.4AI score0.00371EPSS
Exploits0References1
cve
cve
added 2005/09/07 4:0 a.m.79 views

CVE-2005-2811

CVE-2005-2811 describes an untrusted search path (DT_RPATH) vulnerability in Net-SNMP up to version 5.2.1.2 on Gentoo Linux, where certain Perl modules are installed with an insecure DT_RPATH. This could allow a local attacker (non-remote) to gain privileges by influencing the loaded libraries. T...

4.6CVSS6.4AI score0.00371EPSS
Exploits0References1Affected Software1
debiancve
debiancve
added 2005/09/07 4:0 a.m.41 views

CVE-2005-2811

Untrusted search path vulnerability in Net-SNMP 5.2.1.2 and earlier, on Gentoo Linux, installs certain Perl modules with an insecure DTRPATH, which could allow local users to gain privileges...

4.6CVSS6.3AI score0.00371EPSS
Exploits0
gentoo
gentoo
added 2005/05/19 12:0 a.m.13 views

Cheetah: Untrusted module search path

Background Cheetah is a Python powered template engine and code generator. Description Brian Bird discovered that Cheetah searches for modules in the world-writable /tmp directory. Impact A malicious local user could place a module containing arbitrary code in /tmp, which when imported would run...

2.7AI score
Exploits0
nvd
nvd
added 2005/05/02 4:0 a.m.16 views

CVE-2005-1185

Unquoted Windows search path vulnerability in Musicmatch Jukebox 10.00.2047 and earlier allows local users to gain privileges via a malicious C:\program.exe file, which is run by MMFWLaunch.exe when it attempts to execute launch.exe...

4.6CVSS6.8AI score0.0034EPSS
Exploits0References4
cvelist
cvelist
added 2005/04/26 4:0 a.m.16 views

CVE-2005-1286

Unquoted Windows search path vulnerability in BitDefender 8 allows local users to prevent BitDefender from starting by creating a malicious C:\program.exe, possibly due to the lack of quoting of the full pathname when executing a process...

6.3AI score0.00302EPSS
Exploits0References3
Rows per page
Query Builder