Lucene search
K

162 matches found

Microsoft KB
Microsoft KB
added 2016/05/10 7:0 a.m.69 views

Cumulative Update for Windows 10: May 10, 2016

Cumulative Update for Windows 10: May 10, 2016 Summary This security update includes improvements and fixes in the functionality of Windows 10 and resolves the following vulnerabilities in Windows: 3155533 MS16-051: Cumulative Security update for Internet Explorer: May 10, 2016 3155538 MS16-052:...

9.3CVSS7.2AI score0.93165EPSS
Exploits18
Microsoft KB
Microsoft KB
added 2016/05/10 7:0 a.m.104 views

Cumulative Update for Windows 10 Version 1511 and Windows Server 2016 Technical Preview 4: May 10, 2016

Cumulative Update for Windows 10 Version 1511 and Windows Server 2016 Technical Preview 4: May 10, 2016 Summary This security update for Windows 10 Version 1511 and Windows Server 2016 Technical Preview 4 includes functionality improvements and fixes, and it resolves the following vulnerabilities...

9.3CVSS7.4AI score0.93165EPSS
Exploits18
Tenable Nessus
Tenable Nessus
added 2016/05/10 12:0 a.m.39 views

MS16-066: Security Update for Virtual Secure Mode (3155451)

The remote Windows host is missing a security update. It is, therefore, affected by a security feature bypass vulnerability due to certain kernel-mode pages being marked as RWX Read, Write, Execute even when Hypervisor Code Integrity HVCI is enabled. An attacker can exploit this vulnerability, vi...

5.5CVSS6.6AI score0.01516EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/05/04 12:0 a.m.25 views

Debian DLA-452-1 : smarty3 security update

Smarty3, a template engine for PHP, allowed remote attackers to bypass the secure mode restrictions and execute arbitrary PHP code as demonstrated by 'literal' in a template. For Debian 7 'Wheezy', these problems have been fixed in version 3.1.10-2+deb7u1. We recommend that you upgrade your smart...

7.5CVSS6.1AI score0.03127EPSS
Exploits1References3
OSV
OSV
added 2016/05/03 12:0 a.m.15 views

DLA-452-1 smarty3 - security update

Bulletin has no description...

7.5CVSS6AI score0.03127EPSS
Exploits1
F5 Networks
F5 Networks
added 2015/02/12 12:0 a.m.37 views

SOL16124 - OpenSSL vulnerability CVE-2015-0206

The SOD process is only vulnerable if the failover.secure db variable is enabled; the db variable is disabled by default. Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed...

5CVSS1.3AI score0.59319EPSS
Exploits0References4
F5 Networks
F5 Networks
added 2015/02/11 12:0 a.m.61 views

SOL16123 - OpenSSL vulnerability CVE-2014-3571

The SOD process is only vulnerable if the failover.secure database variable is enabled; the database variable is disabled by default. Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to th...

5CVSS1.4AI score0.22964EPSS
Exploits0References4
Mageia
Mageia
added 2014/11/21 12:44 p.m.31 views

Updated php-smarty packages fix security vulnerability

Smarty before 3.1.21 allows remote attackers to bypass the secure mode restrictions and execute arbitrary PHP code as demonstrated by "literal" in a template CVE-2014-8350...

7.5CVSS7.3AI score0.03127EPSS
Exploits1References2
Exploit DB
Exploit DB
added 2014/11/17 12:0 a.m.150 views

.NET Remoting Services - Remote Command Execution

Source: https://github.com/tyranid/ExploitRemotingService Exploit Database Mirror: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/35280.zip ExploitRemotingService c 2014 James Forshaw ============================================= A tool to exploit .NET Remoting...

10CVSS7AI score0.39589EPSS
Exploits4
exploitpack
exploitpack
added 2014/11/17 12:0 a.m.120 views

.NET Remoting Services - Remote Command Execution

.NET Remoting Services - Remote Command Execution Source: https://github.com/tyranid/ExploitRemotingService Exploit Database Mirror: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/35280.zip ExploitRemotingService c 2014 James Forshaw...

10CVSS0.2AI score0.39589EPSS
Exploits4
0day.today
0day.today
added 2014/11/17 12:0 a.m.1408 views

.NET Remoting Services Remote Command Execution Vulnerability

Exploit for windows platform in category remote exploits Source: https://github.com/tyranid/ExploitRemotingService Exploit Database Mirror: http://www.exploit-db.com/sploits/35280.zip ExploitRemotingService c 2014 James Forshaw ============================================= A tool to exploit .NET...

10CVSS6.5AI score0.39589EPSS
Exploits4
OSV
OSV
added 2014/11/03 4:55 p.m.5 views

UBUNTU-CVE-2014-8350

Smarty before 3.1.21 allows remote attackers to bypass the secure mode restrictions and execute arbitrary PHP code as demonstrated by "literal" in a template...

7.5CVSS6.1AI score0.03127EPSS
Exploits1References2
Prion
Prion
added 2014/11/03 4:55 p.m.15 views

Design/Logic Flaw

Smarty before 3.1.21 allows remote attackers to bypass the secure mode restrictions and execute arbitrary PHP code as demonstrated by "literal" in a template...

7.5CVSS7.9AI score0.03127EPSS
Exploits1References8Affected Software1
Debian CVE
Debian CVE
added 2014/11/03 4:0 p.m.24 views

CVE-2014-8350

Smarty before 3.1.21 allows remote attackers to bypass the secure mode restrictions and execute arbitrary PHP code as demonstrated by "literal" in a template...

7.5CVSS6.3AI score0.03127EPSS
Exploits1
securityvulns
securityvulns
added 2013/03/03 12:0 a.m.83 views

Fwd: [SECURITY] CVE-2013-0253 Apache Maven 3.0.4

CVE-2013-0253 Apache Maven Severity: Medium Vendor: The Apache Software Foundation Versions Affected: - Apache Maven 3.0.4 - Apache Maven Wagon 2.1, 2.2, 2.3 Description: Apache Maven 3.0.4 with Apache Maven Wagon 2.1 has introduced a non-secure SSL mode by default. This mode disables all SSL...

5.8CVSS2.3AI score0.0157EPSS
Exploits0
Nmap
Nmap
added 2010/01/29 9:4 p.m.165 views

lexmark-config NSE Script

Retrieves configuration information from a Lexmark S300-S400 printer. The Lexmark S302 responds to the NTPRequest version probe with its configuration. The response decodes as mDNS, so the request was modified to resemble an mDNS request as close as possible. However, the port 9100/udp is listed ...

10CVSS9.2AI score0.99448EPSS
Exploits33
NVD
NVD
added 2006/04/07 10:4 a.m.18 views

CVE-2006-1671

Control cards for Cisco Optical Networking System ONS 15000 series nodes before 20060405 allow remote attackers to cause a denial of service card reset via 1 a "crafted" IP packet to a device with secure mode EMS-to-network-element access, aka bug ID CSCsc51390; 2 a "crafted" IP packet to a devic...

5CVSS6.7AI score0.02384EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2005/09/14 12:0 a.m.6 views

PT-2005-3760 · Filezilla · Filezilla

Name of the Vulnerable Software and Affected Versions: FileZilla versions 2.2.14b through 2.2.15 FileZilla versions prior to 2.2.14b Description: The issue concerns the use of a weak encryption scheme to store user passwords in the configuration settings file when "Use secure mode" is disabled...

4.6CVSS6.9AI score0.00495EPSS
Exploits1References8
securityvulns
securityvulns
added 2005/07/06 12:0 a.m.22 views

Imail Cookie Vulnerability (unhashed)

Neither Regular or secure mode of Imail properly give out a hash on cookies leaving the cookies straight readable to any onlookers. No exploit is needed POC: "IMailUserId 1006332dgd2@Someserver" -------------------------- "IMailpassword 1234" Straight From Cookie ^^ edited to protect user Shoutz ...

1.3AI score
Exploits0
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.20 views

CVE-2002-1413

RCONAG6 for Novell Netware SP2, while running RconJ in secure mode, allows remote attackers to bypass authentication using the RconJ "Secure IP" SSL option during a connection...

6.9AI score0.03317EPSS
Exploits0References5
Rows per page
Query Builder