Lucene search
K

262 matches found

BDU FSTEC
BDU FSTEC
added 2016/04/06 12:0 a.m.8 views

The vulnerability of the Android operating system, which allows a perpetrator to bypass security measures or obtain confidential information

The vulnerability of the BnGraphicBufferConsumer::onTransact function libs/gui/IGraphicBufferConsumer.cpp in the mediaserver component of the Android operating system exists due to the lack of initialization for certain types of variables. Exploiting this vulnerability could allow a malicious act...

5CVSS7.2AI score0.00749EPSS
Exploits0References3
CNVD
CNVD
added 2015/09/20 12:0 a.m.2 views

NTP logconfig configuration command denial of service vulnerability

Network Time Protocol is a protocol used to synchronize a computer's time to its server or clock source e.g., quartz clock, GPS, etc.. NTP crashes due to uninitialized variables when processing the malformed logconfig configuration command ntpd, allowing remote attackers to exploit the...

7.5CVSS7.8AI score0.05536EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2013/05/20 4:44 p.m.5 views

Kernel: crypto: algif - suppress sending source address information in recvmsg

The crypto API in the Linux kernel through 3.9-rc8 does not initialize certain length variables, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call, related to the hashrecvmsg function in crypto/algifhash.c and the...

4.9CVSS6.3AI score0.00354EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2011/06/08 12:0 a.m.26 views

SuSE9 Security Update : ethereal (YOU Patch Number 12708)

This ethereal update fixes the use of uninitialized variables. CVE-2011-1590 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid54993; scriptversion"1.5";...

4.3CVSS7.5AI score0.01812EPSS
Exploits1References2
ThreatPost
ThreatPost
added 2010/11/03 3:19 p.m.9 views

Dozens of Bugs Found in One Version of Android Kernel

Security researchers found dozens of high risk security holes in the software used to run specific Android mobile devices, but that’s still a lot better than industry averages, according to a new report. Coverity, an application code testing firm, analyzed the source code for HTC’s Droid Incredib...

0.7AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2007/12/13 12:0 a.m.11 views

SuSE 10 Security Update : clamav (ZYPP Patch Number 4169)

This is an update to ClamAV 0.91.2 to fix various bugs like NULL pointer dereferences and uninitialized variables etc. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

5.4AI score
Exploits0
Packet Storm
Packet Storm
added 2007/04/17 12:0 a.m.37 views

waraxe-2007-SA-048.txt

waraxe-2007-SA048 - Multiple vulnerabilities in Virtual War 1.5 module for PhpNuke Author: Janek Vind "waraxe" Date: 13. April 2007 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-48.html Target software description: VWar module for PhpNuke http://www.vwar.de/ VWar is a webbased...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2006/12/25 12:0 a.m.10 views

Irokez Blog 0.7.1 - Multiple Remote File Inclusions

Irokez Blog 0.7.1 - Multiple Remote File Inclusions +------------------------------------------------------------------------------------------- + Irokez CMS +------------------------------------------------------------------------------------------- + Details: + Irokez CMS has several scripts...

7.5AI score
Exploits0
UbuntuCve
UbuntuCve
added 2006/07/06 8:5 p.m.17 views

CVE-2006-3390

WordPress 2.0.3 allows remote attackers to obtain the installation path via a direct request to various files, such as those in the 1 wp-admin, 2 wp-content, and 3 wp-includes directories, possibly due to uninitialized variables...

5CVSS6AI score0.02807EPSS
Exploits0References1
OSV
OSV
added 2006/07/06 8:5 p.m.2 views

DEBIAN-CVE-2006-3390

WordPress 2.0.3 allows remote attackers to obtain the installation path via a direct request to various files, such as those in the 1 wp-admin, 2 wp-content, and 3 wp-includes directories, possibly due to uninitialized variables...

5CVSS7AI score0.02807EPSS
Exploits0References1
OSV
OSV
added 2006/07/06 8:5 p.m.7 views

CVE-2006-3390

WordPress 2.0.3 allows remote attackers to obtain the installation path via a direct request to various files, such as those in the 1 wp-admin, 2 wp-content, and 3 wp-includes directories, possibly due to uninitialized variables...

6.3AI score
Exploits0References8
Debian CVE
Debian CVE
added 2006/07/06 8:0 p.m.20 views

CVE-2006-3390

WordPress 2.0.3 allows remote attackers to obtain the installation path via a direct request to various files, such as those in the 1 wp-admin, 2 wp-content, and 3 wp-includes directories, possibly due to uninitialized variables...

5CVSS5.9AI score0.02807EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.28 views

Mandrake Linux Security Advisory : netpbm (MDKSA-2005:199)

Pnmtopng in netpbm 10.2X, when using the -trans option, uses uninitialized size and index variables when converting Portable Anymap PNM images to Portable Network Graphics PNG, which might allow attackers to execute arbitrary code by modifying the stack. Netpbm 9.2X is not affected by this...

7.5CVSS6AI score0.04873EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2005/11/01 9:2 p.m.32 views

CVE-2005-3418

Multiple cross-site scripting XSS vulnerabilities in phpBB 2.0.17 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 errormsg parameter to usercpregister.php, 2 forwardpage parameter to login.php, and 3 listcat parameter to search.php, which are not initialized as...

4.3CVSS6AI score0.01837EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2005/10/25 4:0 a.m.24 views

CVE-2004-2486

The DSS verification code in Dropbear SSH Server before 0.43 frees uninitialized variables, which might allow remote attackers to gain access...

7.5CVSS6.8AI score0.03028EPSS
Exploits0
OSV
OSV
added 2005/10/18 10:2 p.m.1 views

DEBIAN-CVE-2005-2978

pnmtopng in netpbm before 10.25, when using the -trans option, uses uninitialized size and index variables when converting Portable Anymap PNM images to Portable Network Graphics PNG, which might allow attackers to execute arbitrary code by modifying the stack...

7.5CVSS7.6AI score0.04873EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2005/10/18 10:2 p.m.15 views

CVE-2005-2978

pnmtopng in netpbm before 10.25, when using the -trans option, uses uninitialized size and index variables when converting Portable Anymap PNM images to Portable Network Graphics PNG, which might allow attackers to execute arbitrary code by modifying the stack...

7.5CVSS6.3AI score0.04873EPSS
Exploits1References2
OSV
OSV
added 2005/10/18 10:2 p.m.6 views

CVE-2005-2978

pnmtopng in netpbm before 10.25, when using the -trans option, uses uninitialized size and index variables when converting Portable Anymap PNM images to Portable Network Graphics PNG, which might allow attackers to execute arbitrary code by modifying the stack...

7.3AI score
Exploits0References17
RedHat Linux
RedHat Linux
added 2005/10/18 3:43 p.m.3 views

security flaw

pnmtopng in netpbm before 10.25, when using the -trans option, uses uninitialized size and index variables when converting Portable Anymap PNM images to Portable Network Graphics PNG, which might allow attackers to execute arbitrary code by modifying the stack...

7.5CVSS6.2AI score0.04873EPSS
Exploits1References4
securityvulns
securityvulns
added 2005/10/09 12:0 a.m.47 views

Cyphor 0.19 SQL Injection / Board takeover / cross site scripting

Cyphor 0.19 SQL Injection / Board takeover / cross site scripting 1if magic quotes off - SQL Injection: by "Forgot your password?" feature you can send yourself a new admin password and reset it, poc: email: youremail nick: 'or'X'='X soon, you will receive an email like this: You have registered...

8.4AI score
Exploits0
Rows per page
Query Builder