Lucene search
K

223 matches found

CVE
CVE
added 2012/03/20 8:0 p.m.328 views

CVE-2012-0711

CVE-2012-0711 is a remote code execution/privilege-escalation vulnerability in the DB2 Administration Server (DAS) of IBM DB2. The issue is a heap-based buffer overflow caused by an integer signedness error in the db2dasrrm process and affects UNIX platforms on: DB2 9.1 GA through FP11, DB2 9.5 G...

7.5CVSS7.5AI score0.04627EPSS
Exploits0References7Affected Software1
myhack58
myhack58
added 2011/12/15 12:0 a.m.22 views

PuTTY SSH authentication password information disclosure vulnerability-vulnerability warning-the black bar safety net

Affected version: Simon Tatham PuTTY 0.61 Simon Tatham PuTTY 0.60 Simon Tatham PuTTY 0.59 Vulnerability description: BUGTRAQ ID: 51021PuTTY Windows and Unix platforms PuTTYTelnet and SSH implementation, with an xterm terminal emulator. PuTTY 0. 5 9 to 0. 6 1 version does not delete the...

Exploits0
RedHat Linux
RedHat Linux
added 2011/10/17 9:49 p.m.6 views

crypt_blowfish: 8-bit character mishandling allows different password pairs to produce the same hash

cryptblowfish before 1.1, as used in PHP before 5.3.7 on certain platforms, PostgreSQL before 8.4.9, and other products, does not properly handle 8-bit characters, which makes it easier for context-dependent attackers to determine a cleartext password by leveraging knowledge of a password hash...

5CVSS5.8AI score0.04972EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2011/06/21 10:25 p.m.4 views

Mozilla Multiple dangling pointer vulnerabilities (MFSA 2011-23)

Use-after-free vulnerability in the nsXULCommandDispatcher function in Mozilla Firefox before 3.6.18, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allows remote attackers to execute arbitrary code via a crafted XUL document that dequeues the current command updater...

10CVSS7.7AI score0.05572EPSS
Exploits0References4
NVD
NVD
added 2011/04/04 12:27 p.m.16 views

CVE-2011-0894

Unspecified vulnerability in HP Operations 9.10 on UNIX platforms allows remote authenticated users to bypass intended access restrictions via unknown vectors...

5.5CVSS6.2AI score0.01203EPSS
Exploits0References5
Prion
Prion
added 2011/04/04 12:27 p.m.12 views

Design/Logic Flaw

Unspecified vulnerability in HP Operations 9.10 on UNIX platforms allows remote authenticated users to bypass intended access restrictions via unknown vectors...

5.5CVSS6.6AI score0.01203EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2011/04/03 1:0 a.m.20 views

CVE-2011-0894

Unspecified vulnerability in HP Operations 9.10 on UNIX platforms allows remote authenticated users to bypass intended access restrictions via unknown vectors...

6.2AI score0.01203EPSS
Exploits0References5
ThreatPost
ThreatPost
added 2010/11/12 8:29 p.m.9 views

Adobe Readies Patch for Critical Reader, Acrobat Flaws

Adobe Inc. said on Friday that it is planning to release an out-of-cycle update to fix critical security holes in its Reader and Acrobat products, including a fix for a newly disclosed hole that is already being exploited in the wild. In a post on the company’s Product Security Incident Response...

0.7AI score
Exploits0References6
Metasploit
Metasploit
added 2010/10/09 9:32 p.m.17 views

Generic Web Application Unix Command Execution

This module can be used to exploit any generic command execution vulnerability for CGI applications on Unix-like platforms. To use this module, specify the CMDURI path, replacing the command itself with XXcmdXX. This module is currently limited to forms vulnerable through GET requests with query...

7.5AI score
Exploits0
Positive Technologies
Positive Technologies
added 2010/07/23 12:0 a.m.7 views

PT-2010-4294 · Apache +1 · Apache Http Server +1

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server version 2.2.9 Description: The issue is related to an information disclosure flaw in the mod proxy component of the Apache HTTP Server. When running on Unix platforms, if a timeout occurs while reading a response from a...

5CVSS5.4AI score0.2187EPSS
Exploits3References29
Prion
Prion
added 2010/06/15 6:0 p.m.12 views

Code injection

Adobe Flash Player 9 before 9.0.277.0 on unspecified UNIX platforms allows attackers to cause a denial of service via unknown vectors...

4.3CVSS6.8AI score0.04958EPSS
Exploits0References24Affected Software1
Cvelist
Cvelist
added 2010/06/15 5:48 p.m.20 views

CVE-2010-2172

Adobe Flash Player 9 before 9.0.277.0 on unspecified UNIX platforms allows attackers to cause a denial of service via unknown vectors...

9.1AI score0.04958EPSS
Exploits0References24
RedHat Linux
RedHat Linux
added 2010/04/01 12:21 a.m.5 views

JDK unspecified vulnerability in JavaWS/Plugin component

Unspecified vulnerability in the Java Web Start, Java Plug-in component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, and 1.4.225 allows remote attackers to affect availability via unknown vectors...

5CVSS5.8AI score0.03361EPSS
Exploits0References4
NVD
NVD
added 2009/08/19 5:30 p.m.17 views

CVE-2009-2858

Memory leak in the Security component in IBM DB2 8.1 before FP18 on Unix platforms allows attackers to cause a denial of service memory consumption via unspecified vectors, related to private memory within the DB2 memory structure...

5CVSS6.2AI score0.01659EPSS
Exploits0References4
Prion
Prion
added 2009/08/19 5:30 p.m.20 views

Memory corruption

Memory leak in the Security component in IBM DB2 8.1 before FP18 on Unix platforms allows attackers to cause a denial of service memory consumption via unspecified vectors, related to private memory within the DB2 memory structure...

5CVSS6.8AI score0.01659EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2009/08/19 5:0 p.m.29 views

CVE-2009-2858

Memory leak in the Security component in IBM DB2 8.1 before FP18 on Unix platforms allows attackers to cause a denial of service memory consumption via unspecified vectors, related to private memory within the DB2 memory structure...

6.2AI score0.01659EPSS
Exploits0References4
exploitpack
exploitpack
added 2009/07/28 12:0 a.m.105 views

Firebird SQL - op_connect_request main listener shutdown

Firebird SQL - opconnectrequest main listener shutdown -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Firebird SQL opconnectrequest main listener shutdown vulnerability 1. Advisory Information Title: Firebird SQL...

5CVSS6.9AI score0.08631EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2009/04/28 12:0 a.m.29 views

Mandriva Linux Security Advisory : openafs (MDVSA-2009:099-1)

Multiple vulnerabilities has been found and corrected in openafs : The cache manager in the client in OpenAFS 1.0 through 1.4.8 and 1.5.0 through 1.5.58 on Linux allows remote attackers to cause a denial of service system crash via an RX response with a large error-code value that is interpreted ...

10CVSS6.5AI score0.06438EPSS
Exploits2References2
Prion
Prion
added 2009/04/09 12:30 a.m.22 views

Heap overflow

Heap-based buffer overflow in the cache manager in the client in OpenAFS 1.0 through 1.4.8 and 1.5.0 through 1.5.58 on Unix platforms allows remote attackers to cause a denial of service system crash or possibly execute arbitrary code via an RX response containing more data than specified in a...

10CVSS8.9AI score0.06438EPSS
Exploits0References11Affected Software1
OSV
OSV
added 2009/04/09 12:30 a.m.8 views

CVE-2009-1251

Heap-based buffer overflow in the cache manager in the client in OpenAFS 1.0 through 1.4.8 and 1.5.0 through 1.5.58 on Unix platforms allows remote attackers to cause a denial of service system crash or possibly execute arbitrary code via an RX response containing more data than specified in a...

8.2AI score
Exploits0References11
Rows per page
Query Builder