611 matches found
CVE-2019-11841 vulnerabilities
Vulnerabilities for packages: k3d...
CVE-2019-9764 vulnerabilities
Vulnerabilities for packages: k3d...
dnsmasq: Multiple Critical and Important vulnerabilities
No description provided...
libdwarf -- multiple vulnerabilities
Christian Rebischke reports: libdwarf is vulnerable to multiple issues including arbitrary code execution, information disclosure and denial of service...
CentOS Update for cups CESA-2015:1123 centos6
Check the version of cups SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882202";...
HP HP-UX 10.20/11.0,IBM AIX <= 4.3,SCO Unixware 7.0,Sun Solaris <= 2.6
No description provided by source. source: http://www.securityfocus.com/bid/131/info Due to improper checking of ownership, the dtappgather utility shipped with the Common Desktop Environment allows arbitrary users to overwrite any file present on the filesystem, regardless of the owner of the...
CVE-2014-2672
Race condition in the athtxaggrsleep function in drivers/net/wireless/ath/ath9k/xmit.c in the Linux kernel before 3.13.7 allows remote attackers to cause a denial of service system crash via a large amount of network traffic that triggers certain list deletions...
CVE-2012-5783 vulnerabilities
Vulnerabilities for packages: apicurio-registry, trino...
openx -- undisclosed security issue
OpenX does not provide information about vulnerabilities beyond their existence...
Bouncing RPC
In the early years of Core Security Technologies, the company not only offered security consulting services, but often was sub-contracted to do R+D for several security vendors. The first and most intellectually rewarding of such contracts came from Secure Networks Inc. SNI, a Canadian start-up...
CVE-2007-0374
SQL injection vulnerability in 1 Joomla! 1.0.11 and 1.5 Beta, and 2 Mambo 4.6.1, allows remote attackers to execute arbitrary SQL commands via the id parameter when cancelling content editing...
CVE-2006-0045
crawl before 4.0.0 does not securely call programs when saving and loading games, which allows local users to gain privileges...
SSH Tectia Server contains a race condition when the password change plugin is enabled
Overview SSH Tectia Server contains a race condition that may permit an authenticated user access to the private key of the server. Exploitation of this vulnerability may lead to the ability to compromise the trust relationships of the vulnerable server. Description SSH Tectia Server versions 4.0...
CVE-2003-0949
...
FREESCO public http server - Cross Site Scripting Vulnerabillity
Software: FREESCO public http server - Running thttpd/2.05 09nov99 Vendor: http://www.freesco.org Versions: 2.05 Platforms: Unix Bug: Cross Site Scripting Vulnerabillity Risk: Low Exploitation: Remote with browser Date: 22 Jan 2004 Author: Rafel Ivgi, The-Insider e-mail: [email protected] web:...
CVE-2003-0972
...
SRT2003-11-06-0710 - IBM DB2 Multiple local security issues
Secure Network Operations, Inc. http://www.secnetops.com/research Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...
News Evolution 1.02.0 - Include Undefined Variable Command Execution
News Evolution 1.02.0 - Include Undefined Variable Command Execution source: https://www.securityfocus.com/bid/6260/info News Evolution is a freely available, open source news software package. It is written in PHP, and designed for use on Unix and Linux operating systems. The problem occurs in t...
CVE-2002-1157
...
[security bulletin] SSRT-547 HP Tru64 UNIX Potential Security Vulnerabilities TPC/IP, FTPD, ARP
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 TITLE: SSRT-547 HP Tru64 UNIX Potential Security Vulnerabilities TPC/IP, FTPD, ARP REVISION: 0 NOTICE: There are no restrictions for distribution of this Bulletin provided that it remains complete and intact. RELEASE DATE: 10 September, 2002 SEVERITY:...