Lucene search
K

966 matches found

securityvulns
securityvulns
added 2011/08/19 12:0 a.m.67 views

ASPR #2011-08-18-1: Remote Binary Planting in Mozilla Firefox

=====BEGIN-ACROS-REPORT===== PUBLIC ========================================================================= ACROS Security Problem Report 2011-08-18-1 ------------------------------------------------------------------------- ASPR 2011-08-18-1: Remote Binary Planting in Mozilla Firefox...

7.2CVSS9.4AI score0.00294EPSS
Exploits5
OSV
OSV
added 2011/07/07 9:55 p.m.1 views

DEBIAN-CVE-2011-1498

Apache HttpClient 4.x before 4.1.1 in Apache HttpComponents, when used with an authenticating proxy server, sends the Proxy-Authorization header to the origin server, which allows remote web servers to obtain sensitive information by logging this header...

4.3CVSS9AI score0.06685EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2011/05/19 11:15 a.m.22 views

Low: Red Hat Security Advisory: squid security and bug fix update

An updated squid package that fixes one security issue and two bugs is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity ratin...

5CVSS5.8AI score0.64243EPSS
Exploits0References4
NVD
NVD
added 2011/05/16 6:55 p.m.15 views

CVE-2011-2142

The Web Client Service in IBM Datacap Taskmaster Capture 8.0.1 before FP1 requires a cleartext password, which has unspecified impact and attack vectors...

5CVSS6.3AI score0.00891EPSS
Exploits0References2
Prion
Prion
added 2011/05/16 6:55 p.m.12 views

Default credentials

The Web Client Service in IBM Datacap Taskmaster Capture 8.0.1 before FP1 requires a cleartext password, which has unspecified impact and attack vectors...

5CVSS7AI score0.00891EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2011/05/16 6:0 p.m.21 views

CVE-2011-2142

The Web Client Service in IBM Datacap Taskmaster Capture 8.0.1 before FP1 requires a cleartext password, which has unspecified impact and attack vectors...

6.3AI score0.00891EPSS
Exploits0References2
CVE
CVE
added 2011/05/16 6:0 p.m.49 views

CVE-2011-2142

The CVE-2011-2142 issue affects IBM Datacap Taskmaster Capture 8.0.1 prior to FP1, where the Web Client Service requires a cleartext password. The available data (NVD entry) states the impact and vectors as unspecified, with CVSS v2 base score 5.0 (Medium) and a network attack vector with no auth...

5CVSS6.5AI score0.00891EPSS
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2011/02/14 12:0 a.m.58 views

ASPR #2011-02-11-1: Remote Binary Planting in Adobe Reader

=====BEGIN-ACROS-REPORT===== PUBLIC ========================================================================= ACROS Security Problem Report 2011-02-11-1 ------------------------------------------------------------------------- ASPR 2011-02-11-1: Remote Binary Planting in Adobe Reader...

6.9CVSS9.6AI score0.00673EPSS
Exploits0
securityvulns
securityvulns
added 2011/02/14 12:0 a.m.75 views

ASPR #2011-02-11-2: Remote Binary Planting in Adobe Flash Player

=====BEGIN-ACROS-REPORT===== PUBLIC ========================================================================= ACROS Security Problem Report 2011-02-11-2 ------------------------------------------------------------------------- ASPR 2011-02-11-2: Remote Binary Planting in Adobe Flash Player...

6.9CVSS9AI score0.00699EPSS
Exploits0
NVD
NVD
added 2011/01/19 5:0 p.m.21 views

CVE-2010-4429

Unspecified vulnerability in the Agile Core component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote authenticated users to affect integrity via unknown vectors related to Web Client, a different vulnerability than CVE-2010-3505...

3.5CVSS5.4AI score0.01031EPSS
Exploits0References6
Prion
Prion
added 2011/01/19 5:0 p.m.19 views

Code injection

Unspecified vulnerability in the Agile Core component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote authenticated users to affect integrity via unknown vectors related to Web Client, a different vulnerability than CVE-2010-3505...

3.5CVSS5.6AI score0.01031EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2011/01/19 4:0 p.m.22 views

CVE-2010-4429

Unspecified vulnerability in the Agile Core component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote authenticated users to affect integrity via unknown vectors related to Web Client, a different vulnerability than CVE-2010-3505...

5.4AI score0.01031EPSS
Exploits0References6
NVD
NVD
added 2010/12/29 6:0 p.m.20 views

CVE-2010-4600

Dojo Toolkit, as used in the Web client in IBM Rational ClearQuest 7.1.1.x before 7.1.1.4 and 7.1.2.x before 7.1.2.1, allows remote attackers to read cookies by navigating to a Dojo file, related to an "open direct" issue...

5CVSS6.3AI score0.01229EPSS
Exploits0References3
NVD
NVD
added 2010/12/29 6:0 p.m.15 views

CVE-2010-4602

The Web client in IBM Rational ClearQuest 7.1.1.x before 7.1.1.4 and 7.1.2.x before 7.1.2.1 allows remote authenticated users to bypass "restricted user" limitations, and read arbitrary records, via a modified record number in the URL for a RECORD action, as demonstrated by a modified bookmark...

4CVSS6.1AI score0.0115EPSS
Exploits1References4
CVE
CVE
added 2010/12/29 5:27 p.m.47 views

CVE-2010-4600

CVE-2010-4600 affects IBM Rational ClearQuest Web Client using Dojo Toolkit: versions 7.1.1.x before 7.1.1.4 and 7.1.2.x before 7.1.2.1 expose cookie data to remote attackers who navigate to a Dojo file via an related “open direct” issue. The vulnerability is an information disclosure in the Dojo...

5CVSS6.5AI score0.01229EPSS
Exploits0References3Affected Software2
CVE
CVE
added 2010/12/29 5:27 p.m.49 views

CVE-2010-4602

IBM Rational ClearQuest 7.1.1.x before 7.1.1.4 and 7.1.2.x before 7.1.2.1 contains a web client vulnerability that allows remote authenticated users to bypass the “restricted user” restrictions and read arbitrary records by modifying the record number in the URL for a RECORD action (e.g., via a b...

4CVSS6.3AI score0.0115EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2010/12/29 5:27 p.m.17 views

CVE-2010-4602

The Web client in IBM Rational ClearQuest 7.1.1.x before 7.1.1.4 and 7.1.2.x before 7.1.2.1 allows remote authenticated users to bypass "restricted user" limitations, and read arbitrary records, via a modified record number in the URL for a RECORD action, as demonstrated by a modified bookmark...

6.1AI score0.0115EPSS
Exploits1References4
securityvulns
securityvulns
added 2010/11/10 12:0 a.m.68 views

ASPR #2010-11-10-3: Remote Binary Planting in Microsoft Excel 2010

=====BEGIN-ACROS-REPORT===== PUBLIC ========================================================================= ACROS Security Problem Report 2010-11-10-3 ------------------------------------------------------------------------- ASPR 2010-11-10-3: Remote Binary Planting in Microsoft Excel 2010...

9.3CVSS0.11139EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/11/03 12:0 a.m.11 views

Web Client Detection

Binary data 5697.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/08/25 12:0 a.m.15 views

Serv-U < 10.2.0.0

According to its banner, the installed version of Serv-U is earlier than 10.2.0.0 and is, therefore, potentially affected by the following issues : - It is possible to create a directory, when using virtual paths and various combinations of permissions, where the end-user does not have permission...

5.5AI score
Exploits0References1
Rows per page
Query Builder