Lucene search
K

931 matches found

Tenable Nessus
Tenable Nessus
added 2009/12/04 12:0 a.m.19 views

Mandriva Linux Security Advisory : ghostscript (MDVSA-2009:311)

Multiple security vulnerabilities has been identified and fixed in ghostscript : A buffer underflow in Ghostscript's CCITTFax decoding filter allows remote attackers to cause denial of service and possibly to execute arbitrary by using a crafted PDF file CVE-2007-6725. Buffer overflow in...

10CVSS8.1AI score0.07365EPSS
Exploits5References8
Tenable Nessus
Tenable Nessus
added 2009/11/30 12:0 a.m.39 views

openSUSE Security Update : java-1_6_0-openjdk (java-1_6_0-openjdk-1613)

New icedtea update to fix : - ICCProfile file existence detection information leak; CVE-2009-3728: CVSS v2 Base Score: 5.0 - BMP parsing DoS with UNC ICC links; CVE-2009-3885: CVSS v2 Base Score: 5.0 - resurrected classloaders can still have children; CVE-2009-3881: CVSS v2 Base Score: 7.5 -...

9.3CVSS6.8AI score0.65461EPSS
Exploits13References17
Tenable Nessus
Tenable Nessus
added 2009/11/30 12:0 a.m.33 views

openSUSE Security Update : java-1_6_0-openjdk (java-1_6_0-openjdk-1613)

New icedtea update to fix : - ICCProfile file existence detection information leak; CVE-2009-3728: CVSS v2 Base Score: 5.0 - BMP parsing DoS with UNC ICC links; CVE-2009-3885: CVSS v2 Base Score: 5.0 - resurrected classloaders can still have children; CVE-2009-3881: CVSS v2 Base Score: 7.5 -...

9.3CVSS6.8AI score0.65461EPSS
Exploits13References17
Tenable Nessus
Tenable Nessus
added 2009/11/30 12:0 a.m.293 views

openSUSE Security Update : java-1_6_0-openjdk (java-1_6_0-openjdk-1613)

New icedtea update to fix : - ICCProfile file existence detection information leak; CVE-2009-3728: CVSS v2 Base Score: 5.0 - BMP parsing DoS with UNC ICC links; CVE-2009-3885: CVSS v2 Base Score: 5.0 - resurrected classloaders can still have children; CVE-2009-3881: CVSS v2 Base Score: 7.5 -...

9.3CVSS6.8AI score0.65461EPSS
Exploits13References17
seebug.org
seebug.org
added 2009/11/27 12:0 a.m.29 views

Microsoft IE PDF文件信息泄露漏洞

BUGTRAQ ID: 37117 CVECAN ID: CVE-2009-4073 Internet Explorer是Windows操作系统中默认捆绑的WEB浏览器。 Internet Explorer中的打印功能允许远程攻击者发现本地路径名和用户名。在使用Internet Explorer以PDF形式打印本地保存的网页时,从本地网页所生成的PDF文档的dc:title中可能泄露文件路径的前63个字节。 Microsoft Internet Explorer 8.0 Microsoft Internet Explorer 7.0 Microsoft Internet Explorer...

5CVSS6.4AI score0.1959EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2009/11/16 3:44 p.m.5 views

OpenJDK JPEG Image Writer quantization problem (6862968)

The JPEG Image Writer in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to gain privileges via a crafted image file, related to a "quantization problem," aka Bug Id 6862968...

9.3CVSS5.9AI score0.04211EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/11/10 7:30 p.m.5 views

OpenJDK JPEG Image Writer quantization problem (6862968)

The JPEG Image Writer in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to gain privileges via a crafted image file, related to a "quantization problem," aka Bug Id 6862968...

9.3CVSS5.9AI score0.04211EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/11/09 3:4 p.m.5 views

OpenJDK JPEG Image Writer quantization problem (6862968)

The JPEG Image Writer in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to gain privileges via a crafted image file, related to a "quantization problem," aka Bug Id 6862968...

9.3CVSS5.9AI score0.04211EPSS
Exploits1References4
NVD
NVD
added 2009/11/05 4:30 p.m.24 views

CVE-2009-3873

The JPEG Image Writer in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to gain privileges via a crafted image file, related to a "quantization problem," aka Bug Id 6862968...

9.3CVSS6.4AI score0.04211EPSS
Exploits1References26
Prion
Prion
added 2009/11/05 4:30 p.m.17 views

Design/Logic Flaw

The JPEG Image Writer in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to gain privileges via a crafted image file, related to a "quantization problem," aka Bug Id 6862968...

9.3CVSS6.7AI score0.04211EPSS
Exploits1References26Affected Software3
Cvelist
Cvelist
added 2009/11/05 4:0 p.m.27 views

CVE-2009-3873

The JPEG Image Writer in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to gain privileges via a crafted image file, related to a "quantization problem," aka Bug Id 6862968...

6.4AI score0.04211EPSS
Exploits1References26
CVE
CVE
added 2009/11/05 4:0 p.m.124 views

CVE-2009-3873

CVE-2009-3873 is the OpenJDK/Sun JPEG Image Writer quantization vulnerability. The issue allows remote attackers to gain privileges by crafting a malicious image file. Affected products include Sun Java SE JDK/JRE 5.0 prior to Update 22, JDK/JRE 6 prior to Update 17, and SDK/JRE 1.4.x prior to 1....

9.3CVSS6.5AI score0.04211EPSS
Exploits1References26Affected Software2
UbuntuCve
UbuntuCve
added 2009/11/05 12:0 a.m.32 views

CVE-2009-3873

The JPEG Image Writer in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to gain privileges via a crafted image file, related to a "quantization problem," aka Bug Id 6862968...

9.3CVSS5.9AI score0.04211EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/11/04 3:14 p.m.5 views

OpenJDK JPEG Image Writer quantization problem (6862968)

The JPEG Image Writer in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to gain privileges via a crafted image file, related to a "quantization problem," aka Bug Id 6862968...

9.3CVSS5.9AI score0.04211EPSS
Exploits1References4
Oracle linux
Oracle linux
added 2009/10/22 12:0 a.m.63 views

kernel security and bug fix update

2.6.9-89.0.15.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race...

4.9CVSS0.3AI score0.00399EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2009/09/24 12:0 a.m.28 views

SuSE 11 Security Update : GhostScript (SAT Patch Number 876)

Specially crafted file could cause a heap-overflow in JBIG2 decoder CVE-2009-0196, an integer overflow in ICC library CVE-2009-0792, a buffer overflow in BaseFont writer module CVE-2008-6679 or crash the CCITTFax decoder. CVE-2007-6725 The previous security update introduced a regression that bro...

9.3CVSS5.3AI score0.07365EPSS
Exploits3References11
RedHat Linux
RedHat Linux
added 2009/08/06 8:41 p.m.5 views

OpenJDK information leaks in mutable variables (6588003,6656586,6656610,6656625,6657133,6657619,6657625,6657695,6660049,6660539,6813167)

Sun Java SE 5.0 before Update 20 and 6 before Update 15, and OpenJDK, might allow context-dependent attackers to obtain sensitive information via vectors involving static variables that are declared without the final keyword, related to 1 LayoutQueue, 2 Cursor.predefined, 3...

7.8CVSS6.1AI score0.02318EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2009/08/04 12:0 a.m.62 views

kernel security and bug fix update

2.6.18-128.4.1.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki,Guru Anbalagane orabug 6045759 - MM shrink zone patch John Sobecki,Chris Mason orabug 6086839 - NET Add xen pv/bonding netconsole support Tina yang orabug 6993043 bz 7258 - nfs convert ENETUNREACH to ENOTCONN Guru...

7.8CVSS0.1AI score0.33491EPSS
Exploits8
Packet Storm
Packet Storm
added 2009/07/29 12:0 a.m.21 views

Miniweb 2.0 Blog Writer XSS

-----------------------------I AM MUSLIM !!------------------------------ ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.40 views

openSUSE Security Update : ghostscript-devel (ghostscript-devel-877)

Specially crafted file could cause a heap-overflow in JBIG2 decoder CVE-2009-0196, an integer overflow in ICC library CVE-2009-0792, a buffer overflow in BaseFont writer module CVE-2008-6679 or crash the CCITTFax decoder CVE-2007-6725. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

9.3CVSS5.3AI score0.07365EPSS
Exploits3References7
Rows per page
Query Builder