Lucene search
K

14 matches found

Schneier on Security
Schneier on Security
added 2026/06/02 11:0 a.m.16 views

Microsoft Threatening Security Researcher

An anonymous security researcher called "Nightmare Eclipse" has been publishing a series of significant security exploits against Microsoft Windows--including one that breaks BitLocker. Microsoft has threatened legal action against the researcher. Lots of recriminations are being traded back and...

5.7AI score
Exploits0
Apple
Apple
added 2024/10/29 12:0 a.m.529 views

About the security content of Safari18.1

About the security content of Safari18.1 This document describes the security content of Safari 18.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

8.8CVSS6.5AI score0.01028EPSS
Exploits0References1Affected Software1
Apple
Apple
added 2022/05/16 12:0 a.m.889 views

About the security content of Safari 15.5

About the security content of Safari 15.5 This document describes the security content of Safari 15.5. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

8.8CVSS9.8AI score0.01424EPSS
Exploits0References1Affected Software1
Malwarebytes
Malwarebytes
added 2022/01/27 9:56 p.m.91 views

Update now! Apple patches another actively used zero-day

Apple has released patches for iOS 15.3, iPadOS 15.3, and macOS Monterey 12.2 and is urging users to update. The most significant reasons are two actively exploited zero-day vulnerabilities, one of which has a publicly disclosed Proof-of-Concept PoC. Using this vulnerability, designated...

9.3CVSS8.7AI score0.28839EPSS
Exploits0
Apple
Apple
added 2021/06/14 12:0 a.m.56 views

About the security content of iOS 12.5.4

About the security content of iOS 12.5.4 This document describes the security content of iOS 12.5.4. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

8.8CVSS10AI score0.10986EPSS
Exploits0References1Affected Software1
Apple
Apple
added 2020/03/24 12:0 a.m.43 views

About the security content of Xcode 11.4

About the security content of Xcode 11.4 This document describes the security content of Xcode 11.4. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

7.1AI score
Exploits0References1Affected Software1
Exploit DB
Exploit DB
added 2020/01/02 12:0 a.m.154 views

Microsoft Windows - Shell COM Server Registrar Local Privilege Escalation

// Axel '0vercl0k' Souchet - December 28 2019 // References: // - Found by an anonymous researcher, written up by Simon '@HexKitchen' Zuckerbraun // - https://www.zerodayinitiative.com/blog/2019/12/19/privilege-escalation-via-the-core-shell-com-registrar-object // -...

7.4AI score
Exploits0
Mozilla
Mozilla
added 2015/08/11 12:0 a.m.39 views

Overflow issues in libstagefright — Mozilla

An anonymous researcher reported, via TippingPoint's Zero Day Initiative, two integer overflows in the libstagefright library that could be triggered by a malicious 'saio' chunk in an MPEG4 video. These overflows allowed for potential arbitrary code execution. This issue was independently reporte...

10CVSS7.7AI score0.09027EPSS
Exploits0References7Affected Software3
Vulnerability Lab
Vulnerability Lab
added 2014/09/29 12:0 a.m.20 views

Microsoft Pillar - Client Side SWF Cross Site Vulnerability

Document Title: =============== Microsoft Pillar - Client Side SWF Cross Site Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1328 https://www.youtube.com/watch?v=jVMHhCxM2pY Release Date: ============= 2014-09-29 Vulnerability Laboratory ID VL-ID:...

7.1AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2011/08/13 12:0 a.m.29 views

Juniper Website - Cross Site Scripting Vulnerabilities

Document Title: =============== Juniper Website - Cross Site Scripting Vulnerabilities Release Date: ============= 2011-08-13 Vulnerability Laboratory ID VL-ID: ==================================== 248 Product & Service Introduction: =============================== Networking and security solutio...

7.1AI score
Exploits0
xssed
xssed
added 2007/08/27 12:0 a.m.9 views

Unfixed XSS vulnerability at www.mouthshut.com

Security researcher Anonymous, has submitted on 27/08/2007 a cross-site-scripting XSS vulnerability affecting www.mouthshut.com, which at the time of submission ranked 12675 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 30/08/2007. It is...

Exploits0References1
Gentoo Linux
Gentoo Linux
added 2007/02/17 12:0 a.m.50 views

Sun JDK/JRE: Execution of arbitrary code

Background The Sun Java Development Kit JDK and the Sun Java Runtime Environment JRE provide the Sun Java platform. Description A anonymous researcher discovered that an error in the handling of a GIF image with a zero width field block leads to a memory corruption flaw. Impact An attacker could...

6.8CVSS6.8AI score0.10994EPSS
Exploits1
securityvulns
securityvulns
added 2006/12/23 12:0 a.m.42 views

[Full-disclosure] ZDI-06-054: Novell NetMail IMAP APPEND Buffer Overflow Vulnerability

ZDI-06-054: Novell NetMail IMAP APPEND Buffer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-054.html December 22, 2006 -- CVE ID: CVE-2006-6425 -- Affected Vendor: Novell -- Affected Products: Novell NetMail 3.5.2 -- TippingPointTM IPS Customer Protection: TippingPoint...

9CVSS0.5AI score0.58474EPSS
Exploits7
securityvulns
securityvulns
added 2006/11/05 12:0 a.m.57 views

ZDI-06-036: Novell Netmail User Authentication Buffer Overflow Vulnerability

ZDI-06-036: Novell Netmail User Authentication Buffer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-036.html October 31, 2006 -- CVE ID: CVE-2006-5478 -- Affected Vendor: Novell -- Affected Products: Netmail 3.5.2 Novell eDirectory 8.8.1 -- TippingPointTM IPS Customer...

7.5CVSS0.2AI score0.83891EPSS
Exploits11
Rows per page
Query Builder