Lucene search
K

9873 matches found

Tenable Nessus
Tenable Nessus
added 2013/07/19 12:0 a.m.226 views

IBM WebSphere Application Server 7.0 < Fix Pack 29 Multiple Vulnerabilities

IBM WebSphere Application Server 7.0 before Fix Pack 29 appears to be running on the remote host. It is, therefore, potentially affected by the following vulnerabilities : - The TLS protocol in the GSKIT component is vulnerable to a plaintext recovery attack. CVE-2013-0169, PM85211 - The...

7.5CVSS6.9AI score0.35584EPSS
Exploits1References13
Prion
Prion
added 2013/07/11 10:55 p.m.21 views

Code injection

The JMX Remoting functionality in Apache Geronimo 3.x before 3.0.1, as used in IBM WebSphere Application Server WAS Community Edition 3.0.0.3 and other products, does not properly implement the RMI classloader, which allows remote attackers to execute arbitrary code by using the JMX connector to...

10CVSS8AI score0.09808EPSS
Exploits0References4Affected Software2
Cvelist
Cvelist
added 2013/07/11 10:0 p.m.25 views

CVE-2013-1777

The JMX Remoting functionality in Apache Geronimo 3.x before 3.0.1, as used in IBM WebSphere Application Server WAS Community Edition 3.0.0.3 and other products, does not properly implement the RMI classloader, which allows remote attackers to execute arbitrary code by using the JMX connector to...

7.3AI score0.09808EPSS
Exploits0References4
CVE
CVE
added 2013/07/11 10:0 p.m.80 views

CVE-2013-1777

The CVE-2013-1777 issue is concrete: Apache Geronimo 3.x (notably in WebSphere Application Server Community Edition 3.0.0.3) exposes an RMI classloader misconfiguration that allows remote attackers to execute arbitrary code by sending a crafted serialized object through JMX. The root cause is imp...

10CVSS7.5AI score0.09808EPSS
Exploits0References4Affected Software2
Tenable Nessus
Tenable Nessus
added 2013/07/11 12:0 a.m.56 views

Cisco Prime Data Center Network Manager RMI Remote Code Execution (credentialed check)

According to its self-reported version number, the version of Cisco Prime Data Center Network Manager DCNM installed on the remote host is affected by a remote code execution vulnerability. Unauthorized users have access to the JBoss Application Server Remote Method Invocation services. A remote,...

10CVSS7AI score0.81832EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2013/07/11 12:0 a.m.41 views

Cisco Prime Data Center Network Manager RMI Remote Code Execution (uncredentialed check)

According to its self-reported version number, the version of Cisco Prime Data Center Network Manager DCNM installed on the remote host is affected by a remote code execution vulnerability. Unauthorized users have access to the JBoss Application Server Remote Method Invocation services. A remote,...

10CVSS7AI score0.81832EPSS
Exploits5References3
Symantec
Symantec
added 2013/07/09 12:0 a.m.26 views

Microsoft Internet Explorer CVE-2013-3145 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Microsoft Internet Explorer 9 is affected...

9.3CVSS0.1AI score0.25039EPSS
Exploits1Affected Software10
Symantec
Symantec
added 2013/07/09 12:0 a.m.24 views

Microsoft Internet Explorer CVE-2013-3148 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Microsoft Internet Explorer 6, 7, 8, 9, and 10...

9.3CVSS0.25039EPSS
Exploits0Affected Software10
Symantec
Symantec
added 2013/07/09 12:0 a.m.22 views

Microsoft Silverlight Null Pointer CVE-2013-3178 Remote Code Execution Vulnerability

Description Microsoft Silverlight is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts will likely result in a denial-of-service condition. Technologies Affected...

9.3CVSS0.7AI score0.32071EPSS
Exploits0Affected Software10
Symantec
Symantec
added 2013/07/09 12:0 a.m.54 views

Microsoft .NET Framework CVE-2013-3171 Remote Privilege Escalation Vulnerability

Description Microsoft .NET Framework is prone to a remote privilege-escalation vulnerability. An attacker can exploit this vulnerability to bypass certain Code Access Security CAS restrictions and gain elevated privileges. Technologies Affected Avaya CallPilot 4.0 Avaya CallPilot 4.0.1 Avaya...

9.3CVSS0.3AI score0.206EPSS
Exploits0Affected Software9
Symantec
Symantec
added 2013/07/09 12:0 a.m.26 views

Microsoft Internet Explorer CVE-2013-3162 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Microsoft Internet Explorer 7, 8, 9, and 10 are...

9.3CVSS8.8AI score0.25039EPSS
Exploits1Affected Software10
Symantec
Symantec
added 2013/07/09 12:0 a.m.36 views

Microsoft Windows Kernel 'Win32k.sys' CVE-2013-1300 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers...

7.2CVSS0.5AI score0.1218EPSS
Exploits8Affected Software12
Symantec
Symantec
added 2013/07/09 12:0 a.m.35 views

Microsoft .NET Framework CVE-2013-3132 Remote Privilege Escalation Vulnerability

Description Microsoft .NET Framework is prone to a remote privilege-escalation vulnerability. An attacker can exploit this vulnerability to bypass certain Code Access Security CAS restrictions and gain elevated privileges. Technologies Affected Avaya CallPilot 4.0 Avaya CallPilot 4.0.1 Avaya...

9.3CVSS0.3AI score0.21764EPSS
Exploits0Affected Software9
Symantec
Symantec
added 2013/07/09 12:0 a.m.25 views

Microsoft Internet Explorer CVE-2013-3115 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Microsoft Internet Explorer 7, 8, 9, and 10 are...

9.3CVSS8.8AI score0.25039EPSS
Exploits1Affected Software10
Symantec
Symantec
added 2013/07/09 12:0 a.m.24 views

Microsoft Internet Explorer CVE-2013-3149 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Microsoft Internet Explorer 7 and 8 are affecte...

9.3CVSS0.1AI score0.25039EPSS
Exploits0Affected Software10
Symantec
Symantec
added 2013/07/09 12:0 a.m.32 views

Microsoft Windows Kernel 'Win32k.sys' CVE-2013-3173 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers...

7.2CVSS0.5AI score0.01955EPSS
Exploits1Affected Software12
Symantec
Symantec
added 2013/07/09 12:0 a.m.29 views

Microsoft Internet Explorer CVE-2013-3152 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Microsoft Internet Explorer 10 is affected...

9.3CVSS0.1AI score0.23587EPSS
Exploits0Affected Software10
Symantec
Symantec
added 2013/07/09 12:0 a.m.17 views

Microsoft Internet Explorer Shift JIS Encoded Characters Cross-Site Scripting Vulnerability

Description Microsoft Internet Explorer is prone to a cross-site scripting vulnerability. An attacker can exploit this issue to gain access to information in another domain or Internet Explorer zone. This may allow the attacker to obtain sensitive information that may aid in further attacks...

7AI score
Exploits0Affected Software10
Symantec
Symantec
added 2013/07/09 12:0 a.m.22 views

Microsoft Internet Explorer CVE-2013-3161 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Microsoft Internet Explorer 9 and 10 are...

9.3CVSS0.1AI score0.25039EPSS
Exploits0Affected Software10
Symantec
Symantec
added 2013/07/09 12:0 a.m.29 views

Microsoft Windows Kernel 'Win32k.sys' CVE-2013-1340 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers...

7.2CVSS0.5AI score0.01526EPSS
Exploits1Affected Software12
Rows per page
Query Builder