Lucene search
K

6882 matches found

UbuntuCve
UbuntuCve
added 2008/02/04 11:0 p.m.21 views

CVE-2008-0386

Xdg-utils 1.0.2 and earlier allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a URL argument to 1 xdg-open or 2 xdg-email...

6.8CVSS7.3AI score0.03171EPSS
Exploits1References1
Prion
Prion
added 2008/02/04 11:0 p.m.11 views

Code injection

Xdg-utils 1.0.2 and earlier allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a URL argument to 1 xdg-open or 2 xdg-email...

6.8CVSS8AI score0.03171EPSS
Exploits1References17Affected Software1
Debian CVE
Debian CVE
added 2008/02/04 10:0 p.m.44 views

CVE-2008-0386

Xdg-utils 1.0.2 and earlier allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a URL argument to 1 xdg-open or 2 xdg-email...

6.8CVSS8.3AI score0.03171EPSS
Exploits1
Prion
Prion
added 2008/02/01 8:0 p.m.11 views

Information disclosure

The NamoInstaller.NamoInstall.1 ActiveX control in NamoInstaller.dll 3.0.0.1 and earlier in Namo Web Editor in Sejoong Namo ActiveSquare 6 allows remote attackers to execute arbitrary code via a URL in the argument to the Install method. NOTE: some of these details are obtained from third party...

9.3CVSS7.9AI score0.29749EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2008/02/01 7:41 p.m.23 views

CVE-2008-0551

The NamoInstaller.NamoInstall.1 ActiveX control in NamoInstaller.dll 3.0.0.1 and earlier in Namo Web Editor in Sejoong Namo ActiveSquare 6 allows remote attackers to execute arbitrary code via a URL in the argument to the Install method. NOTE: some of these details are obtained from third party...

7.5AI score0.29749EPSS
Exploits1References7
Prion
Prion
added 2008/01/19 12:0 a.m.18 views

Information disclosure

onedcu in IBM Informix Dynamic Server IDS 10.x before 10.00.xC8 allows local users to create arbitrary files via the Trace file argument...

7.2CVSS6.6AI score0.00333EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2008/01/18 11:0 p.m.27 views

CVE-2008-0368

onedcu in IBM Informix Dynamic Server IDS 10.x before 10.00.xC8 allows local users to create arbitrary files via the Trace file argument...

6.2AI score0.00333EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2008/01/17 1:0 a.m.3 views

CVE-2007-6683

The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via 1 the :demuxdump-file option in a filename in a playlist, or 2 a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability...

5CVSS5.7AI score0.02778EPSS
Exploits2References12
UbuntuCve
UbuntuCve
added 2008/01/17 1:0 a.m.27 views

CVE-2007-6683

The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via 1 the :demuxdump-file option in a filename in a playlist, or 2 a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability...

5CVSS6AI score0.02778EPSS
Exploits2References1
Prion
Prion
added 2008/01/17 1:0 a.m.25 views

Design/Logic Flaw

The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via 1 the :demuxdump-file option in a filename in a playlist, or 2 a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability...

5CVSS7.2AI score0.02778EPSS
Exploits2References11Affected Software1
OSV
OSV
added 2008/01/17 1:0 a.m.10 views

CVE-2007-6683

The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via 1 the :demuxdump-file option in a filename in a playlist, or 2 a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability...

6.8AI score
Exploits0References11
CVE
CVE
added 2008/01/17 12:0 a.m.66 views

CVE-2007-6683

VLC 0.8.6d is affected by CVE-2007-6683 due to insecure argument validation that can allow remote overwriting of files writable by the user when opening a malicious M3U playlist or MP3 with a crafted EXTVLCOPT or demuxdump-file filename. Descriptions across sources (Debian GLSA/DSA, OpenVAS, Gent...

5CVSS6.8AI score0.02778EPSS
Exploits2References11Affected Software1
Debian CVE
Debian CVE
added 2008/01/17 12:0 a.m.43 views

CVE-2007-6683

The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via 1 the :demuxdump-file option in a filename in a playlist, or 2 a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability...

5CVSS5.8AI score0.02778EPSS
Exploits2
Prion
Prion
added 2008/01/12 2:46 a.m.13 views

Buffer overflow

Buffer overflow in an ActiveX control in ccpm0237.dll for StreamAudio ChainCast ProxyManager allows remote attackers to execute arbitrary code via a long URL argument to the InternalTuneIn method...

9.3CVSS8.5AI score0.10703EPSS
Exploits1References6
Cvelist
Cvelist
added 2008/01/12 2:0 a.m.21 views

CVE-2008-0248

Buffer overflow in an ActiveX control in ccpm0237.dll for StreamAudio ChainCast ProxyManager allows remote attackers to execute arbitrary code via a long URL argument to the InternalTuneIn method...

7.9AI score0.10703EPSS
Exploits1References6
Prion
Prion
added 2008/01/04 1:46 a.m.15 views

Stack overflow

A certain ActiveX control in npUpload.dll in DivX Player 6.6.0 allows remote attackers to cause a denial of service Internet Explorer 7 crash via a long argument to the SetPassword method...

5CVSS7.1AI score0.22526EPSS
Exploits1References3Affected Software2
ATTACKERKB
ATTACKERKB
added 2007/12/20 8:46 p.m.3 views

CVE-2007-6493

The IMWeb.IMWebControl.1 ActiveX control in IMWeb.dll 7.0.0.x, and possibly IMWebControl.dll, in iMesh 7.1.0.x and earlier allows remote attackers to execute arbitrary code via a certain argument to the SetHandler method...

10CVSS6.2AI score0.06762EPSS
Exploits1References6
securityvulns
securityvulns
added 2007/12/19 12:0 a.m.41 views

Apple Mac OS X mount_smbfs buffer overflow

Buffer overflow on command line -W argument parsing...

6.6CVSS4.9AI score0.01641EPSS
Exploits5References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2007/12/13 12:0 a.m.37 views

SuSE 10 Security Update : Samba (ZYPP Patch Number 3351)

Specially crafted MS-RPC packets could overwrite heap memory and therfore could potentially be exploited to execute code. CVE-2007-2446 Authenticated users could leverage specially crafted MS-RPC packets to pass arguments unfiltered to /bin/sh. CVE-2007-2447 %NASLMINLEVEL 70300 C Tenable Network...

10CVSS8.2AI score0.77806EPSS
Exploits39References4
Prion
Prion
added 2007/11/21 12:46 a.m.33 views

Buffer overflow

Buffer overflow in the isdnnetsetcfg function in isdnnet.c in Linux kernel 2.6.23 allows local users to have an unknown impact via a crafted argument to the isdnioctl function...

6.9CVSS6.1AI score0.00369EPSS
Exploits1References29Affected Software1
Rows per page
Query Builder