Lucene search
K

74 matches found

Zero Day Initiative
Zero Day Initiative
added 2014/04/17 12:0 a.m.30 views

Hewlett-Packard Virtual User Generator EmulationAdmin Service Information Disclosure Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Virtual User Generator. Authentication is not required to exploit this vulnerability. The specific flaw exists within the exposed EmulationAdminSoapBinding web service. The issue lies in the...

10CVSS1.6AI score0.10521EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2014/03/28 12:0 a.m.40 views

iStArtApp FileXChange 6.2 Command Injection / LFI / File Upload

Document Title: =============== iStArtApp FileXChange v6.2 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1237 Release Date: ============= 2014-03-26 Vulnerability Laboratory ID VL-ID:...

0.4AI score
Exploits0
Gentoo Linux
Gentoo Linux
added 2013/12/16 12:0 a.m.26 views

Win32 Codecs: User-assisted execution of arbitrary code

Background Win32 Codecs is a set of Windows audio and video playback codecs. Description A heap-based buffer overflow exists when handling Shockwave Flash files. Impact A remote attacker could entice a user to open a specially crafted Flash file using a package linked against Win32 Codecs, possib...

9.3CVSS7.3AI score0.06765EPSS
Exploits1
Cvelist
Cvelist
added 2012/08/29 10:0 a.m.33 views

CVE-2012-3979

Mozilla Firefox before 15.0 on Android does not properly implement unspecified callers of the androidlogprint function, which allows remote attackers to execute arbitrary code via a crafted web page that calls the JavaScript dump function...

7.2AI score0.01884EPSS
Exploits1References5
Saint
Saint
added 2011/10/31 12:0 a.m.25 views

Symantec IM Manager IMAdminLDAPConfig.asp SQL injection

Added: 10/31/2011 CVE: CVE-2011-0553 BID: 49738 OSVDB: 75984 Background Symantec IM Manager is a solution for managing and securing instant-messaging traffic in an enterprise. Problem An SQL injection vulnerability in IMAdminLDAPConfig.asp allows remote, authenticated attackers to execute arbitra...

7.5CVSS7.8AI score0.01854EPSS
Exploits4
EUVD
EUVD
added 2011/01/20 6:0 p.m.6 views

EUVD-2011-0516

Unspecified vulnerability in Sybase EAServer 5.x and 6.x before 6.3 ESD2, as used in Appeon, Replication Server Messaging Edition RSME, and WorkSpace, allows remote attackers to install arbitrary web services and execute arbitrary code, related to a "design vulnerability."...

10CVSS7.2AI score0.04549EPSS
Exploits0References6
0day.today
0day.today
added 2010/10/05 12:0 a.m.19 views

DNET Live-Stats LFI Vulnerability

Exploit for php platform in category web applications ================================= DNET Live-Stats LFI Vulnerability ================================= Date: 10-04-10 Author: Blake Software Link: http://sourceforge.net/projects/dnetlivestats/files/0.8/dnet-live-stats-0.8-rc8.zip/download...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/12/19 12:0 a.m.17 views

ProWizard 4 PC 1.62 - Multiple Remote Stack Buffer Overflow Vulnerabilities

ProWizard 4 PC 1.62 - Multiple Remote Stack Buffer Overflow Vulnerabilities // source: https://www.securityfocus.com/bid/26953/info ProWizard 4 PC is prone to multiple stack-based buffer-overflow issues because it fails to perform adequate boundary checks on user-supplied data. Successfully...

1AI score
Exploits0
Ubuntu
Ubuntu
added 2007/10/04 9:6 p.m.54 views

USN-524-1: OpenOffice.org vulnerability

An integer overflow was discovered in the TIFF handling code in OpenOffice. If a user were tricked into loading a malicious TIFF image, a remote attacker could execute arbitrary code with user privileges...

9.3CVSS5.9AI score0.1132EPSS
Exploits0
FreeBSD
FreeBSD
added 2006/10/04 12:0 a.m.22 views

mono -- "System.CodeDom.Compiler" Insecure Temporary Creation

Sebastian Krahmer reports: Sebastian Krahmer of the SuSE security team discovered that the System.CodeDom.Compiler classes used temporary files in an insecure way. This could allow a symbolic link attack to create or overwrite arbitrary files with the privileges of the user invoking the program...

6.2CVSS6.5AI score0.00449EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2005/03/02 12:0 a.m.20 views

GLSA-200503-01 : Qt: Untrusted library search path

The remote host is affected by the vulnerability described in GLSA-200503-01 Qt: Untrusted library search path Tavis Ormandy of the Gentoo Linux Security Audit Team has discovered that Qt searches for shared libraries in an untrusted, world-writable directory. Impact : A local attacker could crea...

4.6CVSS6.1AI score0.00361EPSS
Exploits0References2
Cvelist
Cvelist
added 2005/01/19 5:0 a.m.23 views

CVE-2004-0561

Format string vulnerability in the log routine for gopher daemon gopherd 3.0.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code...

7.2AI score0.02319EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2003/05/20 12:0 a.m.96 views

Microsoft BizTalk Server Multiple Remote Vulnerabilities

The remote host seems to be running Microsoft BizTalk server. There are two flaws in this software that could allow an attacker to issue a SQL insertion attack or to execute arbitrary code on the remote host. Note that Nessus solely relied on the presence of a Biztalk DLL to issue this alert so i...

7.5CVSS6.5AI score0.09055EPSS
Exploits0References3
exploitpack
exploitpack
added 2000/09/04 12:0 a.m.38 views

Libc locale - Local Privilege Escalation (2)

Libc locale - Local Privilege Escalation 2 / source: https://www.securityfocus.com/bid/1634/info ectiva 4.x/5.x,Debian 2.x,IBM AIX 3.x/4.x,Mandrake 7,RedHat 5.x/6.x,IRIX 6.x, Solaris 2.x/7/8,Turbolinux 6.x,Wirex Immunix OS 6.2 Locale Subsystem Format String Many UNIX operating systems provide...

0.7AI score
Exploits0
Rows per page
Query Builder