Lucene search
+L

2452 matches found

seebug.org
seebug.org
added 2017/02/23 12:0 a.m.56 views

Android Arbitrary class loading and instantiation in protobuf parcelable "javanano" compiler

The protobuf library includes the "javanano" compiler, commonly used in many Android applications due to its tiny resource footprint. The "javanano" compiler supports a variety of Android-specific compilation flags which can be used to modify the generated message classes. One such compilation fl...

7AI score
Exploits0
RedHat Linux
RedHat Linux
added 2017/02/13 11:17 a.m.5 views

OpenJDK: incorrect URL parsing in URLStreamHandler (Networking, 8167223)

It was discovered that the Networking component of OpenJDK failed to properly parse user info from the URL. A remote attacker could cause a Java application to incorrectly parse an attacker supplied URL and interpret it differently from other applications processing the same URL...

5.3CVSS7.4AI score0.02729EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/01/31 5:52 a.m.4 views

nagios: Command injection via curl in MagpieRSS

It was found that an attacker who could control the content of an RSS feed could execute code remotely using the Nagios web interface. This flaw could be used to gain access to the remote system and in some scenarios control over the system...

9.8CVSS5.9AI score0.22684EPSS
Exploits10References5
OSV
OSV
added 2017/01/30 10:59 p.m.9 views

UBUNTU-CVE-2016-9132

In Botan 1.8.0 through 1.11.33, when decoding BER data an integer overflow could occur, which would cause an incorrect length field to be computed. Some API callers may use the returned incorrect and attacker controlled length field in a way which later causes memory corruption or other failure...

9.8CVSS7.3AI score0.01978EPSS
Exploits0References2
Veracode
Veracode
added 2016/12/20 6:51 a.m.20 views

Man In The Middle (MitM)

macaca-chromedriver is vulnerable to man-in-the-middle MitM attacks. This is because the library downloads binary resources via HTTP, allowing MitM attacks. It may also cause remote code execution RCE by swapping out the requested binary with an attacker controlled binary if the attacker is on th...

9.3CVSS8.3AI score0.01752EPSS
Exploits0References1Affected Software1
Veracode
Veracode
added 2016/12/20 5:0 a.m.19 views

Man In The Middle (MitM)

baryton-saxophone is vulnerable to man-in-the-middle MitM attacks. This is because the library downloads binary resources via HTTP, allowing MitM attacks. It may also cause remote code execution RCE by swapping out the requested binary with an attacker controlled binary if the attacker is on the...

9.3CVSS8.3AI score0.02104EPSS
Exploits0References1Affected Software1
Veracode
Veracode
added 2016/12/19 7:43 a.m.16 views

Man In The Middle (MitM)

operadriver is vulnerable to man-in-the-middle MitM attacks. This is because the library downloads binary resources via HTTP, allowing MitM attacks. It may also cause remote code execution RCE by swapping out the requested binary with an attacker controlled binary if the attacker is on the networ...

8.1CVSS8.3AI score0.01114EPSS
Exploits0References1Affected Software1
Veracode
Veracode
added 2016/12/19 6:32 a.m.16 views

Man In The Middle (MitM)

embedza is vulnerable to man-in-the-middle attacks. The library downloads binaries via HTTP, causing remote code execution RCE by swapping out the requested binary with an attacker controlled binary if the attacker is on the network or positioned in between the user and the remote server...

9.3CVSS8.3AI score0.01752EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2016/11/22 12:0 a.m.3 views

OwnCloud 'file' app content spoofing vulnerability

OwnCloud is a free and open source personal cloud storage solution from OwnCloud Germany. A content spoofing vulnerability exists in the OwnCloud 'file' app due to the location bar in the file app failing to validate passed parameters, allowing an attacker to spoof a link to a fake directory...

6.7AI score
Exploits0References1
Packet Storm
Packet Storm
added 2016/11/18 12:0 a.m.62 views

PowerShellEmpire Arbitrary File Upload (Skywalker)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'PowerShellEmpire Arbitrary File Upload Skywalker', 'Description' = %q A vulnerability existed in the PowerShellEmpire server...

0.4AI score
Exploits0
OwnCloud
OwnCloud
added 2016/11/10 11:59 a.m.509 views

Server: Content-Spoofing in "files" app

The location bar in the files app was not verifying the passed parameters. An attacker could craft an invalid link to a fake directory structure and use this to display an attacker-controlled error message to the user. For more information please consult the official advisory. This advisory is...

6.5AI score
Exploits0Affected Software1
Microsoft CVE
Microsoft CVE
added 2016/10/11 7:0 a.m.32 views

Microsoft Browser Information Disclosure Vulnerability

An information disclosure vulnerability exists when affected Microsoft scripting engines do not properly handle objects in memory. The vulnerability could allow an attacker to detect specific files on the user's computer. In a web-based attack scenario, an attacker could host a website that is us...

5.3CVSS0.9AI score0.15885EPSS
Exploits0
Nextcloud
Nextcloud
added 2016/10/10 12:0 a.m.29 views

Content-Spoofing in "files" app (NC-SA-2016-010)

The location bar in the files app was not verifying the passed parameters. An attacker could craft an invalid link to a fake directory structure and use this to display an attacker-controlled error message to the user...

5CVSS5.3AI score0.02972EPSS
Exploits1Affected Software1
Microsoft CVE
Microsoft CVE
added 2016/09/13 7:0 a.m.36 views

Microsoft Browser Information Disclosure Vulnerability

An information disclosure vulnerability exists when affected Microsoft scripting engines do not properly handle objects in memory. The vulnerability could allow an attacker to detect specific files on the user's computer. In a web-based attack scenario, an attacker could host a website that is us...

6.5CVSS0.9AI score0.26286EPSS
Exploits1
CNVD
CNVD
added 2016/09/07 12:0 a.m.4 views

Trend Micro InterScan Messaging Security Open Redirect Vulnerability

Trend Micro InterScan Messaging Security is a hybrid SaaS email security solution. Trend Micro InterScan Messaging Security suffers from an open redirection vulnerability. The vulnerability allows an attacker to be redirected to an attacker-controlled website...

6.9AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/08/22 6:7 p.m.4 views

HTTPD: sets environmental variable based on user supplied Proxy request header

It was discovered that httpd used the value of the Proxy header from HTTP requests to initialize the HTTPPROXY environment variable for CGI scripts, which in turn was incorrectly used by certain HTTP client implementations to configure the proxy for outgoing HTTP requests. A remote attacker could...

8.1CVSS6.8AI score0.55724EPSS
Exploits0References7
Exploit DB
Exploit DB
added 2016/06/10 12:0 a.m.24 views

Apple Mac OSX Kernel - Out-of-Bounds Read of Object Pointer Due to Insufficient Checks in Raw Cast to enum Type

/ Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=774 The IOHIDFamily function IOHIDDevice::handleReportWithTime takes at attacker controlled unchecked IOHIDReportType enum, which was cast from an int in either IOHIDLibUserClient::setReport or getReport: ret =...

7.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2016/05/31 5:56 a.m.7 views

squid: SIGSEGV in ESIContext response handling

An incorrect reference counting flaw was found in the way Squid processes ESI responses. If Squid is configured as reverse-proxy, for TLS/HTTPS interception, an attacker controlling a server accessed by Squid, could crash the squid worker, causing a Denial of Service attack...

7.5CVSS7.3AI score0.23112EPSS
Exploits0References5
Zero Day Initiative
Zero Day Initiative
added 2016/05/24 12:0 a.m.163 views

Apache ActiveMQ MOVE Method Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apache ActiveMQ. Authentication may or may not be required to exploit this vulnerability, according to how the product has been configured. The specific flaw exists within the fileserver web servic...

7.5CVSS2AI score0.98518EPSS
Exploits19References1
Tenable Nessus
Tenable Nessus
added 2016/02/23 12:0 a.m.1156 views

ESXi 5.5 < Build 3568722 / 6.0 < Build 3568940 glibc DNS Resolver RCE (VMSA-2016-0002) (remote check)

The remote VMware ESXi host is 5.5 prior to build 3568722 or 6.0 prior to build 3568940. It is, therefore, affected by a stack-based buffer overflow condition in the GNU C Library glibc DNS client-side resolver due to improper validation of user-supplied input when looking up names via the...

8.1CVSS8.6AI score0.89557EPSS
Exploits17References8
Rows per page
Query Builder