Lucene search
K

166 matches found

CVE
CVE
added 2013/01/18 9:0 p.m.45 views

CVE-2012-6359

IBM TFIM and TFIMBG are affected by CVE-2012-6359: versions 6.2.0 before 6.2.0.11, 6.2.1 before 6.2.1.3, and 6.2.2 before 6.2.2.2 do not verify that OpenID attributes are signed in SREG/AX, allowing unsigned attributes to be inserted and potentially spoofed by an attacker. The issue can be exploi...

4.3CVSS6.4AI score0.01131EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2011/11/09 12:0 a.m.34 views

Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : tomcat6 vulnerabilities (USN-1252-1)

It was discovered that Tomcat incorrectly implemented HTTP DIGEST authentication. An attacker could use this flaw to perform a variety of authentication attacks. CVE-2011-1184 Polina Genova discovered that Tomcat incorrectly created log entries with passwords when encountering errors during JMX...

7.5CVSS5.7AI score0.15226EPSS
Exploits2References5
NVD
NVD
added 2010/04/14 4:0 p.m.24 views

CVE-2010-0254

Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 and SP2 does not properly validate attributes in Visio files, which allows remote attackers to execute arbitrary code via a crafted file, aka "Visio Attribute Validation Memory Corruption Vulnerability."...

7.6CVSS7.3AI score0.17924EPSS
Exploits0References3
Prion
Prion
added 2010/04/14 4:0 p.m.20 views

Memory corruption

Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 and SP2 does not properly validate attributes in Visio files, which allows remote attackers to execute arbitrary code via a crafted file, aka "Visio Attribute Validation Memory Corruption Vulnerability."...

7.6CVSS7.7AI score0.17924EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2010/04/14 3:44 p.m.63 views

CVE-2010-0254

CVE-2010-0254 is a Visio memory‑corruption vulnerability in Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1/SP2. The flaw arises from improper validation of Visio file attributes, allowing a remote attacker to execute arbitrary code by opening a crafted Visio file. The issue is part of a ...

7.6CVSS7.5AI score0.17924EPSS
Exploits0References3Affected Software1
Symantec
Symantec
added 2010/04/13 12:0 a.m.13 views

Microsoft Visio Attribute Validation Memory Corruption Remote Code Execution Vulnerability

Description Microsoft Visio is prone to a remote code-execution vulnerability. This issue arises when the application processes a malicious file. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application. Failed exploit attempts will result in a...

0.4AI score
Exploits0References1Affected Software1
Rows per page
Query Builder