Lucene search
+L

1341 matches found

Prion
Prion
added 2014/12/08 11:59 a.m.18 views

Buffer overflow

Buffer overflow in Hikvision DVR DS-7204 Firmware 2.2.10 build 131009, and other models and versions, allows remote attackers to execute arbitrary code via an RTSP PLAY request with a long Authorization header...

7.5CVSS8.5AI score0.72084EPSS
Exploits5References2Affected Software1
CVE
CVE
added 2014/12/08 11:0 a.m.99 views

CVE-2014-4880

CVE-2014-4880 describes a buffer overflow in Hikvision DVR RTSP handling that enables remote code execution. The NVD entry notes a vulnerability in Hikvision DVR DS-7204 firmware (2.2.10 build 131009) and other models, exploitable via a long RTSP PLAY request with an oversized Authorization heade...

7.5CVSS8.1AI score0.72084EPSS
Exploits5References2Affected Software1
NVD
NVD
added 2014/10/15 2:55 p.m.26 views

CVE-2014-1830

Requests aka python-requests before 2.3.0 allows remote servers to obtain sensitive information by reading the Proxy-Authorization header in a redirected request...

5CVSS5.9AI score0.02036EPSS
Exploits0References6
OSV
OSV
added 2014/10/15 2:55 p.m.4 views

DEBIAN-CVE-2014-1829

Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...

5CVSS7.1AI score0.022EPSS
Exploits0References1
OSV
OSV
added 2014/10/15 2:55 p.m.7 views

CVE-2014-1829

Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...

9.3AI score
Exploits0References7
OSV
OSV
added 2014/10/15 2:55 p.m.2 views

DEBIAN-CVE-2014-1830

Requests aka python-requests before 2.3.0 allows remote servers to obtain sensitive information by reading the Proxy-Authorization header in a redirected request...

5CVSS8.8AI score0.02036EPSS
Exploits0References1
PyPA
PyPA
added 2014/10/15 2:55 p.m.7 views

PYSEC-2014-13

Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...

5CVSS7.1AI score0.022EPSS
Exploits0References7Affected Software1
PyPA
PyPA
added 2014/10/15 2:55 p.m.7 views

PYSEC-2014-14

Requests aka python-requests before 2.3.0 allows remote servers to obtain sensitive information by reading the Proxy-Authorization header in a redirected request...

5CVSS6.6AI score0.02036EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2014/10/15 2:55 p.m.39 views

PYSEC-2014-13

Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...

5CVSS5.2AI score0.022EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2014/10/15 2:0 p.m.70 views

CVE-2014-1829

Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...

5CVSS6.3AI score0.022EPSS
Exploits0
Cvelist
Cvelist
added 2014/10/15 2:0 p.m.43 views

CVE-2014-1829

Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...

6.2AI score0.022EPSS
Exploits0References6
OSV
OSV
added 2014/10/09 2:39 p.m.6 views

MGASA-2014-0409 Updated python-requests packages fix security vulnerabilities

Updated python-requests packages fix security vulnerability: Python-requests was found to have a vulnerability, where the attacker can retrieve the passwords from /.netrc file through redirect requests, if the user has their passwords stored in the /.netrc file CVE-2014-1829. It was discovered th...

5CVSS9.3AI score0.022EPSS
Exploits0References4
CVE
CVE
added 2014/09/29 10:0 p.m.45 views

CVE-2013-3092

The vulnerability CVE-2013-3092 affects the Belkin N300 (F7D7301v1) router. The issue arises from incorrect validation of the HTTP Authorization header, enabling remote attackers to bypass authentication and escalate privileges. The impact is authentication bypass with full or elevated access, as...

8.3CVSS7.3AI score0.02247EPSS
Exploits1References2Affected Software2
Cvelist
Cvelist
added 2014/09/29 10:0 p.m.22 views

CVE-2013-3092

The Belkin N300 F7D7301v1 router allows remote attackers to bypass authentication and gain privileges via vectors related to incorrect validation of the HTTP Authorization header...

7.1AI score0.02247EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2014/09/19 12:0 a.m.32 views

CVE-2014-1829

Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...

5CVSS7.2AI score0.022EPSS
Exploits0References4
OSV
OSV
added 2014/09/19 12:0 a.m.8 views

UBUNTU-CVE-2014-1830

Requests aka python-requests before 2.3.0 allows remote servers to obtain sensitive information by reading the Proxy-Authorization header in a redirected request...

5CVSS7.3AI score0.02036EPSS
Exploits0References5
OSV
OSV
added 2014/09/19 12:0 a.m.7 views

UBUNTU-CVE-2014-1829

Requests aka python-requests before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request...

5CVSS7.3AI score0.022EPSS
Exploits0References5
Friends Of PHP
Friends Of PHP
added 2014/09/03 7:38 a.m.25 views

Security issue when parsing the Authorization header

More info at https://symfony.com/cve-2014-6061...

7.2AI score0.00956EPSS
Exploits0Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.23 views

MailEnable Authorization Header Buffer Overflow

No description provided by source. $Id: mailenableauthheader.rb 9719 2010-07-07 17:38:59Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and term...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2013/08/01 12:0 a.m.13 views

Fedora Update for nodejs-aws-sign FEDORA-2013-11780

Check for the Version of nodejs-aws-sign OpenVAS Vulnerability Test Fedora Update for nodejs-aws-sign FEDORA-2013-11780 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modif...

3.3CVSS6.7AI score0.00372EPSS
Exploits0References2
Rows per page
Query Builder