Lucene search
K

174 matches found

OSV
OSV
added 2016/04/30 5:59 p.m.2 views

CVE-2016-2811

Use-after-free vulnerability in the ServiceWorkerInfo class in the Service Worker subsystem in Mozilla Firefox before 46.0 allows remote attackers to execute arbitrary code via vectors related to the BeginReading method...

8.8CVSS7.6AI score0.0294EPSS
Exploits0References9
OSV
OSV
added 2016/04/27 12:0 a.m.3 views

UBUNTU-CVE-2016-2811

Use-after-free vulnerability in the ServiceWorkerInfo class in the Service Worker subsystem in Mozilla Firefox before 46.0 allows remote attackers to execute arbitrary code via vectors related to the BeginReading method...

8.8CVSS7.7AI score0.0294EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2016/01/18 12:0 a.m.6 views

The vulnerability of the Flash Player and Adobe Integrated Runtime software allows a perpetrator to execute arbitrary code.

The vulnerability of the MovieClip object implementation in Flash Player and Adobe Integrated Runtime is related to the use of memory after it is freed. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created call to the beginGradientFill method...

9.3CVSS8.1AI score0.05658EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2015/12/10 5:59 a.m.4 views

UBUNTU-CVE-2015-8050

Use-after-free vulnerability in the MovieClip object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before...

9.3CVSS7.6AI score0.05658EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/12/09 1:36 p.m.4 views

flash-plugin: multiple code execution issues fixed in APSB15-32

Use-after-free vulnerability in the MovieClip object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before...

9.3CVSS6.2AI score0.05658EPSS
Exploits0References5
rdot
rdot
added 2014/09/06 12:0 a.m.585 views

Retrieving all tables and their columns at once MSSQL

In the Name of ALLAH the Most Beneficent and the Merciful Zenodermus, Ch3rn0by1 and Me was workinn on MSSQL.. when Zenodermus thought to make a DIOS for MSSQL.. previously at Код: http://websec.ca/kb/sqlinjection DIOS is under the heading Retrieving Multiple Tables and Columns Код: AND 1=0; BEGIN...

7.2AI score
Exploits0
OSV
OSV
added 2014/04/11 3:55 p.m.2 views

DEBIAN-CVE-2014-0172

Integer overflow in the checksection function in dwarfbeginelf.c in the libdw library, as used in elfutils 0.153 and possibly through 0.158 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a malformed compressed debug section in an ELF...

6.8CVSS8AI score0.04031EPSS
Exploits0References1
OSV
OSV
added 2014/04/11 12:0 a.m.2 views

UBUNTU-CVE-2014-0172

Integer overflow in the checksection function in dwarfbeginelf.c in the libdw library, as used in elfutils 0.153 and possibly through 0.158 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a malformed compressed debug section in an ELF...

6.8CVSS6.5AI score0.04031EPSS
Exploits0References3
OSV
OSV
added 2014/03/24 4:31 p.m.2 views

DEBIAN-CVE-2013-7345

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a large amount of...

5CVSS6.7AI score0.0304EPSS
Exploits1References1
OSV
OSV
added 2014/03/24 12:0 a.m.4 views

UBUNTU-CVE-2013-7345

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a large amount of...

5CVSS7.2AI score0.0304EPSS
Exploits1References6
NVD
NVD
added 2010/07/02 8:30 p.m.22 views

CVE-2010-2624

Multiple SQL injection vulnerabilities in iScripts EasySnaps 2.0 allow remote attackers to execute arbitrary SQL commands via the 1 comment parameter to addcomments.php, 2 values parameter to tagsdetails.php, or 3 begin parameter to greetings.php...

7.5CVSS8.5AI score0.0115EPSS
Exploits1References6
exploitpack
exploitpack
added 2008/09/21 12:0 a.m.30 views

PHP iCalendar 2.24 - cookie_language Local File Inclusion Arbitrary File Upload

PHP iCalendar 2.24 - cookielanguage Local File Inclusion Arbitrary File Upload '.$lang'lcalfile'.' '.$filenumber.': '.$lang'lactionsuccess'.''; 84. el...

Exploits0
RedHat Linux
RedHat Linux
added 2008/07/14 1:38 p.m.3 views

ruby: integer overflow in rb_ary_splice/update/replace() - beg + rlen

Integer overflow in the 1 rbarysplice function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2; and 2 the rbaryreplace function in 1.6.x allows context-dependent attackers to trigger memory corruption, aka the "beg +...

7.8CVSS7AI score0.03759EPSS
Exploits1References4
NVD
NVD
added 2008/04/10 6:5 p.m.24 views

CVE-2007-5405

Multiple buffer overflows in kpagrdr.dll 2.0.0.2 and 10.3.0.0 in the Applix Presents reader in Autonomy formerly Verity KeyView, as used by IBM Lotus Notes, Symantec Mail Security, and activePDF DocConverter, allow remote attackers to execute arbitrary code via a .ag file with 1 a long ENCODING...

9.3CVSS7.4AI score0.05741EPSS
Exploits4References22
Rows per page
Query Builder