CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

765 matches found

OSV•added 2014/02/10 6:15 p.m.•9 views

CVE-2012-3405

The vfprintf function in stdio-common/vfprintf.c in libc in GNU C Library aka glibc 2.14 and other versions does not properly calculate a buffer length, which allows context-dependent attackers to bypass the FORTIFYSOURCE format-string protection mechanism and cause a denial of service segmentati...

7.3AI score

Exploits0References7

NVD•added 2014/02/10 6:15 p.m.•24 views

CVE-2012-3405

5CVSS6.2AI score0.00666EPSS

Exploits0References7

OSV•added 2014/02/10 6:15 p.m.•2 views

DEBIAN-CVE-2012-3405

5CVSS7.1AI score0.00666EPSS

Exploits0References1

Prion•added 2014/02/10 6:15 p.m.•27 views

Format string

The vfprintf function in stdio-common/vfprintf.c in libc in GNU C Library aka glibc 2.12 and other versions does not properly calculate a buffer length, which allows context-dependent attackers to bypass the FORTIFYSOURCE format-string protection mechanism and cause a denial of service stack...

5CVSS6.7AI score0.00604EPSS

Exploits1References7Affected Software4

Prion•added 2014/02/10 6:15 p.m.•29 views

Format string

5CVSS6.5AI score0.00666EPSS

Exploits1References7Affected Software4

Cvelist•added 2014/02/10 5:0 p.m.•32 views

CVE-2012-3404

6.3AI score0.00604EPSS

Exploits1References7

RedHat Linux•added 2012/08/23 2:17 p.m.•3 views

glibc: incorrect use of extend_alloca() in formatted printing can lead to FORTIFY_SOURCE format string protection bypass

5CVSS6AI score0.00666EPSS

Exploits1References4

RedHat Linux•added 2012/08/23 2:17 p.m.•2 views

glibc: incorrect size calculation in formatted printing can lead to FORTIFY_SOURCE format string protection bypass

5CVSS6AI score0.00604EPSS

Exploits1References4

UbuntuCve•added 2012/07/13 12:0 a.m.•26 views

CVE-2012-3405

5CVSS6.5AI score0.00666EPSS

Exploits0References8

UbuntuCve•added 2012/07/13 12:0 a.m.•30 views

CVE-2012-3404

5CVSS5.9AI score0.00604EPSS

Exploits1References7

securityvulns•added 2012/06/17 12:0 a.m.•33 views

Sielco Sistemi Winlog Buffer Overflow <= v2.07.14

!/usr/bin/ruby --------------------------------------------- Sielco Sistemi Winlog Buffer Overflow = v2.07.14 - Buffer overflow vulnerability Date: 04.06.2012 --------------------------------------------- - Description Winlog Lite is the entry level version of the SCADA/HMI software Winlog Pro...

7.5AI score

Exploits0

Packet Storm•added 2012/06/08 12:0 a.m.•24 views

Safari On iOS Denial Of Service

/PoC for Safari crash discovered by Alberto Ortega @a0rtega, [email protected] http://www.livehacking.com/category/vulnerability/apple-vulnerability/ This PoC written by Larry W. Cashdollar http://vapid.dhs.org @lcashdol This PoC creates an html file to be served out by a normal webserver. It...

0.2AI score

Exploits0

NVD•added 2012/02/14 10:55 p.m.•16 views

CVE-2012-0015

Microsoft .NET Framework 2.0 SP2 and 3.5.1 does not properly calculate the length of an unspecified buffer, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application aka XBAP, 2 a crafted ASP.NET application, or 3 a crafted .NET Framework application, aka...

9.3CVSS7.5AI score0.56278EPSS

Exploits0References3

Prion•added 2012/02/14 10:55 p.m.•19 views

Design/Logic Flaw

9.3CVSS8.1AI score0.56278EPSS

Exploits0References3Affected Software1

Cvelist•added 2012/02/14 10:0 p.m.•23 views

CVE-2012-0015

7.4AI score0.56278EPSS

Exploits0References3

Positive Technologies•added 2012/02/14 12:0 a.m.•3 views

PT-2012-2241 · Microsoft · .Net Framework

Name of the Vulnerable Software and Affected Versions: Microsoft .NET Framework versions 2.0 SP2 through 3.5.1 Description: A remote code execution issue exists due to improper buffer length calculation while processing specially crafted input. This could allow an attacker to take complete contro...

9.3CVSS7.1AI score0.56278EPSS

Exploits0References7

Check Point Advisories•added 2012/02/14 12:0 a.m.•6 views

Microsoft .NET Heap Corruption Code Execution (MS12-016; CVE-2012-0015)

A remote code execution vulnerability has been reported in the Microsoft .NET Framework. The vulnerability is due to improper calculation of buffer length while processing specially crafted input. A remote attacker may exploit this issue by enticing a target user to open a specially crafted web...

9.3CVSS7.2AI score0.56278EPSS

Exploits0

Tenable Nessus•added 2011/10/31 12:0 a.m.•23 views

Debian DSA-2323-1 : radvd - several vulnerabilities

Multiple security issues were discovered by Vasiliy Kulikov in radvd, an IPv6 Router Advertisement daemon : - CVE-2011-3602 setinterfacevar function doesn't check the interface name, which is chosen by an unprivileged user. This could lead to an arbitrary file overwrite if the attacker has local...

7.5CVSS5.9AI score0.00513EPSS

Exploits0References9

0day.today•added 2010/12/12 12:0 a.m.•14 views

PowerShell XP 3.0.1 Buffer Overflow 0day

Exploit for windows platform in category local exploits !/usr/bin/python vuln finders : kmkz, zadyree, hellpast author : m101 site : http://binholic.blogspot.com/ Exploit Title: PowerShell XP 3.0.1 0day Date: 11/12/2010 Author: m101 Software Link:...

6.8AI score

Exploits0

Ubuntu•added 2010/04/07 2:59 a.m.•84 views

USN-923-1: OpenJDK vulnerabilities

Marsh Ray and Steve Dispensa discovered a flaw in the TLS and SSLv3 protocols. If an attacker could perform a machine-in-the-middle attack at the start of a TLS connection, the attacker could inject arbitrary content at the beginning of the user's session. CVE-2009-3555 It was discovered that...

9.8CVSS8.6AI score0.92077EPSS

Exploits33

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by