Lucene search
+L

102 matches found

nessus
nessus
added 2013/01/15 12:0 a.m.24 views

Fedora 16 : 389-ds-base-1.2.10.24-1.fc16 (2012-20156)

Here is where you give an explanation of your update. Here is where you give an explanation of your update. cleanallruv support - Change on SLAPIMODRDNNEWSUPERIOR is not evaluated in ACL ACL rules bypass possible Note that Tenable Network Security has extracted the preceding description block...

6CVSS5.4AI score0.01862EPSS
Exploits0References7
ubuntucve
ubuntucve
added 2012/11/19 12:10 p.m.18 views

CVE-2011-2486

nspluginwrapper before 1.4.4 does not properly provide access to NPNVprivateModeBool variable settings, which could prevent Firefox plugins from determining if they should run in Private Browsing mode and allow remote attackers to bypass intended access restrictions, as demonstrated using Flash...

5CVSS5.9AI score0.0247EPSS
Exploits0References1
ubuntucve
ubuntucve
added 2012/10/22 11:55 p.m.19 views

CVE-2012-4516

librdmacm 1.0.16, when ibacm.port is not specified, connects to port 6125, which allows remote attackers to specify the address resolution information for the application via a malicious ibacm service...

5.8CVSS5.9AI score0.02112EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2012/08/17 12:55 a.m.27 views

CVE-2012-2102

MySQL 5.1.x before 5.1.62 and 5.5.x before 5.5.22 allows remote authenticated users to cause a denial of service assertion failure and mysqld abort by deleting a record and using HANDLER READ NEXT...

3.5CVSS5.9AI score0.02094EPSS
Exploits1References2
ubuntucve
ubuntucve
added 2012/06/11 12:0 a.m.30 views

CVE-2012-2749

MySQL 5.1.x before 5.1.63 and 5.5.x before 5.5.24 allows remote authenticated users to cause a denial of service mysqld crash via vectors related to incorrect calculation and a sort order index...

4CVSS5.9AI score0.019EPSS
Exploits1References3
ubuntucve
ubuntucve
added 2012/04/22 6:55 p.m.22 views

CVE-2012-1113

Multiple cross-site scripting XSS vulnerabilities in the administration subsystem in Gallery 2 before 2.3.2 and 3 before 3.0.3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.9AI score0.01674EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2012/03/07 12:0 a.m.21 views

CVE-2012-1139

Array index error in FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service invalid stack read operation and memory corruption or possibly execute arbitrary code via crafted glyph data in a BDF font...

9.3CVSS6.2AI score0.03813EPSS
Exploits0References2
nessus
nessus
added 2011/12/12 12:0 a.m.20 views

Fedora 14 : openswan-2.6.33-3.fc14 (2011-15127)

Fixes for CVE-2011-4073. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

4CVSS5.3AI score0.02086EPSS
Exploits0References3
ubuntucve
ubuntucve
added 2011/08/05 12:0 a.m.27 views

CVE-2011-2705

The SecureRandom.randombytes function in lib/securerandom.rb in Ruby before 1.8.7-p352 and 1.9.x before 1.9.2-p290 relies on PID values for initialization, which makes it easier for context-dependent attackers to predict the result string by leveraging knowledge of random strings obtained in an...

5CVSS5.9AI score0.0195EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2011/08/01 7:55 p.m.24 views

CVE-2011-2718

Multiple directory traversal vulnerabilities in the relational schema implementation in phpMyAdmin 3.4.x before 3.4.3.2 allow remote authenticated users to include and execute arbitrary local files via directory traversal sequences in an export type field, related to 1...

6CVSS6AI score0.01677EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2011/07/29 12:0 a.m.32 views

CVE-2011-2697

foomatic-rip-hplip in HP Linux Imaging and Printing HPLIP 3.11.5 allows remote attackers to execute arbitrary code via a crafted FoomaticRIPCommandLine field in a .ppd file...

6.8CVSS7.4AI score0.10795EPSS
Exploits1References2
nessus
nessus
added 2011/06/12 12:0 a.m.40 views

Fedora 15 : jabberd-2.2.14-1.fc15 (2011-7801)

This update fixes an important security issue CVE-2011-1755, for more information, please see https://bugzilla.redhat.com/showbug.cgi?id=700390. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

7.5CVSS7.2AI score0.03659EPSS
Exploits0References4
ubuntucve
ubuntucve
added 2011/03/31 10:55 p.m.28 views

CVE-2011-1175

tcptls.c in the TCP/TLS server in Asterisk Open Source 1.6.1.x before 1.6.1.23, 1.6.2.x before 1.6.2.17.1, and 1.8.x before 1.8.3.1 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash by establishing many short TCP sessions to services that use a certain...

5CVSS5.9AI score0.02724EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2011/03/30 12:0 a.m.19 views

CVE-2011-1154

The shredfile function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to execute arbitrary commands via shell metacharacters in a log filename, as demonstrated by a filename that is automatically constructed on the basis of a hostname or virtual machine name...

6.9CVSS6.1AI score0.00412EPSS
Exploits1References3
ubuntucve
ubuntucve
added 2011/02/02 1:0 a.m.30 views

CVE-2010-3854

Multiple cross-site scripting XSS vulnerabilities in the web administration interface aka Futon in Apache CouchDB 0.8.0 through 1.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.9AI score0.05923EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2010/12/10 12:0 a.m.29 views

CVE-2010-3880

net/ipv4/inetdiag.c in the Linux kernel before 2.6.37-rc2 does not properly audit INETDIAG bytecode, which allows local users to cause a denial of service kernel infinite loop via crafted INETDIAGREQBYTECODE instructions in a netlink message that contains multiple attribute elements, as...

4.9CVSS6.3AI score0.00435EPSS
Exploits1References13
ubuntucve
ubuntucve
added 2010/11/26 12:0 a.m.30 views

CVE-2010-4172

Multiple cross-site scripting XSS vulnerabilities in the Manager application in Apache Tomcat 6.0.12 through 6.0.29 and 7.0.0 through 7.0.4 allow remote attackers to inject arbitrary web script or HTML via the 1 orderBy or 2 sort parameter to sessionsList.jsp, or unspecified input to 3...

4.3CVSS6.3AI score0.42009EPSS
Exploits1References5
nessus
nessus
added 2010/11/11 12:0 a.m.22 views

Fedora 12 : pidgin-2.7.5-1.fc12 (2010-17130)

New release 2.7.5 Full Upstream ChangeLog : - http://developer.pidgin.im/wiki/ChangeLogversion2.7.410 202010 - http://developer.pidgin.im/wiki/ChangeLogversion2.7.5 10312010 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...

7.5CVSS7.2AI score0.12496EPSS
Exploits6References6
ubuntucve
ubuntucve
added 2010/09/30 12:0 a.m.33 views

CVE-2010-2943

The xfs implementation in the Linux kernel before 2.6.35 does not look up inode allocation btrees before reading inode buffers, which allows remote authenticated users to read unlinked files, or read or overwrite disk blocks that are currently assigned to an active file but were previously assign...

8.1CVSS6.3AI score0.17009EPSS
Exploits1References9
nessus
nessus
added 2010/09/09 12:0 a.m.24 views

Fedora 12 : nano-2.0.9-7.fc12 (2010-13157)

CVE-2010-1160 CVE-2010-1161 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

3.7CVSS6.4AI score0.00368EPSS
Exploits0References4
Rows per page
Query Builder