Lucene search
K

762 matches found

OSV
OSV
added 2009/02/20 7:30 p.m.8 views

CVE-2009-0654

Tor 0.2.0.28, and probably 0.2.0.34 and earlier, allows remote attackers, with control of an entry router and an exit router, to confirm that a sender and receiver are communicating via vectors involving 1 replaying, 2 modifying, 3 inserting, or 4 deleting a single cell, and then observing cell...

6.8AI score
Exploits0References3
OSV
OSV
added 2009/02/20 7:30 p.m.1 views

DEBIAN-CVE-2009-0654

Tor 0.2.0.28, and probably 0.2.0.34 and earlier, allows remote attackers, with control of an entry router and an exit router, to confirm that a sender and receiver are communicating via vectors involving 1 replaying, 2 modifying, 3 inserting, or 4 deleting a single cell, and then observing cell...

5.1CVSS6.9AI score0.02117EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2009/02/20 7:0 p.m.20 views

CVE-2009-0654

Tor 0.2.0.28, and probably 0.2.0.34 and earlier, allows remote attackers, with control of an entry router and an exit router, to confirm that a sender and receiver are communicating via vectors involving 1 replaying, 2 modifying, 3 inserting, or 4 deleting a single cell, and then observing cell...

5.1CVSS4.4AI score0.02117EPSS
Exploits1
Prion
Prion
added 2008/10/06 11:25 p.m.22 views

Cross site scripting

Cross-site scripting XSS vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be...

2.6CVSS5.4AI score0.07049EPSS
Exploits2References23Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2008/05/27 12:0 a.m.44 views

Motorola RAZR JPG Processing Stack Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable Motorola RAZR firmware based cell phones. User interaction is required to exploit this vulnerability in that the target must accept a malicious image sent via MMS. The specific flaw exists in the JPEG thumbprint...

9.3CVSS7.3AI score0.05837EPSS
Exploits0References1
NVD
NVD
added 2008/03/11 11:44 p.m.18 views

CVE-2008-0113

Unspecified vulnerability in Microsoft Office Excel Viewer 2003 up to SP3 allows user-assisted remote attackers to execute arbitrary code via an Excel document with malformed cell comments that trigger memory corruption from an "allocation error," aka "Microsoft Office Cell Parsing Memory...

9.3CVSS7.6AI score0.42225EPSS
Exploits0References9
Prion
Prion
added 2008/03/11 11:44 p.m.26 views

Memory corruption

Unspecified vulnerability in Microsoft Office Excel Viewer 2003 up to SP3 allows user-assisted remote attackers to execute arbitrary code via an Excel document with malformed cell comments that trigger memory corruption from an "allocation error," aka "Microsoft Office Cell Parsing Memory...

9.3CVSS8.1AI score0.42225EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2008/03/11 11:0 p.m.43 views

CVE-2008-0113

Unspecified vulnerability in Microsoft Office Excel Viewer 2003 up to SP3 allows user-assisted remote attackers to execute arbitrary code via an Excel document with malformed cell comments that trigger memory corruption from an "allocation error," aka "Microsoft Office Cell Parsing Memory...

7.6AI score0.42225EPSS
Exploits0References9
Zero Day Initiative
Zero Day Initiative
added 2008/03/11 12:0 a.m.43 views

Microsoft Excel BIFF File Format Cell Record Parsing Memory Corruption Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office. Exploitation requires that the attacker coerce the target into opening a malicious .XLS file. The specific flaw exists within the parsing of malformed cell comments. When Excel...

9.3CVSS6.2AI score0.42225EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2007/07/30 9:17 p.m.28 views

CVE-2007-4098

Tor before 0.1.2.15 does not properly distinguish "streamids from different exits," which might allow remote attackers with control over Tor routers to inject cells into arbitrary streams...

5.8CVSS6.1AI score0.01896EPSS
Exploits0References1
OSV
OSV
added 2007/07/30 9:17 p.m.1 views

DEBIAN-CVE-2007-4098

Tor before 0.1.2.15 does not properly distinguish "streamids from different exits," which might allow remote attackers with control over Tor routers to inject cells into arbitrary streams...

5.8CVSS7.1AI score0.01896EPSS
Exploits0References1
Cvelist
Cvelist
added 2007/03/20 10:0 a.m.20 views

CVE-2007-1507

The default configuration in OpenAFS 1.4.x before 1.4.4 and 1.5.x before 1.5.17 supports setuid programs within the local cell, which might allow attackers to gain privileges by spoofing a response to an AFS cache manager FetchStatus request, and setting setuid and root ownership for files in the...

6.3AI score0.02522EPSS
Exploits0References14
Prion
Prion
added 2006/07/13 9:5 p.m.32 views

Code injection

Microsoft Office Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via malformed cell comments, which lead to modification of "critical data offsets" during the rebuilding process...

9.3CVSS7.5AI score0.10784EPSS
Exploits0References8Affected Software2
NVD
NVD
added 2006/07/13 9:5 p.m.39 views

CVE-2006-2388

Microsoft Office Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via malformed cell comments, which lead to modification of "critical data offsets" during the rebuilding process...

9.3CVSS7.3AI score0.10784EPSS
Exploits0References8
CVE
CVE
added 2006/07/13 9:0 p.m.72 views

CVE-2006-2388

Summary: CVE-2006-2388 is a remote code execution vulnerability in Microsoft Office Excel (2000–2004) caused by a flaw when Excel rebuilds metadata after processing malformed cell comments. An attacker must lure a user into opening a crafted .XLS file, which could allow code execution with the cu...

9.3CVSS7.2AI score0.10784EPSS
Exploits0References8Affected Software2
Cvelist
Cvelist
added 2006/07/13 9:0 p.m.45 views

CVE-2006-2388

Microsoft Office Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via malformed cell comments, which lead to modification of "critical data offsets" during the rebuilding process...

7.3AI score0.10784EPSS
Exploits0References8
Prion
Prion
added 2006/03/09 12:2 a.m.16 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in phpArcadeScript 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the gamename parameter in tellafriend.php, 2 the loginstatus parameter in loginbox.php, 3 the submissionstatus parameter in index.php, the 4...

4.3CVSS6.3AI score0.01895EPSS
Exploits6References5Affected Software1
Packet Storm
Packet Storm
added 2006/02/25 12:0 a.m.47 views

155022006-nokia_n70.txt

Software affected Bluetooth Stack on Nokia cell phones Version Nokia N70 and maybe other models Impact Remote Denial of Service, cellular phones begin to be slower and then freeze after a short period within 30 seconds. Credits Pierre Betouin - [email protected] - Bug found with BSS new...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/02/07 12:0 a.m.32 views

[ Secuobs - Advisory ] Bluetooth : DoS on Sony/Ericsson cell phones

Software affected Bluetooth Stack on Sony/Ericsson cell phones Version Sony/Ericsson K600i, V600i, W800i, T68i and certainly other models Impact Bluetooth Stack Denial of Service may be more - may be a rootkit : - Phone DoS reboot or shutdown - White screen bug freeze sleeping Credits Pierre...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2004/03/02 12:0 a.m.37 views

motorolaT720.txt

Product: Motorola T720 Cell phones http://www.motorola.com Versions: T270 Bug: DoS vulnerability Impact: Attacker's can reboot the cellphone remotely. Date: March 01, 2004 Author: Shaun Colley Email: [email protected] WWW: http://www.nettwerked.co.uk Introduction "The Motorola T720 proves that...

7.4AI score
Exploits0
Rows per page
Query Builder