Lucene search
K

9795 matches found

Saint
Saint
added 2010/06/23 12:0 a.m.35 views

HP OpenView Network Node Manager ovwebsnmpsrv.exe buffer overflow via jovgraph.exe

Added: 06/23/2010 CVE: CVE-2009-4181 BID: 37261 OSVDB: 60932 Background HP OpenView Network Node Manager is network availability and performance management software. Problem A buffer overflow vulnerability in ovwebsnmpsrv.exe allows remote attackers to execute arbitrary commands by sending...

10CVSS7.8AI score0.1086EPSS
Exploits5
securityvulns
securityvulns
added 2010/06/20 12:0 a.m.72 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

6CVSS1.6AI score0.52003EPSS
Exploits11References4Affected Software2
securityvulns
securityvulns
added 2010/06/20 12:0 a.m.62 views

ZDI-10-108: HP OpenView NNM ovwebsnmpsrv.exe Command Line Argument Remote Code Execution Vulnerability

ZDI-10-108: HP OpenView NNM ovwebsnmpsrv.exe Command Line Argument Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-108 June 16, 2010 -- CVE ID: CVE-2010-1964 -- Affected Vendors: Hewlett-Packard -- Affected Products: Hewlett-Packard OpenView Network Node...

7.5CVSS0.8AI score0.67991EPSS
Exploits14
RedHat Linux
RedHat Linux
added 2010/06/17 10:10 p.m.4 views

cups: web interface memory disclosure

The cgiinitializestring function in cgi-bin/var.c in the web interface in CUPS before 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 before 10.6.4, and other platforms, does not properly handle parameter values containing a % percent character without two subsequent hex characters, which...

4.3CVSS7.2AI score0.06468EPSS
Exploits1References4
OSV
OSV
added 2010/06/17 4:30 p.m.2 views

DEBIAN-CVE-2010-1748

The cgiinitializestring function in cgi-bin/var.c in the web interface in CUPS before 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 before 10.6.4, and other platforms, does not properly handle parameter values containing a % percent character without two subsequent hex characters, which...

4.3CVSS6.3AI score0.06468EPSS
Exploits1References1
securityvulns
securityvulns
added 2010/06/17 12:0 a.m.38 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.5CVSS1.6AI score0.0137EPSS
Exploits1References3Affected Software2
NVD
NVD
added 2010/06/15 2:4 p.m.15 views

CVE-2010-2290

Cross-site scripting XSS vulnerability in cgi-bin/cgix/help in McAfee Unified Threat Management UTM Firewall formerly SnapGear firmware 3.0.0 through 4.0.6 allows remote attackers to inject arbitrary web script or HTML via the page parameter...

4.3CVSS5.8AI score0.01327EPSS
Exploits1References7
securityvulns
securityvulns
added 2010/06/14 12:0 a.m.28 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References16Affected Software4
OpenVAS
OpenVAS
added 2010/06/10 12:0 a.m.19 views

Debian Security Advisory DSA 2056-1 (zonecheck)

The remote host is missing an update to zonecheck announced via advisory DSA 2056-1. OpenVAS Vulnerability Test $Id: deb20561.nasl 6614 2017-07-07 12:09:12Z cfischer $ Description: Auto-generated from advisory DSA 2056-1 zonecheck Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...

4.3CVSS6.5AI score0.02443EPSS
Exploits1
securityvulns
securityvulns
added 2010/06/09 12:0 a.m.70 views

ZDI-10-105: Hewlett-Packard OpenView NNM ovwebsnmpsrv.exe Bad Option Remote Code Execution Vulnerability

ZDI-10-105: Hewlett-Packard OpenView NNM ovwebsnmpsrv.exe Bad Option Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-105 June 8, 2010 -- CVE ID: CVE-2010-1960 -- Affected Vendors: Hewlett-Packard -- Affected Products: Hewlett-Packard OpenView Network Node...

10CVSS0.5AI score0.6911EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2010/06/08 12:0 a.m.24 views

Debian DSA-2056-1 : zonecheck - missing input sanitizing

It was discovered that in ZoneCheck, a tool to check DNS configurations, the CGI does not perform sufficient sanitation of user input; an attacker can take advantage of this and pass script code in order to perform cross-site scripting attacks. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

4.3CVSS5.2AI score0.02443EPSS
Exploits1References4
Zero Day Initiative
Zero Day Initiative
added 2010/06/08 12:0 a.m.36 views

Hewlett-Packard OpenView NNM ovwebsnmpsrv.exe Bad Option Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ovwebsnmpsrv.exe process which can be reached remote...

10CVSS3.3AI score0.6911EPSS
Exploits4References1
securityvulns
securityvulns
added 2010/06/07 12:0 a.m.26 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References6Affected Software3
Debian
Debian
added 2010/06/06 2:36 p.m.24 views

[SECURITY] [DSA 2056-1] New zonecheck packages fix cross-site scripting

------------------------------------------------------------------------ Debian Security Advisory DSA-2056-1 [email protected] http://www.debian.org/security/ Sébastien Delafond June 06, 2010 http://www.debian.org/security/faq -...

4.3CVSS5.7AI score0.02443EPSS
Exploits1
OSV
OSV
added 2010/06/06 12:0 a.m.15 views

DSA-2056-1 zonecheck - cross-site scripting

Bulletin has no description...

4.3CVSS6.3AI score0.02443EPSS
Exploits1
securityvulns
securityvulns
added 2010/06/03 12:0 a.m.17 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2010/06/02 12:0 a.m.21 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References3Affected Software2
securityvulns
securityvulns
added 2010/06/01 12:0 a.m.37 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2010/05/30 12:0 a.m.26 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.6AI score
Exploits0References5Affected Software1
Saint
Saint
added 2010/05/28 12:0 a.m.28 views

HP OpenView Network Node Manager getnnmdata.exe CGI Hostname buffer overflow

Added: 05/28/2010 CVE: CVE-2010-1555 BID: 40072 OSVDB: 64976 Background HP OpenView Network Node Manager is network availability and performance management software. Problem A buffer overflow vulnerability in Network Node Manager allows remote attackers to execute arbitrary commands by sending a...

10CVSS7.7AI score0.64447EPSS
Exploits13
Rows per page
Query Builder