Lucene search
K

76 matches found

Mageia
Mageia
added 2015/01/31 1:23 p.m.46 views

Updated icu packages fix security vulnerabilities

Updated icu packages fix security vulnerabilities: The Regular Expressions package in International Components for Unicode ICU 52 before SVN revision 292944 allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via vectors related to a...

7.5CVSS9.4AI score0.02217EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2015/01/27 6:46 p.m.5 views

ICU: uninitialized value use in the collation component

The collator implementation in i18n/ucol.cpp in International Components for Unicode ICU 52 through SVN revision 293126, as used in Google Chrome before 40.0.2214.91, does not initialize memory for a data structure, which allows remote attackers to cause a denial of service or possibly have...

7.5CVSS7.4AI score0.02068EPSS
Exploits0References5
Prion
Prion
added 2015/01/22 10:59 p.m.17 views

Information disclosure

The collator implementation in i18n/ucol.cpp in International Components for Unicode ICU 52 through SVN revision 293126, as used in Google Chrome before 40.0.2214.91, does not initialize memory for a data structure, which allows remote attackers to cause a denial of service or possibly have...

7.5CVSS7.5AI score0.02068EPSS
Exploits0References18Affected Software2
CVE
CVE
added 2015/01/22 10:0 p.m.93 views

CVE-2014-7940

CVE-2014-7940 affects ICU 52 and derived Chrome builds; the collator in i18n/ucol.cpp does not initialize memory for a data structure, enabling denial of service or unspecified impact via crafted input. Public-module details: linked advisories show remediation by upgrading ICU to newer releases (...

7.5CVSS9.4AI score0.02068EPSS
Exploits0References18Affected Software1
UbuntuCve
UbuntuCve
added 2014/06/25 12:0 a.m.48 views

CVE-2014-4650

The CGIHTTPServer module in Python 2.7.5 and 3.3.4 does not properly handle URLs in which URL encoding is used for path separators, which allows remote attackers to read script source code or conduct directory traversal attacks and execute unintended code via a crafted character sequence, as...

9.8CVSS7AI score0.247EPSS
Exploits5References3
Check Point Advisories
Check Point Advisories
added 2014/03/31 12:0 a.m.34 views

Multiple Antivirus Products RAR Parser MZ Character Sequence Security Bypass - Ver2 (CVE-2012-1443)

A security bypass vulnerability has been reported in multiple antivirus products. An attacker could exploit this vulnerability via a RAR file with an initial MZ character sequence. Successful exploitation of this vulnerability would allow remote attackers to bypass security tests and protocols on...

4.3CVSS6.3AI score0.99636EPSS
Exploits0
Oracle linux
Oracle linux
added 2013/02/22 12:0 a.m.45 views

pam security, bug fix, and enhancement update

1.1.1-13 - fix environment file handling problems - CVE-2011-3148 746619 and CVE-2011-3148 746620 1.1.1-12 - add character sequence test to pamcracklib - drop unused difignore option from pamcracklib 811243 - add enforceforroot option to pamcracklib 588893 - mention limits.d in the limits.conf5...

4.6CVSS0.5AI score0.00696EPSS
Exploits0
NVD
NVD
added 2012/03/21 10:11 a.m.11 views

CVE-2012-1434

The Microsoft EXE file parser in AhnLab V3 Internet Security 2011.01.18.00, Emsisoft Anti-Malware 5.1.0.1, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an EXE file with a \19\04\00\10 character sequen...

4.3CVSS6.5AI score0.6044EPSS
Exploits0References2
NVD
NVD
added 2012/03/21 10:11 a.m.17 views

CVE-2012-1436

The Microsoft EXE file parser in AhnLab V3 Internet Security 2011.01.18.00, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an EXE file with a \2D\6C\68...

4.3CVSS6.5AI score0.93715EPSS
Exploits0References2
Prion
Prion
added 2012/03/21 10:11 a.m.16 views

Design/Logic Flaw

The Microsoft EXE file parser in AhnLab V3 Internet Security 2011.01.18.00, Emsisoft Anti-Malware 5.1.0.1, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an EXE file with a \19\04\00\10 character sequen...

4.3CVSS7AI score0.6044EPSS
Exploits0References2Affected Software4
Prion
Prion
added 2012/03/21 10:11 a.m.13 views

Design/Logic Flaw

The Microsoft EXE file parser in AhnLab V3 Internet Security 2011.01.18.00, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an EXE file with a \2D\6C\68...

4.3CVSS7AI score0.93715EPSS
Exploits0References2Affected Software5
Prion
Prion
added 2012/03/21 10:11 a.m.14 views

Design/Logic Flaw

The Microsoft Office file parser in Comodo Antivirus 7425 allows remote attackers to bypass malware detection via an Office file with a \50\4B\53\70\58 character sequence at a certain location...

4.3CVSS7.2AI score0.03879EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2012/03/21 10:11 a.m.26 views

Design/Logic Flaw

The Microsoft Office file parser in Comodo Antivirus 7425 and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via an Office file with a ustar character sequence at a certain location. NOTE: this may later be SPLIT into multiple CVEs if additional information is...

4.3CVSS7AI score0.14117EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2012/03/21 10:11 a.m.23 views

Design/Logic Flaw

The ELF file parser in Bitdefender 7.2, Command Antivirus 5.2.11.5, Comodo Antivirus 7424, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, F-Secure Anti-Virus 9.0.16160.0, McAfee Gateway formerly Webwasher 2010.1C, nProtect Anti-Virus 2011-01-17.01, Sophos Anti-Virus 4.61.0, and Rising Antivirus...

4.3CVSS7.1AI score0.96091EPSS
Exploits0References2Affected Software10
Prion
Prion
added 2012/03/21 10:11 a.m.19 views

Design/Logic Flaw

The ELF file parser in Bitdefender 7.2, Comodo Antivirus 7424, eSafe 7.0.17.0, F-Secure Anti-Virus 9.0.16160.0, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway formerly Webwasher 2010.1C, nProtect Anti-Virus 2011-01-17.01, Sophos Anti-Virus 4.61.0, and Rising Antivirus 22.83.00.03...

4.3CVSS7AI score0.96091EPSS
Exploits0References2Affected Software9
Prion
Prion
added 2012/03/21 10:11 a.m.20 views

Design/Logic Flaw

The ELF file parser in Bitdefender 7.2, Comodo Antivirus 7424, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, F-Secure Anti-Virus 9.0.16160.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway formerly Webwasher 2010.1C, and...

4.3CVSS7.1AI score0.92626EPSS
Exploits0References3Affected Software9
Prion
Prion
added 2012/03/21 10:11 a.m.22 views

Design/Logic Flaw

The TAR file parser in Quick Heal aka Cat QuickHeal 11.00, Norman Antivirus 6.06.12, Rising Antivirus 22.83.00.03, and AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial MSCF character sequence. NOTE:...

4.3CVSS6.9AI score0.89331EPSS
Exploits0References3Affected Software4
Prion
Prion
added 2012/03/21 10:11 a.m.13 views

Design/Logic Flaw

The Microsoft EXE file parser in AhnLab V3 Internet Security 2011.01.18.00, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an EXE file with a \4a\46\49\46...

4.3CVSS7AI score0.93715EPSS
Exploits0References2Affected Software5
Prion
Prion
added 2012/03/21 10:11 a.m.15 views

Design/Logic Flaw

The Microsoft EXE file parser in AhnLab V3 Internet Security 2011.01.18.00, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an EXE file with a...

4.3CVSS7AI score0.93715EPSS
Exploits0References2Affected Software5
Prion
Prion
added 2012/03/21 10:11 a.m.21 views

Design/Logic Flaw

The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, Quick Heal aka Cat QuickHeal 11.00, Emsisoft Anti-Malware 5.1.0.1, Fortinet Antivirus 4.2.254.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, Kaspersky Anti-Virus 7.0.0.125, McAfe...

4.3CVSS7AI score0.93324EPSS
Exploits0References9Affected Software16
Rows per page
Query Builder