Lucene search
K

714 matches found

ThreatPost
ThreatPost
added 2009/03/26 11:43 p.m.25 views

Multiple vulnerabilities found, fixed in OpenSSL

The OpenSSL Project has released new versions of its popular implementation of the Secure Sockets Layer SSL and Transport Layer Security TLS protocols to fix multiple security vulnerabilities. According to an advisory openssl.org, the update fixes three security flaws that carry “moderate severit...

5CVSS1.7AI score0.06194EPSS
Exploits0References6
Oracle linux
Oracle linux
added 2008/06/26 12:0 a.m.74 views

kernel security and bug fix update

2.6.9-67.0.20.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon wit...

10CVSS1.4AI score0.07091EPSS
Exploits6
UbuntuCve
UbuntuCve
added 2008/03/19 10:44 a.m.30 views

CVE-2008-0063

The Kerberos 4 support in KDC in MIT Kerberos 5 krb5kdc does not properly clear the unused portion of a buffer when generating an error message, which might allow remote attackers to obtain sensitive information, aka "Uninitialized stack values."...

7.5CVSS7.3AI score0.03478EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2008/03/18 7:22 p.m.7 views

krb5: possible leak of sensitive data from krb5kdc using krb4 request

The Kerberos 4 support in KDC in MIT Kerberos 5 krb5kdc does not properly clear the unused portion of a buffer when generating an error message, which might allow remote attackers to obtain sensitive information, aka "Uninitialized stack values."...

7.5CVSS7.4AI score0.03478EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2008/03/18 12:0 a.m.2 views

PT-2008-1050 · Mit +1 · Mit Kerberos 5 +1

Name of the Vulnerable Software and Affected Versions: MIT Kerberos 5 krb5kdc versions prior to the fixed version Red Hat Enterprise Linux affected versions not specified Description: The issue is related to the Kerberos 4 support in the KDC component of MIT Kerberos 5, where the unused portion o...

10CVSS8.4AI score0.10141EPSS
Exploits2References60
Prion
Prion
added 2007/07/10 10:30 p.m.21 views

Memory corruption

PUBCONV.DLL in Microsoft Office Publisher 2007 does not properly clear memory when transferring data from disk to memory, which allows user-assisted remote attackers to execute arbitrary code via a malformed .pub page via a certain negative value, which bypasses a sanitization procedure that...

9.3CVSS7.7AI score0.32782EPSS
Exploits1References10Affected Software1
myhack58
myhack58
added 2005/10/19 12:0 a.m.32 views

Scotty no trace CleanCache help you erase private history-vulnerability warning-the black bar safety net

In viruses and hackers to wreak havoc today, personal information security is particularly important, so that your information is not leaked out, the usual practice is to clear XP history, we can right-click on“Start”--properties--customize--clear, on the IE Properties window in Microsoft also...

6.6AI score
Exploits0
seebug.org
seebug.org
added 2005/10/11 12:0 a.m.26 views

phpBB 2.0.13 (admin_styles.php) Remote Command Execution Exploit

No description provided by source. !/usr/bin/perl r57phpbbadmin2exec.pl phpBB adminstyles.php commands execution exploit tested on phpBB 2.0.13 by 1dt.w0lf RST/GHC http://rst.void.ru http://ghc.ru screen r57phpbbadmin2exec.pl -p http://blah.com/phpBB/admin/ -s 0864cb0abb396319c589ebc2a98c2c5d -c...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/08/20 12:0 a.m.15 views

OpenSSH < 3.0.1 Multiple Vulnerabilities

Binary data 1986.prm...

10CVSS7.3AI score0.14804EPSS
Exploits1References4
CVE
CVE
added 2003/05/15 4:0 a.m.52 views

CVE-2003-0291

The CVE-2003-0291 issue affects 3com OfficeConnect Remote 812 ADSL Router v1.1.7, where memory is not properly cleared from DHCP responses. This can allow remote attackers to sniff DHCP traffic and identify contents of prior HTTP requests, revealing partial confidentiality of past traffic. The pr...

5CVSS7.1AI score0.01539EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2001/11/20 12:0 a.m.59 views

OpenSSH < 3.0.1 Multiple Flaws

According to its banner, the remote host appears to be running OpenSSH version 3.0.1 or older. Such versions are reportedly affected by multiple flaws : - Provided KerberosV is enabled disabled by default, it may be possible for an attacker to partially authenticate. - It may be possible to crash...

7.5CVSS7.6AI score0.02241EPSS
Exploits0References2
Exploit DB
Exploit DB
added 2000/09/03 12:0 a.m.26 views

AIX 4.2/4.3 - netstat -Z Statistic Clearing

source: https://www.securityfocus.com/bid/1660/info A vulnerability exists in versions 4.x. x of AIX, from IBM. Any local user can utilize the -Z command to netstat, without needing to be root. This will cause interface statistics to be reset. This could potentially interfere with programs that...

7.4AI score
Exploits0
NVD
NVD
added 1997/08/05 4:0 a.m.13 views

CVE-1999-1446

Internet Explorer 3 records a history of all URL's that are visited by a user in DAT files located in the Temporary Internet Files and History folders, which are not cleared when the user selects the "Clear History" option, and are not visible when the user browses the folders because of tailored...

2.1CVSS0.02027EPSS
Exploits0References2
Microsoft KB
Microsoft KB
added 1970/01/01 12:0 a.m.24 views

Security update 1970-01-01

...

5.3AI score
Exploits0
Rows per page
Query Builder