Lucene search
K

649 matches found

Cvelist
Cvelist
added 2010/12/16 7:0 p.m.25 views

CVE-2010-3963

Buffer overflow in the Routing and Remote Access NDProxy component in the kernel in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges via a crafted application, related to the Routing and Remote Access service RRAS and improper copying from user mode to th...

6.5AI score0.01858EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2010/12/15 12:0 a.m.20 views

Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2436673)

This host is missing a critical security update according to Microsoft Bulletin MS10-098. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

8.4CVSS5AI score0.03764EPSS
Exploits7References2
0day.today
0day.today
added 2010/11/25 12:0 a.m.56 views

WSN Links SQL Injection Vulnerability

Exploit for php platform in category web applications ===================================== WSN Links SQL Injection Vulnerability ===================================== I. DESCRIPTION --------------------------------------- A vulnerability exists in the search.php code that allows for SQL injectio...

7.1AI score0.01145EPSS
Exploits6
Prion
Prion
added 2010/03/30 6:30 p.m.20 views

Remote file inclusion

DesktopServices in Apple Mac OS X 10.6 before 10.6.3 does not properly resolve pathnames in certain circumstances involving an application's save panel, which allows user-assisted remote attackers to trigger unintended remote file copying via a crafted share name...

2.6CVSS6.4AI score0.01331EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2010/03/30 6:0 p.m.24 views

CVE-2010-0537

DesktopServices in Apple Mac OS X 10.6 before 10.6.3 does not properly resolve pathnames in certain circumstances involving an application's save panel, which allows user-assisted remote attackers to trigger unintended remote file copying via a crafted share name...

8.4AI score0.01331EPSS
Exploits0References2
CVE
CVE
added 2010/03/30 6:0 p.m.55 views

CVE-2010-0537

CVE-2010-0537 affects DesktopServices in Mac OS X 10.6 up to 10.6.2. A path-resolution flaw during an application’s save panel could allow a user‑assisted remote attacker to trigger unintended remote file copying via a crafted share name. The Red Hat advisory reiterates the same description. Appl...

2.6CVSS8.1AI score0.01331EPSS
Exploits0References2Affected Software2
myhack58
myhack58
added 2009/03/03 12:0 a.m.14 views

Healing hands as easily crack encrypted PDF file-vulnerability warning-the black bar safety net

PDF is a common E-BOOK format, but some PDF files for some reason encrypted, the e-book The print and copy functions shut off, thus using up more trouble, in fact we as long as the PDF file Reader software Acrobat Reader a slight bit of modification, you can cancel the print and copy restrictions...

0.5AI score
Exploits0
Debian
Debian
added 2009/01/11 8:20 p.m.12 views

[Backports-security-announce] Security Update for devscripts

Adam D. Barratt uploaded new packages for devscripts which fixed the following security problems: Debian BTS 507482 When copying files from a remote host for signing, the temporary directory created was named based on the process ID rather than using mktemp. Debian BTS 508111 A call to mktemp use...

5.8AI score
Exploits0
Prion
Prion
added 2008/11/25 11:30 p.m.23 views

Default configuration

The default configuration of Adobe Flash Media Server FMS 3.0 does not enable SWF Verification for 1 RTMPE and 2 RTMPTE sessions, which makes it easier for remote attackers to make copies of video content via stream-capture software...

5CVSS7.2AI score0.0231EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2008/09/16 11:0 p.m.36 views

CVE-2008-4113

The sctpgetsockopthmacident function in net/sctp/socket.c in the Stream Control Transmission Protocol sctp implementation in the Linux kernel before 2.6.26.4, when the SCTP-AUTH extension is enabled, relies on an untrusted length value to limit copying of data from kernel memory, which allows loc...

4.7CVSS5.9AI score0.00833EPSS
Exploits5References2
RedHat Linux
RedHat Linux
added 2007/10/19 3:45 p.m.3 views

security flaw

The focus handling for the onkeydown event in Mozilla Firefox 1.5.0.12, 2.0.0.4 and other versions before 2.0.0.8, and SeaMonkey before 1.1.5 allows remote attackers to change field focus and copy keystrokes via the "for" attribute in a label, which bypasses the focus prevention, as demonstrated ...

4.3CVSS5.8AI score0.02357EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2007/10/12 9:55 a.m.3 views

Untrusted Application or Applet May Move or Copy Arbitrary Files

Java Web Start in Sun JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.215 and earlier, and SDK and JRE 1.3.120 and earlier does not properly enforce access restrictions for untrusted 1 applications and 2 applets, which allows user-assisted remote attacke...

4CVSS6AI score0.02544EPSS
Exploits0References4
Prion
Prion
added 2007/08/13 9:17 p.m.18 views

Race condition

Multiple race conditions in 1 certain rules and 2 argument copying during VM protection, in CerbNG for FreeBSD 4.8 allow local users to defeat system call interposition and possibly gain privileges or bypass auditing, as demonstrated by modifying command lines in log-exec.cb...

6.2CVSS7.4AI score0.00284EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2007/06/04 11:30 p.m.25 views

CVE-2007-1862

The recallheaders function in modmemcache in Apache 2.2.4 does not properly copy all levels of header data, which can cause Apache to return HTTP headers containing previously used data, which could be used by remote attackers to obtain potentially sensitive information...

5CVSS6.2AI score0.05141EPSS
Exploits0References30
NVD
NVD
added 2007/04/03 12:19 a.m.20 views

CVE-2007-1830

Unspecified vulnerability in the Username Hijacking Patch 20070312 for web-app.org WebAPP 0.9.9.6 allows remote attackers to obtain administrative access via unknown vectors, related to "something overlooked in the original that was still overlooked in the patch", and possibly related to copying...

4.3CVSS6.8AI score0.01022EPSS
Exploits0References3
OSV
OSV
added 2006/07/29 12:4 a.m.2 views

DEBIAN-CVE-2006-3812

Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to reference remote files and possibly load chrome: URLs by tricking the user into copying or dragging links...

2.6CVSS8.7AI score0.03093EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2006/07/28 11:22 p.m.6 views

vulnerabilities: CVE-2006-{3113,3677,3801-3812}

Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to reference remote files and possibly load chrome: URLs by tricking the user into copying or dragging links...

2.6CVSS7.4AI score0.03093EPSS
Exploits0References4
myhack58
myhack58
added 2006/04/05 12:0 a.m.29 views

Kept in purdah who did not know: FU_Rootkit-vulnerability warning-the black bar safety net

I in 2 0 0 4 year 1 1 period of black anti-posted on the gadgets clever to delete the Guest/Administrator accounts on this article, there are a lot of friends asking about tools is how to write, in fact this tool inside most of the code is my copy FURootkit over. Since friends like, these days I'...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.26 views

PHP-Nuke <= 5.2 Arbitrary File Upload Vulnerability

PHP-Nuke is prone to an arbitrary file upload vulnerability in admin.php. SPDX-FileCopyrightText: 2001 SecurITeam Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later CPE =...

7.5CVSS7.2AI score0.03124EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2005/08/03 2:12 p.m.26 views

Low: Red Hat Security Advisory: dump security update

Updated dump packages that address two security issues are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having low security impact by the Red Hat Security Response Team. Dump examines files in a file system, determines which ones need to be backed up, and copies...

5.5CVSS5.7AI score0.00332EPSS
Exploits0References3
Rows per page
Query Builder