Lucene search
K

176 matches found

UbuntuCve
UbuntuCve
added 2014/03/11 7:37 p.m.33 views

CVE-2014-1839

The Execute class in shellutils in logilab-commons before 0.61.0 uses tempfile.mktemp, which allows local users to have an unspecified impact by pre-creating the temporary file...

4.4CVSS5.9AI score0.00355EPSS
Exploits0References2
Cvelist
Cvelist
added 2014/01/28 12:0 a.m.28 views

CVE-2014-1624

Race condition in the xdg.BaseDirectory.getruntimedir function in python-xdg 0.25 allows local users to overwrite arbitrary files by pre-creating /tmp/pyxdg-runtime-dir-fallback-victim to point to a victim-owned location, then replacing it with a symlink to an attacker-controlled location once th...

6AI score0.00315EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2013/10/17 11:55 p.m.30 views

CVE-2013-4369

The xluvifparserate function in the libxlu library in Xen 4.2.x and 4.3.x allows local users to cause a denial of service NULL pointer dereference by using the "@" character as the VIF rate configuration...

1.9CVSS5.9AI score0.00343EPSS
Exploits0References2
Fedora
Fedora
added 2013/10/10 2:48 p.m.26 views

[SECURITY] Fedora 20 Update: gnupg-1.4.15-1.fc20

GnuPG GNU Privacy Guard is a GNU utility for encrypting data and creating digital signatures. GnuPG has advanced key management capabilities and is compliant with the proposed OpenPGP Internet standard described in RFC2440. Since GnuPG doesn't use any patented algorithm, it is not compatible with...

5.8CVSS2.7AI score0.0503EPSS
Exploits0
Fedora
Fedora
added 2013/06/16 6:13 a.m.33 views

[SECURITY] Fedora 19 Update: perl-Module-Signature-0.73-1.fc19

This package contains a command line tool and module for checking and creat ing SIGNATURE files for Perl CPAN distributions...

4.4CVSS2.4AI score0.00557EPSS
Exploits1
0day.today
0day.today
added 2013/06/06 12:0 a.m.18 views

RuubikCMS 1.1.1 - Path Traversal Vulnerability

ruubikcms is vulnerable to Path traversal vulnerability, when logged in with any user account, list of files and directory names present on server will be displayed by changing path in URL, this vulnerability exist in "tinybrowser.php" Also using the same vulnerability we can create folders on...

6.9AI score
Exploits0
UbuntuCve
UbuntuCve
added 2013/05/09 3:0 p.m.34 views

CVE-2013-2030

keystone/middleware/authtoken.py in OpenStack Nova Folsom, Grizzly, and Havana uses an insecure temporary directory for storing signing certificates, which allows local users to spoof servers by pre-creating this directory, which is reused by Nova, as demonstrated using /tmp/keystone-signing-nova...

2.1CVSS5.9AI score0.00238EPSS
Exploits0References1
Prion
Prion
added 2012/11/19 12:10 p.m.14 views

Directory traversal

razorCMS 1.2 allows remote authenticated users to access administrator directories and files by creating and deleting a directory...

4CVSS6.8AI score0.01524EPSS
Exploits1References1Affected Software1
OpenVAS
OpenVAS
added 2011/09/27 12:0 a.m.26 views

CDE ToolTalk RPC Database Server Multiple Vulnerabilities

This host is running the CDE ToolTalk Database Server and is prone to the multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodtooltalkrpcdatabaseservermultvuln.nasl 7006 2017-08-25 11:51:20Z teissa $ CDE ToolTalk RPC Database Server Multiple Vulnerabilities Authors: Antu Sanadi...

7.5CVSS0.4AI score0.09418EPSS
Exploits0References4
0day.today
0day.today
added 2011/09/05 12:0 a.m.45 views

CinePlayer Surround Universal DEP Bypass Exploit

Exploit for windows platform in category local exploits !/usr/bin/python Exploit Title: CinePlayer Surround Universal DEP Bypass Exploit Author: Angel Injection Thanks To Inj3ct0r Team Home: http://1337day.com , http://sec-krb.org shellcode =...

6.8AI score
Exploits0
Prion
Prion
added 2011/03/18 4:55 p.m.17 views

Race condition

Race condition in the Kernel::System::Main::FileWrite method in Open Ticket Request System OTRS before 2.4.8 allows remote authenticated users to corrupt the TicketCounter.log data in opportunistic circumstances by creating tickets...

4.9CVSS6.7AI score0.00617EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2011/03/18 4:55 p.m.29 views

CVE-2010-4765

Race condition in the Kernel::System::Main::FileWrite method in Open Ticket Request System OTRS before 2.4.8 allows remote authenticated users to corrupt the TicketCounter.log data in opportunistic circumstances by creating tickets...

4.9CVSS5.9AI score0.00617EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2011/03/18 4:0 p.m.32 views

CVE-2010-4765

Race condition in the Kernel::System::Main::FileWrite method in Open Ticket Request System OTRS before 2.4.8 allows remote authenticated users to corrupt the TicketCounter.log data in opportunistic circumstances by creating tickets...

4.9CVSS6.2AI score0.00617EPSS
Exploits0
exploitpack
exploitpack
added 2011/02/06 12:0 a.m.13 views

Hanso Converter 1.1.0 - BufferOverflow Denial of Service

Hanso Converter 1.1.0 - BufferOverflow Denial of Service Exploit Title: Hanso Converter v1.1.0 Language File Buffer Overflow - Denial OF Service Date: 05.02.2011 Author: Dame Jovanoskibadc0re Software Link: http://www.hansotools.com/downloads/hanso-converter-setup.exe Version: v1.1.0 Tested on: X...

0.3AI score
Exploits0
Cvelist
Cvelist
added 2011/01/28 3:0 p.m.26 views

CVE-2011-0046

Multiple cross-site request forgery CSRF vulnerabilities in Bugzilla before 3.2.10, 3.4.x before 3.4.10, 3.6.x before 3.6.4, and 4.0.x before 4.0rc2 allow remote attackers to hijack the authentication of arbitrary users for requests related to 1 adding a saved search in buglist.cgi, 2 voting in...

7AI score0.01136EPSS
Exploits0References22
Exploit DB
Exploit DB
added 2010/11/10 12:0 a.m.29 views

Free CD to MP3 Converter 3.1 - Local Buffer Overflow

!usr/bin/perl Exploit Title: Exploit 0day Buffer Overflow Free CD to MP3 Converter 3.1 Date: 09\11\2010 Author: C4SS!0 G0M3S Software Link: http://www.eusing.com/Download/cdtomp3freeware.exe Version: 3.1 Tested on: WIN-XP SP3 Exploit Writted by C4SS!0 G0M3S Home: http://www.invasao.com.br E-mail:...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2010/11/05 12:0 a.m.24 views

GSPlayer 1.83a Win32 Buffer Overflow

Exploit Title: GSPlayer 1.83a Win32 Release Buffer Overflow Vulnerability Date: 2010/11/04 Author: moigai e-mail: [email protected] Software Link: http://www.vector.co.jp/download/file/win95/art/fh296344.html Version: 1.83a Win32 Release Tested on: Windows XP SP3 En VM my $file = "GSPlayer.m3u"...

0.9AI score
Exploits0
OpenVAS
OpenVAS
added 2010/05/19 12:0 a.m.56 views

Moodle Session Fixation Vulnerability

This host is running Moodle and is prone to session fixation vulnerability OpenVAS Vulnerability Test $Id: gbmoodlesessionfixationvuln.nasl 5323 2017-02-17 08:49:23Z teissa $ Moodle Session Fixation Vulnerability Authors: Madhuri D Copyright: Copyright c 2010 Greenbone Networks GmbH,...

6.8CVSS6.3AI score0.0181EPSS
Exploits0References2
0day.today
0day.today
added 2010/03/30 12:0 a.m.25 views

Fa-Ads (Auth Bypass) Vulnerability

Exploit for php platform in category web applications ================================== Fa-Ads Auth Bypass Vulnerability ================================== ======================================================================================== | Title : Fa-Ads Auth Bypass Vulnerability | Author...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2010/02/26 7:13 p.m.15 views

Status Update privacy

You should be aware that when you type a status update, you can also set the privacy of that status posting like you were creating an album...

1.9AI score
Exploits0
Rows per page
Query Builder