Lucene search
+L

1984 matches found

securityvulns
securityvulns
added 2007/11/29 12:0 a.m.68 views

[SECURITY] [DSA 1416-1] New tk8.3 packages fix arbitrary code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1416-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 27, 2007 http://www.debian.org/security/faq -...

4.3CVSS0.5AI score0.02643EPSS
Exploits0
seebug.org
seebug.org
added 2007/11/08 12:0 a.m.104 views

Mono System.Math BigInteger整数溢出漏洞

BUGTRAQ ID: 26279 CVECAN ID: CVE-2007-5197 Mono是基于.NET框架的开源开发平台,允许开发人员构建Linux和跨平台的应用。 Mono的Mono.Math.BigInteger类在实现BigInteger数据类型时存在整数溢出漏洞,允许本地攻击者执行任意指令。 Mono Mono 2.0 Mono Mono 1.x 厂商补丁: Debian ------ Debian已经为此发布了一个安全公告(DSA-1397-1)以及相应补丁: DSA-1397-1:New mono packages fix integer overflow...

7.5CVSS0.2AI score0.0362EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2007/10/08 8:7 a.m.22 views

Moderate: Red Hat Security Advisory: pwlib security update

Updated pwlib packages that fix a security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PWLib is a library used to support cross-platform applications. In Red Hat Enterprise Linux 5, th...

5CVSS5.8AI score0.10897EPSS
Exploits6References2
myhack58
myhack58
added 2007/08/31 12:0 a.m.21 views

A comprehensive analysis of the firewall and the firewall of penetration-vulnerability warning-the black bar safety net

A firewall description A firewall is a function, it makes the internal network and the external network or the Internet, isolated from each other, in order to protect the internal network or host. A simple firewall may consist of Router,3 Layer Switch ACL access control list to act as, you can al...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/07/28 12:0 a.m.92 views

NetVault Process Manager Service Detection

The remote service is an instance of NetVault Process Manager, part of Dell NetVault, a cross-platform backup and restore application. Dell NetVault was formerly known as BakBone NetVault Backup. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid25800;...

5.5AI score
Exploits0References2
myhack58
myhack58
added 2007/06/10 12:0 a.m.53 views

Modify the PHP core Backdoor implementation-vulnerability warning-the black bar safety net

Developing A PHP Core Backdoor Author: wofeiwo/I non-I wofeiwoatgmaildotcom Directory 1Foreword 2The advantages and disadvantages of 3design 4functions to achieve 5reference to documents 6some description 1Foreword PHP is a very popular web server side script language. At present, many web...

6.7AI score
Exploits0
Packet Storm
Packet Storm
added 2007/04/17 12:0 a.m.37 views

vcdgear-local.txt

/ 0day Discovered by: C-W-M Auther: C-W-M Www.MeftunNet.Com & Www.HackerSecurity.Org Location : Turkey... Attack Vector: SEH overwrite Type: Local Tested on Win2k SP4 English Software: VCDGear v3.56 build 050213 Website: www.vcdgear.com Description: "VCDGear is a program designed to allow a user ...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/04/13 12:0 a.m.28 views

VCDGear 3.56 Build 050213 - 'FILE' Local Code Execution

/ 0day Discovered by: InTeL Auther: InTeL Attack Vector: SEH overwrite Type: Local Tested on Win2k SP4 English Software: VCDGear v3.56 build 050213 Website: www.vcdgear.com Description: "VCDGear is a program designed to allow a user to extract MPEG streams from CD images, convert VCD files to MPE...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2007/01/20 12:0 a.m.81 views

[x0n3-h4ck] sabros.us 1.7 XSS Exploit

-=--------------------ADVISORY-------------------=- sabros.us 1.7 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: sabros.us -=+ Version: 1.7 -=+ Vendor's URL: http://sourceforge.net/projects/sabrosus/ -=+ Platform: WindowsLinuxUnix -=+ Bug...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2006/11/28 12:0 a.m.55 views

[Full-disclosure] REMLAB Web Mech Designer 2.0.5 Path Disclosure Vulnerability

Description: REMLAB http://remlab.sourceforge.net/ is a fully fuctional cross-platform web-based Battlemech designer for the tactical board game Battletech http://www.classicbattletech.com/ . REMLAB is built entirely on HTML, PHP, and JavaScript with AJAX functionality. The vulnerability exists i...

5CVSS5.9AI score0.01617EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2006/08/03 12:0 a.m.51 views

Mozilla Firefox: Multiple vulnerabilities

Background Mozilla Firefox is a redesign of the Mozilla Navigator component. The goal is to produce a cross-platform stand-alone browser application. Description The following vulnerabilities have been reported: Benjamin Smedberg discovered that chrome URL's could be made to reference remote file...

7.5CVSS7.3AI score0.78359EPSS
Exploits11
RedHat Linux
RedHat Linux
added 2005/09/22 8:36 p.m.7 views

security flaw

Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spoof DOM objects via an XBL control that implements an internal XPCOM interface...

5CVSS5.9AI score0.01818EPSS
Exploits0References4
CERT
CERT
added 2005/08/04 12:0 a.m.31 views

Computer Associates BrightStor ARCserve Backup Discovery Service vulnerable to buffer overflow

Overview The Computer Associates BrightStor ARCserve Backup Discovery Service contains a buffer overflow, which may allow a remote attacker to execute arbitrary code. Description Computer Associates BrightStor ARCserve Backup is a cross-platform backup and recovery application. The ARCserve Backu...

10CVSS7.5AI score0.69727EPSS
Exploits6References4
Packet Storm
Packet Storm
added 2005/05/27 12:0 a.m.25 views

firefoxSploit.txt

Firelinking 2 - Proof-of-Concept by mikx var pf = navigator.platform.toLowerCase; if pf.indexOf"win" != -1 var os = "win"; else if pf.indexOf"mac" != -1 var os = "mac"; else var os = "linux" function runDemo // this is an ugly caching workaround document.getElementById'outhtml'.innerHTML = "";...

7.4AI score
Exploits0
0day.today
0day.today
added 2005/05/21 12:0 a.m.17 views

Mozilla Firefox view-source:javascript url Code Execution Exploit

Exploit for multiple platform in category remote exploits ================================================================= Mozilla Firefox view-source:javascript url Code Execution Exploit ================================================================= Firelinking 2 - Proof-of-Concept by mikx...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2005/05/21 12:0 a.m.12 views

Mozilla Firefox - view-source:JavaScript url Code Execution

Mozilla Firefox - view-source:JavaScript url Code Execution Firelinking 2 - Proof-of-Concept by mikx var pf = navigator.platform.toLowerCase; if pf.indexOf"win" != -1 var os = "win"; else if pf.indexOf"mac" != -1 var os = "mac"; else var os = "linux" function runDemo // this is an ugly caching...

7.7AI score
Exploits0
Exploit DB
Exploit DB
added 2005/05/21 12:0 a.m.30 views

Mozilla Firefox - view-source:JavaScript url Code Execution

Firelinking 2 - Proof-of-Concept by mikx var pf = navigator.platform.toLowerCase; if pf.indexOf"win" != -1 var os = "win"; else if pf.indexOf"mac" != -1 var os = "mac"; else var os = "linux" function runDemo // this is an ugly caching workaround document.getElementById'outhtml'.innerHTML = "";...

7.4AI score
Exploits0
CERT
CERT
added 2005/05/10 12:0 a.m.62 views

Mozilla Firefox executes JavaScript in the "IconURL" parameter of "InstallTrigger.install()" with chrome privileges

Overview Mozilla Firefox may execute JavaScript contained within the IconURL parameter of InstallTrigger.install with chrome privileges. This may allow an attacker to execute arbitrary commands on a vulnerable system. Description XPInstallXPInstall is a cross-platform software installation method...

5.1CVSS6.4AI score0.1524EPSS
Exploits1References13
securityvulns
securityvulns
added 2005/04/08 12:0 a.m.27 views

[SIG^2 G-TEC] SurgeFTP LEAK Command Denial-Of-Service Vulnerability

SIG^2 Vulnerability Research Advisory SurgeFTP LEAK Command Denial-Of-Service Vulnerability by Tan Chew Keong Release Date: 07 Apr 2005 ADVISORY URL http://www.security.org.sg/vuln/surgeftp22m1.html SUMMARY SurgeFTP http://netwinsite.com/surgeftp/ is an FTP server with SSL/TLS security, easy...

7.5AI score
Exploits0
securityvulns
securityvulns
added 2004/11/23 12:0 a.m.36 views

[Full-Disclosure] Sun Java Plugin arbitrary package access vulnerability

OVERVIEW ======== Sun Microsystem's Java Plugin connects the Java technology to web browsers and allows the use of Java Applets. Java Plugin technology is available for numerous platforms and supports major web browsers. A vulnerability in Java Plugin allows an attacker to create an Applet which...

7.2AI score
Exploits0
Rows per page
Query Builder