Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2009/04/15 12:0 a.m.42 views

Blended Threat Vulnerability in SearchPath Could Allow Elevation of Privilege (959426)

This host is missing a critical security update according to Microsoft Bulletin MS09-015. OpenVAS Vulnerability Test $Id: secpodms09-015.nasl 5934 2017-04-11 12:28:28Z antu123 $ Blended Threat Vulnerability in SearchPath Could Allow Elevation of Privilege 959426 Authors: Nikita MR Updated By:...

9.3CVSS0.7AI score0.08315EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2009/04/15 12:0 a.m.39 views

MS09-015: Blended Threat Vulnerability in SearchPath Could Allow Elevation of Privilege (959426)

A vulnerability in the way the Windows SearchPath function locates and opens files on the remote host could allow an attacker to execute arbitrary remote code if he can trick a user into downloading a specially crafted file into a specific location, such as the Windows Desktop. C Tenable Network...

9.3CVSS5.9AI score0.08315EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2008/07/17 1:41 p.m.33 views

CVE-2008-2933

Mozilla Firefox before 2.0.0.16, and 3.x before 3.0.1, interprets '|' pipe characters in a command-line URI as requests to open multiple tabs, which allows remote attackers to access chrome:i URIs, or read arbitrary local files via manipulations involving a series of URIs that is not entirely...

2.6CVSS5.8AI score0.02753EPSS
Exploits1References3
Prion
Prion
added 2008/07/17 1:41 p.m.33 views

Design/Logic Flaw

Mozilla Firefox before 2.0.0.16, and 3.x before 3.0.1, interprets '|' pipe characters in a command-line URI as requests to open multiple tabs, which allows remote attackers to access chrome:i URIs, or read arbitrary local files via manipulations involving a series of URIs that is not entirely...

2.6CVSS6.5AI score0.08315EPSS
Exploits1References38Affected Software1
CVE
CVE
added 2008/06/03 3:0 p.m.77 views

CVE-2008-2540

CVE-2008-2540 involves Safari on macOS and Safari/IE on Windows where downloading an object with an unrecognized content type can place malware in user directories and, via an untrusted search path, lead to remote code execution on Windows (Carpet Bomb / Blended Threat). Connected docs confirm th...

9.3CVSS7.3AI score0.08315EPSS
Exploits0References21Affected Software1
Rows per page
Query Builder