Lucene search
+L

545 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.30 views

Unreal Engine 'UnChan.cpp' Failed Assertion Remote Denial of Service Vulnerability

漏洞成因: 没有正确处理内存分配异常,导致拒绝服务漏洞 下列使用了该引擎的应用存在漏洞: Unreal Tournament 3.1.3 Unreal Tournament 2003 Unreal Tournament 2004 Dead Man's Hand Pariah WarPath Postal 2 Shadow Ops exp: http://www.securityfocus.com/data/vulnerabilities/exploits/31205.zip 参考: http://www.securityfocus.com/bid/31205/exploit source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.60 views

Microsoft Windows NT 4/2000 NetBIOS Name Conflict Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1514/info An attacker can send the NetBIOS name service a NetBIOS Name Conflict message even when the receiving machine is not in the process of registering its NetBIOS name. The target will then not attempt to use that...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2013/06/03 5:37 p.m.4 views

Mesa: Memory corruption (OOB read/write) on intel drivers

The Intel drivers in Mesa 8.0.x and 9.0.x allow context-dependent attackers to cause a denial of service reachable assertion and crash and possibly execute arbitrary code via vectors involving 3d graphics that trigger an out-of-bounds array access, related to the fsvisitor::removedeadconstants...

6.8CVSS7.7AI score0.02609EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2013/05/09 12:0 a.m.73 views

Unbreakable Enterprise kernel security and bugfix update

2.6.39-400.23.1 - Parallel mtrr init between cpus Zhenzhong Duan Orabug: 16777774 - Merge tag 'v2.6.39-400.21.1.16748891' of git://ca-git.us.oracle.com/linux-uek-2.6.39-ofed into uek-2.6.39-400 Maxim Uvarov Orabug: 16748891 - xen-blkfront: use a different scatterlist for each request Roger Pau...

6.8CVSS0.4AI score0.0135EPSS
Exploits5
The Hacker News
The Hacker News
added 2012/12/08 2:6 a.m.11 views

Necurs Rootkit infect 83,427 machines in November

Rootkit named as "Necurs" infect 83,427 unique machines during the month of November 2012. It is a multi-purpose rootkits capable of posing a threat to both 32 and 64-bit Windows systems. Distributed via drive-by download on the websites that host the BlackHole exploit kit. Like other rootkits it...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2012/11/09 5:38 p.m.8 views

New Dead drop techniques used by Security Agencies

Paul F Renda give an overview that, What and how new long distance and short distance Dead drop techniques are used by National Security Agency for secure communications. What is a dead drop? It is methods that spies use or have used to communicate with associates who have information for them. T...

6.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.34 views

Scientific Linux Security Update : openswan on SL5.x i386/x86_64

Gerd v. Egidy discovered a flaw in the Dead Peer Detection DPD in Openswan's pluto IKE daemon. A remote attacker could use a malicious DPD packet to crash the pluto daemon. CVE-2009-0790 It was discovered that Openswan's livetest script created temporary files in an insecure manner. A local...

5CVSS8.1AI score0.03205EPSS
Exploits8References3
ThreatPost
ThreatPost
added 2012/06/25 4:20 p.m.11 views

Key Stuxnet LNK Spreading Mechanism Stops Working

One of the key infection methods for the Stuxnet worm was hard-coded to stop working on June 24, removing one of its techniques for propagation. Researchers say that the date, which is found in coded form in the worm’s instructions, is nearly three years to the day from the date that the first...

7.2AI score
Exploits0References4
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.36 views

CentOS Update for openswan CESA-2009:0402 centos5 i386

Check for the Version of openswan OpenVAS Vulnerability Test CentOS Update for openswan CESA-2009:0402 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

5CVSS8.3AI score0.03205EPSS
Exploits8References2
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.23 views

CentOS Update for openswan CESA-2009:0402 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS8.5AI score0.03205EPSS
Exploits8References2
ThreatPost
ThreatPost
added 2011/08/06 4:2 p.m.21 views

Anonymous, LulzSec Dump 10 Gigs of Sensitive Law Enforcement Data

Hacker collectives, LulzSec and Anonymous claim to have compromised the servers of the Missouri Sheriff’s Association, posting some 10GB of sensitive data online. According to a statement posted online, the leaked information includes more than 300 email accounts from some 56 law enforcement...

6.8AI score
Exploits0References6
ThreatPost
ThreatPost
added 2010/12/09 9:16 p.m.8 views

Hacktivism: From Here to There

The current controversy regarding WikiLeaks and the attacks against the organizations that have opposed the group has sparked a large and complex conversation about the meanings of free speech, freedom of the press and online activism. As new as all of this may seem to some, this is by no means t...

7.1AI score
Exploits0References2
exploitpack
exploitpack
added 2010/07/15 12:0 a.m.17 views

Unreal Engine - ReceivedRawBunch() Denial of Service

Unreal Engine - ReceivedRawBunch Denial of Service source: https://www.securityfocus.com/bid/41737/info Unreal Engine is prone to a denial-of-service vulnerability. An attacker can exploit this issue to crash the affected server, resulting in denial-of-service conditions. The following games whic...

7.3AI score
Exploits0
Exploit DB
Exploit DB
added 2010/07/15 12:0 a.m.28 views

Unreal Engine - 'ReceivedRawBunch()' Denial of Service

source: https://www.securityfocus.com/bid/41737/info Unreal Engine is prone to a denial-of-service vulnerability. An attacker can exploit this issue to crash the affected server, resulting in denial-of-service conditions. The following games which are developed with Unreal Engine are affected:...

7.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2010/07/01 6:0 p.m.7 views

kernel: keyrings: find_keyring_by_name() can gain the freed keyring

Race condition in the findkeyringbyname function in security/keys/keyring.c in the Linux kernel 2.6.34-rc5 and earlier allows local users to cause a denial of service memory corruption and system crash or possibly have unspecified other impact via keyctl session commands that trigger access to a...

7CVSS7.2AI score0.00658EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2010/06/15 11:50 p.m.5 views

kernel: keyrings: find_keyring_by_name() can gain the freed keyring

Race condition in the findkeyringbyname function in security/keys/keyring.c in the Linux kernel 2.6.34-rc5 and earlier allows local users to cause a denial of service memory corruption and system crash or possibly have unspecified other impact via keyctl session commands that trigger access to a...

7CVSS7.2AI score0.00658EPSS
Exploits2References4
Prion
Prion
added 2010/03/16 7:30 p.m.13 views

Sql injection

SQL injection vulnerability in player.php in Left 4 Dead L4D Stats 1.1 allows remote attackers to execute arbitrary SQL commands via the steamid parameter...

7.5CVSS9.1AI score0.01151EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2010/03/16 7:30 p.m.20 views

CVE-2010-0980

SQL injection vulnerability in player.php in Left 4 Dead L4D Stats 1.1 allows remote attackers to execute arbitrary SQL commands via the steamid parameter...

7.5CVSS8.4AI score0.01151EPSS
Exploits1References6
Cvelist
Cvelist
added 2010/03/16 7:0 p.m.21 views

CVE-2010-0980

SQL injection vulnerability in player.php in Left 4 Dead L4D Stats 1.1 allows remote attackers to execute arbitrary SQL commands via the steamid parameter...

8.4AI score0.01151EPSS
Exploits1References6
CVE
CVE
added 2010/03/16 7:0 p.m.43 views

CVE-2010-0980

The CVE-2010-0980 entry concerns Left 4 Dead (L4D) Stats 1.1. The vulnerability is a SQL injection in player.php that allows remote attackers to modify or exfiltrate data via the steamid parameter. This is supported by multiple sources (NVD entry and related references) which indicate arbitrary S...

7.5CVSS8.7AI score0.01151EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder