Lucene search
+L

139 matches found

ClickHouse
ClickHouse
added 2017/01/10 12:0 a.m.26 views

CVE-2018-14670

Incorrect configuration in deb package could lead to the unauthorized use of the database. the UK's National Cyber Security Centre NCSC...

9.8CVSS5.3AI score0.01793EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/12/28 12:0 a.m.18 views

Mageia: Security Advisory (MGASA-2015-0482)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.5AI score0.05035EPSS
Exploits0References4
NVD
NVD
added 2015/12/03 8:59 p.m.13 views

CVE-2015-0860

Off-by-one error in the extracthalf function in dpkg-deb/extract.c in the dpkg-deb component in Debian dpkg 1.16.x before 1.16.17 and 1.17.x before 1.17.26 allows remote attackers to execute arbitrary code via the archive magic version number in an "old-style" Debian binary package, which trigger...

7.5CVSS7.5AI score0.05035EPSS
Exploits0References6
Prion
Prion
added 2015/12/03 8:59 p.m.18 views

Stack overflow

Off-by-one error in the extracthalf function in dpkg-deb/extract.c in the dpkg-deb component in Debian dpkg 1.16.x before 1.16.17 and 1.17.x before 1.17.26 allows remote attackers to execute arbitrary code via the archive magic version number in an "old-style" Debian binary package, which trigger...

7.5CVSS8.2AI score0.05035EPSS
Exploits0References6Affected Software2
Cvelist
Cvelist
added 2015/12/03 8:0 p.m.25 views

CVE-2015-0860

Off-by-one error in the extracthalf function in dpkg-deb/extract.c in the dpkg-deb component in Debian dpkg 1.16.x before 1.16.17 and 1.17.x before 1.17.26 allows remote attackers to execute arbitrary code via the archive magic version number in an "old-style" Debian binary package, which trigger...

9.7AI score0.05035EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2015/11/30 12:0 a.m.24 views

Debian DSA-3407-1 : dpkg - security update

Hanno Boeck discovered a stack-based buffer overflow in the dpkg-deb component of dpkg, the Debian package management system. This flaw could potentially lead to arbitrary code execution if a user or an automated system were tricked into processing a specially crafted Debian binary package .deb i...

7.5CVSS9.3AI score0.05035EPSS
Exploits0References4
Ubuntu
Ubuntu
added 2015/11/26 6:32 p.m.46 views

USN-2820-1: dpkg vulnerability

Hanno Boeck discovered that the dpkg-deb tool incorrectly handled certain old style Debian binary packages. If a user or an automated system were tricked into unpacking a specially crafted binary package, a remote attacker could possibly use this issue to execute arbitrary code...

7.5CVSS8.6AI score0.05035EPSS
Exploits0
OSV
OSV
added 2015/11/26 6:32 p.m.5 views

USN-2820-1 dpkg vulnerability

Hanno Boeck discovered that the dpkg-deb tool incorrectly handled certain old style Debian binary packages. If a user or an automated system were tricked into unpacking a specially crafted binary package, a remote attacker could possibly use this issue to execute arbitrary code...

7.5CVSS7.5AI score0.05035EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2015/11/26 6:0 p.m.17 views

CVE-2015-0860

Off-by-one error in the extracthalf function in dpkg-deb/extract.c in the dpkg-deb component in Debian dpkg 1.16.x before 1.16.17 and 1.17.x before 1.17.26 allows remote attackers to execute arbitrary code via the archive magic version number in an "old-style" Debian binary package, which trigger...

7.5CVSS8AI score0.05035EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2015/11/26 12:0 a.m.23 views

dpkg -- stack-based buffer overflow

Salvatore Bonaccorso reports: Hanno Boeck discovered a stack-based buffer overflow in the dpkg-deb component of dpkg, the Debian package management system. This flaw could potentially lead to arbitrary code execution if a user or an automated system were tricked into processing a specially crafte...

7.5CVSS7.5AI score0.05035EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/05/21 12:0 a.m.24 views

Debian: Security Advisory (DSA-3269-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.8AI score0.08565EPSS
Exploits0References3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

Berlios GPSD Format String Vulnerability

No description provided by source. $Id: gpsdformatstring.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.16 views

openSUSE Security Update : deb / update-alternatives (openSUSE-SU-2012:1437-1)

Fix tmp issues in annotate-output bnc778291, CVE-2012-3500 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-757. The text description of this plugin is C SUSE LLC...

1.2CVSS5.2AI score0.0027EPSS
Exploits0References3
0day.today
0day.today
added 2013/10/18 12:0 a.m.39 views

PHP Point Of Sale 10.x - 11.x - 12.x Remote Code Execution

Exploit for php platform in category web applications ​ . \ /| | \ \ \ \ | | | | / \ / \ /\ / \ / / / / / \ /\ / \ / / / | | | Y \ / \ | | \ /\ \ \ | | /\ /\ / || || /\ \ /|| / /// \ /|| \ // / / / / / / http://thecrowscrew.org ​ Exploit title : PHP Point Of Sale 10.x -...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2010/01/07 12:0 a.m.125 views

Critical PowerDNS Recursor Security Vulnerabilities: please upgrade ASAP to 3.1.7.2

Dear PowerDNS Users, Two major vulnerabilities have recently been discovered in the PowerDNS Recursor all versions up to and including 3.1.7.1. Over the past two weeks, these vulnerabilities have been addressed, resulting in PowerDNS Recursor 3.1.7.2. Given the nature and magnitude of these...

0.3AI score
Exploits0
NVD
NVD
added 2009/12/04 7:30 p.m.27 views

CVE-2009-3304

GForge 4.5.14, 4.7 rc2, and 4.8.2 allows local users to overwrite arbitrary files via a symlink attack on authorizedkeys files in users' home directories, related to deb-specific/sshdumpupdate.pl and cronjobs/cvs-cron/sshcreate.php...

3.3CVSS6.2AI score0.00314EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.48 views

Ubuntu Update for firefox-3.0, xulrunner-1.9 vulnerabilities USN-626-1

Ubuntu Update for Linux kernel vulnerabilities USN-626-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6261.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for firefox-3.0, xulrunner-1.9 vulnerabilities USN-626-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks Gmb...

9.3CVSS0.9AI score0.05284EPSS
Exploits4References2
Exploit DB
Exploit DB
added 2007/01/08 12:0 a.m.37 views

Berlios GPSD 2.7 - Remote Format String (Metasploit)

package Msf::Exploit::gpsdformatstring; use base "Msf::Exploit"; use strict; use Pex::Text; use IO::Socket; my $advanced = ; my $info = 'Name' = 'Berlios GPSD Format String Vulnerability', 'Version' = '$ 1.0 $', 'Authors' = 'Enseirb ', , 'Arch' = 'x86' , 'OS' = 'linux' , 'Priv' = 1, 'UserOpts' =...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2005/05/25 12:0 a.m.34 views

Berlios GPSD 1.91-1 < 2.7-2 - Format String

require 'msf/core' class Metasploit3 'Berlios GPSD Format String Vulnerability', 'Description' = %q This module exploits a format string vulnerability in the Berlios GPSD server. This vulnerability was discovered by Kevin Finisterre. , 'Author' = 'Yann Senotier ' , 'License' = MSFLICENSE, 'Versio...

7.5CVSS6.6AI score0.68195EPSS
Exploits8
Rows per page
Query Builder