Lucene search
K

2317 matches found

exploitpack
exploitpack
added 2016/06/16 12:0 a.m.55 views

SolarWinds Virtualization Manager - Local Privilege Escalation

SolarWinds Virtualization Manager - Local Privilege Escalation Product: Solarwinds Virtualization Manager Vendor: Solarwinds Vulnerable Versions: 6.3.1 Tested Version: 6.3.1 Vendor Notification: April 25th, 2016 Vendor Patch Availability to Customers: June 1st, 2016 Public Disclosure: June 14th,...

7.2CVSS7.8AI score0.03704EPSS
Exploits5
0day.today
0day.today
added 2016/06/16 12:0 a.m.55 views

SolarWinds Virtualization Manager - Privilege Escalation

Exploit for windows platform in category local exploits Product: Solarwinds Virtualization Manager Vendor: Solarwinds Vulnerable Versions: 6.3.1 Tested Version: 6.3.1 Vendor Notification: April 25th, 2016 Vendor Patch Availability to Customers: June 1st, 2016 Public Disclosure: June 14th, 2016...

7.2CVSS7.7AI score0.03704EPSS
Exploits5
Exploit DB
Exploit DB
added 2016/06/16 12:0 a.m.52 views

SolarWinds Virtualization Manager - Local Privilege Escalation

Product: Solarwinds Virtualization Manager Vendor: Solarwinds Vulnerable Versions: 6.3.1 Tested Version: 6.3.1 Vendor Notification: April 25th, 2016 Vendor Patch Availability to Customers: June 1st, 2016 Public Disclosure: June 14th, 2016 Vulnerability Type: Security Misconfiguration CVE Referenc...

7.8CVSS7.8AI score0.03704EPSS
Exploits5
Packet Storm
Packet Storm
added 2016/06/15 12:0 a.m.80 views

Solarwinds Virtualization Manager 6.3.1 Java Deserialization

Java Deserialization in Solarwinds Virtualization Manager 6.3.1 Product: Solarwinds Virtualization Manager Vendor: Solarwinds Vulnerable Versions: 6.3.1 Tested Version: 6.3.1 Vendor Notification: April 25th, 2016 Vendor Patch Availability to Customers: June 1st, 2016 Public Disclosure: June 14th,...

10CVSS0.1AI score0.13268EPSS
Exploits2
Packet Storm
Packet Storm
added 2016/06/15 12:0 a.m.50 views

Solarwinds Virtualization Manager 6.3.1 Privilege Escalation

Product: Solarwinds Virtualization Manager Vendor: Solarwinds Vulnerable Versions: 6.3.1 Tested Version: 6.3.1 Vendor Notification: April 25th, 2016 Vendor Patch Availability to Customers: June 1st, 2016 Public Disclosure: June 14th, 2016 Vulnerability Type: Security Misconfiguration CVE Referenc...

7.2CVSS0.3AI score0.03704EPSS
Exploits5
myhack58
myhack58
added 2016/05/21 12:0 a.m.605 views

php imagecreatefrom* functions of the png-vulnerability warning-the black bar safety net

0x00 introduction This article mainly analyzes the php using the GD library imagecreatefrompng function to rebuild the png image may lead to local file inclusion vulnerability. When the system is the existence of the file contains the points, can contain a picture file; in addition the system the...

7.1AI score
Exploits0
OSV
OSV
added 2016/05/17 2:8 p.m.4 views

DEBIAN-CVE-2016-3705

The 1 xmlParserEntityCheck and 2 xmlParseAttValueComplex functions in parser.c in libxml2 2.9.3 do not properly keep track of the recursion depth, which allows context-dependent attackers to cause a denial of service stack consumption and application crash via a crafted XML document containing a...

7.5CVSS7.6AI score0.05103EPSS
Exploits0References1
OSV
OSV
added 2016/05/17 2:8 p.m.14 views

CVE-2016-3705

The 1 xmlParserEntityCheck and 2 xmlParseAttValueComplex functions in parser.c in libxml2 2.9.3 do not properly keep track of the recursion depth, which allows context-dependent attackers to cause a denial of service stack consumption and application crash via a crafted XML document containing a...

7.5CVSS6.3AI score
Exploits0References16
Prion
Prion
added 2016/05/17 2:8 p.m.37 views

Design/Logic Flaw

The 1 xmlParserEntityCheck and 2 xmlParseAttValueComplex functions in parser.c in libxml2 2.9.3 do not properly keep track of the recursion depth, which allows context-dependent attackers to cause a denial of service stack consumption and application crash via a crafted XML document containing a...

5CVSS7.1AI score0.05103EPSS
Exploits0References16Affected Software6
CVE
CVE
added 2016/05/17 2:0 p.m.152 views

CVE-2016-3705

CVE-2016-3705 affects libxml2 (tracked in CVE-2016-3705) and is caused by insufficient tracking of recursion depth in parser.c (functions xmlParserEntityCheck and xmlParseAttValueComplex). A crafted XML document with many nested entity references can exhaust the stack, causing a denial of service...

7.5CVSS7.6AI score0.05103EPSS
Exploits0References16Affected Software1
OSV
OSV
added 2016/05/17 12:0 a.m.4 views

UBUNTU-CVE-2016-3705

The 1 xmlParserEntityCheck and 2 xmlParseAttValueComplex functions in parser.c in libxml2 2.9.3 do not properly keep track of the recursion depth, which allows context-dependent attackers to cause a denial of service stack consumption and application crash via a crafted XML document containing a...

7.5CVSS7.1AI score0.05103EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2016/05/03 12:0 a.m.29 views

Wireshark Multiple DoS Vulnerabilities -02 (May 2016) - Mac OS X

Wireshark is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5.9CVSS6.7AI score0.02401EPSS
Exploits0References6
OSV
OSV
added 2016/04/25 10:59 a.m.5 views

UBUNTU-CVE-2016-4006

epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...

5.9CVSS6.6AI score0.02316EPSS
Exploits0References5
Prion
Prion
added 2016/04/25 10:59 a.m.24 views

Design/Logic Flaw

epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...

4.3CVSS6.8AI score0.02316EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2016/04/25 10:59 a.m.23 views

CVE-2016-4006

epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...

5.9CVSS5.7AI score0.02316EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2016/04/25 10:59 a.m.30 views

CVE-2016-4006

epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...

5.9CVSS6.6AI score0.02316EPSS
Exploits0References4
OSV
OSV
added 2016/04/25 10:59 a.m.2 views

DEBIAN-CVE-2016-4006

epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...

5.9CVSS5.4AI score0.02316EPSS
Exploits0References1
OSV
OSV
added 2016/04/25 10:59 a.m.9 views

CVE-2016-4006

epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...

5.9CVSS5.5AI score
Exploits0References6
CVE
CVE
added 2016/04/25 10:0 a.m.82 views

CVE-2016-4006

CVE-2016-4006 affectsWireshark 1.12.x (before 1.12.11) and 2.0.x (before 2.0.3). The vulnerability arises because epan/proto.c does not limit the protocol-tree depth, enabling a remote attacker to crash the application via a crafted packet due to stack memory exhaustion. Affected product details ...

5.9CVSS5.5AI score0.02316EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2016/04/25 10:0 a.m.39 views

CVE-2016-4006

epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service stack memory consumption and application crash via a crafted packet...

5.7AI score0.02316EPSS
Exploits0References6
Rows per page
Query Builder