Lucene search
K

8751 matches found

OpenVAS
OpenVAS
added 2019/07/29 12:0 a.m.80 views

Fedora Update for dtkwidget FEDORA-2019-3d418f349c

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7CVSS5.6AI score0.00443EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2019/07/26 6:46 p.m.2 views

Judge Rules No Jail Time for WannaCry 'Killer' Marcus Hutchins, a.k.a. MalwareTech

Marcus Hutchins, better known as MalwareTech, has been sentenced to "time served" and one year of supervised release for developing and selling the Kronos banking malware. Yes, Hutchins will not go to prison, United States District Judge J.P. Stadtmueller ruled today in Milwaukee County Court,...

6.6AI score
Exploits0
CNVD
CNVD
added 2019/07/24 12:0 a.m.3 views

Netwide Assembler Code Issue Vulnerability

Netwide Assembler NASM is a Linux-based assembler. The product is capable of creating binaries and writing bootloaders. A code issue vulnerability exists in Netwide Assembler. The vulnerability stems from an improperly designed or implemented code development process for a networked system or...

5.5CVSS7AI score0.00919EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2019/07/23 4:23 p.m.90 views

Moderate: Red Hat Security Advisory: java-1.7.0-openjdk security update

An update for java-1.7.0-openjdk is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

5.8CVSS6.7AI score0.04472EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2019/07/23 12:0 a.m.21 views

The vulnerability of the `ppdcSource::find_variable` function in the workmanir utility from the libirman-dev package allows a hacker to cause a service failure.

The vulnerability of the ppdcSource::findvariable function /usr/lib/x8664-linux-gnu/libcupsppdc.so.1 in the workmanir utility from the libirman-dev package is related to buffer overflow vulnerabilities 0x00007ffff7bca37a. Exploiting this vulnerability may allow an attacker to cause a service...

6.2CVSS5.9AI score
Exploits0Affected Software1
CNVD
CNVD
added 2019/07/23 12:0 a.m.1 views

SQL injection vulnerability in we***.asp file of website building system of Pengcheng Network Studio in Lu'an Development Zone.

Lu'an City Development Zone Pengcheng Network Studio is a company that provides e-commerce solutions and value-added services for enterprises and merchants. There is a SQL injection vulnerability in the we.asp file of the website building system of Pengcheng Network Studio in the development zone...

7.6AI score
Exploits0
Positive Technologies
Positive Technologies
added 2019/07/22 12:0 a.m.5 views

PT-2022-8603 · Unknown +2 · Platinum Upnp Sdk +2

Name of the Vulnerable Software and Affected Versions: Platinum Upnp SDK versions prior to 1.2.1 Description: The issue allows for a directory traversal attack, which could be exploited by sending a malicious URL, such as "http://ip:port/../privacy.avi", to compromise a victim's privacy. This cou...

7.8CVSS6.7AI score0.01711EPSS
Exploits5References42
Kitploit
Kitploit
added 2019/07/20 1:1 p.m.191 views

Parrot Security 4.7 - Security GNU/Linux Distribution Designed with Cloud Pentesting and IoT Security in Mind

Parrot is a GNU/Linux distribution based on Debian Testing and designed with Security, Development and Privacy in mind. It includes a full portable laboratory for security and digital forensics experts, but it also includes all you need to develop your own software or protect your privacy while...

7.4AI score
Exploits0References2
CNVD
CNVD
added 2019/07/19 12:0 a.m.4 views

National Security Agency Ghidra Code Issue Vulnerability

National Security Agency Ghidra is a software reverse engineering SRE framework for the National Security Agency NSA. A code issue vulnerability exists in National Security Agency Ghidra versions prior to 9.0.1. The vulnerability stems from an improperly designed or implemented code development...

9.4CVSS7.1AI score0.02404EPSS
Exploits1References1
CNVD
CNVD
added 2019/07/16 12:0 a.m.3 views

EDK2 Stack Buffer Overflow Vulnerability

EDK2 is a set of cross-platform firmware development environment based on UEFI and PI specifications. A buffer overflow vulnerability in the stack exists in EDK2. A remote attacker could exploit this vulnerability to run arbitrary code in the context of an affected application or possibly cause a...

6CVSS7.8AI score0.00425EPSS
Exploits0References1
CNVD
CNVD
added 2019/07/16 12:0 a.m.2 views

EDK2 Security Bypass Vulnerability

EDK2 is a set of cross-platform firmware development environment based on UEFI and PI specifications. A security bypass vulnerability exists in EDK2. A remote attacker could exploit this vulnerability to cause an affected application to crash, resulting in a denial of service or bypass security...

9.1CVSS6.9AI score0.02271EPSS
Exploits0References1
0day.today
0day.today
added 2019/07/15 12:0 a.m.34 views

PCMan FTP Server 2 ALLO Buffer Overflow Exploit

Vulnerability Title: PCMan FTP Server 2 - 'ALLO' Remote Buffer Overflow Discovered by: Nassim Asrir Tested on: win7 x32 Thanks To : Chagi-Lagi - MY.Neggaoui !/usr/bin/python2.7 -- coding: utf-8 - import socket ret = "\xf7\xf8\xc5\x75" @ JMP ESP Kernel32.dll calc...

0.5AI score
Exploits0
Fedora
Fedora
added 2019/07/13 1:7 a.m.34 views

[SECURITY] Fedora 30 Update: python-django-2.1.10-1.fc30

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

6.1CVSS1.6AI score0.02563EPSS
Exploits0
CNVD
CNVD
added 2019/07/13 12:0 a.m.1 views

File Upload Vulnerability in the Backstage of Website Star of Shanghai Meicang Technology Information Development Co.

Ltd., is a cloud computing-based Internet application service provider. There is a file uploading vulnerability in the background of Shanghai Meicang Technology and Information Development Co...

6.9AI score
Exploits0
OpenVAS
OpenVAS
added 2019/07/13 12:0 a.m.27 views

Fedora Update for python-django FEDORA-2019-d9aa58d863

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.1CVSS6.2AI score0.02563EPSS
Exploits0References2
CVE
CVE
added 2019/07/12 3:30 p.m.286 views

CVE-2019-8998

CVE-2019-8998 affects BlackBerry QNX Software Development Platform up to version 6.5.0 SP1. The procfs (/proc) service exposes process information, enabling a less-privileged local attacker to access a target process address space (information disclosure leading to local privilege escalation). Se...

7.8CVSS7.4AI score0.00222EPSS
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2019/07/10 12:0 a.m.40 views

Microsoft DirectWrite AFDKO - Heap-Based Buffer Overflow in OpenType Font Handling in readEncoding

Microsoft DirectWrite AFDKO - Heap-Based Buffer Overflow in OpenType Font Handling in readEncoding -----===== Background =====----- AFDKO Adobe Font Development Kit for OpenType is a set of tools for examining, modifying and building fonts. The core part of this toolset is a font handling library...

0.7AI score
Exploits0
exploitpack
exploitpack
added 2019/07/10 12:0 a.m.28 views

Microsoft DirectWrite AFDKO - Heap-Based Buffer Overflow Due to Integer Overflow in readTTCDirectory

Microsoft DirectWrite AFDKO - Heap-Based Buffer Overflow Due to Integer Overflow in readTTCDirectory -----===== Background =====----- AFDKO Adobe Font Development Kit for OpenType is a set of tools for examining, modifying and building fonts. The core part of this toolset is a font handling libra...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2019/07/10 12:0 a.m.41 views

Microsoft DirectWrite AFDKO - Stack Corruption in OpenType Font Handling Due to Negative nAxes

Microsoft DirectWrite AFDKO - Stack Corruption in OpenType Font Handling Due to Negative nAxes -----===== Background =====----- AFDKO Adobe Font Development Kit for OpenType is a set of tools for examining, modifying and building fonts. The core part of this toolset is a font handling library...

7.3AI score
Exploits0
Exploit DB
Exploit DB
added 2019/07/10 12:0 a.m.265 views

Microsoft DirectWrite / AFDKO - Heap-Based Buffer Overflow Due to Integer Overflow in readTTCDirectory

-----===== Background =====----- AFDKO Adobe Font Development Kit for OpenType is a set of tools for examining, modifying and building fonts. The core part of this toolset is a font handling library written in C, which provides interfaces for reading and writing Type 1, OpenType, TrueType to some...

7.4AI score
Exploits0
Rows per page
Query Builder