Lucene search
K

216 matches found

Tenable Nessus
Tenable Nessus
added 2004/08/30 12:0 a.m.21 views

GLSA-200401-02 : Honeyd remote detection vulnerability via a probe packet

The remote host is affected by the vulnerability described in GLSA-200401-02 Honeyd remote detection vulnerability via a probe packet A bug in handling NMAP fingerprints caused Honeyd to reply to TCP packets with both the SYN and RST flags set. Watching for replies, it is possible to detect IP...

5.5AI score
Exploits0References2
NVD
NVD
added 2004/02/03 5:0 a.m.13 views

CVE-2003-0949

xsok 1.02 does not properly drop privileges before finding and executing the "gunzip" program, which allows local users to execute arbitrary commands...

4.6CVSS6.8AI score0.00413EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2004/01/14 5:0 a.m.17 views

CVE-2003-0949

xsok 1.02 does not properly drop privileges before finding and executing the "gunzip" program, which allows local users to execute arbitrary commands...

4.6CVSS5.9AI score0.00413EPSS
Exploits0
securityvulns
securityvulns
added 2003/11/13 12:0 a.m.23 views

Opera Skinned & Opera Directory Traversal (Additional Details & a Simple Exploit)

Opera Skinned & Opera Directory Traversal Additional Details & a Simple Exploit: ================================================================================== ADDITIONAL DETAILS: While installing Opera, if the "USE SEPARATE SETTINGS FOR EACH USER" option is selected, the "opera7/profile"...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2003/09/23 12:0 a.m.23 views

ProFTPd 1.2.7/1.2.8 - '.ASCII' File Transfer Buffer Overrun

// source: https://www.securityfocus.com/bid/8679/info A remotely exploitable buffer overrun vulnerability has been reported in ProFTPD. This issue could be triggered if an attacker uploads a malformed file and then that file is downloaded in ASCII mode. Successful exploitation will permit a...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2003/09/23 12:0 a.m.15 views

ProFTPd 1.2.71.2.8 - .ASCII File Transfer Buffer Overrun

ProFTPd 1.2.71.2.8 - .ASCII File Transfer Buffer Overrun // source: https://www.securityfocus.com/bid/8679/info A remotely exploitable buffer overrun vulnerability has been reported in ProFTPD. This issue could be triggered if an attacker uploads a malformed file and then that file is downloaded ...

1.2AI score
Exploits0
NVD
NVD
added 2002/08/12 4:0 a.m.12 views

CVE-2002-0469

Ecartis formerly Listar 1.0.0 in snapshot 20020125 and earlier does not properly drop privileges when Ecartis is installed setuid-root, "lock-to-user" is not set, and ecartis is called by certain MTA's, which could allow local users to gain privileges...

7.2CVSS6.6AI score0.0046EPSS
Exploits1References4
NVD
NVD
added 2002/05/31 4:0 a.m.15 views

CVE-2002-0302

The Notify daemon for Symantec Enterprise Firewall SEF 6.5.x drops large alerts when SNMP is used as the transport, which could prevent some alerts from being sent in the event of an attack...

5CVSS6.6AI score0.01348EPSS
Exploits0References4
securityvulns
securityvulns
added 2002/03/12 12:0 a.m.25 views

Ecartis/Listar multiple vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Name: Ecartis / Listar Version: read the details Vendor: The Ecartis Project. http://www.ecartis.org/ Author: Janusz Niewiadomski [email protected], Wojciech Purczynski [email protected] Date: March 10, 2002 Issue: ====== Multiple buffer overflow...

0.7AI score
Exploits0
CVE
CVE
added 2001/07/27 4:0 a.m.48 views

CVE-2001-0623

CVE-2001-0623 affects the sendfiled component of SAFT on Linux, where privileges are not properly dropped when sending notification emails, enabling a local user to gain privileges (local privilege escalation). The issue is documented in Debian security advisories DSA-050-1 and DSA-052-1, which d...

4.6CVSS6.4AI score0.00802EPSS
Exploits0References3Affected Software1
Debian
Debian
added 2001/04/23 10:14 a.m.25 views

[SECURITY] [DSA 052-1] New sendfile packages fix root exploit

---------------------------------------------------------------------------- Debian Security Advisory DSA 052-1 [email protected] http://www.debian.org/security/ Martin Schulze April 23, 2001 - ---------------------------------------------------------------------------- Package : sendfile...

5.9AI score
Exploits0
securityvulns
securityvulns
added 2001/04/20 12:0 a.m.64 views

[SECURITY] [DSA 050-1] New version sendfile fix local root exploit

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------------------------------- Debian Security Advisory DSA 050-1 [email protected] http://www.debian.org/security/ Martin Schulze April 20, 2001 -...

0.2AI score
Exploits0
Debian
Debian
added 2001/04/19 10:36 p.m.18 views

[SECURITY] [DSA 050-1] New version sendfile fix local root exploit

---------------------------------------------------------------------------- Debian Security Advisory DSA 050-1 [email protected] http://www.debian.org/security/ Martin Schulze April 20, 2001 - ---------------------------------------------------------------------------- Package : sendfile...

5.6AI score
Exploits0
Snyk
Snyk
added 2000/06/08 4:0 a.m.2 views

CVE-2000-0525

Overview OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon. Remediation There is no fixed version for openssh. References - Archives.neohapsis.com - Openbsd.org - Osvdb.o...

10CVSS7.5AI score0.02626EPSS
Exploits0References1
securityvulns
securityvulns
added 2000/05/30 12:0 a.m.40 views

Security Advisory 2000-003

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2000-003 ================================= Topic: Exploitable Vulnerability in Xlockmore Version: NetBSD pkgsrc prior to 11th May 2000. Severity: xlock can be manipulated to print the shadow password information Abstract ======== The...

1AI score
Exploits0
Exploit DB
Exploit DB
added 2000/04/23 12:0 a.m.23 views

CVS 1.10.7 - Local Denial of Service

source: https://www.securityfocus.com/bid/1136/info CVS stands for Concurrent Versions Software and is an open-source package designed to allow multiple developers to work concurrently on a single source tree, recording changes and controlling versions. It is possible to cause a denial of service...

7.4AI score
Exploits0
Rows per page
Query Builder