4741 matches found
CVE-2009-5028
Stack-based buffer overflow in Namazu before 2.0.20 allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a crafted request containing an empty uri field...
DEBIAN-CVE-2011-4079
Off-by-one error in the UTF8StringNormalize function in OpenLDAP 2.4.26 and earlier allows remote attackers to cause a denial of service slapd crash via a zero-length string that triggers a heap-based buffer overflow, as demonstrated using an empty postalAddressAttribute value in an LDIF entry...
PYSEC-2011-2
The verifyexists functionality in the URLField implementation in Django before 1.2.7 and 1.3.x before 1.3.1 relies on Python libraries that attempt access to an arbitrary URL with no timeout, which allows remote attackers to cause a denial of service resource consumption via a URL associated with...
Google Chrome multiple vulnerabilities - September11 (Linux)
The host is running Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnsep11lin.nasl 7015 2017-08-28 11:51:24Z teissa $ Google Chrome multiple vulnerabilities - September11 Linux Authors: Rachana Shetty Copyright: Copyright c 2011 Greenbo...
Google Chrome multiple vulnerabilities - September11 (Mac OS X)
The host is running Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnsep11macosx.nasl 7019 2017-08-29 11:51:27Z teissa $ Google Chrome multiple vulnerabilities - September11 Mac OS X Authors: Rachana Shetty Copyright: Copyright c 2011...
Google Chrome < 13.0.782.215 Multiple Vulnerabilities (Sep 2011) - Linux
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Google Chrome < 13.0.782.215 Multiple Vulnerabilities (Sep 2011) - Windows
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Design/Logic Flaw
Google Chrome before 13.0.782.215 allows remote attackers to bypass the Same Origin Policy via vectors related to empty origins...
CVE-2011-2826
Google Chrome before 13.0.782.215 allows remote attackers to bypass the Same Origin Policy via vectors related to empty origins...
UBUNTU-CVE-2011-2826
Google Chrome before 13.0.782.215 allows remote attackers to bypass the Same Origin Policy via vectors related to empty origins...
CVE-2011-2826
Removed by vendor...
CVE-2011-2826
Google Chrome before 13.0.782.215 allows remote attackers to bypass the Same Origin Policy via vectors related to empty origins...
Google Chrome < 13.0.782.215 Multiple Vulnerabilities
The version of Google Chrome installed on the remote host is earlier than 13.0.782.215 and is potentially affected by several vulnerabilities: - An unspecified error related to command line URL parsing exists. Issue 72492 - Use-after-free errors related to line box handling, counter nodes, custom...
libpng: Invalid read when handling empty sCAL chunks
The pnghandlesCAL function in pngrutil.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 does not properly handle invalid sCAL chunks, which allows remote attackers to cause a denial of service memory corruption and application crash or possibly have...
CVE-2011-2886
IBM Lotus Symphony 3 before FP3 allows remote attackers to cause a denial of service application crash via a .docx document with empty bullet styles for parent bullets...
CVE-2011-2753
Multiple cross-site request forgery CSRF vulnerabilities in SquirrelMail 1.4.21 and earlier allow remote attackers to hijack the authentication of unspecified victims via vectors involving 1 the empty trash implementation and 2 the Index Order aka optionsorder page, a different issue than...
UBUNTU-CVE-2011-2753
Multiple cross-site request forgery CSRF vulnerabilities in SquirrelMail 1.4.21 and earlier allow remote attackers to hijack the authentication of unspecified victims via vectors involving 1 the empty trash implementation and 2 the Index Order aka optionsorder page, a different issue than...
Nmap NSE net: ms-sql-hasdbaccess
Queries Microsoft SQL Server ms-sql for a list of databases a user has access to. The script needs an account with the sysadmin server role to work. It needs to be fed credentials through the script arguments or from the scripts 'mssql-brute' or 'mssql-empty- password'. When run, the script...
Nmap NSE net: mysql-empty-password
Checks for MySQL servers with an empty password for 'root' or 'anonymous'. OpenVAS Vulnerability Test $Id: gbnmapmysqlemptypasswordnet.nasl 5505 2017-03-07 10:00:18Z teissa $ Autogenerated NSE wrapper Authors: NSE-Script: Patrik Karlsson NASL-Wrapper: autogenerated Copyright: NSE-Script: The Nmap...
Nmap NSE net: ms-sql-empty-password
Attempts to authenticate using an empty password for the sysadmin sa account. SYNTAX: mssql.timeout: How long to wait for SQL responses. This is a number followed by 'ms' for milliseconds, 's' for seconds, 'm' for minutes, or 'h' for hours. Default: '30s'. OpenVAS Vulnerability Test $Id:...