Lucene search
K

116 matches found

OSV
OSV
added 2017/08/15 9:57 a.m.14 views

MGASA-2017-0268 Updated firefox packages fix security vulnerabilities

Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox CVE-2017-7779, CVE-2017-7798, CVE-2017-7800, CVE-2017-7801,...

10CVSS8.1AI score0.04187EPSS
Exploits13References5
OSV
OSV
added 2017/06/15 9:14 p.m.5 views

SUSE-SU-2017:1575-1 Security update for netpbm

This update for netpbm fixes the following security issues: - CVE-2017-2581: An out-of-bounds write in writeRasterPbm could lead to memory corruption and potential code execution. bsc1024287...

7.8CVSS8AI score0.01131EPSS
Exploits0References3
OSV
OSV
added 2017/02/15 11:12 a.m.4 views

SUSE-SU-2017:0470-1 Security update for xorg-x11-libXpm

This update for xorg-x11-libXpm fixes the following security issue: - A heap overflow in XPM handling could be used by attackers supplying XPM files to crash or potentially execute code. bsc1021315...

9.8CVSS9.7AI score0.07528EPSS
Exploits0References3
OSV
OSV
added 2016/11/22 11:12 a.m.12 views

SUSE-SU-2016:2872-1 Security update for bash

This update for bash fixes the following issues: - CVE-2016-7543: Local attackers could have executed arbitrary commands via specially crafted SHELLOPTS+PS4 variables bsc1001299 - CVE-2016-0634: Malicious hostnames could have allowed arbitrary command execution when $HOSTNAME was expanded in the...

10CVSS8.2AI score0.99621EPSS
Exploits36References10
OSV
OSV
added 2016/04/25 1:37 p.m.19 views

SUSE-SU-2016:1145-1 Security update for php53

This update for php53 fixes the following issues: - CVE-2015-8838: mysqlnd was vulnerable to BACKRONYM bnc973792. - CVE-2015-8835: SoapClient scall method suffered from a type confusion issue that could have lead to crashes bsc973351 - CVE-2016-2554: A NULL pointer dereference in phargetfpoffset...

10CVSS7.3AI score0.35438EPSS
Exploits3References17
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.38 views

Amazon Linux: Security Advisory (ALAS-2013-155)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.9AI score0.08087EPSS
Exploits1References2
OSV
OSV
added 2015/04/03 1:11 p.m.7 views

MGASA-2015-0131 Updated firefox & thunderbird packages fix security vulnerabilities

Updated firefox and thunderbird packages fix security vulnerabilities: Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox or Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user...

7.5CVSS7.7AI score0.67135EPSS
Exploits3References9
Tenable Nessus
Tenable Nessus
added 2013/09/04 12:0 a.m.41 views

Amazon Linux AMI : busybox (ALAS-2012-103)

A buffer underflow flaw was found in the way the uncompress utility of BusyBox expanded certain archive files compressed using Lempel-Ziv compression. If a user were tricked into expanding a specially crafted archive file with uncompress, it could cause BusyBox to crash or, potentially, execute...

7.5CVSS7.8AI score0.05422EPSS
Exploits2References3
The Hacker News
The Hacker News
added 2011/08/05 12:12 p.m.2 views

Get Ready for Microsoft 13 updates for August Patch Tuesday

Get Ready for Microsoft 13 updates for August Patch Tuesday Microsoft has announced that it will release 13 bulletins to address 22 vulnerabilities in Windows, Office, Internet Explorer, .NET and Visual Studio on its next Patch Tuesday. Another "critical" bulletin affects Windows server operating...

8.5AI score
Exploits0
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.41 views

CentOS Update for thunderbird CESA-2008:0209 centos4 x86_64

Check for the Version of thunderbird OpenVAS Vulnerability Test CentOS Update for thunderbird CESA-2008:0209 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

9.3CVSS0.2AI score0.06055EPSS
Exploits2References2
CVE
CVE
added 2008/05/14 6:0 p.m.40 views

CVE-2008-2227

The CVE-2008-2227 entry documents a vulnerability in the PHP-Fusion Forum Rank System 6 where remote attackers can exploit directory traversal to include and execute arbitrary local files. Affects the component path by placing a .. (dot dot) in the settings[locale] parameter for two scripts (foru...

6.8CVSS7AI score0.01855EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2007/10/25 12:0 a.m.5 views

DTSA-72-1 hplip - arbitrary command execution

Bulletin has no description...

7.6CVSS6.3AI score0.67264EPSS
Exploits4
OSV
OSV
added 2006/07/27 8:4 p.m.9 views

CVE-2006-3809

Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows scripts with the UniversalBrowserRead privilege to gain UniversalXPConnect privileges and possibly execute code or obtain sensitive data by reading into a privileged context...

6.7AI score
Exploits0References68
Exploit DB
Exploit DB
added 2005/05/01 12:0 a.m.49 views

ARPUS/Ce - Local File Overwrite (setuid)

/ Copyright Kevin Finisterre - ripped from my perlex.c DISCLAIMER I am in no way responsible for your stupidity. DISCLAIMER I am in no way liable for any damages caused by compilation and or execution of this code. WARNING DO NOT RUN THIS UNLESS YOU KNOW WHAT YOU ARE DOING WARNING overwriting...

7.4AI score
Exploits0
OSV
OSV
added 2005/04/27 4:0 a.m.11 views

CVE-2005-0087

The alsa-lib package in Red Hat Linux 4 disables stack protection for the libasound.so library, which makes it easier for attackers to execute arbitrary code if there are other vulnerabilities in the library...

7.4AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/12/16 12:0 a.m.23 views

Singapore Gallery < 0.9.11 Multiple Vulnerabilities

Singapore is a PHP based photo gallery web application. The remote version of this software is affected by multiple vulnerabilities that may allow an attacker to read arbitrary files on the remote host or to execute arbitrary PHP commands. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

7.5CVSS6AI score0.01642EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2004/11/23 12:0 a.m.26 views

GLSA-200411-30 : pdftohtml: Vulnerabilities in included Xpdf

The remote host is affected by the vulnerability described in GLSA-200411-30 pdftohtml: Vulnerabilities in included Xpdf Xpdf is vulnerable to multiple integer overflows, as described in GLSA 200410-20. Impact : An attacker could entice a user to convert a specially crafted PDF file, potentially...

10CVSS6AI score0.09334EPSS
Exploits0References3
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.31 views

CVE-2003-0066

The rxvt terminal emulator 2.7.8 and earlier allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to...

7AI score0.02048EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2004/08/18 12:0 a.m.15 views

Trillian < 3.1.10.0 Multiple Vulnerabilities

Binary data 4515.prm...

9.3CVSS7.3AI score0.06149EPSS
Exploits0References9
exploitpack
exploitpack
added 2004/08/05 12:0 a.m.48 views

Ethereal 0.x - Multiple iSNS SMB SNMP Protocol Dissector Vulnerabilities

Ethereal 0.x - Multiple iSNS SMB SNMP Protocol Dissector Vulnerabilities // source: https://www.securityfocus.com/bid/10672/info Ethereal 0.10.5 has been released to address multiple vulnerabilities, including an iSNS protocol dissector vulnerability, a SMB protocol dissector vulnerability, and a...

5CVSS1.2AI score0.17961EPSS
Exploits3
Rows per page
Query Builder