Lucene search
K

90 matches found

Tenable Nessus
Tenable Nessus
added 2010/06/09 12:0 a.m.61 views

MS10-041: Vulnerability in Microsoft .NET Framework Could Allow Tampering (981343)

A data tampering vulnerability exists in the Microsoft .NET Framework that could allow an attacker to tamper with signed XML content without being detected. In custom applications, the security impact depends on the specific usage scenario. Scenarios in which signed XML messages are transmitted...

5CVSS7.5AI score0.06348EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2009/05/19 12:0 a.m.21 views

Fedora 9 : ipsec-tools-0.7.2-1.fc9 (2009-4291)

Minor version update from upstream fixing remote DoS. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

5CVSS5.1AI score0.11631EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2008/04/14 12:0 a.m.34 views

Symantec Decomposer Multiple Vulnerabilities (SYM08-006)

The remote Symantec product is affected by multiple issues. By sending a specially crafted RAR file to TCP port 1344, an unauthenticated attacker may be able to cause a denial of service condition or execute arbitrary code, subject to privileges of the user running the application. C Tenable...

7.1CVSS5.9AI score0.03659EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2007/06/04 12:0 a.m.20 views

Symantec Veritas Storage Foundation Scheduler Service (VxSchedService.exe) Remote Code Execution

The remote host is running a version of Symantec Storage Foundation for Windows that is vulnerable to a remote scheduler service access. An attacker may exploit this flaw to modify or create scheduled commands and gain a full access to the system. To exploit this flaw, an attacker would need to...

9.3CVSS5.6AI score0.05817EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/08/09 12:0 a.m.32 views

BasiliX Message Content XSS

The remote host appears to be running a BasiliX version 1.1.0 or lower. Such versions are vulnerable to cross-scripting attacks since they do not filter HTML tags when showing a message. As a result, an attacker can include arbitrary HTML and script code in a message and have that code executed b...

6.8CVSS5.9AI score0.04262EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2004/07/26 12:0 a.m.37 views

phpBB < 2.0.10 Multiple XSS

The remote host is running a version of phpBB older than 2.0.10. phpBB contains a flaw that allows a remote cross-site scripting attack. This flaw exists because the application does not validate user-supplied input in the 'searchauthor' parameter. This version is also vulnerable to an HTTP...

6.8CVSS5.1AI score0.02223EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2004/07/12 12:0 a.m.20 views

Solaris 8 (sparc) : 110075-03

Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite subcomponent: Filesystem. Supported versions that are affected are 8 and 9. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized...

4.9CVSS5.3AI score0.00379EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2002/08/06 12:0 a.m.34 views

Web Server HTTP Method Handling Remote Overflow

It was possible to kill the web server by sending an invalid request with a long HTTP method field. A remote attacker may exploit this vulnerability to make the web server crash continually or possibly execute arbitrary code. C Tenable Network Security, Inc. Script audit and contributions from...

7.5CVSS5.8AI score0.05651EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2002/02/05 12:0 a.m.46 views

Microsoft IIS ASP Redirection Function XSS

The remote host contains an ASP.NET installation that is affected by a cross-site scripting vulnerability. An attacker can exploit this issue to execute arbitrary HTML or script code in a user's browser within the security context of the affected site. %NASLMINLEVEL 70300 C Tenable Network...

6.8CVSS5.8AI score0.17322EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2001/08/13 12:0 a.m.314 views

ZyXEL Router Default Telnet Password Present

The remote host is a ZyXEL router with a default password. An attacker could telnet to it and reconfigure it to lock the owner out and prevent him from using his Internet connection, or create a dial-in user to connect directly to the LAN attached to it. This script was written by Giovanni Fiasch...

10CVSS5.6AI score0.01855EPSS
Exploits0References1
Rows per page
Query Builder