Lucene search
K

154 matches found

Zero Day Initiative
Zero Day Initiative
added 2011/04/04 12:0 a.m.27 views

Novell File Reporter Agent XML Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell File Reporter Agent. Authentication is not required to exploit this vulnerability. The flaw exists within the NFRAgent.exe component which listens by default on TCP port 3037. When handling...

10CVSS4.9AI score0.17936EPSS
Exploits6References1
Zero Day Initiative
Zero Day Initiative
added 2011/01/31 12:0 a.m.24 views

IBM DB2 db2dasrrm validateUser Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM DB2. Authentication is not required to exploit this vulnerability. The specific flaw exists within the db2dasrrm process responsible for handling queries to the com.ibm.db2.das.core.DasSysCmd...

9CVSS8.2AI score
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2011/01/18 12:0 a.m.39 views

Oracle Business Intelligence emagent.exe nmehl_getURIParams Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Business Intelligence One. Authentication is not required to exploit this vulnerability. The flaw exists within the emagent.exe component which listens by default on TCP port 3938. When...

10CVSS7.7AI score
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2011/01/10 12:0 a.m.36 views

Hewlett-Packard Network Node Manager OVutil.dll Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The flaw exists within the ovutil.dll component which is loaded by the webserver listeni...

10CVSS3.3AI score0.17101EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2010/12/26 12:0 a.m.17 views

Novell iPrint Client Netscape/ActiveX printer-state-reasons Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell iPrint Client. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within the both the Netscap...

9CVSS7.4AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2010/11/07 12:0 a.m.25 views

Novell ZENworks Handheld Management ZfHIPCND.exe Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell ZENworks Handheld Management. Authentication is not required to exploit this vulnerability. The specific flaw exists within module ZfHIPCND.exe. This process is responsible for handling the...

10CVSS8AI score
Exploits0References2
exploitpack
exploitpack
added 2010/07/05 12:0 a.m.12 views

EDItran Communications Platform (editcp) 4.1 - Remote Buffer Overflow

EDItran Communications Platform editcp 4.1 - Remote Buffer Overflow source: https://www.securityfocus.com/bid/41342/info EDItran Communications Platform editcp is prone to a remote buffer-overflow vulnerability because it fails to properly validate user-supplied input before copying it into a...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2010/07/05 12:0 a.m.25 views

EDItran Communications Platform (editcp) 4.1 - Remote Buffer Overflow

source: https://www.securityfocus.com/bid/41342/info EDItran Communications Platform editcp is prone to a remote buffer-overflow vulnerability because it fails to properly validate user-supplied input before copying it into a fixed-length buffer. Attackers can exploit this issue to execute...

7AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2010/04/06 12:0 a.m.37 views

CA XOsoft Control Service entry_point.aspx Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Computer Associates XOsoft Control Replication and High Availability Control Service. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

10CVSS4.8AI score0.16755EPSS
Exploits5References1
securityvulns
securityvulns
added 2009/12/10 12:0 a.m.82 views

TPTI-09-13: HP OpenView NNM snmpviewer.exe CGI Host Header Stack Overflow Vulnerability

TPTI-09-13: HP OpenView NNM snmpviewer.exe CGI Host Header Stack Overflow Vulnerability http://dvlabs.tippingpoint.com/advisory/TPTI-09-13 December 9, 2009 -- CVE ID: CVE-2009-4180 -- Affected Vendors: Hewlett-Packard -- Affected Products: Hewlett-Packard OpenView Network Node Manager --...

10CVSS1AI score0.1387EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2008/12/10 12:0 a.m.31 views

Debian DSA-1684-1 : lcms - multiple vulnerabilities

Two vulnerabilities have been found in lcms, a library and set of commandline utilities for image color management. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-5316 Inadequate enforcement of fixed-length buffer limits allows an attacker to...

10CVSS6.3AI score0.02779EPSS
Exploits1References5
FreeBSD
FreeBSD
added 2007/05/30 12:0 a.m.30 views

findutils -- GNU locate heap buffer overrun

James Youngman reports: When GNU locate reads filenames from an old-format locate database, they are read into a fixed-length buffer allocated on the heap. Filenames longer than the 1026-byte buffer can cause a buffer overrun. The overrunning data can be chosen by any person able to control the...

6CVSS6.2AI score0.02225EPSS
Exploits0References1
securityvulns
securityvulns
added 2003/10/15 12:0 a.m.65 views

Microsoft Word Macro Buffer Overflow

Topic: Buffer overflow on Macro structure processing Vulnerable: Microsoft Office 97, Microsoft Office 2000 any service pack Not Vulnerable: Microsoft Office XP Description: During processing of document with embedded macros Microsoft Office family products are vulnerable to buffer overflow...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2002/03/26 12:0 a.m.20 views

Linux Kernel 2.2.x/2.3/2.4.x - 'd_path()' Path Truncation

/ source: https://www.securityfocus.com/bid/4367/info The Linux kernel dpath function converts a dentry structure into an ASCII path name. The full path to the specified dentry is returned in a fixed length buffer of size PAGESIZE bytes. Reportedly, if a dentry structure is passed with a path whi...

7.4AI score
Exploits0
Rows per page
Query Builder