Lucene search
K

220 matches found

OpenVAS
OpenVAS
added 2009/09/02 12:0 a.m.27 views

Google Chrome 'chromehtml: URI' DoS Vulnerability

Google Chrome is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.7AI score0.01241EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2009/08/27 5:0 p.m.22 views

CVE-2009-2974

Removed by vendor...

5CVSS6.9AI score0.01241EPSS
Exploits1
Prion
Prion
added 2009/08/21 11:2 a.m.22 views

Design/Logic Flaw

The 1 sendfile and 2 sendfilev functions in Sun Solaris 8 through 10, and OpenSolaris before snv110, allow local users to cause a denial of service panic via vectors related to vnode function calls...

4.9CVSS6.7AI score0.00355EPSS
Exploits0References7Affected Software2
Cvelist
Cvelist
added 2009/08/20 10:0 p.m.32 views

CVE-2009-2912

The 1 sendfile and 2 sendfilev functions in Sun Solaris 8 through 10, and OpenSolaris before snv110, allow local users to cause a denial of service panic via vectors related to vnode function calls...

6.1AI score0.00355EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.40 views

openSUSE Security Update : libnasl (libnasl-451)

This update of libnasl adds missing return value checks for openssl function calls. CVE-2009-0125 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update libnasl-451. The text description of this plug...

5CVSS5.3AI score0.01496EPSS
Exploits1References2
exploitpack
exploitpack
added 2009/05/27 12:0 a.m.21 views

Impact Software AdPeeps 8.5d1 - Cross-Site Scripting HTML Injection

Impact Software AdPeeps 8.5d1 - Cross-Site Scripting HTML Injection AdPeeps Ad Rotator - XSS and HTML Injection Vulnerabilities Version Affected: 8.5d1 3-18-09 newest Info: Ad Peeps is a banner rotator and text ad rotator - all in one that allows you to track, sell and manage banner ads,...

Exploits0
NVD
NVD
added 2008/10/21 12:10 a.m.18 views

CVE-2008-4618

The Stream Control Transmission Protocol sctp implementation in the Linux kernel before 2.6.27 does not properly handle a protocol violation in which a parameter has an invalid length, which allows attackers to cause a denial of service panic via unspecified vectors, related to...

7.8CVSS6.2AI score0.02659EPSS
Exploits0References11
Exploit DB
Exploit DB
added 2008/08/11 12:0 a.m.29 views

Ruby 1.9 - Safe Level Multiple Function Restriction Bypass

source: https://www.securityfocus.com/bid/30644/info Ruby is prone to multiple vulnerabilities that can be leveraged to bypass security restrictions or cause a denial of service: - Multiple security-bypass vulnerabilities occur because of errors in the 'safe level' restriction implementation...

7.4AI score
Exploits0
NVD
NVD
added 2007/08/22 11:17 p.m.21 views

CVE-2007-4490

Multiple buffer overflows in EarthAgent.exe in Trend Micro ServerProtect 5.58 for Windows before Security Patch 4 allow remote attackers to have an unknown impact via certain RPC function calls to 1 RPCFNEVENTBACKDoHotFix or 2 CMDCHANGEAGENTREGISTERINFO...

10CVSS7AI score0.02514EPSS
Exploits0References5
Prion
Prion
added 2007/08/22 11:17 p.m.14 views

Buffer overflow

Multiple buffer overflows in EarthAgent.exe in Trend Micro ServerProtect 5.58 for Windows before Security Patch 4 allow remote attackers to have an unknown impact via certain RPC function calls to 1 RPCFNEVENTBACKDoHotFix or 2 CMDCHANGEAGENTREGISTERINFO...

10CVSS7.6AI score0.02514EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2007/08/22 11:0 p.m.21 views

CVE-2007-4490

Multiple buffer overflows in EarthAgent.exe in Trend Micro ServerProtect 5.58 for Windows before Security Patch 4 allow remote attackers to have an unknown impact via certain RPC function calls to 1 RPCFNEVENTBACKDoHotFix or 2 CMDCHANGEAGENTREGISTERINFO...

7AI score0.02514EPSS
Exploits0References5
Prion
Prion
added 2007/07/10 7:30 p.m.10 views

Code injection

Eltima Software Virtual Serial Port VSPAX ActiveX control VSPort.DLL allows remote attackers to cause a denial of service via certain function calls, as demonstrated via the 1 Attach, 2 Write, and 3 WriteStr functions...

5CVSS7.2AI score0.01382EPSS
Exploits0References3
CVE
CVE
added 2007/07/10 7:0 p.m.47 views

CVE-2007-3661

CVE-2007-3661 affects Eltima Software Virtual Serial Port (VSPAX) ActiveX control (VSPort.DLL). The provided documents indicate that remote attackers can cause a denial of service through specific API calls, namely Attach, Write, and WriteStr. The description does not reveal additional technical ...

5CVSS6.7AI score0.01382EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2007/07/10 7:0 p.m.20 views

CVE-2007-3661

Eltima Software Virtual Serial Port VSPAX ActiveX control VSPort.DLL allows remote attackers to cause a denial of service via certain function calls, as demonstrated via the 1 Attach, 2 Write, and 3 WriteStr functions...

6.7AI score0.01382EPSS
Exploits0References3
NVD
NVD
added 2006/03/22 8:6 p.m.15 views

CVE-2006-0058

Signal handler race condition in Sendmail 8.13.x before 8.13.6 allows remote attackers to execute arbitrary code by triggering timeouts in a way that causes the setjmp and longjmp function calls to be interrupted and modify unexpected memory locations...

7.6CVSS7.8AI score0.28144EPSS
Exploits0References74
Cvelist
Cvelist
added 2005/12/28 1:0 a.m.24 views

CVE-2005-4532

scponlyc in scponly 4.1 and earlier, when the operating system supports LDPRELOAD mechanisms, allows local users to execute arbitrary code with root privileges by creating a chroot directory in their home directory, hard linking to a system setuid application, and using a modified LDPRELOAD to...

6.9AI score0.00433EPSS
Exploits0References8
CVE
CVE
added 2005/12/23 1:0 a.m.49 views

CVE-2005-4511

The CVE-2005-4511 is a format-string vulnerability in TN3270 Resource Gateway 1.1.0. The underlying issue is unvalidated format specifiers in syslog function calls, enabling local users to cause a denial of service and potentially execute arbitrary code. The vulnerability is characterized by a lo...

4.6CVSS7.7AI score0.00379EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2005/05/03 4:0 a.m.14 views

CVE-2005-1407

Skype for Windows 1.2.0.0 to 1.2.0.46 allows local users to bypass the identity check for an authorized application, then call arbitrary Skype API functions by modifying or replacing that application...

4.6CVSS6.5AI score0.00317EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2003/10/09 12:0 a.m.32 views

Microsoft Windows - DCOM RPC2 Universal Shellcode

MS Windows DCOM RPC2 Universal Shellcode. Shellcode exploit for win32 platform ; Segment type: Pure code ;seg000 segment byte public 'CODE' use32 ; assume cs:seg000 ; assume es:nothing, ss:nothing, ds:nothing, fs:nothing, gs:nothing .386 assume cs:seg000 var29C = byte ptr -29Ch var28C = byte ptr...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2001/05/29 12:0 a.m.29 views

Unsafe Signal Handling in Sendmail

RAZOR advisory: Unsafe Signal Handling in Sendmail Issue Date: May 28, 2001 Contact: Michal Zalewski [email protected] Topic: Sendmail signal handlers used for dealing with specific signals are vulnerable to numerous race conditions. Affected Systems: Any systems running sendmail tested ...

8AI score
Exploits0
Rows per page
Query Builder