CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6643 matches found

Debian CVE•added 2004/12/15 5:0 a.m.•22 views

CVE-2004-1148

phpMyAdmin before 2.6.1, when configured with UploadDir functionality, allows remote attackers to read arbitrary files via the sqllocalfile parameter...

5CVSS6.5AI score0.00391EPSS

Exploits0

Cvelist•added 2004/12/01 5:0 a.m.•23 views

CVE-2004-1073

The openexec function in the execve functionality exec.c in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, allows local users to read non-readable ELF binaries by using the interpreter PTINTERP functionality...

7AI score0.0033EPSS

Exploits0References21

Tenable Nessus•added 2004/11/22 12:0 a.m.•10 views

Nucleus CMS Multiple Vulnerabilities

Binary data 2423.prm...

7.3AI score

Exploits0

NVD•added 2004/10/20 4:0 a.m.•13 views

CVE-2004-0784

The smiley theme functionality in Gaim before 0.82 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of the tar file that is dragged to the smiley selector...

7.5CVSS7.4AI score0.01272EPSS

Exploits0References7

securityvulns•added 2004/10/13 12:0 a.m.•96 views

Microsoft Security Bulletin MS04-038 Cumulative Security Update for Internet Explorer (834707)

Microsoft Security Bulletin MS04-038 Cumulative Security Update for Internet Explorer 834707 Issued: October 12, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft Windows Impact of Vulnerability: Remote Code Execution Maximum Severity Rating: Critical...

10CVSS0.4AI score0.79473EPSS

Exploits3

securityvulns•added 2004/10/13 12:0 a.m.•28 views

ASN.1 compiler multiple bugs

No description provided...

1.6AI score

Exploits0References1Affected Software1

Debian•added 2004/10/10 7:38 a.m.•17 views

[SECURITY] [DSA 458-3] New python2.2 packages really fix buffer overflow and restore functionality

-------------------------------------------------------------------------- Debian Security Advisory DSA 458-3 [email protected] http://www.debian.org/security/ Martin Schulze October 10th, 2004 http://www.debian.org/security/faq -...

7.5CVSS0.1AI score0.07895EPSS

Exploits0

securityvulns•added 2004/09/28 12:0 a.m.•25 views

[SA12498] Linux Kernel ide-cd SG_IO Functionality Permission Bypass Vulnerability

TITLE: Linux Kernel ide-cd SGIO Functionality Permission Bypass Vulnerability SECUNIA ADVISORY ID: SA12498 VERIFY ADVISORY: http://secunia.com/advisories/12498/ CRITICAL: Less critical IMPACT: Security Bypass WHERE: Local system OPERATING SYSTEM: Linux Kernel 2.6.x http://secunia.com/product/2719...

0.2AI score

Exploits0

0day.today•added 2004/09/26 12:0 a.m.•14 views

os-x/PPC simple write() 75 bytes

Exploit for os-x/ppc platform in category shellcode ================================ os-x/PPC simple write 75 bytes ================================ / PPC OSX/Darwin Shellcode by B-r00t. 2003. Does write; exit; See ASM below. 75 Bytes. / char shellcode = "\x7c\x63\x1a\x79\x40\x82\xff\xfd"...

7AI score

Exploits0

securityvulns•added 2004/09/19 12:0 a.m.•31 views

CGI bugs

No description provided...

1.4AI score

Exploits0References23Affected Software13

Tenable Nessus•added 2004/09/15 12:0 a.m.•23 views

GLSA-200409-17 : SUS: Local root vulnerability

The remote host is affected by the vulnerability described in GLSA-200409-17 SUS: Local root vulnerability Leon Juranic found a bug in the logging functionality of SUS that can lead to local privilege escalation. A format string vulnerability exists in the log function due to an incorrect call to...

7.2CVSS5.6AI score0.00126EPSS

Exploits1References4

Gentoo Linux•added 2004/09/14 12:0 a.m.•19 views

SUS: Local root vulnerability

Background SUS is a utility that allows regular users to be able to execute certain commands as root. Description Leon Juranic found a bug in the logging functionality of SUS that can lead to local privilege escalation. A format string vulnerability exists in the log function due to an incorrect...

7.2CVSS3.5AI score0.00126EPSS

Exploits1

securityvulns•added 2004/09/13 12:0 a.m.•39 views

[Full-Disclosure] Corsaire Security Advisory - Multiple vendor MIME separator issue

-- Corsaire Security Advisory -- Title: Multiple vendor MIME separator issue Date: 04.08.03 Application: various Environment: various Author: Martin O'Neal [email protected] Audience: General distribution Reference: c030804-006 -- Scope -- The aim of this document is to clearly define a...

7.5CVSS6.1AI score0.00341EPSS

Exploits0

Cvelist•added 2004/09/01 4:0 a.m.•22 views

CVE-2002-1265

The Sun RPC functionality in multiple libc implementations does not provide a time-out mechanism when reading data from TCP connections, which allows remote attackers to cause a denial of service hang...

6.2AI score0.03936EPSS

Exploits0References8

Tenable Nessus•added 2004/08/27 12:0 a.m.•33 views

Icecast list.cgi User-Agent XSS

The remote server runs a version of Icecast that is as old or older than version 1.3.12. This version is affected by a cross-site scripting vulnerability in the status display functionality. This issue is due to a failure of the application to properly sanitize user-supplied input. As a result of...

4.3CVSS5.2AI score0.00384EPSS

Exploits0References1

NVD•added 2004/08/25 4:0 a.m.•11 views

CVE-2004-0819

The bridge functionality in OpenBSD 3.4 and 3.5, when running a gateway configured as a bridging firewall with the link2 option for IPSec enabled, allows remote attackers to cause a denial of service crash via an ICMP echo ping packet...

5CVSS6.7AI score0.00739EPSS

Exploits0References3

Tenable Nessus•added 2004/08/20 12:0 a.m.•6 views

UUCP Server Detection

Binary data 1901.prm...

7.3AI score

Exploits0

Tenable Nessus•added 2004/08/20 12:0 a.m.•15 views

everythingform.cgi Multiple Vulnerabilities

Binary data 1657.prm...

10CVSS7.3AI score0.12297EPSS

Exploits9References14