Lucene search
+L

7018 matches found

UbuntuCve
UbuntuCve
added 2005/05/02 4:0 a.m.20 views

CVE-2005-1121

Format string vulnerability in the myxlog function in lib.c for Oops! Proxy Server 1.5.23 and earlier, as called by the auth functions in the passwdmysql and passwdpgsql modules, may allow attackers to execute arbitrary code via a URL...

5CVSS6AI score0.02298EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2005/05/02 12:0 a.m.39 views

postgresql -- character conversion and tsearch2 vulnerabilities

The postgresql development team reports: The more severe of the two errors is that the functions that support client-to-server character set conversion can be called from SQL commands by unprivileged users, but these functions are not designed to be safe against malicious choices of argument...

7.1AI score
Exploits0References1
Patchstack
Patchstack
added 2005/04/13 12:0 a.m.19 views

WordPress <=1.5 - Multiple Cross-Site Scripting (XSS) vulnerabilities

Because of these vulnerabilities in template-functions-post.php, attackers can execute arbitrary commands via the title of the post or content. Solution Update WordPress to the latest possible version...

6.8CVSS5AI score0.02863EPSS
Exploits0References1Affected Software1
0day.today
0day.today
added 2005/04/13 12:0 a.m.30 views

Oracle Database PL/SQL Statement Multiple SQL Injection Exploits

Exploit for unknown platform in category local exploits ================================================================ Oracle Database PL/SQL Statement Multiple SQL Injection Exploits ================================================================ / Advanced SQL Injection in Oracle databases...

6.8AI score
Exploits0
securityvulns
securityvulns
added 2005/04/11 12:0 a.m.38 views

Linux kernel multiple vulnerabilities

sysfswritefile integer overflow, futex functions DoS, ext3 and jfs race conditions...

3.4AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2005/04/09 12:0 a.m.32 views

[Full-disclosure] Maxthon browser multiple vulnerabilities advisory

Maxthon browser multiple vulnerabilities advisory URL: http://www.raffon.net/advisories/maxthon/multvulns.html Date: April 08, 2005 Author: Aviv Raff Introduction "Maxthon Internet Browser software is a powerful tabbed browser with a highly customizable interface. It is based on the Internet...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/04/06 12:0 a.m.28 views

RHEL 3 : mysql-server (RHSA-2005:348)

Updated mysql-server packages that fix several vulnerabilities are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. MySQL is a multi-user, multi-threaded SQL database server. This update fixes several security risks in the MySQL...

4.6CVSS6.1AI score0.1844EPSS
Exploits3References7
Cent OS
Cent OS
added 2005/04/05 10:56 p.m.69 views

mysql security update

CentOS Errata and Security Advisory CESA-2005:348 Updated mysql-server packages that fix several vulnerabilities are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. MySQL is a multi-user, multi-threaded SQL database server. This...

4.6CVSS6.1AI score0.1844EPSS
Exploits3References9
Cvelist
Cvelist
added 2005/03/30 5:0 a.m.38 views

CVE-2005-0937

Some futex functions in futex.c for Linux kernel 2.6.x perform getuser calls while holding the mmapsem semaphore, which could allow local users to cause a deadlock condition in dopagefault by triggering getuser faults while another thread is executing mmap or other functions...

5.2AI score0.00346EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2005/03/28 7:44 p.m.44 views

Important: Red Hat Security Advisory: mysql security update

Updated mysql packages that fix several vulnerabilities are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. MySQL is a multi-user, multi-threaded SQL database server. This update fixes several security risks in the MySQL server...

4.6CVSS6.1AI score0.1844EPSS
Exploits3References5
CVE
CVE
added 2005/03/28 5:0 a.m.49 views

CVE-2002-1651

CVE-2002-1651 describes a cross-site scripting (XSS) vulnerability in the Verity Search97 product. The issue arises from certain error messages in template pages that use the (1) vformat and (2) vfilter functions, enabling remote attackers to inject arbitrary web content and potentially access se...

4.3CVSS6.1AI score0.01337EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2005/03/09 5:0 a.m.23 views

CVE-2005-0701

Directory traversal vulnerability in Oracle Database Server 8i and 9i allows remote attackers to read or rename arbitrary files via "\.\.." modified dot dot backslash sequences to UTLFILE functions such as 1 UTLFILE.FOPEN or 2 UTLFILE.frename...

6.2AI score0.18145EPSS
Exploits1References3
exploitpack
exploitpack
added 2005/03/07 12:0 a.m.16 views

Oracle Database 8i9i - Multiple Directory Traversal Vulnerabilities

Oracle Database 8i9i - Multiple Directory Traversal Vulnerabilities source: https://www.securityfocus.com/bid/12749/info Oracle Database server is reported prone to multiple directory traversal vulnerabilities that may allow a remote attacker to read, write, or rename arbitrary files with the...

0.7AI score
Exploits0
CVE
CVE
added 2005/03/04 5:0 a.m.49 views

CVE-2005-0637

CVE-2005-0637 concerns the copyout functions in locore.s (notably OpenBSD 3.5 and 3.6) which may allow an attacker to exceed certain address boundaries and modify kernel memory. The underlying issue is a boundary/offset handling in these copy routines that can bypass protection checks, leading to...

5CVSS6.9AI score0.01163EPSS
Exploits0References6Affected Software1
securityvulns
securityvulns
added 2005/03/01 12:0 a.m.40 views

Microsoft VBScript Engine memory leak

Regular expression functions memory leaks...

2.1AI score
Exploits0References1
securityvulns
securityvulns
added 2005/02/28 12:0 a.m.39 views

Mozilla and Firefox browsers buffer overflow

Heap based buffer overflow in text processing functions...

3.7AI score
Exploits0References1Affected Software2
UbuntuCve
UbuntuCve
added 2005/02/22 5:0 a.m.36 views

CVE-2005-0937

Some futex functions in futex.c for Linux kernel 2.6.x perform getuser calls while holding the mmapsem semaphore, which could allow local users to cause a deadlock condition in dopagefault by triggering getuser faults while another thread is executing mmap or other functions...

1.2CVSS6.2AI score0.00346EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2005/02/15 12:0 a.m.11 views

Brooky CubeCart Multiple Vulnerabilities

Binary data 2617.prm...

5CVSS7.3AI score0.08308EPSS
Exploits2References2
CVE
CVE
added 2005/02/13 5:0 a.m.60 views

CVE-2004-1462

CVE-2004-1462 concerns an unknown vulnerability in MoinMoin

7.5CVSS6.6AI score0.01582EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2005/02/13 5:0 a.m.20 views

CVE-2004-1462

Unknown vulnerability in MoinMoin 1.2.2 and earlier allows remote attackers to gain unauthorized access to administrator functions such as 1 revert and 2 delete...

6.5AI score0.01582EPSS
Exploits0References5
Rows per page
Query Builder