CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

ATTACKERKB•added 2021/08/12 12:0 a.m.•330 views

CVE-2021-36942

Windows LSA Spoofing Vulnerability Recent assessments: jbaines-r7 at January 25, 2022 4:35pm UTC reported: Recently, I was attempting to combine James Forshaw’s remote EFSRPC file write “bug” with a local privilege escalation that I’d discovered. I was getting strange results. Working on one...

9.8CVSS8.2AI score0.66023EPSS

In wildExploits4References3

Tenable Nessus•added 2016/04/25 12:0 a.m.•20 views

Fedora 23 : webkitgtk4-2.12.1-1.fc23 (2016-cb7a73c82e)

Highlights in 2.12.0: Enable FTL by default in JavaScriptCore for x8664. Network process is now used unconditionally. The shared secondary process model is now the same as using the multiple process model and setting a process limit of 1. Switch to use overlay scrollbars like all other GTK+ widge...

5.5AI score

Exploits0References1

OpenVAS•added 2013/09/18 12:0 a.m.•19 views

Debian Security Advisory DSA 2592-1 (elinks - programming error)

Marko Myllynen discovered that ELinks, a powerful text-mode browser, incorrectly delegates user credentials during GSS-Negotiate. OpenVAS Vulnerability Test $Id: deb25921.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generated from advisory DSA 2592-1 using nvtgen 1.0 Script version: 1.0 Author:...

5.1CVSS0.1AI score0.0191EPSS

Exploits0References1

Tenable Nessus•added 2013/07/03 12:0 a.m.•28 views

cURL/libcURL GSS/Negotiate Feature Spoofing Security Vulnerability

Binary data 801392.prm...

4.3CVSS7.3AI score0.02994EPSS

Exploits0References2

Tenable Nessus•added 2013/07/03 12:0 a.m.•24 views

cURL/libcURL GSS/Negotiate Feature Spoofing

Binary data 6904.prm...

4.3CVSS7.3AI score0.02994EPSS

Exploits0References2

Tenable Nessus•added 2013/04/20 12:0 a.m.•25 views

Mandriva Linux Security Advisory : elinks (MDVSA-2013:075)

Updated elinks package fixes security vulnerability : Marko Myllynen discovered that ELinks, a powerful text-mode browser, incorrectly delegates user credentials during GSS-Negotiate CVE-2012-4545. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in thi...

5.1CVSS5.8AI score0.0191EPSS

Exploits0References1

NVD•added 2013/01/03 1:55 a.m.•7 views

CVE-2012-4545

The httpnegotiatecreatecontext function in protocol/http/httpnegotiate.c in ELinks 0.12 before 0.12pre6, when using HTTP Negotiate or GSS-Negotiate authentication, delegates user credentials through GSSAPI, which allows remote servers to authenticate as the client via the delegated credentials...

5.1CVSS6.4AI score0.0191EPSS

Exploits0References8

Debian•added 2012/12/28 3:37 a.m.•9 views

[SECURITY] [DSA 2592-1] elinks security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2592-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 28, 2012 http://www.debian.org/security/faq -...

5.1CVSS5.5AI score0.0191EPSS

Exploits0

Tenable Nessus•added 2012/12/28 12:0 a.m.•17 views

Debian DSA-2592-1 : elinks - programming error

Marko Myllynen discovered that ELinks, a powerful text-mode browser, incorrectly delegates user credentials during GSS-Negotiate. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-2592. The...

5.1CVSS5.8AI score0.0191EPSS

Exploits0References3