Lucene search
+L

506 matches found

OSV
OSV
added 2015/05/13 5:41 p.m.4 views

USN-2602-1 firefox vulnerabilities

Jesse Ruderman, Mats Palmgren, Byron Campen, Steve Fink, Gary Kwong, Andrew McCreight, Christian Holler, Jon Coppeard, and Milan Sreckovic discovered multiple memory safety issues in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit...

7.5CVSS7.5AI score0.07417EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2015/04/16 4:26 p.m.7 views

mod_jk: information leak due to incorrect JkMount/JkUnmount directives processing

It was discovered that a JkUnmount rule for a subtree of a previous JkMount rule could be ignored. This could allow a remote attacker to potentially access a private artifact in a tree that would otherwise not be accessible to them...

5CVSS6.7AI score0.07109EPSS
Exploits0References4
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.24 views

Seagate BlackArmor NAS - Multiple Vulnerabilities

No description provided by source. Exploit Title: Seagate BlackArmor NAS Multiple Vulnerabilities Date: 2/17/14 Exploit Author: Shayan Sadigh twitter.com/r1pplex | [email protected] Vendor Homepage: http://www.seagate.com/external-hard-drives/network-storage/ Version: All BlackArmor NAS...

7.1AI score
Exploits0
Ubuntu
Ubuntu
added 2014/05/08 3:32 p.m.54 views

USN-2210-1: cups-filters vulnerability

Sebastian Krahmer discovered that cups-browsed incorrectly filtered remote printer names and strings. A remote attacker could use this issue to possibly execute arbitrary commands. CVE-2014-2707 Johannes Meixner discovered that cups-browsed ignored invalid BrowseAllow directives. This could cause...

8.3CVSS7.6AI score0.01174EPSS
Exploits1
Spring Security Advisories
Spring Security Advisories
added 2014/03/11 12:0 a.m.7 views

Blank password may bypass user authentication

The ActiveDirectoryLdapAuthenticator does not check the password length. If the directory allows anonymous binds then it may incorrectly authenticate a user who supplies an empty password...

7.5CVSS7.4AI score0.01209EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2014/02/15 2:57 p.m.32 views

CVE-2012-2663

extensions/libxttcp.c in iptables through 1.4.21 does not match TCP SYN+FIN packets in --syn rules, which might allow remote attackers to bypass intended firewall restrictions via crafted packets. NOTE: the CVE-2012-6638 fix makes this issue less relevant...

7.5CVSS7.2AI score0.02849EPSS
Exploits1References3
Packet Storm
Packet Storm
added 2013/02/15 12:0 a.m.22 views

Photodex ProShow Producer 5.0.3297 Memory Corruption

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Photodex ProShow Producer Vendor URL: www.photodex.com Type: Improper Restriction of Operations within the Bounds of a Memory BufferCWE-119 Date found: 2013-02-14 Date published: 2013-02-14...

0.3AI score
Exploits0
OpenVAS
OpenVAS
added 2012/12/13 12:0 a.m.48 views

SuSE Update for seamonkey openSUSE-SU-2012:0935-1 (seamonkey)

Check for the Version of seamonkey OpenVAS Vulnerability Test $Id: gbsuse201209351.nasl 8249 2017-12-27 06:29:56Z teissa $ SuSE Update for seamonkey openSUSE-SU-2012:0935-1 seamonkey Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...

10CVSS0.2AI score0.05593EPSS
Exploits0References1
securityvulns
securityvulns
added 2012/09/19 12:0 a.m.32 views

Apple RemoteDesktop information leakage

VNC enctyprion settings are ignored...

4.3CVSS2.2AI score0.01711EPSS
Exploits1References2Affected Software1
myhack58
myhack58
added 2012/09/16 12:0 a.m.13 views

Grand phpcmsv9 burst pipe processing password vulnerability-vulnerability warning-the black bar safety net

Vulnerability type: SQL injection vulnerability Hazard rating: high The self-assessment Rank: 1 to 5 Vulnerability status: the vulnerability has notified the manufacturer but the manufacturer ignored the vulnerability Brief description: Grand phpcmsv9 squib processing the password vulnerability o...

8.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/07/23 12:0 a.m.27 views

Mozilla Firefox < 14.0 Multiple Vulnerabilities

Binary data 6519.prm...

10CVSS9.8AI score0.05593EPSS
Exploits1References33
Packet Storm
Packet Storm
added 2011/04/22 12:0 a.m.17 views

Buenosaires.gov.ar SQL Injection

http://www.dim.buenosaires.gov.ar/areas/hacienda/isc/cursos/curso.php?id=-236%20union%20select%20user,2,version,4,database,6&modo=presencial&qrs=1 and the answer is ... [email protected]. Área Temática Gestión y Conducción. Modalidad Presencial. Resumen Temático stproduccion...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2010/10/11 12:0 a.m.49 views

RSA Authentication Client information leal

SENSITIVE and NON-EXTRACTABLE flags are ignored for shared kay, making it possible to extract it...

1.5CVSS3.1AI score0.00263EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2010/06/23 12:0 a.m.253 views

Mozilla Firefox < 3.5.10 Multiple Vulnerabilities

Binary data 5579.prm...

10CVSS7.3AI score0.11418EPSS
Exploits8References22
Tenable Nessus
Tenable Nessus
added 2010/06/23 12:0 a.m.36 views

Firefox < 3.5.10 Multiple Vulnerabilities

The installed version of Firefox is earlier than 3.5.10. Such versions are potentially affected by the following security issues : - A memory corruption vulnerability can lead to arbitrary code execution if garbage collection is carefully timed after DOM nodes are moved between documents. MFSA...

10CVSS8AI score0.11418EPSS
Exploits8References17
FreeBSD
FreeBSD
added 2010/06/22 12:0 a.m.65 views

mozilla -- multiple vulnerabilities

Mozilla Project reports: MFSA 2010-33 User tracking across sites using Math.random MFSA 2010-32 Content-Disposition: attachment ignored if Content-Type: multipart also present MFSA 2010-31 focus behavior can be used to inject or steal keystrokes MFSA 2010-30 Integer Overflow in XSLT Node Sorting...

10CVSS10.1AI score0.11418EPSS
Exploits8References9
Tenable Nessus
Tenable Nessus
added 2010/02/25 12:0 a.m.43 views

openSUSE Security Update : seamonkey (seamonkey-2013)

Mozilla SeaMonkey was upgraded to version 2.0.3, fixing various bugs and security issues. Following security issues have been fixed: MFSA 2010-01 / CVE-2010-0159: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products...

10CVSS8.8AI score0.06392EPSS
Exploits4References6
RedHat Linux
RedHat Linux
added 2009/09/02 8:0 a.m.6 views

nfs-utils: incorrect use of tcp_wrappers, causing hostname-based rules to be ignored

The goodclient function in nfs-utils 1.0.9, and possibly other versions before 1.1.3, invokes the hostsctl function with the wrong order of arguments, which causes TCP Wrappers to ignore netgroups and allows remote attackers to bypass intended access restrictions...

7.5CVSS7.2AI score0.02295EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.27 views

openSUSE Security Update : MozillaFirefox (MozillaFirefox-509)

The Mozilla Firefox browser is updated to version 3.0.6 fixing various security and stability issues. MFSA 2009-01 / CVE-2009-0352 / CVE-2009-0353: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these...

10CVSS8.9AI score0.04331EPSS
Exploits0References8
Cvelist
Cvelist
added 2006/03/06 9:0 p.m.38 views

CVE-2006-0814

response.c in Lighttpd 1.4.10 and possibly previous versions, when run on Windows, allows remote attackers to read arbitrary source code via requests that contain trailing 1 "." dot and 2 space characters, which are ignored by Windows, as demonstrated by PHP files...

7AI score0.11471EPSS
Exploits1References10
Rows per page
Query Builder