Lucene search
K

98 matches found

UbuntuCve
UbuntuCve
added 2018/03/13 12:0 a.m.38 views

CVE-2018-1050

All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC calls could cause the print spooler service to crash...

4.3CVSS7AI score0.06691EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2017/11/14 12:0 a.m.9 views

The vulnerability of the Mac OS X operating system’s file component, which allows a hacker to trigger a service failure

The vulnerability of the Mac OS X operating system’s file component exists due to insufficient checks on input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

9.8CVSS7.7AI score0.01352EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/09/01 12:0 a.m.7 views

The vulnerability of the USIM responder in the Android operating system from the CAF repository allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Android operating system from the CAF repository exists due to insufficient checking of input data. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information during the processing of...

10CVSS7.8AI score0.00836EPSS
Exploits0References3
CNVD
CNVD
added 2016/12/19 12:0 a.m.5 views

PLC WinProladder Stack Buffer Overflow Vulnerability

winproladder is a free PLC programming software. PLC WinProladder suffers from a stack buffer overflow vulnerability because it fails to perform sufficient boundary checks on user-supplied input. An attacker can exploit this issue to execute arbitrary code in the context of the affected applicati...

8CVSS8.1AI score0.08906EPSS
Exploits4References1
CNVD
CNVD
added 2016/09/13 12:0 a.m.4 views

Autotrace Heap Buffer Overflow Vulnerability

AutoTrace is a set of software for converting bitmap files Bitmap to vector files Vector. Autotrace suffers from a heap buffer overflow vulnerability that stems from the program failing to perform proper boundary checks on user-submitted input. An attacker could exploit this vulnerability to cras...

5.5CVSS7.2AI score0.01903EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2016/07/19 12:0 a.m.4 views

The vulnerability of the Apache Struts software platform, which allows attackers to circumvent existing access restrictions

The vulnerability of the MultiPageValidator implementation in the Apache Struts software platform exists due to insufficient validation of input data. Exploiting this vulnerability allows an attacker to bypass existing access restrictions by modifying page parameters remotely...

5CVSS7.1AI score0.21261EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/07 12:0 a.m.6 views

The vulnerability of the Cisco Unified Communications Manager system allows a intruder to trigger a service failure.

The vulnerability of the Cisco Unified Communications Manager IP telephony management system exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by sending specially crafted packets...

7.8CVSS5.5AI score0.01952EPSS
Exploits0References2
OSV
OSV
added 2016/05/17 12:0 a.m.14 views

DSA-3581-1 libndp - security update

Bulletin has no description...

8.1CVSS8AI score0.03806EPSS
Exploits0
CNVD
CNVD
added 2015/07/30 12:0 a.m.1 views

SoX Memory Corruption Vulnerability

SoX is a set of open source audio processing tools. The tool supports playback, conversion and recording of multiple audio format files. A memory corruption vulnerability exists in SoX that stems from the program failing to perform proper boundary checks on user-submitted input. An attacker could...

7.8AI score
Exploits0References1
CNVD
CNVD
added 2015/05/19 12:0 a.m.3 views

TestDisk 'Check_OS2MB()' method stack buffer overflow vulnerability

TestDisk is a set of disk repair tools. A stack buffer overflow vulnerability exists in the TestDisk 'CheckOS2MB' method. Due to the program failing to perform proper boundary checking on user-submitted input. An attacker could exploit this vulnerability to execute arbitrary code in the context o...

7.9AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2014/07/29 3:40 p.m.8 views

ICU: Layout Engine LookupProcessor insufficient input checks (JDK 2D, 8025034)

Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; JRockit R27.7.7 and R28.2.9; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the Januar...

10CVSS6.8AI score0.08383EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2008/05/20 3:0 p.m.1 views

Kent Web PostMail vulnerable to third party mail relay

Overview Kent Web PostMail, form mail software that enables sending email from web pages, contains a vulnerability which may allow the third party to relay mail as it does not properly check input. Impact An attacker could possibly compromise the mail server to send an unsolicited email. Solution...

5CVSS6.8AI score
Exploits0References2
Exploit DB
Exploit DB
added 2008/02/25 12:0 a.m.18 views

SurgeFTP 2.3a2 - 'Content-Length' Null Pointer Denial of Service

source: https://www.securityfocus.com/bid/27993/info SurgeFTP is prone to a remote denial-of-service vulnerability because it fails to perform adequately boundary checks on user-supplied input. Exploiting this issue will cause the server to copy data to a NULL pointer, which will crash the server...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.39 views

PPTP overflow

The remote PPTP server has remote buffer overflow vulnerability. The problem occurs due to insufficient sanity checks when referencing user-supplied input used in various calculations. As a result, it may be possible for an attacker to trigger a condition where sensitive memory can be corrupted...

7.5CVSS1.4AI score0.71026EPSS
Exploits7References1
securityvulns
securityvulns
added 2001/12/18 12:0 a.m.47 views

Phpnuke module.php vulnerability and php error_reporting issue

Phpnuke module.php vulnerability and PHP errorreporting issue on 16 december by Cabezon Aurйlien | [email protected] As you know, there are many Cross site scripting issue on Phpnuke modules and other web application using PHP. There is a cross site scripting issue cause : 1 there ...

6.3AI score
Exploits0
exploitpack
exploitpack
added 2000/02/27 12:0 a.m.16 views

Alex Heiphetz Group eZshopper 3.0 - Remote Command Execution

Alex Heiphetz Group eZshopper 3.0 - Remote Command Execution source: https://www.securityfocus.com/bid/1014/info EZShopper is a perl-based E-Commerce software package offered by Alex Heiphetz Group, Inc. It is possible to remotely compromise a host due to a lack of checks on user input passed...

0.7AI score
Exploits0
Exploit DB
Exploit DB
added 2000/02/27 12:0 a.m.32 views

Alex Heiphetz Group eZshopper 3.0 - Remote Command Execution

source: https://www.securityfocus.com/bid/1014/info EZShopper is a perl-based E-Commerce software package offered by Alex Heiphetz Group, Inc. It is possible to remotely compromise a host due to a lack of checks on user input passed directly to the open call. This vulnerability exists in two...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2000/02/24 12:0 a.m.11 views

Corel Linux OS 1.0 - buildxconfig

Corel Linux OS 1.0 - buildxconfig source: https://www.securityfocus.com/bid/1007/info Several vulnerabilities exist in the buildxconfig program, as included with Corel Linux 1.0. Using this program, it is likely that a local user could elevate privileges. By failing to check input to the -f and -...

0.3AI score
Exploits0
Rows per page
Query Builder