Lucene search
+L

8337 matches found

OpenVAS
OpenVAS
added 2011/06/01 12:0 a.m.12 views

Nmap NSE net: smb-brute

Attempts to guess username/password combinations over SMB, storing discovered combinations for use in other scripts. SYNTAX: userdb: The filename of an alternate username database. brutelimit: Limits the number of usernames checked in the script. In some domains, it's possible to end up with...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2011/06/01 12:0 a.m.15 views

Nmap NSE net: ms-sql-tables

Queries Microsoft SQL Server ms-sql for a list of tables per database. The sysdatabase table should be accessible by more or less everyone The script attempts to use the sa account over any other if it has the password in the registry. If not the first account in the registry is used. Once we hav...

0.1AI score
Exploits0
Cisco
Cisco
added 2011/05/25 3:16 p.m.32 views

Cisco RVS4000 and WRVS4400N Gigabit Security Routers Firmware SSL Key Disclosure Vulnerability

The firmware of Cisco RVS4000 4-port Gigabit Security Routers and WRVS4400N Wireless-N Gigabit Security Routers contains a vulnerability that could allow an unauthenticated, remote attacker to access sensitive information from a targeted device. The vulnerability is due to improper security...

5CVSS6.4AI score0.01166EPSS
Exploits0References1
NVD
NVD
added 2011/05/23 10:55 p.m.10 views

CVE-2009-5024

ViewVC before 1.1.11 allows remote attackers to bypass the cvsdb rowlimit configuration setting, and consequently conduct resource-consumption attacks, via the limit parameter, as demonstrated by a "query revision history" request...

5CVSS6.5AI score0.02644EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2011/05/23 10:55 p.m.5 views

CVE-2009-5024

ViewVC before 1.1.11 allows remote attackers to bypass the cvsdb rowlimit configuration setting, and consequently conduct resource-consumption attacks, via the limit parameter, as demonstrated by a "query revision history" request...

5CVSS5.6AI score0.02644EPSS
Exploits0References10
FreeBSD
FreeBSD
added 2011/05/17 12:0 a.m.15 views

ViewVC -- user-reachable override of cvsdb row limit

ViewVC.org reports: Security fix: remove user-reachable override of cvsdb row limit...

2.3AI score
Exploits0References1
securityvulns
securityvulns
added 2011/05/16 12:0 a.m.123 views

Multiple Vendors libc/fnmatch(3) DoS (incl apache poc)

Multiple Vendors libc/fnmatch3 DoS incl apache poc Author: Maksymilian Arciemowicz http://netbsd.org/donations/ http://securityreason.com/ http://cxib.net/ Date: - Dis.: 29.01.2011 - Pub.: 13.05.2011 CVE: CVE-2011-0419 CWE: CWE-399 Affected Software verified: - Apache 2.2.17 - NetBSD 5.1 - OpenBS...

4.3CVSS7.9AI score0.73946EPSS
Exploits14
OSV
OSV
added 2011/05/03 8:55 p.m.11 views

CVE-2011-1522

Multiple SQL injection vulnerabilities in the Doctrine\DBAL\Platforms\AbstractPlatform::modifyLimitQuery function in Doctrine 1.x before 1.2.4 and 2.x before 2.0.3 allow remote attackers to execute arbitrary SQL commands via the 1 limit or 2 offset field...

8.3AI score
Exploits0References8
OSV
OSV
added 2011/05/03 8:55 p.m.7 views

DEBIAN-CVE-2011-1522

Multiple SQL injection vulnerabilities in the Doctrine\DBAL\Platforms\AbstractPlatform::modifyLimitQuery function in Doctrine 1.x before 1.2.4 and 2.x before 2.0.3 allow remote attackers to execute arbitrary SQL commands via the 1 limit or 2 offset field...

7.5CVSS8.8AI score0.02019EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2011/05/03 8:0 p.m.47 views

CVE-2011-1522

Multiple SQL injection vulnerabilities in the Doctrine\DBAL\Platforms\AbstractPlatform::modifyLimitQuery function in Doctrine 1.x before 1.2.4 and 2.x before 2.0.3 allow remote attackers to execute arbitrary SQL commands via the 1 limit or 2 offset field...

7.5CVSS8.4AI score0.02019EPSS
Exploits0
OSV
OSV
added 2011/04/10 2:55 a.m.6 views

DEBIAN-CVE-2011-1681

vmware-hgfsmounter in VMware Open Virtual Machine Tools aka open-vm-tools 8.4.2-261024 and earlier attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to trigger corruption of this file via a process with a small...

3.3CVSS6.6AI score0.00441EPSS
Exploits1References1
OSV
OSV
added 2011/04/10 2:55 a.m.4 views

DEBIAN-CVE-2011-1678

smbfs in Samba 3.5.8 and earlier attempts to use 1 mount.cifs to append to the /etc/mtab file and 2 umount.cifs to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process wi...

3.3CVSS8.2AI score0.00531EPSS
Exploits2References1
OSV
OSV
added 2011/04/10 2:55 a.m.11 views

CVE-2011-1675

mount in util-linux 2.19 and earlier attempts to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMITFSIZE value, a related issue to CVE-2011-1089...

9AI score
Exploits0References36
ATTACKERKB
ATTACKERKB
added 2011/04/10 2:55 a.m.10 views

CVE-2011-1675

mount in util-linux 2.19 and earlier attempts to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMITFSIZE value, a related issue to CVE-2011-1089...

3.3CVSS5.5AI score0.00417EPSS
Exploits0References21
ATTACKERKB
ATTACKERKB
added 2011/04/10 2:55 a.m.8 views

CVE-2011-1678

smbfs in Samba 3.5.8 and earlier attempts to use 1 mount.cifs to append to the /etc/mtab file and 2 umount.cifs to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process wi...

3.3CVSS5.5AI score0.00531EPSS
Exploits2References20
OSV
OSV
added 2011/04/10 2:55 a.m.3 views

UBUNTU-CVE-2011-1675

mount in util-linux 2.19 and earlier attempts to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMITFSIZE value, a related issue to CVE-2011-1089...

3.3CVSS6.7AI score0.00404EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2011/03/31 3:4 p.m.8 views

quagga: BGP session reset by processing BGP Update message with malformed AS-path attributes

bgpd in Quagga before 0.99.18 allows remote attackers to cause a denial of service session reset via a malformed ASPATHLIMIT path attribute...

5CVSS5.9AI score0.03352EPSS
Exploits1References4
Atlassian
Atlassian
added 2011/03/23 2:52 a.m.22 views

Profile picture thumbnail generation can consume unlimited amount of memory

Discovered a Studio customer, you can upload a very large profile picture to expose the same problem as CONF-21480, just in a different area of the application. We should limit the size of images we're willing to load into memory to avoid this problem with user pictures...

1.6AI score
Exploits0
Atlassian
Atlassian
added 2011/03/23 2:52 a.m.18 views

Profile picture thumbnail generation can consume unlimited amount of memory

Discovered a Studio customer, you can upload a very large profile picture to expose the same problem as CONF-21480, just in a different area of the application. We should limit the size of images we're willing to load into memory to avoid this problem with user pictures...

1.6AI score
Exploits0Affected Software1
myhack58
myhack58
added 2011/03/10 12:0 a.m.19 views

boblog arbitrary variable overwrite vulnerability(a)-vulnerability warning-the black bar safety net

by Ryatpuretot mail: puretot at gmail dot com team: http://www.80vul.com Vulnerability code is as follows: // go.php $qurl=$SERVER"REQUESTURI"; @list$relativePath, $rawURL=@explode'/go.php/', $qurl; $rewritedURL=$rawURL; // from$SERVER"REQUESTURI",can be arbitrarily submitted:...

0.9AI score
Exploits0
Rows per page
Query Builder