Lucene search
K

746 matches found

RedHat Linux
RedHat Linux
added 2015/03/05 8:48 a.m.2 views

openoffice: Arbitrary file disclosure via crafted OLE objects

A flaw was found in the OLE Object Linking and Embedding generation in LibreOffice. An attacker could use this flaw to embed malicious OLE code in a LibreOffice document, allowing for arbitrary code execution...

4.3CVSS6AI score0.09864EPSS
Exploits0References4
QT
QT
added 2015/02/17 12:0 a.m.23 views

Qt Weekly #26: Protecting your application against hacking

Open-source applications are open by nature, indented and encouraged for tweaking, hacking and further development. For a business critical application or a device there sometimes is desire to make it closed and prevent modifications. Because of the dual licensing, Qt offers a commercial license...

1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/02/03 12:0 a.m.44 views

Apple TV < 7.0.3 Multiple Vulnerabilities

According to its banner, the remote Apple TV device is a version prior to 7.0.3. It is, therefore, affected by the following vulnerabilities : - Multiple memory corruption issues exist, related to the included version of WebKit, that allow application crashes or arbitrary code execution...

10CVSS9.4AI score0.19725EPSS
Exploits1References31
securityvulns
securityvulns
added 2015/02/02 12:0 a.m.93 views

APPLE-SA-2015-01-27-1 Apple TV 7.0.3

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2015-01-27-1 Apple TV 7.0.3 Apple TV 7.0.3 is now available and addresses the following: Apple TV Available for: Apple TV 3rd generation and later Impact: A maliciously crafted afc command may allow access to protected parts of the filesystem...

10CVSS0.2AI score0.19725EPSS
Exploits1
Fedora
Fedora
added 2014/12/06 10:4 a.m.34 views

[SECURITY] Fedora 21 Update: avr-binutils-2.24-4.fc21

This is a Cross Compiling version of GNU binutils, which can be used to assemble and link binaries for the avr platform, instead of for the native arm platform...

7.5CVSS3.1AI score0.07486EPSS
Exploits7
Cvelist
Cvelist
added 2014/11/18 3:0 p.m.25 views

CVE-2014-8475

FreeBSD 9.1, 9.2, and 10.0, when compiling OpenSSH with Kerberos support, uses incorrect library ordering when linking sshd, which causes symbols to be resolved incorrectly and allows remote attackers to cause a denial of service sshd deadlock and prevention of new connections by ending multiple...

6.7AI score0.01738EPSS
Exploits0References6
VulnCheck KEV
VulnCheck KEV
added 2014/10/14 12:0 a.m.5 views

VulnCheck KEV: CVE-2014-4114

A vulnerability exists in Windows Object Linking & Embedding OLE that could allow remote code execution if a user opens a file that contains a specially crafted OLE object...

9.3CVSS7.8AI score0.81628EPSS
Exploits22References1
ThreatPost
ThreatPost
added 2014/08/05 1:0 p.m.11 views

Another Bypass Identified in PayPal 2FA

A security researcher has uncovered a simple method for bypassing the two-factor authentication mechanism that PayPal uses to protect accounts that are tied to eBay accounts. The vulnerability is related to the way that the login flow works when a user is prompted to connect her eBay account to h...

7.4AI score
Exploits0References2
Fedora
Fedora
added 2014/07/26 12:11 a.m.34 views

[SECURITY] Fedora 20 Update: mumble-1.2.6-1.fc20.1

Mumble provides low-latency, high-quality voice communication for gamers. It includes game linking, so voice from other players comes from the direction of their characters, and has echo cancellation so that the sound from your loudspeakers won't be audible to other players...

7.5CVSS3.4AI score0.04025EPSS
Exploits4
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

Metasploit < 4.4 - pcap_log Plugin Privilege Escalation Exploit

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require...

6.7AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.45 views

wu-ftpd 2.6.2, 2.6.0, 2.6.1 realpath() Off-By-One Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8315/info The 'realpath' function is a C-library procedure to resolve the canonical, absolute pathname of a file based on a path that may contain values such as '/', './', '../', or symbolic links. A vulnerability that wa...

7.1AI score
Exploits0
Fedora
Fedora
added 2014/06/15 1:51 a.m.29 views

[SECURITY] Fedora 19 Update: nspr-4.10.6-1.fc19

NSPR provides platform independence for non-GUI operating system facilities. These facilities include threads, thread synchronization, normal file and network I/O, interval timing and calendar time, basic memory management malloc and free and shared library linking...

7.5CVSS1.3AI score0.03045EPSS
Exploits0
Fedora
Fedora
added 2014/06/13 5:33 a.m.49 views

[SECURITY] Fedora 20 Update: nspr-4.10.6-1.fc20

NSPR provides platform independence for non-GUI operating system facilities. These facilities include threads, thread synchronization, normal file and network I/O, interval timing and calendar time, basic memory management malloc and free and shared library linking...

7.5CVSS1.3AI score0.03045EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.41 views

openSUSE Security Update : lighttpd (openSUSE-2012-110)

added lighttpd-1.4.30headfixes.patch: cherry picked 4 fixes from HEAD : - ssl include more headers explicitly - list all network handlers in lighttpd -V fixes lighttpd2376 - Move fdevent subsystem includes to implementation files to reduce conflicts fixes lighttpd2373 - ssl fix segfault in...

5CVSS6.4AI score0.16246EPSS
Exploits8References2
Fedora
Fedora
added 2014/05/28 2:55 a.m.49 views

[SECURITY] Fedora 19 Update: mumble-1.2.6-1.fc19

Mumble provides low-latency, high-quality voice communication for gamers. It includes game linking, so voice from other players comes from the direction of their characters, and has echo cancellation so that the sound from your loudspeakers won't be audible to other players...

7.5CVSS3.4AI score0.04025EPSS
Exploits3
Fedora
Fedora
added 2014/05/28 2:54 a.m.44 views

[SECURITY] Fedora 20 Update: mumble-1.2.6-1.fc20

Mumble provides low-latency, high-quality voice communication for gamers. It includes game linking, so voice from other players comes from the direction of their characters, and has echo cancellation so that the sound from your loudspeakers won't be audible to other players...

7.5CVSS3.4AI score0.04025EPSS
Exploits3
Fedora
Fedora
added 2014/05/08 10:3 a.m.20 views

[SECURITY] Fedora 19 Update: mumble-1.2.5-1.fc19

Mumble provides low-latency, high-quality voice communication for gamers. It includes game linking, so voice from other players comes from the direction of their characters, and has echo cancellation so that the sound from your loudspeakers won't be audible to other players...

7.5CVSS3.4AI score0.04025EPSS
Exploits2
Fedora
Fedora
added 2014/05/08 10:1 a.m.25 views

[SECURITY] Fedora 20 Update: mumble-1.2.5-1.fc20

Mumble provides low-latency, high-quality voice communication for gamers. It includes game linking, so voice from other players comes from the direction of their characters, and has echo cancellation so that the sound from your loudspeakers won't be audible to other players...

7.5CVSS3.4AI score0.04025EPSS
Exploits2
Packet Storm
Packet Storm
added 2014/04/06 12:0 a.m.54 views

MacOSX 10.9.2/XNU HFS Hard Linking

MacOSX/XNU HFS Multiple Vulnerabilities Maksymilian Arciemowicz http://cxsecurity.com/ http://cifrex.org/ =================== On November 8th, I've reported vulnerability in hard links for HFS+ CVE-2013-6799 http://cxsecurity.com/issue/WLB-2013110059 The HFS+ file system does not apply strict...

4.9CVSS9.6AI score0.0084EPSS
Exploits18
Fedora
Fedora
added 2013/12/14 2:52 a.m.34 views

[SECURITY] Fedora 20 Update: nspr-4.10.2-1.fc20

NSPR provides platform independence for non-GUI operating system facilities. These facilities include threads, thread synchronization, normal file and network I/O, interval timing and calendar time, basic memory management malloc and free and shared library linking...

7.5CVSS1.3AI score0.04399EPSS
Exploits0
Rows per page
Query Builder