Lucene search
K

19 matches found

Github Security Blog
Github Security Blog
added 2026/03/09 9:31 p.m.8 views

NLTK has Arbitrary File Read via Absolute Path Input in nltk.util.filestring()

A vulnerability in the filestring function of the nltk.util module in nltk version 3.9.2 allows arbitrary file read due to improper validation of input paths. The function directly opens files specified by user input without sanitization, enabling attackers to access sensitive system files by...

8.6CVSS7.5AI score0.00428EPSS
Exploits1References6Affected Software1
RedhatCVE
RedhatCVE
added 2025/03/05 12:22 p.m.7 views

CVE-2025-1868

Vulnerability of unauthorized exposure of confidential information affecting Advanced IP Scanner and Advanced Port Scanner. It occurs when these applications initiate a network scan, inadvertently sending the NTLM hash of the user performing the scan. This vulnerability can be exploited by...

6.9CVSS6.8AI score0.00237EPSS
Exploits1References1
OSV
OSV
added 2024/05/24 11:8 a.m.5 views

OESA-2024-1632 nautilus security update

It's easier to manage your files for the GNOME desktop. Ability to browse directories on local and remote systems. preview folders and launch related programs. It is also handle icons on the GNOME desktop. Security Fixes: GNOME Nautilus 42.2 allows a NULL pointer dereference and getbasename...

5.5CVSS6.8AI score0.00326EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2016/07/07 12:0 a.m.6 views

Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information

The xtell package of the Debian GNU/Linux operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

7.5CVSS5.5AI score0.05343EPSS
Exploits1References7Affected Software1
Kaspersky
Kaspersky
added 2010/09/16 12:0 a.m.79 views

KLA10376 ACE vulnerability in UltraEdit

An untrusted path vulnerability was found in UltraEdit. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited locally and possibly remotely via a library hijack. Original advisories - Related products UltraEdit CVE list CVE-2010-3402...

9.3CVSS7.6AI score0.0432EPSS
Exploits0References2
Exploit DB
Exploit DB
added 2010/01/15 12:0 a.m.37 views

Multiple Media Players ((iTunes / QuickTime) - HTTP DataHandler Overflow

ScaryMovie Exploit Study By: DrIDE October, 2009 There is a widespread failure in the way that .MOV files are handled by the Quicktime Library. I have attempted to compound my findings on this issue. Nearly every .MOV enabled application that I tested fell victim to this exploit. This is a local...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2009/12/28 12:0 a.m.43 views

M.J.M. Quick Player 1.2 - Local Stack Buffer Overflow

Vulnerability : M.J.M. Quick Player v1.2 Stack BOF Discovered by : mrme seeleymagicathotmaildotcom Sploit written by : corelanc0d3r corelanc0d3ratgmaildotcom Sploit released : dec 28th, 2009 Type : local and remote code execution OS : Windows Product : M.J.M. Quick Player Versions affected : 1.2...

7.4AI score
Exploits0
0day.today
0day.today
added 2009/11/03 12:0 a.m.17 views

Xion Audio Player 1.0 121 .m3u file Buffer Overflow

Exploit for unknown platform in category remote exploits =================================================== Xion Audio Player 1.0 121 .m3u file Buffer Overflow =================================================== Title: Xion Audio Player 1.0 121 .m3u file Buffer Overflow CVE-ID: OSVDB-ID: Author:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/11/03 12:0 a.m.15 views

Xion Audio Player 1.0 121 .m3u file Buffer Overflow

No description provided by source. Vulnerability : Xion Audio Player Local BOF Discovered by : Dragon Rider http://securityreason.com/exploitalert/7392 drag0n.riderathotmail.com Sploit written by : corelanc0d3r corelanc0d3ratgmaildotcom Sploit released : nov 3rd, 2009 Type : local and remote code...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2009/11/03 12:0 a.m.22 views

Xion Audio Player Local Buffer Overflow

Vulnerability : Xion Audio Player Local BOF Discovered by : Dragon Rider http://securityreason.com/exploitalert/7392 drag0n.riderathotmail.com Sploit written by : corelanc0d3r corelanc0d3ratgmaildotcom Sploit released : nov 3rd, 2009 Type : local and remote code execution OS : Windows Product :...

0.7AI score
Exploits0
OSV
OSV
added 2008/02/22 12:0 a.m.49 views

DSA-1503-1 kernelimage-2.4.27 - several issues

Bulletin has no description...

7.8CVSS6.8AI score0.05605EPSS
Exploits9
OSV
OSV
added 2006/05/20 12:0 a.m.50 views

DSA-1067-1 kernel-source-2.4.16 - several

Bulletin has no description...

10CVSS6.1AI score0.04078EPSS
Exploits8
securityvulns
securityvulns
added 2005/12/28 12:0 a.m.28 views

[SA17865] VisNetic Mail Server Multiple Webmail Vulnerabilities

TITLE: VisNetic Mail Server Multiple Webmail Vulnerabilities SECUNIA ADVISORY ID: SA17865 VERIFY ADVISORY: http://secunia.com/advisories/17865/ CRITICAL: Highly critical IMPACT: Exposure of sensitive information, System access WHERE: From remote SOFTWARE: VisNetic Mail Server 8.x...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2004/07/20 12:0 a.m.34 views

SCO Multi-channel Memorandum Distribution Facility - Multiple Vulnerabilities

/ source: https://www.securityfocus.com/bid/10758/info It has been reported that the SCO Multi-channel Memorandum Distribution Facility MMDF is affected by multiple vulnerabilities. These issues are due to a failure of the utility to properly validate buffer boundaries when copying user-supplied...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2003/07/10 12:0 a.m.28 views

zkfingerd-2.0.2(the last version)Format String Vulnerabilities

======================================== Ph4nt0m Security Advisory 22003--7-7 ======================================== Title: zkfingerd-2.0.2the last versionFormat String Vulnerabilities Advisory Number : SRT2003-7-7-002 Product : zkfingerd Version : 2.0.2 possibility All versions Vendor :...

Exploits0
securityvulns
securityvulns
added 2003/04/18 12:0 a.m.23 views

a NEW vulnerability in REGEDIT.EXE

Hi list, I have found a new vulnerability in regedit.exe that can be exploited localy or remotely by trapping our registery. --- SNIP --- / 09/04/2003 @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ Trapped Registery for REGEDIT.EXE exploit @ @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@...

Exploits0
Cvelist
Cvelist
added 2002/11/10 5:0 a.m.16 views

CVE-2002-0711

Unknown vulnerability in Cluster Interconnect for HP TruCluster Server 5.0A, 5.1, and 5.1A may allow local and remote attackers to cause a denial of service...

6.5AI score0.02732EPSS
Exploits0References4
Cvelist
Cvelist
added 2002/03/09 5:0 a.m.22 views

CVE-1999-1160

Vulnerability in ftpd/kftpd in HP-UX 10.x and 9.x allows local and possibly remote users to gain root privileges...

6.9AI score0.04369EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 1970/01/01 12:0 a.m.5 views

PT-2010-5675 · Gnu +1 · Glibc +1

Name of the Vulnerable Software and Affected Versions: glibc versions prior to 2.11.3 glibc versions 2.12.x prior to 2.12.2 Description: The issue is related to the improper restriction of the use of the LD AUDIT environment variable to reference dynamic shared objects DSOs as audit objects. This...

7.5CVSS8.3AI score0.09454EPSS
Exploits35References50
Rows per page
Query Builder