19 matches found
NLTK has Arbitrary File Read via Absolute Path Input in nltk.util.filestring()
A vulnerability in the filestring function of the nltk.util module in nltk version 3.9.2 allows arbitrary file read due to improper validation of input paths. The function directly opens files specified by user input without sanitization, enabling attackers to access sensitive system files by...
CVE-2025-1868
Vulnerability of unauthorized exposure of confidential information affecting Advanced IP Scanner and Advanced Port Scanner. It occurs when these applications initiate a network scan, inadvertently sending the NTLM hash of the user performing the scan. This vulnerability can be exploited by...
OESA-2024-1632 nautilus security update
It's easier to manage your files for the GNOME desktop. Ability to browse directories on local and remote systems. preview folders and launch related programs. It is also handle icons on the GNOME desktop. Security Fixes: GNOME Nautilus 42.2 allows a NULL pointer dereference and getbasename...
Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information
The xtell package of the Debian GNU/Linux operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
KLA10376 ACE vulnerability in UltraEdit
An untrusted path vulnerability was found in UltraEdit. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited locally and possibly remotely via a library hijack. Original advisories - Related products UltraEdit CVE list CVE-2010-3402...
Multiple Media Players ((iTunes / QuickTime) - HTTP DataHandler Overflow
ScaryMovie Exploit Study By: DrIDE October, 2009 There is a widespread failure in the way that .MOV files are handled by the Quicktime Library. I have attempted to compound my findings on this issue. Nearly every .MOV enabled application that I tested fell victim to this exploit. This is a local...
M.J.M. Quick Player 1.2 - Local Stack Buffer Overflow
Vulnerability : M.J.M. Quick Player v1.2 Stack BOF Discovered by : mrme seeleymagicathotmaildotcom Sploit written by : corelanc0d3r corelanc0d3ratgmaildotcom Sploit released : dec 28th, 2009 Type : local and remote code execution OS : Windows Product : M.J.M. Quick Player Versions affected : 1.2...
Xion Audio Player 1.0 121 .m3u file Buffer Overflow
Exploit for unknown platform in category remote exploits =================================================== Xion Audio Player 1.0 121 .m3u file Buffer Overflow =================================================== Title: Xion Audio Player 1.0 121 .m3u file Buffer Overflow CVE-ID: OSVDB-ID: Author:...
Xion Audio Player 1.0 121 .m3u file Buffer Overflow
No description provided by source. Vulnerability : Xion Audio Player Local BOF Discovered by : Dragon Rider http://securityreason.com/exploitalert/7392 drag0n.riderathotmail.com Sploit written by : corelanc0d3r corelanc0d3ratgmaildotcom Sploit released : nov 3rd, 2009 Type : local and remote code...
Xion Audio Player Local Buffer Overflow
Vulnerability : Xion Audio Player Local BOF Discovered by : Dragon Rider http://securityreason.com/exploitalert/7392 drag0n.riderathotmail.com Sploit written by : corelanc0d3r corelanc0d3ratgmaildotcom Sploit released : nov 3rd, 2009 Type : local and remote code execution OS : Windows Product :...
DSA-1503-1 kernelimage-2.4.27 - several issues
Bulletin has no description...
DSA-1067-1 kernel-source-2.4.16 - several
Bulletin has no description...
[SA17865] VisNetic Mail Server Multiple Webmail Vulnerabilities
TITLE: VisNetic Mail Server Multiple Webmail Vulnerabilities SECUNIA ADVISORY ID: SA17865 VERIFY ADVISORY: http://secunia.com/advisories/17865/ CRITICAL: Highly critical IMPACT: Exposure of sensitive information, System access WHERE: From remote SOFTWARE: VisNetic Mail Server 8.x...
SCO Multi-channel Memorandum Distribution Facility - Multiple Vulnerabilities
/ source: https://www.securityfocus.com/bid/10758/info It has been reported that the SCO Multi-channel Memorandum Distribution Facility MMDF is affected by multiple vulnerabilities. These issues are due to a failure of the utility to properly validate buffer boundaries when copying user-supplied...
zkfingerd-2.0.2(the last version)Format String Vulnerabilities
======================================== Ph4nt0m Security Advisory 22003--7-7 ======================================== Title: zkfingerd-2.0.2the last versionFormat String Vulnerabilities Advisory Number : SRT2003-7-7-002 Product : zkfingerd Version : 2.0.2 possibility All versions Vendor :...
a NEW vulnerability in REGEDIT.EXE
Hi list, I have found a new vulnerability in regedit.exe that can be exploited localy or remotely by trapping our registery. --- SNIP --- / 09/04/2003 @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ Trapped Registery for REGEDIT.EXE exploit @ @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@...
CVE-2002-0711
Unknown vulnerability in Cluster Interconnect for HP TruCluster Server 5.0A, 5.1, and 5.1A may allow local and remote attackers to cause a denial of service...
CVE-1999-1160
Vulnerability in ftpd/kftpd in HP-UX 10.x and 9.x allows local and possibly remote users to gain root privileges...
PT-2010-5675 · Gnu +1 · Glibc +1
Name of the Vulnerable Software and Affected Versions: glibc versions prior to 2.11.3 glibc versions 2.12.x prior to 2.12.2 Description: The issue is related to the improper restriction of the use of the LD AUDIT environment variable to reference dynamic shared objects DSOs as audit objects. This...