Lucene search
K

4323 matches found

CNVD
CNVD
added 2015/07/20 12:0 a.m.1 views

Oracle Berkeley DB Local Arbitrary Code Execution Vulnerability (CNVD-2015-04784)

Oracle Berkeley DB is the industry's leading open source, embeddable storage engine that provides developers with a fast, reliable native database that requires no administration. A security vulnerability exists in the Oracle Berkeley DB Data Store component that can be exploited by a local...

6.9CVSS7AI score0.00413EPSS
Exploits0References1
CNVD
CNVD
added 2015/07/20 12:0 a.m.2 views

Oracle Berkeley DB Local Arbitrary Code Execution Vulnerability (CNVD-2015-04779)

Oracle Berkeley DB is the industry-leading open source, embeddable storage engine that provides developers with a fast, reliable native database that requires no administration. A security vulnerability exists in the Oracle Berkeley DB Data Store component that can be exploited by a local attacke...

6.9CVSS7AI score0.00413EPSS
Exploits0References1
CNVD
CNVD
added 2015/07/08 12:0 a.m.1 views

IBM i Access for Windows Stack Buffer Overflow Vulnerability

IBM i Access for Windows is a suite of client solutions from IBM in the United States that provide access to and use of desktop resources from a variety of different Windows operating systems. A stack buffer overflow vulnerability exists in IBM i Access for Windows that stems from the program's...

7.8CVSS7.7AI score0.00355EPSS
Exploits0References1
CNVD
CNVD
added 2015/05/26 12:0 a.m.6 views

python-dbusmock local code execution vulnerability

python-dbusmock is a Python library for creating simulated objects on the D-Bus. A security vulnerability exists in python-dbusmock that allows a local attacker to exploit the vulnerability to execute arbitrary code...

9.3CVSS7.2AI score0.018EPSS
Exploits0References1
Patchstack
Patchstack
added 2015/05/15 12:0 a.m.6 views

WordPress BackWPUp Plugin 1.7.1 - Remote & Local Code Execution

This plugin is prone to remote and local code execution vulnerability. Solution Update the plugin...

3.1AI score
Exploits0Affected Software1
CNVD
CNVD
added 2015/03/26 12:0 a.m.4 views

Multiple Local Code Execution Vulnerabilities in DLL Loading for Multiple Rockwell Automation Products

FactoryTalk Services Platform provides regular. services such as diagnostic information, health monitoring services, and real-time data access for products and applications in the FactoryTalk system. Services such as diagnostic information, health monitoring services, and real-time data access ar...

6.9CVSS8.1AI score0.00688EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2015/03/23 6:18 a.m.32 views

Cisco IP Phones Vulnerable To Remote Eavesdropping

A critical vulnerability in the firmware of Cisco small business phones lets an unauthenticated attacker to remotely eavesdrop on private conversation and make phone calls from vulnerable devices without needing to authenticate, Cisco warned. LISTEN AND MAKE PHONE CALLS REMOTELY The vulnerability...

6.9CVSS6.9AI score0.01951EPSS
Exploits0
OSV
OSV
added 2015/02/23 6:10 p.m.3 views

USN-2507-1 e2fsprogs vulnerabilities

Jose Duart discovered that e2fsprogs incorrectly handled invalid block group descriptor data. A local attacker could use this issue with a crafted filesystem image to possibly execute arbitrary code. CVE-2015-0247, CVE-2015-1572...

4.6CVSS7.5AI score0.00897EPSS
Exploits0References3
OSV
OSV
added 2015/02/17 3:59 p.m.0 views

DEBIAN-CVE-2015-0247

Heap-based buffer overflow in openfs.c in the libext2fs library in e2fsprogs before 1.42.12 allows local users to execute arbitrary code via crafted block group descriptor data in a filesystem image...

4.6CVSS8AI score0.00897EPSS
Exploits0References1
OSV
OSV
added 2015/02/17 12:0 a.m.2 views

UBUNTU-CVE-2015-0247

Heap-based buffer overflow in openfs.c in the libext2fs library in e2fsprogs before 1.42.12 allows local users to execute arbitrary code via crafted block group descriptor data in a filesystem image...

4.6CVSS7.9AI score0.00897EPSS
Exploits0References4
OSV
OSV
added 2015/02/16 12:0 a.m.3 views

UBUNTU-CVE-2015-1572

Heap-based buffer overflow in closefs.c in the libext2fs library in e2fsprogs before 1.42.12 allows local users to execute arbitrary code by causing a crafted block group descriptor to be marked as dirty. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-0247...

4.6CVSS7.8AI score0.00596EPSS
Exploits0References3
CNVD
CNVD
added 2015/01/22 12:0 a.m.2 views

Apple Mac OS X IOKit IntelAccelerator Null Pointer Reference Local Code Execution Vulnerability

Apple Mac OS X is a BSD-based operating system of a commercial nature. A null pointer reference local code execution vulnerability exists in Apple Mac OS X IOKit IntelAccelerator. An attacker can exploit this vulnerability to execute arbitrary code and elevate privileges because the program fails...

7.7AI score
Exploits0References1
CNVD
CNVD
added 2015/01/20 12:0 a.m.5 views

Multiple Local Buffer Overflow Vulnerabilities in GE Proficy HMI/SCADA-CIMPLICITY

GE Intelligent Platforms' Proficy HMI/SCADA-iFIX is the world's leading industrial automation software solution that provides process visualization, data acquisition and data monitoring of manufacturing operations. Multiple local buffer overflow vulnerabilities exist in GE Proficy...

6.9CVSS7.9AI score0.00645EPSS
Exploits0References1
OSV
OSV
added 2015/01/19 3:4 p.m.3 views

USN-2479-1 rpm vulnerabilities

Florian Weimer discovered that RPM incorrectly handled temporary files. A local attacker could use this issue to execute arbitrary code. CVE-2013-6435 Florian Weimer discovered that RPM incorrectly handled certain CPIO headers. If a user or automated system were tricked into installing a maliciou...

10CVSS7.4AI score0.07669EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2015/01/15 3:59 p.m.3 views

CVE-2014-8398

Multiple untrusted search path vulnerabilities in Corel FastFlick allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse 1 igfxcmrt32.dll, 2 ipl.dll, 3 MSPStyleLib.dll, 4 uFioUtil.dll, 5 uhDSPlay.dll, 6 uipl.dll, 7 uvipl.dll, 8 VC1DecDll.dll, or 9...

4.6CVSS6.1AI score0.0713EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2015/01/15 3:59 p.m.3 views

CVE-2014-8394

Multiple untrusted search path vulnerabilities in Corel CAD 2014 allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse 1 FxManagedCommands3.089.tx or 2 TDMgd3.089.dll file in the current working directory...

4.6CVSS6.1AI score0.0707EPSS
Exploits1References5
Cvelist
Cvelist
added 2015/01/15 3:0 p.m.19 views

CVE-2014-8396

Untrusted search path vulnerability in Corel PDF Fusion allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse quserex.dll file that is located in the same folder as the file being processed...

7.7AI score0.0707EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2015/01/12 5:32 p.m.4 views

HawtJNI: predictable temporary file name leading to local arbitrary code execution

The HawtJNI Library class wrote native libraries to a predictable file name in /tmp when the native libraries were bundled in a JAR file, and no custom library path was specified. A local attacker could overwrite these native libraries with malicious versions during the window between when HawtJN...

4.4CVSS5.8AI score0.00594EPSS
Exploits1References4
CNVD
CNVD
added 2015/01/06 12:0 a.m.1 views

HUAWEI MobiConnect has multiple vulnerabilities

HUAWEI MobiConnect is a software developed by Huawei. An arbitrary code execution and elevation of privilege vulnerability exists in HUAWEI MobiConnect, which allows local attackers to exploit the vulnerability to execute arbitrary code with elevated privileges due to the program failing to...

8.1AI score
Exploits0References1
OSV
OSV
added 2014/12/25 9:59 p.m.3 views

UBUNTU-CVE-2014-7300

GNOME Shell 3.14.x before 3.14.1, when the Screen Lock feature is used, does not limit the aggregate memory consumption of all active PrtSc requests, which allows physically proximate attackers to execute arbitrary commands on an unattended workstation by making many PrtSc requests and leveraging...

7.2CVSS6.2AI score0.00473EPSS
Exploits0References2
Rows per page
Query Builder