Lucene search
K

4323 matches found

OSV
OSV
added 2012/02/01 12:55 a.m.2 views

DEBIAN-CVE-2012-0809

Format string vulnerability in the sudodebug function in Sudo 1.8.0 through 1.8.3p1 allows local users to execute arbitrary code via format string sequences in the program name for sudo...

7.2CVSS7.6AI score0.02992EPSS
Exploits5References1
CVE
CVE
added 2012/02/01 12:0 a.m.147 views

CVE-2012-0809

CVE-2012-0809 is a format-string vulnerability in the sudo_debug() function present in sudo versions 1.8.0 through 1.8.3p1, enabling local privilege escalation by supplying a crafted program name. The vulnerability is evidenced in multiple connected sources (Gentoo GLSA-201203-06, openSUSE patch ...

7.2CVSS7.6AI score0.02992EPSS
Exploits5References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2012/01/18 12:0 a.m.33 views

MySQL < 3.23.50 / 4.0.2 Local Code Execution

The version of MySQL installed on the remote host is earlier than 3.23.50 or 4.0.2. On Win32, these versions allow a local attacker to execute arbitrary code via a long 'datadir' parameter in the 'my.ini' file. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid17819;...

7.8CVSS5.7AI score0.01446EPSS
Exploits1References4
OSV
OSV
added 2012/01/13 6:55 p.m.3 views

DEBIAN-CVE-2011-2776

Buffer overflow in the Error function in super.c in Super 3.30.0 might allow local users to execute arbitrary code via vectors related to syslog logging. NOTE: some of these details are obtained from third party information...

4.4CVSS7.9AI score0.00439EPSS
Exploits0References1
securityvulns
securityvulns
added 2011/10/31 12:0 a.m.38 views

Cisco Nexus switches protection bypass

It's possible to bypass ACL limitation. Local code execution...

6.8CVSS2.9AI score0.01992EPSS
Exploits1References3Affected Software2
myhack58
myhack58
added 2011/09/01 12:0 a.m.15 views

VELOCITY local code execution vulnerability-vulnerability warning-the black bar safety net

by emptiness prodigal heart velocity is a J2EE MVC architecture the most commonly used presentation layer template file, due to the excellent performance, very much of the J2EE Application, use this template. Usually when in use, and other framework-binding, the most common framework is struts2,...

0.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2011/08/10 12:0 a.m.3 views

PT-2011-3509 · Microsoft · Windows Server 2003 +5

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista version SP2 Microsoft Windows Server 2008 versions SP2 through R2 SP1 Microsoft Windows 7 versions Gold through SP1 Description: T...

7.2CVSS6.6AI score0.01707EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2011/07/28 6:55 p.m.2 views

CVE-2011-2957

Unspecified vulnerability in Rockwell Automation FactoryTalk Diagnostics Viewer before V2.30.00 CPR9 SR3 allows local users to execute arbitrary code via a crafted FactoryTalk Diagnostics Viewer .ftd configuration file, which triggers memory corruption...

6.9CVSS6.1AI score0.00644EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2011/04/13 12:0 a.m.4 views

PT-2011-2545 · Microsoft · Windows Server 2003 +5

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 and SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 and SP2 Microsoft Windows Server 2008 versions Gold, SP2, R2, and R2 SP1 Microsoft Windows 7 versions Gold and SP1...

7.2CVSS6.5AI score0.01434EPSS
Exploits0References14
myhack58
myhack58
added 2011/03/31 12:0 a.m.27 views

WordPress plugin BackWPup remote and local code execution vulnerability and fix-vulnerability warning-the black bar safety net

Brief Description: a vulnerability was discovered in the WordPress plugin BackWPup 1.6.1 can be used on web pages to perform local or remote code Server. Input passed to the Assembly“wpxmlexport.php”by “wpabs”variable to allow the inclusion and execution of local or remote PHP file, as long as...

3.4AI score
Exploits0
seebug.org
seebug.org
added 2011/03/29 12:0 a.m.37 views

Wordpress plugin BackWPup Remote and Local Code Execution Vulnerability

No description provided by source. Sense of Security - Security Advisory - SOS-11-003 Release Date. 28-Mar-2011 Last Update. - Vendor Notification Date. 25-Mar-2010 Product. Wordpress Plugin BackWPup Platform. Independent Affected versions. 1.6.1 verified, possibly others Severity Rating. High...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2011/03/28 12:0 a.m.22 views

WordPress Plugin BackWPup - Remote Code Execution Local Code Execution

WordPress Plugin BackWPup - Remote Code Execution Local Code Execution Sense of Security - Security Advisory - SOS-11-003 Release Date. 28-Mar-2011 Last Update. - Vendor Notification Date. 25-Mar-2010 Product. Wordpress Plugin BackWPup Platform. Independent Affected versions. 1.6.1 verified,...

Exploits0
Exploit DB
Exploit DB
added 2011/03/28 12:0 a.m.38 views

WordPress Plugin BackWPup - Remote Code Execution / Local Code Execution

Sense of Security - Security Advisory - SOS-11-003 Release Date. 28-Mar-2011 Last Update. - Vendor Notification Date. 25-Mar-2010 Product. Wordpress Plugin BackWPup Platform. Independent Affected versions. 1.6.1 verified, possibly others Severity Rating. High Impact. System Access Attack Vector...

7.4AI score
Exploits0
NVD
NVD
added 2011/01/20 7:0 p.m.19 views

CVE-2011-0513

DCR.sys driver in SecurStar DriveCrypt 5.4, 5.3, and earlier allows local users to execute arbitrary code via a crafted argument to the 0x00073800 IOCTL...

7.2CVSS7.1AI score0.00975EPSS
Exploits1References5
Cvelist
Cvelist
added 2011/01/20 6:0 p.m.24 views

CVE-2011-0513

DCR.sys driver in SecurStar DriveCrypt 5.4, 5.3, and earlier allows local users to execute arbitrary code via a crafted argument to the 0x00073800 IOCTL...

7.1AI score0.00975EPSS
Exploits1References5
securityvulns
securityvulns
added 2010/12/22 12:0 a.m.38 views

nSense-2010-005: Winamp

nSense Vulnerability Research Security Advisory NSENSE-2010-005 --------------------------------------------------------------- Affected Vendor: Nullsoft Affected Product: Winamp 5.581 possibly older versions Platform: Windows Impact: Local code execution Vendor response: Patch CVE: CVE-2010-4370...

9.3CVSS0.4AI score0.05093EPSS
Exploits0
OSV
OSV
added 2010/10/27 7:0 p.m.7 views

CVE-2010-4096

share/ma/keysforuser in Monkeysphere 0.31 and 0.32 allows local users to execute arbitrary code via unknown manipulations related to the "monkeysphere-authentication keys-for-user" command...

4.6CVSS7.2AI score0.00491EPSS
Exploits0References3
OSV
OSV
added 2010/10/27 7:0 p.m.1 views

DEBIAN-CVE-2010-4096

share/ma/keysforuser in Monkeysphere 0.31 and 0.32 allows local users to execute arbitrary code via unknown manipulations related to the "monkeysphere-authentication keys-for-user" command...

4.6CVSS7.6AI score0.00491EPSS
Exploits0References1
Cvelist
Cvelist
added 2010/10/27 6:0 p.m.18 views

CVE-2010-4096

share/ma/keysforuser in Monkeysphere 0.31 and 0.32 allows local users to execute arbitrary code via unknown manipulations related to the "monkeysphere-authentication keys-for-user" command...

7.2AI score0.00491EPSS
Exploits0References3
CVE
CVE
added 2010/10/27 6:0 p.m.41 views

CVE-2010-4096

Monkeysphere 0.31 and 0.32 are affected. The vulnerability in share/ma/keys_for_user allows local users to execute arbitrary code due to manipulations related to the monkeysphere-authentication keys-for-user command. The exact root cause, affected components/versions beyond 0.31–0.32, and concret...

4.6CVSS7.5AI score0.00491EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder