CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE CVE•added 2023/02/15 4:16 a.m.•0 views

SUSE CVE-2019-6467

A programming error in the nxdomain-redirect feature can cause an assertion failure in query.c if the alternate namespace used by nxdomain-redirect is a descendant of a zone that is served locally. The most likely scenario where this might occur is if the server, in addition to performing NXDOMAI...

7.5CVSS6.7AI score0.17224EPSS

seebug.org•added 2014/07/01 12:0 a.m.•37 views

Microsoft Internet Explorer 5.0.1 ITS Protocol Zone Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9658/info Microsoft Internet Explorer has been reported prone to a vulnerability that may permit hostile content to be interpreted in the Local Zone. The issue may be exploited via the ITS InfoTech Storage Protocol URI...

seebug.org•added 2014/07/01 12:0 a.m.•17 views

Mozilla Browser 0.9/1.x Cache File Multiple Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/10709/info Mozilla Browser is reported prone to multiple vulnerabilities that could eventually allow for code execution on the local computer. These vulnerabilities do not represent a significant threat on their own,...

seebug.org•added 2014/07/01 12:0 a.m.•16 views

Microsoft Internet Explorer 6.0 ADODB.Stream Object File Installation Weakness

No description provided by source. source: http://www.securityfocus.com/bid/10514/info Microsoft Internet Explorer is prone to a security weakness that may permit malicious HTML documents to create or overwrite files on a victim file system when interpreted from the Local Zone or other Security...

Prion•added 2011/10/04 10:55 p.m.•12 views

Cross site scripting

4.3CVSS6.2AI score0.00296EPSS

Exploits1References1Affected Software2

Cvelist•added 2011/10/04 10:0 p.m.•22 views

CVE-2011-1221

5.7AI score0.00263EPSS

Exploits1References1

Prion•added 2011/08/18 11:55 p.m.•14 views

Cross site scripting

Cross-zone scripting vulnerability in the RealPlayer ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5 and RealPlayer SP 1.0 through 1.1.5 allows remote attackers to inject arbitrary web script or HTML in the Local Zone via a local HTML document...

4.3CVSS6.2AI score0.00296EPSS

Exploits0References3Affected Software2

NVD•added 2011/08/18 11:55 p.m.•13 views

CVE-2011-2947

4.3CVSS5.8AI score0.00296EPSS

Cvelist•added 2011/08/18 11:0 p.m.•17 views

CVE-2011-2947

5.7AI score0.00296EPSS

NVD•added 2010/12/14 4:0 p.m.•13 views

CVE-2010-4396

Cross-zone scripting vulnerability in the HandleAction method in a certain ActiveX control in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.1.2 allows remote attackers to inject arbitrary web script or HTML in the Local Zone by specifying ...

4.3CVSS5.9AI score0.00285EPSS

Exploits0References4

Check Point Advisories•added 2010/01/04 12:0 a.m.•2 views

RealNetworks RealPlayer RealMedia Security Bypass (CVE-2005-2055)

RealPlayer is a media player produced by RealNetworks, Inc. that supports a variety of open and proprietary multimedia stream and file formats. Versions of RealPlayer are available for most common platforms such as Windows, Linux, Solaris, etc. A vulnerability exists in the way that RealNetworks...

5CVSS6.2AI score0.0034EPSS

seebug.org•added 2008/06/05 12:0 a.m.•27 views

MS Internet Explorer (<= XP SP2) HTML Help Control Local Zone Bypass

No description provided by source. // sp2rc.htm // OBJECT id="localpage" type="application/x-oleobject" classid="clsid:adb880a6-d8ff-11cf-9377-00aa003b7a11" height=7% style="position:absolute;top:140;left:72;z-index:100;" codebase="hhctrl.ocxVersion=5,2,3790,1194" width="7%"...