Lucene search
+L

2903 matches found

prion
prion
added 2009/04/13 4:30 p.m.16 views

Stack overflow

Multiple stack-based buffer overflows in DZIP32.DLL before 5.0.0.8 in DynaZip Max and DZIPS32.DLL before 6.0.0.5 in DynaZip Max Secure; as used in HP OpenView Performance Agent C.04.60, HP Performance Agent C.04.70 and C.04.72, TurboZIP 6.0, and other products; allow user-assisted attackers to...

9.3CVSS8AI score0.05664EPSS
Exploits2References13Affected Software4
cvelist
cvelist
added 2009/04/13 4:0 p.m.36 views

CVE-2008-4420

Multiple stack-based buffer overflows in DZIP32.DLL before 5.0.0.8 in DynaZip Max and DZIPS32.DLL before 6.0.0.5 in DynaZip Max Secure; as used in HP OpenView Performance Agent C.04.60, HP Performance Agent C.04.70 and C.04.72, TurboZIP 6.0, and other products; allow user-assisted attackers to...

7.6AI score0.05664EPSS
Exploits1References13
cve
cve
added 2009/04/13 4:0 p.m.59 views

CVE-2008-4420

CVE-2008-4420 concerns multiple stack-based buffer overflows in DZIP32.DLL (DynaZip Max) and DZIPS32.DLL (DynaZip Max Secure) that are triggered by a long filename in a ZIP archive during actions such as Fix/Repair, Add, Update, or Freshen. The vulnerables are DynaZip components shipped in variou...

9.3CVSS7.8AI score0.05664EPSS
Exploits1References13Affected Software1
myhack58
myhack58
added 2009/02/02 12:0 a.m.21 views

Max CMS2. 0beta (maxcms)SQL injection vulnerability-vulnerability warning-the black bar safety net

Author: flyh4t http://bbs.wolvez.org Keywords: home-max CMS2. 0 This system was internally very popular video-on-demand system, before 1. 5 version vulnerability very much, the 2.0 version in terms of security has improved, but still there are loopholes exist. Look at the code \inc\ajax. asp dim...

Exploits0
packetstorm
packetstorm
added 2009/01/27 12:0 a.m.22 views

Max Blog 1.0.6 SQL Injection

Salvatore "drosophila" Fresta Application: Max.Blog http://www.mzbservices.com Version: Max.Blog = 1.0.6 Bug: SQL Injection Exploitation: Remote Dork: intext:"Powered by Max.Blog" Date: 20 Jan 2009 Discovered by: Salvatore "drosophila" Fresta Author: Salvatore "drosophila" Fresta e-mail:...

7.4AI score
Exploits0
myhack58
myhack58
added 2008/11/17 12:0 a.m.40 views

DZ! sodb-2 0 0 8-1 3 EXP published-vulnerability warning-the black bar safety net

!/ usr/bin/php ? php / Discuz! 6. x/7. x SODB-2 0 0 8-1 3 Exp By www.80vul.com Notes the value of the variable, add your own modifications / $host = ‘www.80vul.com’; // Server domain or IP $path = ‘/discuz/’; // Where the program path $key = 0; // The above variable is edited, make will the value...

7.1AI score
Exploits0
osv
osv
added 2008/11/01 12:0 a.m.4 views

DEBIAN-CVE-2008-4867

Buffer overflow in libavcodec/dca.c in FFmpeg 0.4.9 before r14917, as used by MPlayer, allows context-dependent attackers to have an unknown impact via vectors related to an incorrect DCAMAXFRAMESIZE value...

10CVSS6.9AI score0.02377EPSS
Exploits0References1
packetstorm
packetstorm
added 2008/11/01 12:0 a.m.25 views

articlepro-sql.txt

Kira has decide be back after halloween Discovered by : Mountassif Moad Type Gap : Blind Sql Injection Script : Article Publisher Pro : http://www.phparticlescript.com/ Greetz : Allah , All my freind P0c : http://localhost/contactauthor.php?userid=1+and+1=1 true...

7.4AI score
Exploits0
redhat
redhat
added 2008/10/07 7:16 p.m.13 views

kernel snd_seq_oss_synth_make_info leak

The sndseqosssynthmakeinfo function in sound/core/seq/oss/seqosssynth.c in the sound subsystem in the Linux kernel before 2.6.27-rc2 does not verify that the device number is within the range defined by maxsynthdev before returning certain data to the caller, which allows local users to obtain...

2.1CVSS5.8AI score0.00417EPSS
Exploits3References4
redhat
redhat
added 2008/09/24 6:43 p.m.6 views

kernel snd_seq_oss_synth_make_info leak

The sndseqosssynthmakeinfo function in sound/core/seq/oss/seqosssynth.c in the sound subsystem in the Linux kernel before 2.6.27-rc2 does not verify that the device number is within the range defined by maxsynthdev before returning certain data to the caller, which allows local users to obtain...

2.1CVSS5.8AI score0.00417EPSS
Exploits3References4
redhat
redhat
added 2008/07/14 1:38 p.m.9 views

ruby: integer overflows in rb_ary_fill() / Array#fill

Integer overflow in the rbaryfill function in array.c in Ruby before revision 17756 allows context-dependent attackers to cause a denial of service crash or possibly have unspecified other impact via a call to the Arrayfill method with a start aka beg argument greater than ARYMAXSIZE. NOTE: this...

7.5CVSS5.9AI score0.03601EPSS
Exploits0References4
jvn
jvn
added 2008/05/20 3:0 p.m.7 views

phpAdsNew cross-site scripting vulnerability

Overview phpAdsNew, an open source web advertising management system, contains a cross-site scripting vulnerability. Note that phpAdsNew is now called "Openads." The products listed below use the same module as phpAdsNew thus they are also affected by the vulnerability. - phpPgAds 2.0.9-pr1 and...

6.8CVSS6.1AI score0.01433EPSS
Exploits0References6
redhat
redhat
added 2008/02/28 9:49 a.m.4 views

gd: GIF handling buffer overflow

Buffer overflow in the LWZReadByte function in ext/gd/libgd/gdgifin.c in the GD extension in PHP before 5.1.5 allows remote attackers to have an unknown impact via a GIF file with inputcodesize greater than MAXLWZBITS, which triggers an overflow when initializing the table array...

2.6CVSS5.9AI score0.05073EPSS
Exploits1References4
cve
cve
added 2008/01/22 7:0 p.m.54 views

CVE-2008-0373

The CVE-2008-0373 entry describes an unrestricted file upload vulnerability in PHP F1 Max’s File Uploader, enabling remote attackers to upload and execute arbitrary PHP files on the affected server. The underlying issue is improper validation/handling of uploaded files, leading to arbitrary code ...

7.5CVSS7.5AI score0.02178EPSS
Exploits0References4Affected Software1
cvelist
cvelist
added 2008/01/10 11:0 p.m.33 views

CVE-2008-0225

Heap-based buffer overflow in the rmffdumpcont function in input/libreal/rmff.c in xine-lib 1.1.9 and earlier allows remote attackers to execute arbitrary code via the SDP Abstract attribute in an RTSP session, related to the rmffdumpheader function and related to disregarding the max field. NOTE...

7.8AI score0.14969EPSS
Exploits1References20
osv
osv
added 2007/12/19 10:46 p.m.2 views

DEBIAN-CVE-2007-6441

The WiMAX dissector in Wireshark formerly Ethereal 0.99.6 allows remote attackers to cause a denial of service crash via unknown vectors related to "unaligned access on some platforms."...

3.3CVSS6.8AI score0.01001EPSS
Exploits0References1
redhat
redhat
added 2007/12/10 5:57 p.m.5 views

pcre integer overflow

Integer overflow in Perl-Compatible Regular Expression PCRE library before 6.7 might allow context-dependent attackers to execute arbitrary code via a regular expression that involves large 1 min, 2 max, or 3 duplength values that cause an incorrect length calculation and trigger a buffer overflo...

6.8CVSS6.3AI score0.03661EPSS
Exploits0References4
redhat
redhat
added 2007/11/29 3:6 p.m.2 views

pcre integer overflow

Integer overflow in Perl-Compatible Regular Expression PCRE library before 6.7 might allow context-dependent attackers to execute arbitrary code via a regular expression that involves large 1 min, 2 max, or 3 duplength values that cause an incorrect length calculation and trigger a buffer overflo...

6.8CVSS6.3AI score0.03661EPSS
Exploits0References4
redhat
redhat
added 2007/11/29 2:58 p.m.3 views

pcre integer overflow

Integer overflow in Perl-Compatible Regular Expression PCRE library before 6.7 might allow context-dependent attackers to execute arbitrary code via a regular expression that involves large 1 min, 2 max, or 3 duplength values that cause an incorrect length calculation and trigger a buffer overflo...

6.8CVSS6.3AI score0.03661EPSS
Exploits0References4
redhat
redhat
added 2007/11/15 5:11 p.m.35 views

net-snmp remote DoS via udp packet

The SNMP agent snmpagent.c in net-snmp before 5.4.1 allows remote attackers to cause a denial of service CPU and memory consumption via a GETBULK request with a large max-repeaters value...

7.8CVSS7.4AI score0.28966EPSS
Exploits1References4
Rows per page
Query Builder