Lucene search
K

272 matches found

Cvelist
Cvelist
added 2010/02/23 8:0 p.m.24 views

CVE-2010-0189

A certain ActiveX control in NOS Microsystems getPlus Download Manager aka DLM or Downloader 1.5.2.35, as used in Adobe Download Manager, improperly validates requests involving web sites that are not in subdomains, which allows remote attackers to force the download and installation of arbitrary...

6.6AI score0.05179EPSS
Exploits1References13
CVE
CVE
added 2010/02/23 8:0 p.m.60 views

CVE-2010-0189

The CVE-2010-0189 issue targets Adobe Download Manager’s getPlus ActiveX control (NOS Microsystems) version 1.5.2.35, where insufficient domain-name validation allows an attacker to craft a download site name that, when loaded in Internet Explorer with the ActiveX control, could cause the user to...

9.3CVSS6.7AI score0.05179EPSS
Exploits1References13Affected Software2
Check Point Advisories
Check Point Advisories
added 2010/02/16 12:0 a.m.1 views

Sun Java System Web Server Digest Authorization Buffer Overflow

Sun Microsystems' Java System Web Server is a high performance web server for medium to large business applications. A buffer overflow vulnerability has been reported in Sun Java System Web Server. The vulnerability is due to insufficient boundary checks by the Sun Java Web Server when processing...

1.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/02/12 12:0 a.m.83 views

Sun OpenOffice.org < 3.2 Multiple Vulnerabilities

The version of Sun Microsystems OpenOffice.org installed on the remote host is prior to version 3.2. It is, therefore, affected by several issues : - Signatures may not be handled properly due to a vulnerability in the libxml2 library. CVE-2006-4339 - There is an HMAC truncation authentication...

9.3CVSS7.6AI score0.43389EPSS
Exploits2References13
Check Point Advisories
Check Point Advisories
added 2010/02/03 12:0 a.m.7 views

Sun MySQL mysql_log Format String (CVE-2009-2446)

A format string vulnerability exists in Sun Microsystems MySQL database server. The flaw is due to insufficient input validation when processing create and drop database commands. Remote authenticated attackers could exploit this vulnerability by sending malformed data to the MySQL process. In a...

8.5CVSS4.8AI score0.10586EPSS
Exploits2
Check Point Advisories
Check Point Advisories
added 2010/02/02 12:0 a.m.20 views

Sun Java HsbParser.getSoundBank Stack Buffer Overflow (CVE-2009-3867)

Java Technology is a programing platform developed by Sun Microsystems which aims to provide a system for developing and deploying cross-platform applications. Java is used in a wide variety programs that are deployed on personal computers as well as embedded devices and cell phones. Java is wide...

9.3CVSS7.3AI score0.73376EPSS
Exploits11
CERT
CERT
added 2010/01/19 12:0 a.m.59 views

BIND 9 DNSSEC validation code could cause fake NXDOMAIN responses

Overview A vulnerability exists in the BIND 9 DNSSEC validation code that could be used by an attacker to generate fake NXDOMAIN responses. Description BIND 9 contains a vulnerability in DNSSEC validation code. According to ISC: There was an error in the DNSSEC NSEC/NSEC3 validation code that cou...

4.3CVSS7.4AI score0.09363EPSS
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2009/12/29 12:0 a.m.18 views

Sun Java GIF File Handling Memory Corruption (CVE-2007-0243)

Java Technology is a programing platform developed by Sun Microsystems which aims to provide a system for developing and deploying cross-platform applications. Java is used in a wide variety programs that are deployed on personal computers as well as embedded devices and cell phones. Java is wide...

6.8CVSS7.5AI score0.10994EPSS
Exploits1
ThreatPost
ThreatPost
added 2009/11/17 3:27 p.m.7 views

Q&A: Cloud Security with Former Sun CSO

The recent ACM Cloud Computing Security Workshop in Chicago was devoted specifically to cloud security. Speakers included Whitfield Diffie, a cryptographer and security researcher who, in 1976, helped solve a fundamental problem of cryptography: how to securely pass along the “keys” that unlock...

1.1AI score
Exploits0References2
Saint
Saint
added 2009/11/06 12:0 a.m.37 views

Java Runtime Environment HsbParser.getSoundBank Stack Buffer Overflow

Added: 11/06/2009 CVE: CVE-2009-3867 BID: 36881 OSVDB: 59711 Background The Java Runtime Environment JRE is part of the Java Development Kit JDK, a set of programming tools for developing Java applications. The Java Runtime Environment provides the minimum requirements for executing a Java...

9.3CVSS7.4AI score0.73376EPSS
Exploits11
Saint
Saint
added 2009/11/06 12:0 a.m.37 views

Java Runtime Environment HsbParser.getSoundBank Stack Buffer Overflow

Added: 11/06/2009 CVE: CVE-2009-3867 BID: 36881 OSVDB: 59711 Background The Java Runtime Environment JRE is part of the Java Development Kit JDK, a set of programming tools for developing Java applications. The Java Runtime Environment provides the minimum requirements for executing a Java...

9.3CVSS7.4AI score0.73376EPSS
Exploits11
Saint
Saint
added 2009/11/06 12:0 a.m.39 views

Java Runtime Environment HsbParser.getSoundBank Stack Buffer Overflow

Added: 11/06/2009 CVE: CVE-2009-3867 BID: 36881 OSVDB: 59711 Background The Java Runtime Environment JRE is part of the Java Development Kit JDK, a set of programming tools for developing Java applications. The Java Runtime Environment provides the minimum requirements for executing a Java...

9.3CVSS7.3AI score0.73376EPSS
Exploits11
Saint
Saint
added 2009/11/06 12:0 a.m.36 views

Java Runtime Environment HsbParser.getSoundBank Stack Buffer Overflow

Added: 11/06/2009 CVE: CVE-2009-3867 BID: 36881 OSVDB: 59711 Background The Java Runtime Environment JRE is part of the Java Development Kit JDK, a set of programming tools for developing Java applications. The Java Runtime Environment provides the minimum requirements for executing a Java...

9.3CVSS7.4AI score0.73376EPSS
Exploits11
securityvulns
securityvulns
added 2009/11/05 12:0 a.m.50 views

ZDI-09-078: Sun Java Runtime AWT setDifflCM Stack Overflow Vulnerability

ZDI-09-078: Sun Java Runtime AWT setDifflCM Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-078 November 4, 2009 -- Affected Vendors: Sun Microsystems -- Affected Products: Sun Microsystems Java Runtime -- TippingPointTM IPS Customer Protection: TippingPoint IPS...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2009/11/05 12:0 a.m.110 views

ZDI-09-080: Sun Java Runtime Environment JPEGImageReader Heap Overflow Vulnerability

ZDI-09-080: Sun Java Runtime Environment JPEGImageReader Heap Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-080 November 4, 2009 -- Affected Vendors: Sun Microsystems -- Affected Products: Sun Microsystems Java Runtime -- TippingPointTM IPS Customer Protection:...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2009/11/05 12:0 a.m.115 views

ZDI-09-076: Sun Java HsbParser.getSoundBank Stack Buffer Overflow Vulnerability

ZDI-09-076: Sun Java HsbParser.getSoundBank Stack Buffer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-076 November 4, 2009 -- Affected Vendors: Sun Microsystems -- Affected Products: Sun Microsystems Java Runtime -- TippingPointTM IPS Customer Protection: TippingPoint...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2009/11/05 12:0 a.m.47 views

ZDI-09-077: Sun Java Web Start Arbitrary Command Execution Vulnerability

ZDI-09-077: Sun Java Web Start Arbitrary Command Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-077 November 4, 2009 -- Affected Vendors: Sun Microsystems -- Affected Products: Sun Microsystems Java Runtime -- TippingPointTM IPS Customer Protection: TippingPoint IPS...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2009/11/05 12:0 a.m.114 views

ZDI-09-079: Sun Java Runtime AWT setBytePixels Heap Overflow Vulnerability

ZDI-09-079: Sun Java Runtime AWT setBytePixels Heap Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-079 November 4, 2009 -- Affected Vendors: Sun Microsystems -- Affected Products: Sun Microsystems Java Runtime -- TippingPointTM IPS Customer Protection: TippingPoint IPS...

Exploits0
ThreatPost
ThreatPost
added 2009/11/04 1:54 p.m.8 views

Security Fixes for Java, BlackBerry Desktop

Sun Microsystems and Research In Motion have issued critical bug fixes for security issues with their products. Both updates include fixes for critical security bugs that could be abused by attackers to run unauthorized software on a victim’s computer, although none of the flaws appear to have be...

2.4AI score
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2009/11/04 12:0 a.m.34 views

Sun Java HsbParser.getSoundBank Stack Buffer Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun Microsystems Java. User interaction is required in that a user must open a malicious file or visit a malicious web page. The specific flaw exists in the parsing of long file:// URL arguments to...

9.3CVSS5.3AI score0.73376EPSS
Exploits11References1
Rows per page
Query Builder