Lucene search
K

157 matches found

osv
osv
added 2015/01/12 3:59 p.m.2 views

DEBIAN-CVE-2014-6268

The evtchnfifosetpending function in Xen 4.4.x allows local guest users to cause a denial of service host crash via vectors involving an uninitialized FIFO-based event channel control block when 1 binding or 2 moving an event to a different VCPU...

4.9CVSS8.2AI score0.00415EPSS
Exploits0References1
ubuntucve
ubuntucve
added 2015/01/12 3:59 p.m.20 views

CVE-2014-6268

The evtchnfifosetpending function in Xen 4.4.x allows local guest users to cause a denial of service host crash via vectors involving an uninitialized FIFO-based event channel control block when 1 binding or 2 moving an event to a different VCPU...

4.9CVSS7.2AI score0.00415EPSS
Exploits0References2
seebug
seebug
added 2014/07/01 12:0 a.m.20 views

SquirrelMail 1.2.11 move_messages.php Arbitrary File Moving

No description provided by source. source: http://www.securityfocus.com/bid/7952/info Multiple vulnerabilities have been reported for Squirrelmail which could allow for information disclosure, data corruption, and privilege escalation. The problems appear to occur due to insufficient sanitization...

7.1AI score
Exploits0
exploitdb
exploitdb
added 2014/02/19 12:0 a.m.22 views

WordPress Plugin BP Group Documents 1.2.1 - Multiple Vulnerabilities

Details ================ Software: BP Group Documents Version: 1.2.1 Homepage: http://wordpress.org/plugins/bp-group-documents/ CVSS: 8 High; AV:N/AC:L/Au:S/C:P/I:P/A:C Description ================ Stored XSS vulnerability in BP Group Documents 1.2.1 Vulnerability ================ “Display name”...

7.4AI score
Exploits0
threatpost
threatpost
added 2013/08/29 4:4 p.m.9 views

Researchers Reverse Engineer Dropbox

Researchers have cracked open cloud storage service Dropbox, reverse engineering the encryption protecting the client in order to open it up to further security analysis. The engineers, Dhiru Kholia of Openwall and Przemyslaw Wegrzyn of CodePainters, also managed to demonstrate how to use...

1.3AI score
Exploits0References2
nessus
nessus
added 2012/06/29 12:0 a.m.28 views

Debian DSA-2500-1 : mantis - several vulnerabilities

Several vulnerabilities were discovered in Mantis, an issue tracking system. - CVE-2012-1118 Mantis installation in which the privatebugviewthreshold configuration option has been set to an array value do not properly enforce bug viewing restrictions. - CVE-2012-1119 Copy/clone bug report actions...

7.5CVSS5.4AI score0.03727EPSS
Exploits3References14
veeam
veeam
added 2011/12/16 12:0 a.m.108 views

How to Move the VBRCatalog Folder

Purpose This article documents the procedure for moving the VBRCatalog folder. Solution VBRCatalog Location Requirements The VBRCatalog folder must be on the root of a given drive letter. Example: C:\VBRCatalog\ or D:\VBRCatalog\ The VBRCatalog cannot be redirected to a CIFS share or mapped netwo...

6.5AI score
Exploits0
threatpost
threatpost
added 2011/02/07 8:26 p.m.8 views

Inside the Business of Malware

Malware is big business. Malware writers and attackers are just the most visible parts of the ecosystem; there are many invisible moving parts behind the scenes that are rarely seen or described. Now, a complete picture of the business model and inner workings of the malware industrial complex is...

2.8AI score
Exploits0References2
packetstorm
packetstorm
added 2011/01/05 12:0 a.m.30 views

Concrete CMS 5.4.1.1 XSS / Code Execution

!/usr/bin/python Concrete CMS v5.4.1.1 xss/remote code execution exploit Download: http://www.concrete5.org/ Special Zeitgeist pre release - "Moving Forward" - 15th Jan 2011 "They must find it difficult, those who take authority as the truth instead of truth as the authority"...

7.4AI score
Exploits0
packetstorm
packetstorm
added 2010/05/19 12:0 a.m.25 views

Joomla Bookmarks Cross Site Scripting

x Joomla Component Bookmarks x Date: 16/05/2010 x Author: s4r4d0 x Contact: [email protected] x Team: Fatal Error x Bug: XSS on Component Bookmarks x Example: http://www.site.com/index.php?option=combookmarks=XSS x Demo:http://www.movinganthropology.de/index.php?option=combookmarks="XSS By Fatal...

Exploits0
securityvulns
securityvulns
added 2010/04/06 12:0 a.m.72 views

ZDI-10-063: Mozilla Firefox Cross Document DOM Node Moving Code Execution Vulnerability

ZDI-10-063: Mozilla Firefox Cross Document DOM Node Moving Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-063 April 5, 2010 -- CVE ID: CVE-2010-1121 -- Affected Vendors: Mozilla Firefox -- Affected Products: Mozilla Firefox 3.6.x -- TippingPointTM IPS Customer...

10CVSS0.2AI score0.05773EPSS
Exploits1
cvelist
cvelist
added 2010/02/03 7:0 p.m.30 views

CVE-2009-3387

Bugzilla 3.3.1 through 3.4.4, 3.5.1, and 3.5.2 does not allow group restrictions to be preserved throughout the process of moving a bug to a different product category, which allows remote attackers to obtain sensitive information via a request for a bug in opportunistic circumstances...

5.8AI score0.017EPSS
Exploits0References6
myhack58
myhack58
added 2009/02/17 12:0 a.m.15 views

Moving-2 0 0 6 a few small flaws-vulnerability warning-the black bar safety net

The author of the article: the falling leaves swirlingJJSEX Information source: http://hi.baidu.com/jluoye Now they move easy companies are taking action easy content management system open source, Hey However with the move-2 0 0 6 people is still a lot, my hand on the SWI 0day almost never used,...

7.2AI score
Exploits0
nvd
nvd
added 2008/09/18 5:59 p.m.20 views

CVE-2008-4108

Tools/faqwiz/move-faqwiz.sh aka the generic FAQ wizard moving tool in Python 2.4.5 might allow local users to overwrite arbitrary files via a symlink attack on a tmp$RANDOM.tmp temporary file. NOTE: there may not be common usage scenarios in which tmp$RANDOM.tmp is located in an untrusted directo...

7.2CVSS6.3AI score0.00379EPSS
Exploits0References9
ubuntucve
ubuntucve
added 2008/09/18 5:59 p.m.35 views

CVE-2008-4108

Tools/faqwiz/move-faqwiz.sh aka the generic FAQ wizard moving tool in Python 2.4.5 might allow local users to overwrite arbitrary files via a symlink attack on a tmp$RANDOM.tmp temporary file. NOTE: there may not be common usage scenarios in which tmp$RANDOM.tmp is located in an untrusted directo...

7.2CVSS5.9AI score0.00379EPSS
Exploits0References1
cvelist
cvelist
added 2008/09/18 5:47 p.m.25 views

CVE-2008-4108

Tools/faqwiz/move-faqwiz.sh aka the generic FAQ wizard moving tool in Python 2.4.5 might allow local users to overwrite arbitrary files via a symlink attack on a tmp$RANDOM.tmp temporary file. NOTE: there may not be common usage scenarios in which tmp$RANDOM.tmp is located in an untrusted directo...

6.2AI score0.00379EPSS
Exploits0References9
debiancve
debiancve
added 2008/09/18 5:47 p.m.55 views

CVE-2008-4108

Tools/faqwiz/move-faqwiz.sh aka the generic FAQ wizard moving tool in Python 2.4.5 might allow local users to overwrite arbitrary files via a symlink attack on a tmp$RANDOM.tmp temporary file. NOTE: there may not be common usage scenarios in which tmp$RANDOM.tmp is located in an untrusted directo...

7.2CVSS6.1AI score0.00379EPSS
Exploits0
Rows per page
Query Builder