Lucene search
K

8941 matches found

Cvelist
Cvelist
added 2007/11/15 1:0 a.m.23 views

CVE-2007-4688

The Networking component in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to obtain all addresses for a host, including link-local addresses, via a Node Information Query...

6.8AI score0.01846EPSS
Exploits1References8
Cvelist
Cvelist
added 2007/11/15 1:0 a.m.29 views

CVE-2007-4268

Integer signedness error in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows local users to execute arbitrary code via a crafted AppleTalk message with a negative value, which satisfies a signed comparison during mbuf allocation but is later interpreted as an unsigned value,...

7.4AI score0.00671EPSS
Exploits1References9
CVE
CVE
added 2007/11/15 1:0 a.m.52 views

CVE-2007-4267

Apple Mac OS X 10.4–10.4.10 (and Mac OS X Server 10.4–10.4.10) contain a stack-based kernel overflow in the AppleTalk networking path. The vulnerability arises when an IOCTL adds an AppleTalk zone to a routing table, allowing a local attacker to cause arbitrary code execution with kernel privileg...

7.2CVSS7.5AI score0.00486EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2007/11/15 1:0 a.m.26 views

CVE-2007-4689

Double free vulnerability in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to cause a denial of service system shutdown or execute arbitrary code via crafted IPV6 packets...

7.6AI score0.07452EPSS
Exploits1References8
CVE
CVE
added 2007/11/15 1:0 a.m.61 views

CVE-2007-4689

CVE-2007-4689 is a double-free vulnerability in the Networking component of Apple Mac OS X 10.4 up to 10.4.10 . The issue affects how IPv6 packets are processed, potentially allowing remote attackers to cause a denial of service (system shutdown) or execute arbitrary code. The affected product ra...

10CVSS7.6AI score0.07452EPSS
Exploits1References8Affected Software2
CVE
CVE
added 2007/11/15 1:0 a.m.54 views

CVE-2007-4269

Apple Mac OS X 10.4–10.4.10 is affected by CVE-2007-4269 due to an integer overflow in the AppleTalk ASP handling, which triggers a heap-based buffer overflow when a crafted ASP message is sent to an AppleTalk socket. This vulnerability enables local users to execute arbitrary code with system pr...

7.2CVSS7.5AI score0.00486EPSS
Exploits1References9Affected Software2
Cvelist
Cvelist
added 2007/11/15 1:0 a.m.29 views

CVE-2007-4269

Integer overflow in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows local users to execute arbitrary code via a crafted AppleTalk Session Protocol ASP message on an AppleTalk socket, which triggers a heap-based buffer overflow...

7.5AI score0.00486EPSS
Exploits1References9
CVE
CVE
added 2007/11/15 1:0 a.m.62 views

CVE-2007-4688

CVE-2007-4688 affects Apple Mac OS X 10.4–10.4.10. A vulnerability in the Networking component's Node Information Query allows remote attackers to obtain all host addresses, including link-local addresses, exposing information about the host. The issue is an information-disclosure flaw in the Nod...

5CVSS6.8AI score0.01846EPSS
Exploits1References8Affected Software2
Positive Technologies
Positive Technologies
added 2007/11/15 12:0 a.m.5 views

PT-2007-5460 · Apple · Macos X

Name of the Vulnerable Software and Affected Versions: Mac OS X versions 10.4 through 10.4.10 Description: The issue is related to an integer signedness error in the Networking component, which allows local users to execute arbitrary code via a crafted AppleTalk message. This message contains a...

7.8CVSS7.6AI score0.00671EPSS
Exploits1References11
Tenable Nessus
Tenable Nessus
added 2007/11/14 12:0 a.m.69 views

Mac OS X < 10.4.11 Multiple Vulnerabilities (Security Update 2007-008)

The remote host is running a version of Mac OS X 10.4 which is older than version 10.4.11 or a version of Mac OS X 10.3 which does not have Security Update 2007-008 applied. This update contains several security fixes for the following programs : - Flash Player Plugin - AppleRAID - BIND - bzip2 -...

10CVSS6.8AI score0.56309EPSS
Exploits13References43
Fedora
Fedora
added 2007/11/13 12:5 a.m.55 views

[SECURITY] Fedora 7 Update: kdenetwork-3.5.8-6.fc7

Networking applications, including: kget: downloader manager kiolan: lan browsing kio slave knewsticker: RDF newsticker applet kopete: chat client kppp: dialer and front end for pppd krdc: a client for Desktop Sharing and other VNC servers krfb: Desktop Sharing server, allow others to access your...

9.3CVSS3.8AI score0.0702EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2007/11/12 12:0 a.m.36 views

openSUSE 10 Security Update : kernel (kernel-4641)

This kernel update fixes the following security problems : ++ CVE-2006-6058: A local denial of service when mounting MINIX filesystems was fixed. ++ CVE-2007-4997: A 2 byte buffer underflow in the ieee80211 stack was fixed, which might be used by attackers in WLAN reach to crash the machine. and...

7.1CVSS5.7AI score0.0324EPSS
Exploits2References2
Prion
Prion
added 2007/11/05 7:46 p.m.17 views

Input validation

Unspecified vulnerability in the administrative interface in Avaya Messaging Storage Server MSS 3.1 before SP1, and Message Networking MN 3.1, allows remote attackers to cause a denial of service via unspecified vectors related to "input validation."...

7.8CVSS7.2AI score0.01619EPSS
Exploits0References4Affected Software2
Cvelist
Cvelist
added 2007/11/05 7:0 p.m.22 views

CVE-2007-5830

Unspecified vulnerability in the administrative interface in Avaya Messaging Storage Server MSS 3.1 before SP1, and Message Networking MN 3.1, allows remote attackers to cause a denial of service via unspecified vectors related to "input validation."...

6.6AI score0.01619EPSS
Exploits0References4
CVE
CVE
added 2007/11/05 7:0 p.m.44 views

CVE-2007-5830

This CVE (CVE-2007-5830) affects Avaya Messaging Storage Server (MSS) 3.1 before SP1 and Message Networking (MN) 3.1. A vulnerability in the administrative interface allows remote denial-of-service via input validation issues. The NVD entry provides a CVSSv2 base score of 7.8 (HIGH) with network ...

7.8CVSS6.7AI score0.01619EPSS
Exploits0References4Affected Software2
Packet Storm
Packet Storm
added 2007/10/22 12:0 a.m.20 views

KN2.txt

Title : Knowledge Networking v.1.0.b Local File Inclusion Vulnerability Description : Knowledge Networking v.1.0.b is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Author : d3hydr8 Homepage : http://www.darkc0de.com Original Post :...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/10/17 12:0 a.m.43 views

openSUSE 10 Security Update : kernel (kernel-2705)

This kernel update fixes the following security problems : - CVE-2006-5751: An integer overflow in the networking bridge ioctl starting with Kernel 2.6.7 could be used by local attackers to overflow kernel memory buffers and potentially escalate privileges 222656 - CVE-2006-6106: Multiple buffer...

7.8CVSS6.4AI score0.05605EPSS
Exploits0References6
NVD
NVD
added 2007/10/12 9:17 p.m.21 views

CVE-2007-5422

Unspecified vulnerability in "Solaris Auditing" in the Basic Security Module BSM in Sun Solaris 10, when configured for auditing of networking nt events, allows local users to cause a denial of service panic via unspecified vectors...

4.9CVSS6.2AI score0.00376EPSS
Exploits0References9
Prion
Prion
added 2007/09/14 12:17 a.m.14 views

Sql injection

SQL injection vulnerability in profile/myprofile.php in psi-labs.com social networking script psisns, probably 1.0, allows remote attackers to execute arbitrary SQL commands via the u parameter...

7.5CVSS9.1AI score0.01299EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2007/09/14 12:17 a.m.9 views

CVE-2007-4881

SQL injection vulnerability in profile/myprofile.php in psi-labs.com social networking script psisns, probably 1.0, allows remote attackers to execute arbitrary SQL commands via the u parameter...

7.5CVSS8.3AI score0.01299EPSS
Exploits0References7
Rows per page
Query Builder