CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9289 matches found

Prion•added 2009/09/24 4:30 p.m.•11 views

Code injection

Unspecified vulnerability in SAP Crystal Reports Server 2008 on Windows XP allows attackers to cause a denial of service infinite loop via unknown vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.3 through 8.11. NOTE: as of 20090917, this disclosure has no actionable...

5CVSS7AI score0.00558EPSS

Exploits0References3Affected Software1

Cvelist•added 2009/09/24 4:0 p.m.•19 views

CVE-2009-3345

Heap-based buffer overflow in SAP Crystal Reports Server 2008 has unknown impact and attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.3 through 8.11. NOTE: as of 20090917, this disclosure has no actionable information. However, because the VulnDisco Pack author...

7AI score0.00427EPSS

Exploits0References3

CVE•added 2009/09/24 4:0 p.m.•49 views

CVE-2009-3341

CVE-2009-3341 concerns a buffer overflow in the Linksys WRT54GL wireless router. The vulnerability permits remote code execution via unspecified vectors, demonstrated by a module in VulnDisco Pack Professional 8.10–8.11. The description notes that as of 2009-09-17 there is no public actionable in...

10CVSS8AI score0.04807EPSS

Exploits0References3Affected Software1

CVE•added 2009/09/24 4:0 p.m.•44 views

CVE-2009-3345

CVE-2009-3345 describes a heap-based buffer overflow in SAP Crystal Reports Server 2008. The vulnerability is evidenced by a module in VulnDisco Pack Professional 8.3–8.11. The Initial Description notes unknown impact and attack vectors as of disclosure, and actionability was limited at the time....

10CVSS7AI score0.00427EPSS

Exploits0References3Affected Software1

CVE•added 2009/09/24 4:0 p.m.•55 views

CVE-2009-3346

The CVE-2009-3346 entry concerns SAP Crystal Reports Server 2008 with an unspecified vulnerability that could allow remote code execution via unknown vectors, as demonstrated by VulnDisco Pack Professional versions 8.3–8.11. The description notes that, as of 2009-09-17, there is no actionable inf...

10CVSS7.6AI score0.03639EPSS

Exploits0References3Affected Software1

Cvelist•added 2009/09/24 4:0 p.m.•18 views

CVE-2009-3340

Unspecified vulnerability in FreeSSHD 1.2.4 allows remote attackers to cause a denial of service via unknown vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.11. NOTE: as of 20090917, this disclosure has no actionable information. However, because the VulnDisco Pack...

6.6AI score0.00535EPSS

Exploits0References3

Cvelist•added 2009/09/24 4:0 p.m.•26 views

CVE-2009-3347

Buffer overflow on the D-Link DIR-400 wireless router allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.10 through 8.11. NOTE: as of 20090917, this disclosure has no actionable information. However,...

8AI score0.0339EPSS

Exploits0References5

Cvelist•added 2009/09/24 4:0 p.m.•20 views

CVE-2009-3346

Unspecified vulnerability in SAP Crystal Reports Server 2008 allows remote attackers to execute arbitrary code via unknown vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.3 through 8.11. NOTE: as of 20090917, this disclosure has no actionable information. However,...

7.6AI score0.03639EPSS

Exploits0References3

CVE•added 2009/09/24 4:0 p.m.•51 views

CVE-2009-3339

CVE-2009-3339 affects McAfee Email and Web Security Appliance 5.1 VMtrial. The vulnerability allows remote attackers to read arbitrary files via unknown vectors (as demonstrated by VulnDisco Pack Pro 8.9–8.11). The NVD entry lists a high risk (CVSSv2 base score 7.8) with confidentiality impact fu...

7.8CVSS6.7AI score0.0028EPSS

Exploits0References3Affected Software1

Cvelist•added 2009/09/24 4:0 p.m.•23 views

CVE-2009-3341

Buffer overflow on the Linksys WRT54GL wireless router allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.10 through 8.11. NOTE: as of 20090917, this disclosure has no actionable information. However,...

8AI score0.04807EPSS

Exploits0References3

seebug.org•added 2009/09/21 12:0 a.m.•33 views

IBM WebSphere Application Server Eclipse Help跨站脚本漏洞

Bugraq ID: 36455 CVE ID：CVE-2009-2742 IBM WebSphere Application Server是一款商业性质的WEB应用服务程序。 IBM WebSphere Application Server包含的Eclipse Help组件不正确验证用户提供的输入，远程攻击者可以利用漏洞使用特殊构建的URL，诱使用户点击，可在目标用户浏览器上执行任意脚本代码。目前没有详细漏洞细节提供。 IBM Websphere Application Server 6.1 25 IBM Websphere Application Server 6.1 23 IBM...

4.3CVSS6.4AI score0.0023EPSS

Exploits1

seebug.org•added 2009/09/21 12:0 a.m.•24 views

IBM WebSphere Application Server本地信息泄漏漏洞

Bugraq ID: 36458 CVE ID：CVE-2009-2743 IBM WebSphere Application Server是一款商业性质的WEB应用服务程序。 IBM WebSphere Application Server允许本地攻击者获得敏感信息。在使用wsadmin脚本和配置了JAAS-J2C验证数据后，当部分异常发生时存在一个错误，通过查看FFDC日志文件，攻击者可以获得敏感信息。 IBM Websphere Application Server 6.1 25 IBM Websphere Application Server 6.1 23 IBM...

2.1CVSS6.4AI score0.00064EPSS

Exploits1

seebug.org•added 2009/09/21 12:0 a.m.•24 views

IBM WebSphere Application Server拒绝服务漏洞

Bugraq ID: 36456 CVE ID：CVE-2009-2744 IBM WebSphere Application Server是一款商业性质的WEB应用服务程序。 IBM WebSphere Application Server存在一个未明安全漏洞，远程攻击者可以利用漏洞对服务程序进行拒绝服务攻击。目前没有详细漏洞细节提供。 IBM Websphere Application Server 6.1 25 IBM Websphere Application Server 6.1 23 厂商解决方案用户可联系供应商下载使用最新的Fix Pack 6.1.0.27或之后或AP...

7.8CVSS6.4AI score0.00744EPSS

Exploits1

NVD•added 2009/09/11 8:30 p.m.•14 views

CVE-2009-3177

Unspecified vulnerability in Kaspersky Online Scanner 7.0 has unknown impact and attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.8, 1 "Kaspersky Online Antivirus Scanner 7.0 exploit Linux" and 2 "Kaspersky Online Antivirus Scanner 7.0 exploit Windows." NOTE: a...

10CVSS6.5AI score0.00514EPSS

Exploits0References4

NVD•added 2009/09/11 8:30 p.m.•17 views

CVE-2009-3176

Buffer overflow in the ActiveX control in Novell iPrint Client 4.38 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unknown attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.1, "Novell iPrint Client 4.38 ActiveX...

9.3CVSS8.1AI score0.03622EPSS

Exploits0References4

NVD•added 2009/09/11 8:30 p.m.•15 views

CVE-2009-3178

Unspecified vulnerability in mm.exe in Symantec Altiris Deployment Solution 6.9 allows remote attackers to cause a denial of service via unknown attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 7.18, "Symantec Altiris Deployment Solution 6.9 DoS." NOTE: as of...

7.8CVSS6.7AI score0.00767EPSS

Exploits0References3

NVD•added 2009/09/11 8:30 p.m.•14 views

CVE-2009-3179

Multiple unspecified vulnerabilities in Symantec Altiris Deployment Solution 6.9 might allow remote attackers to execute arbitrary code via unknown client-side attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 7.17, as identified by 1 "Symantec Altiris Deployment...

10CVSS7.7AI score0.05955EPSS

Exploits0References3

Prion•added 2009/09/11 8:30 p.m.•17 views

Code injection

10CVSS7AI score0.00514EPSS

Exploits0References4Affected Software2

Prion•added 2009/09/11 8:30 p.m.•12 views

Buffer overflow

9.3CVSS8.6AI score0.03622EPSS

Exploits0References4Affected Software1

Prion•added 2009/09/11 8:30 p.m.•14 views

Code injection