CVE-2006-7040

Unspecified vulnerability in MERCUR Messaging 2005 before Service Pack 4 allows remote attackers to cause a denial of service crash via a TOP command to the POP3 service...

IBM DB2 9.1 < 9.1 Fix Pack 2 Multiple Vulnerabilities

Binary data 3921.prm...

IBM DB2 < 9 Fix Pack 2 Multiple Vulnerabilities

According to its version, the installation of IBM DB2 running on the remote host allows unsafe access to several setuid-root binaries. A local attacker can exploit this to crash the affected database server or possibly even gain root-level access. In addition, the fenced userid may be able to...

Microsoft Windows 2000/XP/2003/Vista ReadDirectoryChangesW informaton leak

Title: Microsoft Windows 2000/XP/2003/Vista ReadDirectoryChangesW informaton leak Author: 3APA3A, Affected: Microsoft Windows 2000,XP,2003,Vista Exploitable: Yes Type: Remote from local network, authentication required NULL session was not tested. Class: Information leak CVE: Intro: It's very...

Immunity Canvas: TM_SPROTECT

Name| tmsprotect ---|--- CVE| CVE-2007-1070 Exploit Pack| CANVAS Description| Trend Micro ServerProtect RPC Overflow Notes| CVE Name: CVE-2007-1070 VENDOR: Trend Micro Notes: Platforms Tested: References: http://www.tippingpoint.com/security/advisories/TSRT-07-01.html CVE Url:...

Microsoft Security Bulletin MS07-007 Vulnerability in Windows Image Acquisition Service Could Allow Elevation of Privilege &#40;927802&#41;

Microsoft Security Bulletin MS07-007 Vulnerability in Windows Image Acquisition Service Could Allow Elevation of Privilege 927802 Published: February 13, 2007 Version: 1.0 Summary Who Should Read this Document: Customers who use Microsoft Windows. Impact of Vulnerability: Elevation of Privilege...

DSquare Exploit Pack: D2SEC_MERCURY_LR

Name| d2secmercurylr ---|--- CVE| CVE-2007-0446 Exploit Pack| D2ExploitPack Description| HP Mercury LoadRunner 8.1 - Agent Stack Overflow Notes|...

Immunity Canvas: VSPLOIT_WINPROX

Name| vsploitwinprox ---|--- CVE| CVE-2007-0796 Exploit Pack| CANVAS Description| WINPROXY Notes| CVE Name: CVE-2007-0796 Repeatability: References: CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2007-0796 Date public: CVSS: 7.5...

Immunity Canvas: FLIP_INCLUDE

Name| flipinclude ---|--- CVE| CVE-2007-0785 Exploit Pack| CANVAS Description| Flip 2.01 = Remote File Include Notes| CVSS: 7.5 Repeatability: Infinite VENDOR: Small Axe Solutions CVE Url: https://vulners.com/cve/CVE-2007-0785 CVE Name: CVE-2007-0785...

Fedora Core 5 : ruby-1.8.5-1.fc5 (2006-1110)

Fri Oct 27 2006 Akira TAGOH - 1.8.5-1 - security fix release. - ruby-1.8.5-cgi-CVE-2006-5467.patch: fix a CGI multipart parsing bug that causes the denial of service. 212396 - backport fixes from devel. - fixed rbconfig.rb to refer to DESTDIR for sitearchdir. 207311 - updates to 1.8.5 - removed...

Fedora Core 5 : ruby-1.8.4-8.fc5 (2006-849)

Thu Jul 20 2006 Akira TAGOH - 1.8.4-8 - security fixes CVE-2006-3694 - ruby-1.8.4-fix-insecure-dir-operation.patch : - ruby-1.8.4-fix-insecure-regexp-modification.patch: fixed the insecure operations in the certain safe-level restrictions. 199538 - ruby-1.8.4-fix-alias-safe-level.patch: fixed to...

CVE-2006-6926

Buffer overflow in eXtremail 2.1 has unknown impact and attack vectors, as demonstrated by VulnDisco Pack. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2006-6926

CVE-2006-6926 describes a buffer overflow in eXtremail 2.1. The primary description explicitly states unknown impact and attack vectors, with details coming from third-party information (VulnDisco Pack). Connected sources corroborate a stack/buffer overflow scenario in eXtremail 2.1.x (and earlie...

Microsoft Outlook VEVENT记录远程代码执行漏洞（MS07-003）

Microsoft Outlook是Office套件所捆绑的邮件客户端。 Microsoft Outlook在处理畸形VEVENT记录时存在漏洞，远程攻击者可能利用此漏洞控制用户机器。 攻击可以通过处理包含畸形VEVENT记录的.ics（iCal）文件来利用此漏洞，如果用户使用管理用户权限登录，成功利用此漏洞的攻击者便可完全控制受影响的系统。攻击者可随后安装程序；查看、更改或删除数据；或者创建拥有完全用户权限的新帐户。那些帐户被配置为拥有较少系统用户权限的用户比具有管理用户权限的用户受到的影响要小。 Microsoft Outlook 2003 Microsoft Outlook 200...

Immunity Canvas: QT_RTSP

Name| qtrtsp ---|--- CVE| CVE-2007-0015 Exploit Pack| CANVAS Description| Apple QuickTime rtsp URL Handler Overflow Notes| CVE Name: CVE-2007-0015 VENDOR: Apple VersionsAffected: Repeatability: References: http://projects.info-pull.com/moab/MOAB-01-01-2007.html CVE Url:...

DSquare Exploit Pack: D2SEC_MS08_017

Name| d2secms08017 ---|--- CVE| CVE-2006-4695 Exploit Pack| D2ExploitPack Description| Microsoft Office Web Components ActiveX Stack Overflow Notes|...

IBM DB2 < 8.1 Fix Pack 14 Multiple Vulnerabilities

According to its version, the installation of IBM DB2 running on the remote host may crash when processing specially crafted SQLJRA packets because it attempts to dereference a NULL pointer in the sqledb2raasrecvrequest function. A remote attacker can send such packets without authentication to...

IBM DB2 < 8.1 Fix Pack 13 CONNECT Processing Unspecified DoS

According to its version, the installation of IBM DB2 running on the remote host may crash in certain scenarios, such as when a user connects using a specially crafted ACCSEC command during the handshake process. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc...

Immunity Canvas: LOCALLPC

Name| localLPC ---|--- CVE| CVE-2006-6696 Exploit Pack| CANVAS Description| LPC local MS07-021 Notes| CVE Name: CVE-2006-6696 VENDOR: Microsoft MSADV: MS07-021 CVSS: 6.9 CVE Url: https://vulners.com/cve/CVE-2006-6696 Notes: If you get FFFFFFF that means inetinfo died sorry,...

Immunity Canvas: MS06_074

Name| ms06074 ---|--- CVE| CVE-2006-5583 Exploit Pack| CANVAS Description| Microsoft SNMP Service Remote Arbitrary GlobalFree Notes| CVE Name: CVE-2006-5583 VENDOR: Microsoft Notes: SNMP service can be configured to restart automatically allowing more attempts VersionsAffected: Repeatability: One...