Lucene search
+L

7096 matches found

UbuntuCve
UbuntuCve
added 2007/07/17 12:30 a.m.38 views

CVE-2007-3806

The glob function in PHP 5.2.3 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an invalid value of the flags parameter, probably related to memory corruption or an invalid read on win32 platforms, and possibly related to lack of initializati...

6.8CVSS6.3AI score0.10744EPSS
Exploits1References1
NVD
NVD
added 2007/07/17 12:30 a.m.23 views

CVE-2007-3806

The glob function in PHP 5.2.3 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an invalid value of the flags parameter, probably related to memory corruption or an invalid read on win32 platforms, and possibly related to lack of initializati...

6.8CVSS7.7AI score0.10744EPSS
Exploits1References18
Cvelist
Cvelist
added 2007/07/17 12:0 a.m.38 views

CVE-2007-3806

The glob function in PHP 5.2.3 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an invalid value of the flags parameter, probably related to memory corruption or an invalid read on win32 platforms, and possibly related to lack of initializati...

7.5AI score0.10744EPSS
Exploits1References18
securityvulns
securityvulns
added 2007/07/03 12:0 a.m.53 views

High Risk Flaw in Sun's Java Web Start

John Heasman of NGSSoftware has discovered a high risk vulnerability in Sun Microsystem's Java Web Start that ships with the JRE and JDK on Windows platforms. The vulnerability affects the following version of Java Web Start: Java Web Start in JDK and JRE 5.0 Update 11 and earlier Java Web Start ...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2007/06/07 12:0 a.m.25 views

mydatebook-xsssql.txt

Application: My Datebook Web Sites: http://mealex.com/scripts.html http://www.theadminshop.com/ Versions: any no version numbers can be found Platform: linux, windows, freebsd, sun Bug: SQL Injection + XSS Severity: High since there is no need to authenticate. Fix Available: No...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2007/06/07 12:0 a.m.43 views

lightblog-xss.txt

Application: Light Blog Web Site: http://www.publicwarehouse.co.uk/phpscripts/lightblog.php Versions: 4.1 Platform: linux, windows, freebsd, sun Bug: Cross site Scripting XSS Fix Available: Yes fixed with the Same version number. download file now called LightBlog.zip instead of Light.zip Advisor...

7.4AI score
Exploits0
Symantec
Symantec
added 2007/05/24 8:0 a.m.17 views

Symantec Enterprise Security Manager Denial-of-Service

SUMMARY Symantec Enterprise Security Manager ESM is susceptible to a race condition that can lead to a denial-of-service. Risk Impact Medium Remote Access | Yes ---|--- Local Access | No Authentication Required | No Exploit publicly available | No AFFECTED PRODUCTS Vulnerable Products Only the...

1.1AI score
Exploits0Affected Software1
canvas
canvas
added 2007/05/14 5:19 p.m.48 views

Immunity Canvas: ASUS_SAMBA

Name| asussamba ---|--- CVE| CVE-2007-2446 Exploit Pack| CANVAS Description| SAMBA apilsalookupsids Notes| CVE Name: CVE-2007-2446 VENDOR: Samba Platforms Tested: ASUS EEE with SAMBA 3.24 Date public: 5/15/2007 CVE Url: https://vulners.com/cve/CVE-2007-2446 CVSS: 10.0...

10CVSS8.6AI score0.77806EPSS
Exploits23
RedHat Linux
RedHat Linux
added 2007/05/14 4:59 p.m.6 views

tomcat directory traversal

Directory traversal vulnerability in Apache HTTP Server and Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules modproxy, modrewrite, modjk, allows remote attackers to read arbitrary files via a .. dot dot sequence with combinations of 1 "/" slash, 2 "" backslash, and...

5CVSS6AI score0.90768EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2007/05/01 2:5 p.m.44 views

Low: Red Hat Security Advisory: cpio security and bug fix update

An updated cpio package that fixes a security issue and various bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. GNU cpio copies files into or out of a cpio or tar archive. A buffer overflow was found in cpio on 64-bit platform...

3.7CVSS6.3AI score0.00543EPSS
Exploits1References2
exploitpack
exploitpack
added 2007/04/23 12:0 a.m.10 views

Apple QuickTime 7.1.5 - QTJava toQTPointer() Java Handling Arbitrary Code Execution

Apple QuickTime 7.1.5 - QTJava toQTPointer Java Handling Arbitrary Code Execution source: https://www.securityfocus.com/bid/23608/info QuickTime is prone to a vulnerability that may aid in the remote compromise of a vulnerable computer. The issue occurs when a Java-enabled browser is used to view...

0.3AI score
Exploits0
RedHat Linux
RedHat Linux
added 2007/04/16 11:49 a.m.4 views

security flaw

The CUPS service on multiple platforms allows remote attackers to cause a denial of service service hang via a "partially-negotiated" SSL connection, which prevents other requests from being accepted...

5CVSS5.9AI score0.05321EPSS
Exploits0References4
securityvulns
securityvulns
added 2007/04/05 12:0 a.m.42 views

CYBSEC Pre-Advisory: SAP TRUSTED_SYSTEM_SECURITY RFC Function Information Disclosure

The following pre-advisory is also available in PDF format for download at: http://www.cybsec.com/vuln/CYBSEC-SecurityAdvisorySAPTRUSTEDSYSTEMSECURITYRFCFunctionInformationDisclosure.pdf CYBSEC S.A. www.cybsec.com Pre-Advisory Name: SAP TRUSTEDSYSTEMSECURITY RFC Function Information Disclosure...

Exploits0
ATTACKERKB
ATTACKERKB
added 2007/04/04 4:19 p.m.2 views

CVE-2007-1212

Buffer overflow in the Graphics Device Interface GDI in Microsoft Windows 2000 SP4; XP SP2; Server 2003 Gold, SP1, and SP2; and Vista allows local users to gain privileges via a crafted Enhanced Metafile EMF image format file...

6.6CVSS5.5AI score0.02129EPSS
Exploits0References7
Saint
Saint
added 2007/03/22 12:0 a.m.27 views

Mercury IMAP data continuation buffer overflow

Added: 03/22/2007 CVE: CVE-2007-1373 OSVDB: 33883 Background Mercury Mail Transport System is an e-mail server product for Windows and NetWare. Problem A buffer overflow vulnerability in the Mercury IMAP service when processing data continuation specifiers allows remote attackers to execute...

10CVSS7.8AI score0.58687EPSS
Exploits8
Debian CVE
Debian CVE
added 2007/03/13 9:0 p.m.37 views

CVE-2007-0720

The CUPS service on multiple platforms allows remote attackers to cause a denial of service service hang via a "partially-negotiated" SSL connection, which prevents other requests from being accepted...

5CVSS8.6AI score0.05321EPSS
Exploits0
securityvulns
securityvulns
added 2007/03/02 12:0 a.m.51 views

PHP zend_hash_init function infinite loop

Infinite loop on 64-bit platforms...

5CVSS1.4AI score0.18162EPSS
Exploits1References1Affected Software1
RedHat Linux
RedHat Linux
added 2007/02/19 9:8 p.m.43 views

Important: Red Hat Security Advisory: php security update

Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...

10CVSS6.4AI score0.11752EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2007/02/18 12:0 a.m.14 views

MDKA-2006:007 : festival

The festival program on x86 platforms crashes when the user attempts to use it. The updated packages are rebuilt against the correct libraries and correct this issue. %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disable...

7.2AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2007/01/17 12:0 a.m.27 views

Fedora Core 4 : libwmf-0.2.8.3-8.2 (2006-832)

CVE-2006-3376: fix minor side-effect on 64bit platforms Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

7.5CVSS6.3AI score0.07745EPSS
Exploits0References1
Rows per page
Query Builder