CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1658 matches found

FreeBSD•added 2012/07/31 12:0 a.m.•28 views

Several vulnerabilities found in IcedTea-Web

The IcedTea project team reports: CVE-2012-3422: Use of uninitialized instance pointers An uninitialized pointer use flaw was found in IcedTea-Web web browser plugin. A malicious web page could use this flaw make IcedTea-Web browser plugin pass invalid pointer to a web browser. Depending on the...

7.5CVSS9.5AI score0.0278EPSS

Exploits1References1

Cvelist•added 2012/06/12 10:0 p.m.•28 views

CVE-2012-1855

Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly handle function pointers, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application aka XBAP or 2 a crafted .NET Framework application, aka ".NET Framework Memory Access Vulnerability...

7.3AI score0.50262EPSS

Exploits4References3

Positive Technologies•added 2012/06/12 12:0 a.m.•6 views

PT-2012-3599 · Microsoft · .Net Framework

Name of the Vulnerable Software and Affected Versions: Microsoft .NET Framework versions 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 Description: The issue allows remote attackers to execute arbitrary code via a crafted XAML browser application or a crafted .NET Framework application. This is due to the...

9.3CVSS7.5AI score0.50262EPSS

Exploits4References8

NVD•added 2012/05/04 4:55 p.m.•25 views

CVE-2012-1516

The VMX process in VMware ESXi 3.5 through 4.1 and ESX 3.5 through 4.1 does not properly handle RPC commands, which allows guest OS users to cause a denial of service memory overwrite and process crash or possibly execute arbitrary code on the host OS via vectors involving data pointers...

9.9CVSS9.7AI score0.01578EPSS

Exploits1References5

NVD•added 2012/05/04 4:55 p.m.•21 views

CVE-2012-1517

The VMX process in VMware ESXi 4.1 and ESX 4.1 does not properly handle RPC commands, which allows guest OS users to cause a denial of service memory overwrite and process crash or possibly execute arbitrary code on the host OS via vectors involving function pointers...

9CVSS9.7AI score0.02169EPSS

Exploits0References6

VMware•added 2012/03/15 12:0 a.m.•49 views

VMware View privilege escalation and cross-site scripting

a. VMware Virtual Desktop Display Driver Privilege EscalationThe VMware XPDM and WDDM display drivers contain buffer overflow vulnerabilities and the XPDM display driver does not properly check for NULL pointers. Exploitation of these issues may lead to local privilege escalation on View virtual...

7.2CVSS2.9AI score0.00295EPSS

Exploits0References4Affected Software1

VMware•added 2012/03/13 12:0 a.m.•68 views

VMSA-2012-0005:VMware vCenter Server, Orchestrator, Update Manager, vShield, vSphere Client, ESXi and ESX address several security issues

VMSA-2012-0005.4 VMware vCenter Server, Orchestrator, Update Manager, vShield, vSphere Client, Workstation, Player, ESXi and ESX address several security issues VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2012-0005.4 VMware Security Advisory Synopsis: VMware vCenter Server...

7.5CVSS7.7AI score0.23189EPSS

Exploits9References8Affected Software8

Zero Day Initiative•added 2012/02/08 12:0 a.m.•35 views

IBM Rational Rhapsody BBFlashBack.Recorder.1 TestCompatibilityRecordMode Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Rational Rhapsody. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within BB FlashBa...

9CVSS7.6AI score0.02089EPSS

Exploits0References1

Vulnerability Lab•added 2012/01/26 12:0 a.m.•40 views

HITB2011KUL - Post Memory Corruption Analysis

Document Title: =============== HITB2011KUL - Post Memory Corruption Analysis References: =========== Download: http://www.vulnerability-lab.com/resources/videos/398.wmv View: http://www.youtube.com/watch?v=kOgarD9KCbg Release Date: ============= 2012-01-26 Vulnerability Laboratory ID VL-ID:...

7.1AI score

Exploits0

seebug.org•added 2011/10/13 12:0 a.m.•43 views

Mozilla Firefox Array.reduceRight() Integer Overflow Exploit

No description provided by source. Title: Mozilla Firefox Array.reduceRight Integer Overflow Exploit Date: 12 Oct 2011 Author: Matteo Memelli ryujin -AT- offensive-security.com CVE-2011-2371 Full exploit package: http://www.exploit-db.com/sploits/17974.zip html head titleff-i-3-u/title /head body...

10CVSS0.1AI score0.86212EPSS

Exploits17

exploitpack•added 2011/10/12 12:0 a.m.•38 views

Mozilla Firefox - Array.reduceRight() Integer Overflow (1)

Mozilla Firefox - Array.reduceRight Integer Overflow 1 Title: Mozilla Firefox Array.reduceRight Integer Overflow Exploit Date: 12 Oct 2011 Author: Matteo Memelli ryujin -AT- offensive-security.com CVE-2011-2371 Full exploit package:...

10CVSS0.4AI score0.86212EPSS

Exploits17

Zero Day Initiative•added 2011/08/17 12:0 a.m.•34 views

Mozilla Firefox appendChild DOM Tree Inconsistency Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw results when .setUserData...

7.5CVSS4.7AI score0.04955EPSS

Exploits0References1

0day.today•added 2011/05/12 12:0 a.m.•20 views

Symantec Backup Exec System Recovery 8.5 - Kernel Pointers Dereferences

Exploit for windows platform in category dos / poc include include include include include / Program : Symantec Backup Exec System Recovery 8.5 - 0day Homepage : http://www.symantec.com Discovery : 2009/12/23 Author Contacted : 2011/04/01 - No reply Author Contacted : 2011/04/29 - No reply... aga...

7AI score

Exploits0

exploitpack•added 2011/05/12 12:0 a.m.•14 views

Symantec Backup Exec System Recovery 8.5 - Kernel Pointers Dereferences

Symantec Backup Exec System Recovery 8.5 - Kernel Pointers Dereferences include include include include include / Program : Symantec Backup Exec System Recovery 8.5 - 0day Homepage : http://www.symantec.com Discovery : 2009/12/23 Author Contacted : 2011/04/01 - No reply Author Contacted :...

0.6AI score

Exploits0

OpenVAS•added 2011/05/11 12:0 a.m.•45 views

Google Chrome multiple vulnerabilities - May11 (Linux)

The host is running Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnmay11lin.nasl 7044 2017-09-01 11:50:59Z teissa $ Google Chrome multiple vulnerabilities - May11 Linux Authors: Sooraj KS Copyright: Copyright c 2011 Greenbone Networks...

7.5CVSS0.7AI score0.0423EPSS

Exploits16References1

Prion•added 2011/05/03 10:55 p.m.•17 views

Design/Logic Flaw

Google Chrome before 11.0.696.57 does not properly handle PDF forms, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to "stale pointers."...

6.8CVSS7.8AI score0.00741EPSS

Exploits0References4Affected Software1

UbuntuCve•added 2011/05/03 10:55 p.m.•29 views

CVE-2011-1450

Google Chrome before 11.0.696.57 does not properly present file dialogs, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to "dangling pointers."...

5CVSS5.9AI score0.01494EPSS

Exploits0References2

Prion•added 2011/05/03 10:55 p.m.•16 views

Design/Logic Flaw

Google Chrome before 11.0.696.57 does not properly implement layering, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to "stale pointers."...

6.8CVSS7.8AI score0.00701EPSS

Exploits1References4Affected Software1

Prion•added 2011/05/03 10:55 p.m.•22 views

Design/Logic Flaw

5CVSS7.8AI score0.01494EPSS

Exploits0References4Affected Software1

Cvelist•added 2011/05/03 10:0 p.m.•22 views

CVE-2011-1443

7AI score0.00701EPSS

Exploits1References4

Rows per page