CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

0day.today•added 2012/08/29 12:0 a.m.•16 views

ActFax 4.31 Local Privilege Escalation Exploit

Exploit for windows platform in category local exploits !/usr/bin/python Title: ActFax 4.31 Local Privilege Escalation Exploit Author: Craig Freyman @cd1zz Discovered: July 10, 2012 Vendor Notified: June 12, 2012 Description: http://www.pwnag3.com/2012/08/actfax-local-privilege-escalation.html...

6.8AI score

Nmap•added 2012/08/05 6:55 p.m.•185 views

bjnp-discover NSE Script

Retrieves printer or scanner information from a remote device supporting the BJNP protocol. The protocol is known to be supported by network based Canon devices. Example Usage sudo nmap -sU -p 8611,8612 --script bjnp-discover Script Output PORT STATE SERVICE 8611/udp open canon-bjnp1 |...

10CVSS9.2AI score0.99448EPSS

Nmap•added 2012/08/04 6:44 p.m.•154 views

smb-print-text NSE Script

Attempts to print text on a shared printer by calling Print Spooler Service RPC functions. In order to use the script, at least one printer needs to be shared over SMB. If no printer is specified, script tries to enumerate existing ones by calling LANMAN API which might not be always available...

10CVSS0.99448EPSS

Tenable Nessus•added 2012/08/01 12:0 a.m.•24 views

Scientific Linux Security Update : foomatic on SL4.x, SL5.x i386/x86_64

Foomatic is a comprehensive, spooler-independent database of printers, printer drivers, and driver descriptions. The package also includes spooler-independent command line interfaces to manipulate queues and to print files and manipulate print jobs. foomatic-rip is a print filter written in Perl...

6.8CVSS7.5AI score0.10795EPSS

Exploits1References2

Tenable Nessus•added 2012/08/01 12:0 a.m.•30 views

Scientific Linux Security Update : ghostscript on SL3.x, SL4.x, SL5.x i386/x86_64

Chris Evans from the Google Security Team reported a stack-based buffer overflow flaw in Ghostscript's zseticcspace function. An attacker could create a malicious PostScript file that would cause Ghostscript to execute arbitrary code when opened. CVE-2008-0411 These updated packages also fix a bu...

6.8CVSS6AI score0.14409EPSS

Exploits1References2

Tenable Nessus•added 2012/08/01 12:0 a.m.•23 views

Scientific Linux Security Update : system-config-printer on SL4.x, SL5.x i386/x86_64

system-config-printer is a print queue configuration tool with a graphical user interface. It was found that system-config-printer did not properly sanitize NetBIOS and workgroup names when searching for network printers. A remote attacker could use this flaw to execute arbitrary code with the...

5.1CVSS5.9AI score0.01967EPSS

Nmap•added 2012/07/30 9:48 a.m.•1307 views

smb-vuln-ms10-061 NSE Script

Tests whether target machines are vulnerable to ms10-061 Printer Spooler impersonation vulnerability. This vulnerability was used in Stuxnet worm. The script checks for the vuln in a safe way without a possibility of crashing the remote system as this is not a memory corruption vulnerability. In...

10CVSS9.4AI score0.99448EPSS

Exploits37

OpenVAS•added 2012/07/30 12:0 a.m.•24 views

CentOS Update for system-config-printer CESA-2011:1196 centos4 x86_64

Check for the Version of system-config-printer OpenVAS Vulnerability Test CentOS Update for system-config-printer CESA-2011:1196 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

5.1CVSS6.4AI score0.01967EPSS

OpenVAS•added 2012/07/30 12:0 a.m.•20 views

CentOS Update for system-config-printer CESA-2011:1196 centos4 x86_64

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5.1CVSS5.2AI score0.01967EPSS

OpenVAS•added 2012/07/30 12:0 a.m.•23 views

CentOS Update for system-config-printer CESA-2011:1196 centos5 x86_64

5.1CVSS5.2AI score0.01967EPSS

OpenVAS•added 2012/07/30 12:0 a.m.•29 views

CentOS Update for system-config-printer CESA-2011:1196 centos5 x86_64

Check for the Version of system-config-printer OpenVAS Vulnerability Test CentOS Update for system-config-printer CESA-2011:1196 centos5 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

5.1CVSS6.4AI score0.01967EPSS

OpenVAS•added 2012/07/09 12:0 a.m.•21 views

RedHat Update for cups RHSA-2011:1635-03

5.1CVSS7.8AI score0.12709EPSS

The Hacker News•added 2012/06/22 1:43 p.m.•11 views

Trojan.Milicenso Print Bomb - Printer Trojan cause massive printing

Trojan.Milicenso - Printer Trojan cause massive printing A Trojan that sends printers crazy, making them print pages of garbled nonsense until all the paper has been used up, has seen a spike in activity.Symantec detected the Trojan.Milicenso across various countries, but the worst hit regions...

6.8AI score

Fedora•added 2012/06/07 11:8 p.m.•42 views

[SECURITY] Fedora 17 Update: groff-1.21-9.fc17

Groff is a document formatting system. Groff takes standard text and formatting commands as input and produces formatted output. The created documents can be shown on a display or printed on a printer. Groff's formatting commands allow you to specify font type and size, bold type, italic type, th...

3.3CVSS1.1AI score0.00373EPSS

Fedora•added 2012/06/07 11:1 p.m.•33 views

[SECURITY] Fedora 15 Update: groff-1.21-4.fc15

3.3CVSS1.1AI score0.00373EPSS

Check Point Advisories•added 2012/05/10 12:0 a.m.•3 views

HP Easy Printer Care ActiveX Control Directory Traversal (CVE-2011-4786)

A directory traversal vulnerability has been reported in HP Easy Printer Care. The vulnerability is due to a lack of sanitization in the HPESPRIT.XMLCacheMgr.1 ActiveX control. A remote attacker can exploit this vulnerability by enticing a target user to visit a specially crafted web-page...

9.3CVSS7.1AI score0.41132EPSS

Exploits9

Nmap•added 2012/05/01 2:23 p.m.•139 views

cups-queue-info NSE Script

Lists currently queued print jobs of the remote CUPS service grouped by printer. Script Arguments slaxml.debug See the documentation for the slaxml library. http.host, http.max-body-size, http.max-cache-size, http.max-pipeline, http.pipeline, http.truncated-ok, http.useragent See the documentatio...

10CVSS9.4AI score0.99448EPSS

Nmap•added 2012/04/17 7:37 p.m.•270 views

cups-info NSE Script

Lists printers managed by the CUPS printing service. Script Arguments slaxml.debug See the documentation for the slaxml library. http.host, http.max-body-size, http.max-cache-size, http.max-pipeline, http.pipeline, http.truncated-ok, http.useragent See the documentation for the http library...

10CVSS0.99448EPSS