CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Zero Day Initiative•added 2015/07/01 12:0 a.m.•84 views

SQLite printf Format String Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SQLite. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the print...

5.1CVSS7AI score0.01759EPSS

Tenable Nessus•added 2015/05/27 12:0 a.m.•43 views

PostgreSQL 9.0 < 9.0.20 / 9.1 < 9.1.16 / 9.2 < 9.2.11 / 9.3 < 9.3.7 / 9.4 < 9.4.2 Multiple Vulnerabilities

The version of PostgreSQL installed on the remote host is 9.0.x prior to 9.0.20, 9.1.x prior to 9.1.16, 9.2.x prior to 9.2.11, 9.3.x prior to 9.3.7, or 9.4.x prior to 9.4.2. It is, therefore, affected by multiple vulnerabilities : - A double free memory error exists after authentication timeout,...

9.8CVSS8AI score0.08329EPSS

Exploits0References9

CNVD•added 2015/04/27 12:0 a.m.•1 views

SQLite Denial of Service Vulnerability (CNVD-2015-02748)

SQLite is an open source C-based embedded relational database management system developed by American software developer D. Richard Hipp. The system is characterized by independence, isolation, cross-platform and so on. A security vulnerability exists in the 'sqlite3VXPrintf' function in the...

7.5CVSS7.1AI score0.07717EPSS

OSV•added 2015/04/24 5:59 p.m.•1 views

DEBIAN-CVE-2015-3416

The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions, which allows context-dependent attackers to cause a denial of service integer overflow and stack-based buffer overflow or possibly have unspecifie...

7.5CVSS7.7AI score0.07717EPSS

OSV•added 2015/04/24 5:59 p.m.•22 views

CVE-2015-3416

8.2AI score

Exploits0References20

Cvelist•added 2015/04/24 5:0 p.m.•36 views

CVE-2015-3416

8.2AI score0.07717EPSS

Exploits0References16

OSV•added 2015/04/24 12:0 a.m.•0 views

UBUNTU-CVE-2015-3416

7.5CVSS7.1AI score0.07717EPSS

Exploits0References4

FreeBSD•added 2015/04/14 12:0 a.m.•47 views

sqlite -- multiple vulnerabilities

NVD reports: SQLite before 3.8.9 does not properly implement the dequoting of collation-sequence names, which allows context-dependent attackers to cause a denial of service uninitialized memory access and application crash or possibly have unspecified other impact via a crafted COLLATE clause, a...

7.5CVSS7.1AI score0.0794EPSS

Exploits0References4

Tenable Nessus•added 2015/04/09 12:0 a.m.•24 views

PHP 5.4.x < 5.4.29 / 5.5.x < 5.5.13 Multiple Vulnerabilities

Binary data 8679.prm...

5CVSS7.5AI score0.2611EPSS

Exploits0References6

PostrgeSql•added 2015/02/05 12:0 a.m.•566 views

Vulnerability in core server (CVE-2015-0242)

Buffer overrun in replacement printf family of functions...

8.8CVSS9.1AI score0.03211EPSS

Exploits0References1Affected Software1

Tenable Nessus•added 2014/11/08 12:0 a.m.•39 views

RHEL 6 : rhev-hypervisor6 (RHSA-2012:0531)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:0531 advisory. The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization Hypervisor ISO disk image. The Red Hat Enterprise Virtualization...

7.8CVSS7.9AI score0.10166EPSS

Exploits11References8

Exploit DB•added 2014/07/25 12:0 a.m.•19 views

Linux/x86 - Reverse TCP (127.1.1.1:1337/TCP) Shell Shellcode (74 bytes)

Linux/x86 - Reverse TCP 127.1.1.1:1337/TCP Shell Shellcode 74 bytes. Shellcode exploit for Linuxx86 platform / Title: Shell Reverse TCP Shellcode - 74 bytes Platform: Linux/x86 Date: 2014-07-25 Author: Julien Ahrens @MrTuxracer Website: http://www.rcesecurity.com Disassembly of section .text:...

seebug.org•added 2014/07/01 12:0 a.m.•12 views

Multiple BSD Distributions 'printf(3)' Memory Corruption Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/36885/info Multiple BSD distributions are prone to a memory-corruption vulnerability because the software fails to properly bounds-check data used as an array index. An attacker can exploit this issue to cause application...

seebug.org•added 2014/07/01 12:0 a.m.•22 views

OpenBSD 2.x fstat Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1746/info fstat is a program shipped with BSD unix variants that is used to list the open files on a system. It is installed sgid kmem so it can access information about open files from the kernel memory structures. A use...

seebug.org•added 2014/07/01 12:0 a.m.•30 views

Linux Kernel <= 2.6.9 / <= 2.4.28 - vc_resize int Local Overflow Exploit

No description provided by source. / vcresize int overflow Copyright Georgi Guninski Cannot be used in vulnerability databases / include stdio.h include stdlib.h include sys/types.h include sys/stat.h include fcntl.h include linux/vt.h include sys/vt.h include sys/ioctl.h include string.h include...

seebug.org•added 2014/07/01 12:0 a.m.•14 views

wu-ftpd 2.4.2/2.5 .0/2.6 .0 - Remote Format String Stack Overwrite (3)

No description provided by source. source: http://www.securityfocus.com/bid/1387/info Washington University ftp daemon wu-ftpd is a very popular unix ftp server shipped with many distributions of Linux and other UNIX operating systems. Wu-ftpd is vulnerable to a very serious remote attack in the...