CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OpenVAS•added 2009/12/23 12:0 a.m.•24 views

IBM Db2 db2pd Denial Of Service Vulnerability - Windows

IBM Db2 and is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:db2"; ifdescriptio...

5CVSS6.3AI score0.02352EPSS

Exploits0References4

0day.today•added 2009/12/21 12:0 a.m.•24 views

3Com OfficeConnect Routers DoS (Content-Type)

Exploit for unknown platform in category dos / poc ============================================= 3Com OfficeConnect Routers DoS Content-Type ============================================= Title: 3Com OfficeConnect Routers DoS Content-Type CVE-ID: OSVDB-ID: Author: Alberto Ortega Published:...

7AI score

Exploit DB•added 2009/12/21 12:0 a.m.•33 views

3Com OfficeConnect Routers - 'Content-Type' Denial of Service

Model - Tested on 3Com OfficeConnect ADSL Wireless 11g Firewall Router 3CRWDR100A-72 and 3CRWDR100Y-72 Software Version - Tested on 2.06T13 Apr 2007, last version for these routers Attacker - Tested from GNU/Linux Sidux and Ubuntu and Windows 7 Exploit languaje - Ruby Type - Remote Denial of...

7.4AI score

RedHat Linux•added 2009/12/11 1:42 p.m.•3 views

OpenJDK JPEG Image Writer quantization problem (6862968)

The JPEG Image Writer in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to gain privileges via a crafted image file, related to a "quantization problem," aka Bug Id 6862968...

RedHat Linux•added 2009/12/08 2:56 a.m.•3 views

OpenJDK JPEG Image Writer quantization problem (6862968)

RubySec•added 2009/12/07 12:0 a.m.•20 views

jruby-openssl Gem for JRuby fails to do proper certificate validation

A security problem involving peer certificate verification was found where failed verification silently did nothing, making affected applications vulnerable to attackers. Attackers could lead a client application to believe that a secure connection to a rogue SSL server is legitimate. Attackers...

7.5CVSS3.9AI score0.006EPSS

Exploits0References1Affected Software1

ThreatPost•added 2009/12/01 11:8 p.m.•7 views

Black Screen of Death Not Related to Microsoft Patch

The mysterious black screen of death problem that some Windows users have been experiencing in the last few days turns out not to be related to the latest round of Microsoft patches after all. Microsoft spent several days investigating claims by security vendor PrevX that the company’s latest...

0.8AI score

Exploits0References3

ThreatPost•added 2009/12/01 9:21 p.m.•7 views

Mafiaboy, Botnets and You

The botnet problem has grown to epidemic proportions, and in this video Threatpost editor Dennis Fisher talks about the roots of the problem and how it evolved into one of the larger threats on the Web...

2.2AI score

Exploits0References1

Tenable Nessus•added 2009/11/30 12:0 a.m.•38 views

openSUSE Security Update : java-1_6_0-openjdk (java-1_6_0-openjdk-1613)

New icedtea update to fix : - ICCProfile file existence detection information leak; CVE-2009-3728: CVSS v2 Base Score: 5.0 - BMP parsing DoS with UNC ICC links; CVE-2009-3885: CVSS v2 Base Score: 5.0 - resurrected classloaders can still have children; CVE-2009-3881: CVSS v2 Base Score: 7.5 -...

9.3CVSS6.8AI score0.65461EPSS

Exploits13References17

UbuntuCve•added 2009/11/29 1:7 p.m.•20 views

CVE-2009-4024

Argument injection vulnerability in the ping function in Ping.php in the NetPing package before 2.4.5 for PEAR allows remote attackers to execute arbitrary shell commands via the host parameter. NOTE: this has also been reported as a shell metacharacter problem...

10CVSS6AI score0.06133EPSS

Exploits0References3

Prion•added 2009/11/29 1:7 p.m.•10 views

Design/Logic Flaw

10CVSS7.8AI score0.06133EPSS

Exploits0References13Affected Software1

RedHat Linux•added 2009/11/16 3:44 p.m.•3 views

OpenJDK JPEG Image Writer quantization problem (6862968)

RedHat Linux•added 2009/11/09 3:4 p.m.•3 views

OpenJDK JPEG Image Writer quantization problem (6862968)

Prion•added 2009/11/05 4:30 p.m.•16 views

Design/Logic Flaw

9.3CVSS6.7AI score0.04211EPSS

Exploits1References26Affected Software3

UbuntuCve•added 2009/11/05 12:0 a.m.•32 views

CVE-2009-3873

Oracle linux•added 2009/11/04 12:0 a.m.•92 views

kernel security and bug fix update

2.4.21-63.0.0.0.1.EL - add directio support for qla drivers herb ora 6346849 - support PT Quad card ora 5751043 - io to nfs partition hangs ora 5088963 - add entropy for bnx2 nic ora 5931647 - avoid large allocation-fragmentation in MTU zab - fix clear highpage wli 2.4.21-63.EL - fs: fix pipe nul...

7.8CVSS1.4AI score0.33491EPSS

Exploits22

seebug.org•added 2009/10/23 12:0 a.m.•12 views

proc File Descriptors Directory Permissions bypass

No description provided by source. Hi! This is forward from lkml, so no, I did not invent this hole. Unfortunately, I do not think lkml sees this as a security hole, so... Jamie Lokier said: a the current permission model under /proc/PID/fd has a security hole which Jamie is worried about I belie...

7.1AI score