Lucene search
+L

3722 matches found

F5 Networks
F5 Networks
added 2014/06/06 12:0 a.m.37 views

SOL15310 - Data Manager SQL Injection Remote Code Execution vulnerability CVE-2014-2949

Vulnerability Recommended Actions To mitigate this vulnerability, you can stop the Data Manager Service when not in use. To do so, perform the following procedure: Impact of action: Performing the following procedure should not have a negative impact on your system. 1. Log in as admin to Data...

6.5CVSS1.4AI score0.01421EPSS
Exploits0References5
NVD
NVD
added 2014/05/30 11:55 p.m.24 views

CVE-2013-6744

The Stored Procedure infrastructure in IBM DB2 9.5, 9.7 before FP9a, 10.1 before FP3a, and 10.5 before FP3a on Windows allows remote authenticated users to gain privileges by leveraging the CONNECT privilege and the CREATEEXTERNALROUTINE authority...

8.5CVSS6.1AI score0.02726EPSS
Exploits0References8
Prion
Prion
added 2014/05/30 11:55 p.m.15 views

Design/Logic Flaw

The Stored Procedure infrastructure in IBM DB2 9.5, 9.7 before FP9a, 10.1 before FP3a, and 10.5 before FP3a on Windows allows remote authenticated users to gain privileges by leveraging the CONNECT privilege and the CREATEEXTERNALROUTINE authority...

8.5CVSS6.7AI score0.02726EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2014/05/30 11:0 p.m.22 views

CVE-2013-6744

The Stored Procedure infrastructure in IBM DB2 9.5, 9.7 before FP9a, 10.1 before FP3a, and 10.5 before FP3a on Windows allows remote authenticated users to gain privileges by leveraging the CONNECT privilege and the CREATEEXTERNALROUTINE authority...

6.1AI score0.02726EPSS
Exploits0References8
OSV
OSV
added 2014/04/14 3:9 p.m.8 views

CVE-2014-0159

Buffer overflow in the GetStatistics64 remote procedure call RPC in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service crash via a crafted statsVersion argument...

6.5AI score
Exploits0References9
RedHat Linux
RedHat Linux
added 2014/04/14 1:46 p.m.5 views

hadoop: man-in-the-middle vulnerability

The RPC protocol implementation in Apache Hadoop 2.x before 2.0.6-alpha, 0.23.x before 0.23.9, and 1.x before 1.2.1, when the Kerberos security features are enabled, allows man-in-the-middle attackers to disable bidirectional authentication and obtain sensitive information by forcing a downgrade ...

3.2CVSS5.8AI score0.01069EPSS
Exploits0References4
Hacker One
Hacker One
added 2014/04/10 3:51 p.m.22 views

Faceless: Blocking yourself

I dont know if it's eligible but it is a bug that you can block your self in Faceless. Procedure: I made a post then I comment in that post then I hold the comment I made and there's a new window prompted and I block myself and another prompt saying that "You will no longer recieve messages from...

1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/04/10 12:0 a.m.35 views

Scientific Linux Security Update : openafs on SL5.x, SL6.x i386/x86_64 (20140411)

An attacker with the ability to connect to an OpenAFS fileserver can trigger a buffer overflow, crashing the server. The GetStatistics64 remote procedure call RPC was introduced in OpenAFS 1.4.8 as part of the support for fileserver partitions larger than 2 TiB. The GetStatistics64 RPC is used by...

5CVSS5.8AI score0.02179EPSS
Exploits1References2
Packet Storm
Packet Storm
added 2014/02/11 12:0 a.m.54 views

Windows TrackPopupMenuEx Win32k NULL Page

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/post/windows/reflectivedllinjection' require 'rex' class Metasploit3 'Windows TrackPopupMenuEx Win32k NULL Page', 'Description' = %q...

7.2CVSS0.4AI score0.14835EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2014/01/28 12:0 a.m.21 views

Cisco TelePresence System Software Command Execution

According to the self-reported device name of the remote device, it may be a Cisco TelePresence System device. Nessus cannot determine the version of the software running on this device, but it may be affected by a vulnerability that could allow an unauthorized user to execute arbitrary commands...

8.3CVSS5.6AI score0.02303EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/01/27 12:0 a.m.18 views

Solaris 9 (x86) : 150507-01

Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite subcomponent: Remote Procedure Call RPC. Supported versions that are affected are 8, 9, 10 and 11.1. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can...

4.6CVSS5.4AI score0.00442EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/01/27 12:0 a.m.20 views

Solaris 8 (x86) : 150509-01

Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite subcomponent: Remote Procedure Call RPC. Supported versions that are affected are 8, 9, 10 and 11.1. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can...

4.6CVSS5.4AI score0.00442EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/01/15 12:0 a.m.32 views

MySQL 5.6.x < 5.6.14 Multiple Vulnerabilities

The version of MySQL installed on the remote host is 5.6.x older than 5.6.14. As such, it is reportedly affected by vulnerabilities in the following components : - FTS - InnoDB - Locking - Optimizer - Partition - Performance Schema - Stored Procedure - Thread Pooling C Tenable Network Security,...

6.8CVSS6.2AI score0.03786EPSS
Exploits0References11
Check Point Advisories
Check Point Advisories
added 2014/01/07 12:0 a.m.19 views

CA BrightStor ARCserve Backup Media Server SUN-RPC Procedure Code Execution - Ver2 (CVE-2007-1785)

Computer Associates BrightStor ARCserve Backup products offer data protection for distributed servers, clients, databases and applications. They provide centralized control over a series of distributed operations including Backup and Restore, Data Migration, and Threat Management. There exists a...

7.1CVSS8AI score0.15352EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2014/01/06 6:32 p.m.4 views

samba: Heap-based buffer overflow due to incorrect DCE-RPC fragment length field check

Heap-based buffer overflow in the dcerpcreadncacnpacketdone function in librpc/rpc/dcerpcutil.c in winbindd in Samba 3.x before 3.6.22, 4.0.x before 4.0.13, and 4.1.x before 4.1.3 allows remote AD domain controllers to execute arbitrary code via an invalid fragment length in a DCE-RPC packet...

8.3CVSS7.8AI score0.02748EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2013/12/11 12:0 a.m.35 views

Microsoft Windows Local Procedure Call Local Privilege Escalation Vulnerability (2898715)

This host is missing an important security update according to Microsoft Bulletin MS13-102. OpenVAS Vulnerability Test $Id: secpodms13-102.nasl 6115 2017-05-12 09:03:25Z teissa $ Microsoft Windows Local Procedure Call Local Privilege Escalation Vulnerability 2898715 Authors: Antu Sanadi Copyright...

6.9CVSS0.7AI score0.01743EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2013/12/11 12:0 a.m.25 views

Microsoft Windows Local Procedure Call Local Privilege Escalation Vulnerability (2898715)

This host is missing an important security update according to Microsoft Bulletin MS13-102. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

6.9CVSS5AI score0.01743EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2013/12/10 12:15 a.m.9 views

samba: Heap-based buffer overflow due to incorrect DCE-RPC fragment length field check

Heap-based buffer overflow in the dcerpcreadncacnpacketdone function in librpc/rpc/dcerpcutil.c in winbindd in Samba 3.x before 3.6.22, 4.0.x before 4.0.13, and 4.1.x before 4.1.3 allows remote AD domain controllers to execute arbitrary code via an invalid fragment length in a DCE-RPC packet...

8.3CVSS7.8AI score0.02748EPSS
Exploits0References4
Symantec
Symantec
added 2013/12/10 12:0 a.m.33 views

Microsoft Windows Local Procedure Call CVE-2013-3878 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that affects the Local Procedure Call LPC component. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Successful exploits will result in the complete compromise of...

6.9CVSS1.2AI score0.01743EPSS
Exploits0Affected Software5
OSV
OSV
added 2013/12/09 12:0 a.m.4 views

UBUNTU-CVE-2013-4408

Heap-based buffer overflow in the dcerpcreadncacnpacketdone function in librpc/rpc/dcerpcutil.c in winbindd in Samba 3.x before 3.6.22, 4.0.x before 4.0.13, and 4.1.x before 4.1.3 allows remote AD domain controllers to execute arbitrary code via an invalid fragment length in a DCE-RPC packet...

8.3CVSS7.7AI score0.02748EPSS
Exploits0References4
Rows per page
Query Builder