CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4972 matches found

Tenable Nessus•added 2008/06/09 12:0 a.m.•36 views

VMware VIX API Multiple Buffer Overflow Vulnerabilities

VMware VIX, an application programming interface to manipulate virtual machines is installed on the remote host. The installed version of VMware VIX API is affected by multiple buffer overflow vulnerabilities. Successful exploitation of these issues could allow arbitrary code execution on the hos...

7.2CVSS9.2AI score0.00153EPSS

Exploits0References2

Check Point Advisories•added 2008/05/29 12:0 a.m.•3 views

Microsoft Windows Speech Components sapi.dll Code Execution (MS08-032; CVE-2007-0675)

The ActiveX Speech Components sapi.dll is part of the Microsoft Speech Application Programming Interface SAPI that allows the use of speech recognition and speech synthesis within Windows applications. A remote code execution vulnerability has been reported in the ActiveX Speech Components...

7.6CVSS7.1AI score0.41573EPSS

Exploits1

securityvulns•added 2008/05/29 12:0 a.m.•93 views

CERT-FI Vulnerability Advisory on OpenSSL

CERT-FI Vulnerability Advisory on OpenSSL Version Information Advisory Reference FICORA 130450 Release Date 28 May 2008 10:30 UTC Last Revision 28 May 2008 Version Number 1.1 Acknowledgement Vulnerabilities were discovered by Ossi Herrala and Jukka Taimisto from the CROSS project at Codenomicon...

0.3AI score

Exploits0

OpenVAS•added 2008/05/27 12:0 a.m.•13 views

Debian: Security Advisory (DSA-1580-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.2AI score0.01098EPSS

Exploits0References3

Tenable Nessus•added 2008/05/22 12:0 a.m.•17 views

Debian DSA-1580-1 : phpgedview - programming error

It was discovered that phpGedView, an application to provide online access to genealogical data, allowed remote attackers to gain administrator privileges due to a programming error. Note: this problem was a fundamental design flaw in the interface API to connect phpGedView with external programs...

10CVSS5.6AI score0.01098EPSS

Exploits0References2

Debian•added 2008/05/20 11:55 a.m.•17 views

[SECURITY] [DSA 1580-1] New phpgedview packages fix privilege escalation

------------------------------------------------------------------------ Debian Security Advisory DSA-1580-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst May 20, 2008 http://www.debian.org/security/faq -...

10CVSS6.5AI score0.01098EPSS

Exploits0

securityvulns•added 2008/05/20 12:0 a.m.•48 views

[SECURITY] [DSA 1580-1] New phpgedview packages fix privilege escalation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1580-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst May 20, 2008 http://www.debian.org/security/faq -...

10CVSS1.1AI score0.01098EPSS

Exploits0

securityvulns•added 2008/05/20 12:0 a.m.•40 views

Smeego CMS vulnerability

Smeego CMS Local File Include Exploit by 0in from Dark-Coders Programming & Security Group http://dark-coders.4rh.eu -------------------------------------------------------- Contact: 0indotemailatgmaildotcom -------------------------------------------------------- Greetings to:...

Exploits0

OSV•added 2008/05/20 12:0 a.m.•16 views

DSA-1580-1 phpgedview - privilege escalation

Bulletin has no description...

10CVSS6.7AI score0.01098EPSS

Exploits0

seebug.org•added 2008/05/18 12:0 a.m.•24 views

Smeego 1.0 (Cookie lang) Local File Inclusion Exploit

No description provided by source. Smeego CMS Local File Include Exploit by 0in from Dark-Coders Programming & Security Group http://dark-coders.4rh.eu -------------------------------------------------------- Contact: 0indotemailatgmaildotcom ------------------------------------------------------...

7.1AI score

Exploits0

0day.today•added 2008/05/17 12:0 a.m.•15 views

Smeego 1.0 (Cookie lang) Local File Inclusion Exploit

Exploit for unknown platform in category web applications ===================================================== Smeego 1.0 Cookie lang Local File Inclusion Exploit ===================================================== Smeego CMS Local File Include Exploit by 0in from Dark-Coders Programming &...

7.1AI score

Exploits0

Packet Storm•added 2008/05/08 12:0 a.m.•14 views

galleristic-sql.txt

/', $request$i, $response; if!empty$response1 return $response1 . ''; Usage : Run in a browser as : http://yourbox/exploit.php?target=http://targetbox/path/ ifempty$GET'target' die'No target site specified!'; else for$c = 1; $c...

7.4AI score

Exploits0

Debian•added 2008/05/02 3:0 p.m.•30 views

[SECURITY] [DSA 1566-1] New cpio packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-1566-1 [email protected] http://www.debian.org/security/ Steve Kemp May 02, 2008 http://www.debian.org/security/faq - ------------------------------------------------------------------------...

7.5CVSS7.1AI score0.12223EPSS

Exploits2

Tenable Nessus•added 2008/05/01 12:0 a.m.•28 views

Debian DSA-1562-1 : iceape - programming error

It was discovered that crashes in the JavaScript engine of Iceape, an unbranded version of the SeaMonkey internet suite could potentially lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

9.3CVSS5.8AI score0.17011EPSS

Exploits1References2

Tenable Nessus•added 2008/05/01 12:0 a.m.•10 views

Debian DSA-1561-1 : ldm - programming error

Christian Herzog discovered that within the Linux Terminal Server Project, it was possible to connect to X on any LTSP client from any host on the network, making client windows and keystrokes visible to that host. NOTE: most ldm installs are likely to be in a chroot environment exported over NFS...

4.8CVSS5.4AI score0.00839EPSS

Exploits0References3

Debian•added 2008/04/30 5:41 p.m.•30 views

[SECURITY] [DSA 1563-1] New asterisk packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-1563-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 30, 2008 http://www.debian.org/security/faq -...

4.3CVSS6.1AI score0.03049EPSS

Exploits1

Fedora•added 2008/04/29 8:59 p.m.•29 views

[SECURITY] Fedora 7 Update: perl-5.8.8-29.fc7

Perl is a high-level programming language with roots in C, sed, awk and shell scripting. Perl is good at handling processes and files, and is especially good at handling text. Perl's hallmarks are practicality and efficiency. While it is used to do a lot of different things, Perl's most common...

7.5CVSS0.4AI score0.08802EPSS

Exploits2

Fedora•added 2008/04/29 8:58 p.m.•21 views

[SECURITY] Fedora 8 Update: perl-5.8.8-39.fc8

7.5CVSS0.4AI score0.08802EPSS

Exploits2

securityvulns•added 2008/04/28 12:0 a.m.•33 views

[SECURITY] [DSA 1561-1] New ldm packages fix information disclosure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1561-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst April 28, 2008 http://www.debian.org/security/faq -...

4.8CVSS0.3AI score0.00839EPSS

Exploits0

Tenable Nessus•added 2008/04/28 12:0 a.m.•24 views

Debian DSA-1558-1 : xulrunner - programming error

It was discovered that crashes in the JavaScript engine of xulrunner, the Gecko engine library, could potentially lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Securit...

9.3CVSS5.5AI score0.17011EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by