CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

UbuntuCve•added 2010/11/05 5:0 p.m.•32 views

CVE-2010-3172

CRLF injection vulnerability in Bugzilla before 3.2.9, 3.4.x before 3.4.9, 3.6.x before 3.6.3, and 4.0.x before 4.0rc1, when Server Push is enabled in a web browser, allows remote attackers to inject arbitrary HTTP headers and content, and conduct HTTP response splitting attacks, via a crafted UR...

2.6CVSS6AI score0.01787EPSS

Exploits0References1

Exploit DB•added 2010/08/25 12:0 a.m.•39 views

bds/x86-bindshell on port 2525 shellcode - 167 bytes

bds/x86-bindshell on port 2525 shellcode - 167 bytes. Shellcode exploit for bsd platform / ================================================== bds/x86-bindshell on port 2525 shellcode 167 bytes ================================================== / / -------------- bds/x86-bindshell on port 2525 167...

0day.today•added 2010/04/23 12:0 a.m.•20 views

bds/x86 bindshell on port 2525 shellcode 167 bytes

Exploit for bsd/x86 platform in category shellcode ================================================== bds/x86-bindshell on port 2525 shellcode 167 bytes ================================================== / -------------- bds/x86-bindshell on port 2525 167 bytes ------------------------- AUTHOR :...

7AI score

NVD•added 2009/10/14 10:30 a.m.•28 views

CVE-2009-2999

The com.android.phone process in Android 1.5 CRBxx allows remote attackers to cause a denial of service application restart and network disconnection via an SMS message containing a malformed WAP Push message that triggers an ArrayIndexOutOfBoundsException exception, possibly a related issue to...

4.3CVSS6.6AI score0.01498EPSS

Prion•added 2009/10/14 10:30 a.m.•15 views

Design/Logic Flaw

4.3CVSS6.9AI score0.01498EPSS

Exploits1References5Affected Software1

Cvelist•added 2009/10/14 10:0 a.m.•29 views

CVE-2009-2999

6.6AI score0.01498EPSS

Packet Storm•added 2009/09/11 12:0 a.m.•40 views

WAP Push SI Impersonation

Security Advisory: Multiple Smartphones SMS Sender Obfuscation via WAP Push SI ------------------------------------------------------------------------------ Discovered by: Michael Mueller a.k.a. c0rnholio Contact: c0rnholio on domain netcologne.de Advisory Homepage:...

seebug.org•added 2009/07/20 12:0 a.m.•23 views

HTMLDOC html文件处理栈溢出漏洞

BUGTRAQ ID: 35727 HTMLDOC是用于将HTML文件和网页转换为适合在线查看和打印的索引HTML、PostScript和PDF文件的工具。 HTMLDOC的htmldoc/util.cxx文件中的sscanf和setpagesize函数存在栈溢出漏洞。如果用户受骗打开了包含有特制MEDIA SIZE标注的HTML文档的话，就可以触发这个溢出，导致执行任意指令。 Easy Software Products HTMLDOC 1.8.27 厂商补丁： Easy Software Products ----------------------...

6.9AI score

seebug.org•added 2009/02/23 12:0 a.m.•17 views

BSD/x86 - execve(/bin/sh) & setuid(0) - 29 bytes

No description provided by source. / BSD version FreeBSD, OpenBSD, NetBSD. [email protected] 29 bytes. -setuid0; -execve/bin/sh; / char shellcode= "\x31\xc0" // xor %eax,%eax "\x50" // push %eax "\xb0\x17" // mov $0x17,%al "\x50" // push %eax "\xcd\x80" // int $0x80 "\x50" // push %eax...

seebug.org•added 2009/02/21 12:0 a.m.•15 views

Linux/x86 - execve("/bin//sh/",["/bin//sh"],NULL)

No description provided by source. / revenge-execve.c, v1.0 2006/10/14 16:32 Yet another linux execve shellcode.. linux/x86 execve"/bin//sh/","/bin//sh",NULL shellcode http://www.0xcafebabe.it [email protected] But this time it's 22 bytes We could start the shellcode with a mov instead of pus...

seebug.org•added 2009/02/20 12:0 a.m.•7 views

Linux/x86 - Kill service apache2 + pure-ftpd + sshd - 81 bytes

No description provided by source. / Linux x86 | Kill Service - Apache2 - Pure-Ftpd - sshd Shellcode 81 bytes Auhtor: Jonathan Salwan js.rac.projet AT gmail.com Web: http://www.shell-storm.org Disassembly of section .text: 08048060 start: 8048060: 6a 0b push $0xb 8048062: 58 pop %eax 8048063: 99...

seebug.org•added 2009/02/05 12:0 a.m.•79 views

Linux x86 PUSH reboot()

No description provided by source. / Linux x86 PUSH reboot - 30 bytes Jonathan Salwan js.rac.projetATgmail.com Web: http://racprojet.zapto.org Disassembly of section .text: 08048054 .text: 8048054: 31 c0 xor %eax,%eax 8048056: 50 push %eax 8048057: 68 62 6f 6f 74 push $0x746f6f62 804805c: 68 6e 2...

Prion•added 2009/02/03 1:30 a.m.•16 views

Design/Logic Flaw

The Sony Ericsson W910i, W660i, K618i, K610i, Z610i, K810i, K660i, W880i, and K530i phones allow remote attackers to cause a denial of service device reboot or hang-up via a malformed WAP Push packet to 1 SMS or 2 UDP port 2948...

7.8CVSS7.3AI score0.0167EPSS

NVD•added 2009/02/03 1:30 a.m.•23 views

CVE-2009-0396

7.8CVSS6.7AI score0.0167EPSS

Cvelist•added 2009/02/03 1:0 a.m.•24 views

CVE-2009-0396

6.7AI score0.0167EPSS

CVE•added 2009/02/03 1:0 a.m.•51 views

CVE-2009-0396

CVE-2009-0396 affects multiple Sony Ericsson feature phones (W910i, W660i, K618i, K610i, Z610i, K810i, K660i, W880i, K530i). The vulnerability is triggered by a malformed WAP Push packet sent to (1) SMS or (2) UDP port 2948, allowing remote attackers to cause a denial of service (device reboot or...

7.8CVSS6.9AI score0.0167EPSS

Exploits0References5Affected Software9

securityvulns•added 2009/01/28 12:0 a.m.•26 views

SonyEricsson mobile phones WAP DoS

Crash on SMS or UDP/2948 WAP PUSH message handling...

0.8AI score

Exploits0References1

seebug.org•added 2009/01/19 12:0 a.m.•14 views

PHPAds 2.0 Multiple Remote Vulnerabilities

No description provided by source. Vendor: http://blondish.net Versions: PHPAds 2.0 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at http://www.push55.co.uk/advisories.php?id=8 ---- First, we need to acquire administrative access. We point our browser at...