Lucene search
K

8675 matches found

OpenVAS
OpenVAS
added 2009/11/04 12:0 a.m.22 views

Wireshark Multiple Denial Of Service Vulnerability (Nov 2009) - Linux

Wireshark is prone to multiple Denial of Service vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5CVSS6.4AI score0.02599EPSS
Exploits2References6
OpenVAS
OpenVAS
added 2009/11/04 12:0 a.m.46 views

Serv-U 'SITE SET TRANSFERPROGRESS ON' Command Remote Denial of Service Vulnerability

Serv-U is prone to a remote denial-of-service vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:serv-u:serv-u";...

5CVSS6.7AI score0.04013EPSS
Exploits0References2
Fedora
Fedora
added 2009/09/19 12:11 a.m.39 views

[SECURITY] Fedora 10 Update: bugzilla-3.2.5-1.fc10

Bugzilla is a popular bug tracking system used by multiple open source proj ects It requires a database engine installed - either MySQL, PostgreSQL or Oracl e. Without one of these database engines local or remote, Bugzilla will not work - see the Release Notes for details...

7.5CVSS1.7AI score0.01393EPSS
Exploits3
FreeBSD
FreeBSD
added 2009/09/18 12:0 a.m.14 views

fwbuilder -- security issue in temporary file handling

Firewall Builder release notes reports: Vadim Kurland [email protected] reports: Fwbuilder and libfwbuilder 3.0.4 through to 3.0.6 generate iptables scripts with a security issue when also used to generate static routing configurations...

3.3CVSS6.4AI score0.00358EPSS
Exploits0References1
securityvulns
securityvulns
added 2009/09/02 12:0 a.m.63 views

VMSA-2009-0011 VMware Studio 2.0 addresses a security issue in the public beta version of Studio 2.0

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ VMware Security Advisory Advisory ID: VMSA-2009-0011 Synopsis: VMware Studio 2.0 addresses a security issue in the public beta version of Studio 2.0 Issue date: 2009-08-31...

5CVSS6.3AI score0.01844EPSS
Exploits1
seebug.org
seebug.org
added 2009/09/02 12:0 a.m.53 views

VMware Studio虚拟应用设备WEB接口文件上传目录遍历漏洞

Bugraq ID: 36199 CVE ID:CVE-2009-2968 VMware Studio是一款用于开发,配置,定制虚拟应用程序和应用设备的解决方案。 VMware Studio支持的web接口组件不正确过滤用户输入,远程攻击者可以利用漏洞上传文件到VMware Studio虚拟应用设备上的任意目录中。 不过此漏洞不影响由 Studio 2.0 beta建立的虚拟机。 VMWare Studio 2.0 beta 用户可联系供应商获得相应产品的补丁或升级程序: VMware Studio 2.0 build 1017-185256...

5CVSS6.3AI score0.01844EPSS
Exploits1
Fedora
Fedora
added 2009/07/28 6:26 p.m.8 views

[SECURITY] Fedora 11 Update: bugzilla-3.2.4-1.fc11

Bugzilla is a popular bug tracking system used by multiple open source proj ects It requires a database engine installed - either MySQL, PostgreSQL or Oracl e. Without one of these database engines local or remote, Bugzilla will not work - see the Release Notes for details...

1.7AI score
Exploits0
RedHat Linux
RedHat Linux
added 2009/07/06 11:41 a.m.60 views

Important: Red Hat Security Advisory: JBoss Enterprise Application Platform 4.3.0.CP05 update

Updated JBoss Enterprise Application Platform JBEAP 4.3 packages that fix various issues are now available for Red Hat Enterprise Linux 5 as JBEAP 4.3.0.CP05. This update has been rated as having important security impact by the Red Hat Security Response Team. JBoss Enterprise Application Platfor...

5CVSS6.2AI score0.9444EPSS
Exploits6References6
OpenVAS
OpenVAS
added 2009/05/26 12:0 a.m.13 views

LimeSurvey Detection (HTTP)

Detection of LimeSurvey. The script sends a connection request to the server and attempts to detect LimeSurvey and its version. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.2AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.22 views

FreeBSD : mailman XSS in create script (429249d2-67a7-11d8-80e3-0020ed76ef5a)

From the 2.1.3 release notes : Closed a cross-site scripting exploit in the create cgi script. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2018 Jacques Vidrine and...

4.3CVSS6.1AI score0.0126EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2009/03/23 12:0 a.m.275 views

Debian DSA-1751-1 : xulrunner - several vulnerabilities

Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications, such as the Iceweasel web browser. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-0771 Martijn Wargers, Jesse Ruderman and Josh Soref...

10CVSS8.6AI score0.05789EPSS
Exploits1References13
CERT
CERT
added 2009/02/05 12:0 a.m.78 views

GoAhead WebServer information disclosure and authentication bypass vulnerabilities

Overview GoAhead WebServer contains vulnerabilities that may allow an attacker to view source files containing sensitive information or bypass authentication. The information disclosure vulnerability was previously published as VU975041. Description GoAhead WebServer contains vulnerabilities...

5CVSS6.4AI score0.13671EPSS
Exploits1References9
securityvulns
securityvulns
added 2008/12/10 12:0 a.m.58 views

[DSECRG-08-041] Stored XSS Vulnerability in Xoops 2.3.x

Digital Security Research Group DSecRG Advisory DSECRG-08-041 Application: XOOPS Versions Affected: 2.3.1, 2.3.2a Vendor URL: http://www.xoops.org/ Bug: Stored XSS Exploits: YES Reported: 10.11.2008 Vendor response: 10.11.2008 Solution: YES Date of Public Advisory: 08.12.2008 Authors: Digital...

6AI score
Exploits0
securityvulns
securityvulns
added 2008/12/10 12:0 a.m.55 views

[DSECRG-08-040] Multiple Local File Include Vulnerabilities in Xoops 2.3.x

Digital Security Research Group DSecRG Advisory DSECRG-08-040 Application: XOOPS Versions Affected: 2.3.1 Vendor URL: http://www.xoops.org/ Bug: Multiple Local File Include Exploits: YES Reported: 10.11.2008 Vendor response: 10.11.2008 Solution: YES Date of Public Advisory: 08.12.2008 Authors:...

6.9AI score
Exploits0
Packet Storm
Packet Storm
added 2008/12/09 12:0 a.m.38 views

XOOPS 2.3.1/2.3.2a Cross Site Scripting

Digital Security Research Group DSecRG Advisory DSECRG-08-041 Application: XOOPS Versions Affected: 2.3.1, 2.3.2a Vendor URL: http://www.xoops.org/ Bug: Stored XSS Exploits: YES Reported: 10.11.2008 Vendor response: 10.11.2008 Solution: YES Date of Public Advisory: 08.12.2008 Authors: Digital...

7.4AI score
Exploits0
FreeBSD
FreeBSD
added 2008/10/05 12:0 a.m.45 views

dovecot -- ACL plugin bypass vulnerabilities

Timo Sirainen reports in dovecot 1.1.4 release notes: ACL plugin fixes: Negative rights were actually treated as positive rights. 'k' right didn't prevent creating parent/child/child mailbox. ACL groups weren't working...

5CVSS6.5AI score0.01679EPSS
Exploits0
Packet Storm
Packet Storm
added 2008/08/18 12:0 a.m.22 views

freeway-lfixss.txt

┌┌─────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └─────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An Unimaginable...

7.4AI score
Exploits0
Atlassian
Atlassian
added 2008/07/03 4:7 p.m.14 views

Do not release details about securrity vulnerabilities until after the fix was available for a reasonable period of time

It is an unfortunate practice at Atlassian to as a part of release notes release all the information, often including example exploits|http://jira.atlassian.com/browse/CONF-9350, about security vulnerabilities that were fixed in the version being released. This gives us great headaches because: w...

1.8AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2008/07/03 4:7 p.m.15 views

Do not release details about securrity vulnerabilities until after the fix was available for a reasonable period of time

It is an unfortunate practice at Atlassian to as a part of release notes release all the information, often including example exploits|http://jira.atlassian.com/browse/CONF-9350, about security vulnerabilities that were fixed in the version being released. This gives us great headaches because: w...

1.8AI score
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2008/02/14 12:0 a.m.33 views

Fedora 8 : xine-lib-1.1.10.1-1.fc8 (2008-1543)

Fri Feb 8 2008 Ville Skytta - 1.1.10.1-1 - 1.1.10.1 security update, 431541. Sun Jan 27 2008 Ville Skytta - 1.1.10-2 - Include spu, spucc, and spucmml decoders 213597. Upstream release notes: http://sourceforge.net/project/shownotes.php?groupid=96 55&releaseid=574735 Note that Tenable Network...

7.5CVSS5.3AI score0.0537EPSS
Exploits2References4
Rows per page
Query Builder