26 matches found
EUVD-2010-2264
Malware in sbrugna...
EUVD-2003-0136
Malware in sbrugna...
EUVD-2008-5024
Malware in sbrugna...
EUVD-2010-3103
Malware in sbrugna...
EUVD-2014-5948
Malware in sbrugna...
EUVD-2014-3642
Malware in sbrugna...
EUVD-2024-33584
Malicious code in bioql PyPI...
EUVD-2022-48306
Malicious code in bioql PyPI...
EUVD-2023-50529
Malicious code in bioql PyPI...
CVE-2024-48514
php-heic-to-jpg = 1.0.5 is vulnerable to code injection fixed in 1.0.6. An attacker who can upload heic images is able to execute code on the remote server via the file name. As a result, the CIA is no longer guaranteed. This affects php-heic-to-jpg 1.0.5 and below...
CVE-2022-45434
Some Dahua software products have a vulnerability of unauthenticated un-throttled ICMP requests on remote DSS Server. After bypassing the firewall access control policy, by sending a specific crafted packet to the vulnerable interface, an attacker could exploit the victim server to launch ICMP...
MGASA-2021-0525 Updated rsh packages fix security vulnerability
In NetKit through 0.17, rcp.c in the rcp client allows remote rsh servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side. This is similar to CVE-2018-20685. CVE-2019-7282 An issu...
CVE-2020-12062
The scp client in OpenSSH 8.2 incorrectly sends duplicate responses to the server upon a utimes system call failure, which allows a malicious unprivileged user on the remote server to overwrite arbitrary files in the client's download directory by creating a crafted subdirectory anywhere on the...
TeamSpeak Systems TeamSpeak Client Input Validation Error Vulnerability
TeamSpeak Systems TeamSpeak Client is a client application from TeamSpeak Systems, Germany, specifically designed as a voice over IP communication system for online gamers. TeamSpeak Systems TeamSpeak Client suffers from an input validation error vulnerability. An attacker could exploit this...
CVE-2015-8702
The DNS::GetResult function in dns.cpp in InspIRCd before 2.0.19 allows remote DNS servers to cause a denial of service netsplit via an invalid character in a PTR response, as demonstrated by a "\032" whitespace character in a hostname...
CVE-2012-6700
The decodesearch function in dhcp.c in dhcpcd 3.x does not properly free allocated memory, which allows remote DHCP servers to cause a denial of service via a crafted response...
CVE-2012-6699
The decodesearch function in dhcp.c in dhcpcd 3.x allows remote DHCP servers to cause a denial of service out-of-bounds read via a crafted response...
CVE-2010-2253
lwp-download in libwww-perl before 5.835 does not reject downloads to filenames that begin with a . dot character, which allows remote servers to create or overwrite files via 1 a 3xx redirect to a URL with a crafted filename or 2 a Content-Disposition header that suggests a crafted filename, and...
CJOverkill < 4.0.4 trade.php XSS
Binary data 2364.prm...
MAILsweeper Archive File Filtering Bypass
The remote host is running MAILsweeper - a content security solution for SMTP. According to its banner, the remote version of MAILsweeper may allow an attacker to bypass the archive filtering settings of the remote server by sending an archive in the format 7ZIP, ACE, ARC, BH, BZIP2, HAP, IMG, PA...