Lucene search
K

34 matches found

Saint
Saint
added 2018/05/18 12:0 a.m.615 views

Red Hat DHCP client NetworkManager integration script command injection

Added: 05/18/2018 CVE: CVE-2018-1111 BID: 104195 Background The DHCP client on Red Hat Enterprise Linux includes a script which provides integration with the NetworkManager subsystem. Problem A command injection vulnerability in the NetworkManager integration script could allow arbitrary command...

7.9CVSS7.9AI score0.94457EPSS
Exploits14
Saint
Saint
added 2018/05/18 12:0 a.m.600 views

Red Hat DHCP client NetworkManager integration script command injection

Added: 05/18/2018 CVE: CVE-2018-1111 BID: 104195 Background The DHCP client on Red Hat Enterprise Linux includes a script which provides integration with the NetworkManager subsystem. Problem A command injection vulnerability in the NetworkManager integration script could allow arbitrary command...

7.9CVSS7.9AI score0.94457EPSS
Exploits14
Saint
Saint
added 2015/03/30 12:0 a.m.39 views

TWiki View Script debugenableplugins Request Parameter Vulnerability

Added: 03/30/2015 CVE: CVE-2014-7236 BID: 70372 OSVDB: 112977 Background TWiki is a web-based collaboration platform written in PERL. Problem The TWiki view script does not properly sanitize the debugenableplugins parameter before using it. Resolution Upgrade to TWiki-6.0.1 or higher, or apply th...

9.1CVSS9.1AI score0.55637EPSS
Exploits12
Saint
Saint
added 2014/09/16 12:0 a.m.27 views

ALCASAR index.php Crafted HTTP host Header Vulnerability

Added: 09/16/2014 BID: 69662 OSVDB: 111026 Background ALCASAR is a free Network Access Controller that allows network managers to restrict Internet service access to authenticated users. ALCASAR allows control and logging of all network activity by users and/or defined user groups. Problem ALCASA...

8.1AI score
Exploits0
Saint
Saint
added 2013/07/05 12:0 a.m.33 views

Novell iPrint Client IPP Response URI handling buffer overflow

Added: 07/05/2013 CVE: CVE-2013-1091 BID: 59612 OSVDB: 92938 Background Novell iPrint is an application which allows users to install and manage printers. Novell iPrint installs the Novell iPrint Control ActiveX control named ienipp.ocx. Problem A buffer overflow vulnerability within the handling...

10CVSS7AI score0.06227EPSS
Exploits4
Saint
Saint
added 2011/11/25 12:0 a.m.33 views

Wireshark Lua Untrusted Search Path vulnerability

Added: 11/25/2011 CVE: CVE-2011-3360 BID: 49528 OSVDB: 75347 Background Wireshark is a network packet analyzer. Problem A vulnerability in Wireshark allows execution of arbitrary Lua scripts placed in untrusted directories which are included in Wireshark's search path. Resolution Upgrade to...

9.3CVSS7.6AI score0.35528EPSS
Exploits9
Saint
Saint
added 2011/10/19 12:0 a.m.43 views

Wireshark DECT Dissector Remote Stack Buffer Overflow

Added: 10/19/2011 CVE: CVE-2011-1591 BID: 47392 OSVDB: 71848 Background Wireshark is a network packet analyzer. Problem A buffer overflow vulnerability in the DECT dissector allows command execution when a user sends a specially crafted datagram over a network which is being analyzed by Wireshark...

9.3CVSS7.7AI score0.41744EPSS
Exploits18
Saint
Saint
added 2011/10/19 12:0 a.m.34 views

Wireshark DECT Dissector Remote Stack Buffer Overflow

Added: 10/19/2011 CVE: CVE-2011-1591 BID: 47392 OSVDB: 71848 Background Wireshark is a network packet analyzer. Problem A buffer overflow vulnerability in the DECT dissector allows command execution when a user sends a specially crafted datagram over a network which is being analyzed by Wireshark...

9.3CVSS7.7AI score0.41744EPSS
Exploits18
Saint
Saint
added 2010/09/17 12:0 a.m.48 views

Adobe Reader CoolType.dll buffer overflow

Added: 09/17/2010 CVE: CVE-2010-2883 BID: 43057 OSVDB: 67849 Background Adobe Reader is free software for viewing PDF documents. Problem A buffer overflow in the CoolType.dll module allows command execution when a user opens a PDF document containing a long, specially crafted field in a SING tabl...

9.3CVSS7.7AI score0.82485EPSS
Exploits13
Saint
Saint
added 2010/09/17 12:0 a.m.47 views

Adobe Reader CoolType.dll buffer overflow

Added: 09/17/2010 CVE: CVE-2010-2883 BID: 43057 OSVDB: 67849 Background Adobe Reader is free software for viewing PDF documents. Problem A buffer overflow in the CoolType.dll module allows command execution when a user opens a PDF document containing a long, specially crafted field in a SING tabl...

9.3CVSS7.7AI score0.82485EPSS
Exploits13
Saint
Saint
added 2010/08/23 12:0 a.m.26 views

ARP Spoof

Added: 08/23/2010 Background The Address Resolution Protocol ARP is used to resolve IP addresses into the hardware addresses which are used for delivering packets on a local network. Problem It is possible to send a computer a forged ARP reply, which is then stored in that computer's cache. This...

6.7AI score
Exploits0
Saint
Saint
added 2010/07/23 12:0 a.m.13 views

Automatic Drive-by Download

Added: 07/23/2010 Background This tool waits for client connections, and then gathers information about the operating system and installed software on the client. Next, it chooses the latest and most reliable client exploit for the client's operating system and installed software, and delivers th...

1.3AI score
Exploits0
Saint
Saint
added 2010/06/15 12:0 a.m.76 views

Windows Help and Support Center -FromHCP URL whitelist bypass

Added: 06/15/2010 CVE: CVE-2010-1885 BID: 40725 OSVDB: 65264 Background The Microsoft Windows Help and Support Center is a resource in Microsoft Windows operating systems for online help, support, tools, how-to articles, and other resources. Problem A vulnerability in Windows Help and Support...

9.3CVSS9.6AI score0.75458EPSS
Exploits11
Saint
Saint
added 2010/06/15 12:0 a.m.39 views

Windows Help and Support Center -FromHCP URL whitelist bypass

Added: 06/15/2010 CVE: CVE-2010-1885 BID: 40725 OSVDB: 65264 Background The Microsoft Windows Help and Support Center is a resource in Microsoft Windows operating systems for online help, support, tools, how-to articles, and other resources. Problem A vulnerability in Windows Help and Support...

9.3CVSS6.5AI score0.75458EPSS
Exploits11
Saint
Saint
added 2010/06/15 12:0 a.m.49 views

Windows Help and Support Center -FromHCP URL whitelist bypass

Added: 06/15/2010 CVE: CVE-2010-1885 BID: 40725 OSVDB: 65264 Background The Microsoft Windows Help and Support Center is a resource in Microsoft Windows operating systems for online help, support, tools, how-to articles, and other resources. Problem A vulnerability in Windows Help and Support...

9.3CVSS6.5AI score0.75458EPSS
Exploits11
Saint
Saint
added 2010/02/26 12:0 a.m.14 views

Oracle Database DBMS_JVM_EXP_PERMS IMPORT_JVM_PERMS privilege elevation

Added: 02/26/2010 BID: 38115 OSVDB: 62184 Background Oracle Database embeds a Java runtime environment called OracleJVM. The DBMSJVMEXPPERMS package is included in Oracle Database and is used for importing and exporting Java permissions between database servers. Problem A privilege elevation...

7.7AI score
Exploits0
Saint
Saint
added 2010/02/26 12:0 a.m.52 views

Oracle Database DBMS_JVM_EXP_PERMS IMPORT_JVM_PERMS privilege elevation

Added: 02/26/2010 BID: 38115 OSVDB: 62184 Background Oracle Database embeds a Java runtime environment called OracleJVM. The DBMSJVMEXPPERMS package is included in Oracle Database and is used for importing and exporting Java permissions between database servers. Problem A privilege elevation...

1.8AI score
Exploits0
Saint
Saint
added 2010/02/26 12:0 a.m.16 views

Oracle Database DBMS_JVM_EXP_PERMS IMPORT_JVM_PERMS privilege elevation

Added: 02/26/2010 BID: 38115 OSVDB: 62184 Background Oracle Database embeds a Java runtime environment called OracleJVM. The DBMSJVMEXPPERMS package is included in Oracle Database and is used for importing and exporting Java permissions between database servers. Problem A privilege elevation...

7.7AI score
Exploits0
Saint
Saint
added 2009/10/01 12:0 a.m.10 views

ProFTP welcome message buffer overflow

Added: 10/01/2009 BID: 36128 OSVDB: 57394 Background Labtam ProFTP is an FTP client program for Microsoft Windows. Problem A buffer overflow vulnerability allows command execution when a user connects to an FTP server which sends a specially crafted welcome message. Resolution Apply a fix from th...

0.1AI score
Exploits0
Saint
Saint
added 2009/10/01 12:0 a.m.9 views

ProFTP welcome message buffer overflow

Added: 10/01/2009 BID: 36128 OSVDB: 57394 Background Labtam ProFTP is an FTP client program for Microsoft Windows. Problem A buffer overflow vulnerability allows command execution when a user connects to an FTP server which sends a specially crafted welcome message. Resolution Apply a fix from th...

7.8AI score
Exploits0
Rows per page
Query Builder