CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

38 matches found

Tenable Nessus•added 2013/07/12 12:0 a.m.•48 views

Oracle Linux 5 : httpd (ELSA-2013-0130)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-0130 advisory. - add security fix for CVE-2008-0456 - add security fix for CVE-2012-2687 850794 Tenable has extracted the preceding description block directly from th...

4.3CVSS7.8AI score0.52581EPSS

Exploits4References4

Tenable Nessus•added 2013/07/12 12:0 a.m.•35 views

Oracle Linux 5 : nss / and / nspr (ELSA-2012-1090)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2012-1090 advisory. nspr 4.9.1-4 - Resolves: rhbz834219 - Fix postinstall scriptlet failures - Fix %post and %postun lines per packaging guidelines - Updated License: to MPLv2.0 pe...

5CVSS8.3AI score0.03581EPSS

Exploits0References2

Oracle linux•added 2011/12/14 12:0 a.m.•27 views

kexec-tools security, bug fix, and enhancement update

2.0.0-209.0.1.el6 - Make sure '--allow-missing' is effective by adding to MKDUMPRDARGS in kdump.sysconfig, kdump.sysconfig.i386, and kdump.sysconfig.x8664 12590865 11678808 2.0.0-209 - Improve debugfs mounting code, from Dave Young. Resolve bug 748748. 2.0.0-208 - Search DUP firmware directory to...

5.7CVSS0.00168EPSS

Exploits3

Oracle linux•added 2010/04/05 12:0 a.m.•26 views

brltty security and bug fix update

3.7.2-4 - use rpm macros more consistently - add manual page for brltty.conf - add more documentation - install the default brltty-pm.conf to docdir only - Resolves: 530554 - silence the postinstall scriptlet - Resolves: 529163 3.7.2-3 - escape rpm macros in the rpm change log - remove bogus rpat...

6.9CVSS0.3AI score0.00166EPSS

Exploits0

Oracle linux•added 2007/10/11 12:0 a.m.•30 views

Important: hplip security update

1.6.7-4.1.el50.3 - Fixed post scriptlet to make sure it restarts the daemon on upgrade part of bug 320011. 1.6.7-4.1.el50.2 - Build requires openssl-devel part of bug 320011. 1.6.7-4.1.el50.1 - Applied patch to fix CVE-2007-5208 bug 320011...

7.6CVSS0.2AI score0.74232EPSS

Exploits4

Tenable Nessus•added 2007/01/17 12:0 a.m.•29 views

Fedora Core 6 : texinfo-4.8-14.fc6 (2006-1203)

Sun Nov 5 2006 Miloslav Trmac - 4.8-14 - Remove off-line sorting from texindex fixes CVE-2006-4810 - Mon Oct 9 2006 Miloslav Trmac - 4.8-13 - Don't use mode 0666 for the texindex temporary files - Mon Oct 9 2006 Miloslav Trmac - 4.8-12 - Don't leave around temporary files used by texindex - Add...

4.6CVSS5.4AI score0.00162EPSS

Exploits2References1

CVE•added 2001/05/07 4:0 a.m.•58 views

CVE-2001-0091

CVE-2001-0091 concerns the ActiveX control used to invoke a scriptlet in Internet Explorer 5.0–5.5. The control renders arbitrary file types instead of HTML, enabling an attacker to read arbitrary files. The vulnerability is characterized as a variant of the Scriptlet Rendering issue. Documented ...

2.6CVSS6.9AI score0.13454EPSS

Exploits0References3Affected Software1

Cvelist•added 2001/05/07 4:0 a.m.•25 views

CVE-2001-0091

The ActiveX control for invoking a scriptlet in Internet Explorer 5.0 through 5.5 renders arbitrary file types instead of HTML, which allows an attacker to read arbitrary files, aka a variant of the "Scriptlet Rendering" vulnerability...

6.5AI score0.13454EPSS

Exploits0References3

NVD•added 2001/02/16 5:0 a.m.•17 views

CVE-2001-0091

2.6CVSS6.5AI score0.13454EPSS

Exploits0References3

securityvulns•added 2000/12/08 12:0 a.m.•19 views

Заткнуто 4 дырки в Internet Explorer (Browser Print Template, File Upload via Form, Scriptlet Rendering, Frame Domain Verification)

Через шаблоны печати можно выполнить код на компьютере клиента, формы позволяют загружать файл с компьютера пользователя без его одобрения, кроме того несколько ошибок с определением зоны выполнения скриптов...

1.7AI score

Exploits0References2Affected Software1

securityvulns•added 2000/12/02 12:0 a.m.•40 views

Security Bulletin (MS00-093)

Microsoft Security Bulletin MS00-093 Patch Available for "Browser Print Template" and "File Upload via Form" Vulnerabilities Originally posted: December 01, 2000 Summary Microsoft has released a patch that eliminates four security vulnerabilities in Microsoft® Internet Explorer: The “Browser Prin...

6.6AI score

Exploits0

NVD•added 2000/10/20 4:0 a.m.•14 views

CVE-2000-0767

The ActiveX control for invoking a scriptlet in Internet Explorer 4.x and 5.x renders arbitrary file types instead of HTML, which allows an attacker to read arbitrary files, aka the "Scriptlet Rendering" vulnerability...

2.6CVSS6.5AI score0.12567EPSS

Exploits0References2

Cvelist•added 2000/10/13 4:0 a.m.•21 views

CVE-2000-0767

6.5AI score0.12567EPSS

Exploits0References2

securityvulns•added 2000/08/10 12:0 a.m.•155 views

Security Bulletin (MS00-055)

Microsoft Security Bulletin MS00-055 - -------------------------------------- Patch Available for "Scriptlet Rendering" Vulnerability Originally Posted: August 09, 2000 Summary ======= Microsoft has released a patch that eliminates two security vulnerabilities in Microsoftr Internet Explorer. The...

6.5AI score

Exploits0

CVE•added 1999/09/29 4:0 a.m.•53 views

CVE-1999-0468

CVE-1999-0468 concerns Internet Explorer 5.0. The Red Hat/EUVD/NVD entries describe the same issue: a remote server can read arbitrary files on the client’s filesystem via the Microsoft Scriptlet Component. The vulnerability is in IE 5.0’s Scriptlet handling, allowing partial confidentiality impa...

8.2CVSS7AI score0.01861EPSS

Exploits0References1Affected Software1

Cvelist•added 1999/09/29 4:0 a.m.•23 views

CVE-1999-0468

Internet Explorer 5.0 allows a remote server to read arbitrary files on the client's file system using the Microsoft Scriptlet Component...

6.6AI score0.01861EPSS

Exploits0References1