Lucene search
K

223 matches found

Positive Technologies
Positive Technologies
added 2020/09/11 12:0 a.m.2 views

PT-2020-17181 · Go +2 · Go +2

Name of the Vulnerable Software and Affected Versions: Go versions 1.15 and earlier Description: The issue arises from the encoding/xml package in Go not correctly preserving the semantics of directives during tokenization round-trips. This allows an attacker to craft inputs that behave in...

9.8CVSS6.2AI score0.07293EPSS
Exploits6References47
Fedora
Fedora
added 2020/08/26 2:53 p.m.72 views

[SECURITY] Fedora 32 Update: lua-5.3.5-8.fc32

Lua is a powerful light-weight programming language designed for extending applications. Lua is also frequently used as a general-purpose, stand-alone language. Lua is free software. Lua combines simple procedural syntax with powerful data description constructs based on associative arrays and...

5.3CVSS2.6AI score0.03833EPSS
Exploits1
Cvelist
Cvelist
added 2019/09/29 11:52 p.m.20 views

CVE-2019-16992

The Keybase app 2.13.2 for iOS provides potentially insufficient notice that it is employing a user's private key to sign a certain cryptocurrency attestation that an address at keybase.io can be used for Stellar payments to the user, which might be incompatible with a user's personal position on...

7.3AI score0.00938EPSS
Exploits0References2
exploitpack
exploitpack
added 2019/01/25 12:0 a.m.61 views

iOSmacOS - task_swap_mach_voucher() Use-After-Free

iOSmacOS - taskswapmachvoucher Use-After-Free / voucherswap-poc.c Brandon Azad / if 0 iOS/macOS: taskswapmachvoucher does not respect MIG semantics leading to use-after-free The dangers of not obeying MIG semantics have been well documented: see issues 926 CVE-2016-7612, 954 CVE-2016-7633, 1417...

9.3CVSS6.8AI score0.14888EPSS
Exploits15
0day.today
0day.today
added 2019/01/25 12:0 a.m.156 views

iOS / macOS - task_swap_mach_voucher() Use-After-Free Exploit

/ voucherswap-poc.c Brandon Azad / if 0 iOS/macOS: taskswapmachvoucher does not respect MIG semantics leading to use-after-free The dangers of not obeying MIG semantics have been well documented: see issues 926 CVE-2016-7612, 954 CVE-2016-7633, 1417 CVE-2017-13861, asyncwake, 1520 CVE-2018-4139,...

9.3CVSS7AI score0.28548EPSS
Exploits17
n0where
n0where
added 2016/05/25 2:29 p.m.90 views

Reverse Engineering Cross Platform Disassembler: Panopticon

Reverse Engineering Cross Platform Disassembler Panopticon is a disassembler that understands the semantics of opcodes. This way it’s able to help the user by discovering and displaying invariants that would have to be discovered “by hand” in traditional disassemblers. This allows an interactive...

0.1AI score
Exploits0References6
Fedora
Fedora
added 2015/11/26 9:0 p.m.12 views

[SECURITY] Fedora 23 Update: pcre-8.38-1.fc23

Perl-compatible regular expression library. PCRE has its own native API, but a set of "wrapper" functions that are base d on the POSIX API are also supplied in the library libpcreposix. Note that this just provides a POSIX calling interface to PCRE: the regular expressions themselves still follow...

1.1AI score
Exploits0
OpenVAS
OpenVAS
added 2015/10/08 12:0 a.m.59 views

Oracle: Security Advisory (ELSA-2007-0347)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.4AI score0.05035EPSS
Exploits15References2
RedHat Linux
RedHat Linux
added 2015/02/18 9:31 p.m.6 views

CXF: Improper security semantics enforcement of SAML SubjectConfirmation methods

It was found that Apache WSS4J Web Services Security for Java, as used by Apache CXF with the TransportBinding, did not, by default, properly enforce all security requirements associated with SAML SubjectConfirmation methods. A remote attacker could use this flaw to perform various types of...

5CVSS5.8AI score0.09224EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2014/12/18 5:58 p.m.8 views

CXF: Improper security semantics enforcement of SAML SubjectConfirmation methods

It was found that Apache WSS4J Web Services Security for Java, as used by Apache CXF with the TransportBinding, did not, by default, properly enforce all security requirements associated with SAML SubjectConfirmation methods. A remote attacker could use this flaw to perform various types of...

5CVSS5.8AI score0.09224EPSS
Exploits0References4
n0where
n0where
added 2014/12/04 7:4 p.m.16 views

Lightweight Disassembly Framework: Capstone

Lightweight Disassembly Framework Capstone is a multi-platform, multi-architecture lightweight disassembly framework. Capstone Disassembly Engine v3.0 Released Our target is to make Capstone the ultimate disassembly engine for binary analysis and reversing in the security community. Features...

7.1AI score
Exploits0
Prion
Prion
added 2014/10/30 2:55 p.m.19 views

Design/Logic Flaw

Apache WSS4J before 1.6.17 and 2.x before 2.0.2, as used in Apache CXF 2.7.x before 2.7.13 and 3.0.x before 3.0.2, when using TransportBinding, does not properly enforce the SAML SubjectConfirmation method security semantics, which allows remote attackers to conduct spoofing attacks via unspecifi...

5CVSS7AI score0.09224EPSS
Exploits0References15Affected Software2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

Matt Kimball and Roger Wolff mtr 0.28/0.41,Turbolinux 3.5 b2/4.2/4.4/6.0 mtr Vulnerability.2

No description provided by source. source: http://www.securityfocus.com/bid/1038/info A potential vulnerability exists in the 'mtr' program, by Matt Kimball and Roger Wolff. Versions prior to 0.42 incorrectly dropped privileges on all Unix variants except HPUX. By calling a seteuidgetuid call, th...

7.1AI score
Exploits0
Kitploit
Kitploit
added 2013/12/31 5:4 p.m.23 views

[Capstone] Ultimate Disassembly Framework

Capstone is a lightweight multi-platform, multi-architecture disassembly framework. Our target is to make Capstone the ultimate disassembly engine for binary analysis and reversing in the security community. Features Support hardware architectures: ARM, ARM64 aka ARMv8, Mips & X86 more details...

7.3AI score
Exploits0
Fedora
Fedora
added 2013/07/23 1:2 a.m.14 views

[SECURITY] Fedora 18 Update: nodejs-read-package-json-1.1.0-2.fc18

The thing npm uses to read package.json files, with semantics, defaults and validation...

3.3CVSS1.7AI score0.00372EPSS
Exploits0
Fedora
Fedora
added 2010/07/07 5:48 p.m.14 views

[SECURITY] Fedora 12 Update: python-mako-0.3.4-1.fc12

Mako is a template library written in Python. It provides a familiar, non-X ML syntax which compiles into Python modules for maximum performance. Mako's syntax and API borrows from the best ideas of many others, including Django templates, Cheetah, Myghty, and Genshi. Conceptually, Mako is an...

0.9AI score
Exploits0
Packet Storm
Packet Storm
added 2010/04/14 12:0 a.m.29 views

PHP 6.0 Dev str_transliterate() Buffer Overflow

whoami whoami nt authority\system / errorreporting0; $bases = $GET'poss'; $basee = $GET'pose'; $offs = $GET'offs'; $offe = $GET'offe'; ifinigetbool'unicode.semantics' $buff = strrepeat"\u4141", 32; $tbp = "\u2650\u6EE5"; // 6EE52650 ADDRESS TO BE PATCHED BY WPM $ptw = "\u2FE0\u6EE5"; // 6EE52FE0...

0.8AI score
Exploits0
0day.today
0day.today
added 2010/04/13 12:0 a.m.34 views

PHP 6.0 Dev str_transliterate() Buffer overflow - NX + ASLR Bypass

Exploit for windows platform in category local exploits ================================================================== PHP 6.0 Dev strtransliterate Buffer overflow - NX + ASLR Bypass ================================================================== whoami whoami nt authority\system /...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2010/04/06 12:0 a.m.26 views

PHP 6.0 Dev str_transliterate() Buffer Overflow

Exploit Title: PHP 6.0 Dev strtransliterate 0Day Buffer Overflow Exploit Date: 2010-04-04 Author: Pr0T3cT10n Software Link: http://downloads.sourceforge.net/project/wampserver/WampServer%202%20-%20Extensions/PHP/WampServer2-PHP6.0dev.exe?usemirror=garr Version: 6.0 Dev Tested on: WIN XP HEB SP3...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2010/03/16 12:0 a.m.53 views

...because you can't get enough of clickjacking

I promise to post something more interesting shortly - but in the meantime, I wanted to drop a quick note about something kinda amusing. There was a considerable amount of buzz around clickjacking 1 in the past year or so. It is commonly believed that this simple attack can only be realistically...

0.3AI score
Exploits0
Rows per page
Query Builder