Lucene search
K

38 matches found

NVD
NVD
added 2018/08/15 5:29 p.m.25 views

CVE-2018-8394

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows...

6.5CVSS5.2AI score0.07979EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/04/12 1:0 a.m.24 views

CVE-2018-0976

A denial of service vulnerability exists in Remote Desktop Protocol RDP when an attacker connects to the target system using RDP and sends specially crafted requests, aka "Windows Remote Desktop Protocol RDP Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows...

6.5AI score0.04721EPSS
Exploits0References3
Microsoft KB
Microsoft KB
added 2018/04/10 7:0 a.m.49 views

April 10, 2018—KB4093115 (Security-only update)

April 10, 2018—KB4093115 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Windows Update and WSUS will offer this update to applicable Windows client and serve...

9.3CVSS6.7AI score0.40069EPSS
Exploits9
CVE
CVE
added 2017/03/17 12:0 a.m.94 views

CVE-2017-0086

CVE-2017-0086 affects the Uniscribe component (usp10.dll) used by Windows GDI drawing paths. The connected details identify the vulnerability as a heap memory corruption in USP10!MergeLigRecords, triggered during font processing (font tables like BASE/GSUB/GPOS/etc.). The Windows products listed ...

9.3CVSS7.4AI score0.42546EPSS
Exploits1References4Affected Software3
CNVD
CNVD
added 2016/10/13 12:0 a.m.3 views

Citrix License Server for Windows and License Server VPX Denial of Service Vulnerabilities

Citrix License Server for Windows and License Server VPX are both products of Citrix Systems. The former is a Windows-based authentication server and the latter is an authentication server appliance. A security vulnerability exists in Citrix License Server for Windows versions prior to 11.14.0.1...

7.5CVSS6.9AI score0.01761EPSS
Exploits0References1
NVD
NVD
added 2016/09/14 10:59 a.m.25 views

CVE-2016-3375

The OLE Automation mechanism and VBScript scripting engine in Microsoft Internet Explorer 9 through 11, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allow remote attackers to...

7.6CVSS7.6AI score0.17016EPSS
Exploits0References4
Cvelist
Cvelist
added 2016/09/14 10:0 a.m.41 views

CVE-2016-3375

The OLE Automation mechanism and VBScript scripting engine in Microsoft Internet Explorer 9 through 11, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allow remote attackers to...

7.9AI score0.17016EPSS
Exploits0References4
Hacker One
Hacker One
added 2016/04/10 12:2 p.m.21 views

Ubiquiti Inc.: UniFi Video Server - Arbitrary file upload as SYSTEM

In UniFi Video Server prior to 3.3.0, due to lack of filename verification, it was possible to upload files to arbitrary locations using a especially crafted HTTP request. The exploit require valid credentials and is only exploitable in the Windows version...

3.7AI score
Exploits0
Symantec
Symantec
added 2015/08/11 12:0 a.m.33 views

Microsoft Remote Desktop Session Host CVE-2015-2472 Spoofing Vulnerability

Description Microsoft Remote Desktop Session Host is prone to a security vulnerability that may allow attackers to conduct spoofing attacks. Attackers can exploit this issue to spoof and impersonate a legitimate user. Other attacks are also possible. Technologies Affected Microsoft SQL Server 200...

4.3CVSS0.2AI score0.02223EPSS
Exploits0Affected Software4
UbuntuCve
UbuntuCve
added 2014/07/20 11:12 a.m.41 views

CVE-2014-3523

Memory leak in the winntaccept function in server/mpm/winnt/child.c in the WinNT MPM in the Apache HTTP Server 2.4.x before 2.4.10 on Windows, when the default AcceptFilter is enabled, allows remote attackers to cause a denial of service memory consumption via crafted requests...

5CVSS7.2AI score0.16372EPSS
Exploits0References1
exploitpack
exploitpack
added 2009/09/25 12:0 a.m.16 views

Mereo Web Server 1.8 - Source Code Disclosure

Mereo Web Server 1.8 - Source Code Disclosure Mereo Web Server v1.8 Multiple Remote Source Code Disclosure Found By: DrIDE Tested On: Windows XPSP3 - Description - Mereo Web Server v1.8 is a Windows based HTTP server. This is the latest version of the application available. Mereo is vulnerable to...

7.6AI score
Exploits0
securityvulns
securityvulns
added 2003/11/03 12:0 a.m.38 views

DoS in Plug and Play Web Server Proxy Server

DoS in Plug and Play Web Server Proxy Server ============================== Plug & Play server is a HTTP/FTP/NEWS/MAIL/TELNET/DNS/DHCP/HTTP-PROXY server, running on Windows platforms. Version: 1.0002c -------- Vendor: www.pandpsoft.com ------- Vulnerability: -------------- Sending the following...

0.9AI score
Exploits0
securityvulns
securityvulns
added 2003/07/10 12:0 a.m.39 views

Pipe Filename Local Privilege Escalation FAQ

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 We have received several inquiries regarding the advisory, "Named Pipe Filename Local Privilege Escalation" that was published by @stake on 07/08/2003. These answers should clarify where the vulnerability actually lies so customers can make informed...

1.1AI score
Exploits0
Cisco
Cisco
added 2003/04/23 8:0 a.m.14 views

Cisco Secure Access Control Server for Windows Admin Buffer Overflow Vulnerability

...

3.8AI score
Exploits0References1
Packet Storm
Packet Storm
added 2002/10/22 12:0 a.m.19 views

anhttpd141c_exploit.java

Advisory Information -------------------- Name : AN HTTPD Vendor Homepage : http://www.st.rim.or.jp/nakata/ Platforms : Windows9x/Me/NT/2000/XP Vulnerability Type : stack overflow very easy to exploit Vendor Contacted : 17/10/2002 Vendor Replied : 20/10/2002 Vulnerable Versions : 1.30 to 1.41c No...

7.4AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.7 views

Internet Explorer 11 RTM - Non MR

New detectoid for Windows Server 2012 and Windows 8 Embedded with regards to IE11 CU. This det is needed for these two products for IE11 CU since they are not going to be a part of the current IE CU MR logic...

2AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.12 views

Security Update for .NET Framework 2.0 SP2 and 3.5 SP1 on Windows Server 2003 and Windows XP for x64-based Systems (KB2518864)

A security issue has been identified that could allow an attacker to compromise your Windows-based system that is running the Microsoft .NET Framework and gain complete control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you m...

2.8AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.13 views

Security Update for Microsoft .NET Framework 3.5 on Windows Server 2003 and Windows XP x86 (KB2416468)

A security issue has been identified that could allow an attacker to compromise your Windows-based system that is running the Microsoft .NET Framework and gain access to information. You can help protect your computer by installing this update from Microsoft. After you install this item, you may...

2.7AI score
Exploits0
Rows per page
Query Builder