Lucene search
K

4529 matches found

CNVD
CNVD
added 2015/10/27 12:0 a.m.2 views

Xunlei Elevation of Privilege Vulnerability

Thunderbolt is a popular P2P download tool. Xunlei has a security vulnerability, as the system service installed by Xunlei provides the function of loading dynamic link libraries, but is not validated, allowing an attacker to exploit the vulnerability by executing code as SYSTEM under any user,...

7.2AI score
Exploits0
CNVD
CNVD
added 2015/06/17 12:0 a.m.5 views

Igreks MilkyStep OS Command Injection Vulnerability

Igreks MilkyStep is a CGI for pushing magazines through the email system. A security vulnerability exists in Igreks MilkyStep that allows remote attackers to exploit the vulnerability to submit a special request to execute arbitrary OS commands...

7.5CVSS7.5AI score0.01615EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2014/09/08 12:0 a.m.57 views

ManageEngine Desktop Central StatusUpdate Arbitrary File Upload

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'ManageEngine Desktop Central StatusUpdate Arbitrary File Upload', 'Description' = %q This module exploits an arbitrary file upload...

7.5CVSS0.4AI score0.77848EPSS
Exploits12
securityvulns
securityvulns
added 2013/12/09 12:0 a.m.42 views

Appologics AirBeam v1.9.2 iOS - Multiple Web Vulnerabilities

Document Title: =============== Appologics AirBeam v1.9.2 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1140 Release Date: ============= 2013-11-20 Vulnerability Laboratory ID VL-ID: ==================================...

0.3AI score
Exploits0
Saint
Saint
added 2012/07/23 12:0 a.m.34 views

HP Data Protector Express Opcode 0x320 Overflow

Added: 07/23/2012 CVE: CVE-2012-0121 BID: 52431 OSVDB: 80102 Background HP Data Protector Express is a backup and recovery solution for single machines and small networks. Problem A stack overflow vulnerability exists in dpwindtb.dll. Validation of parameters to Opcode 0x320 requests are not...

10CVSS7.1AI score0.10436EPSS
Exploits4
Packet Storm
Packet Storm
added 2011/01/27 12:0 a.m.28 views

Lomtec ActiveWeb Professional 3.0 CMS Shell Upload / SYSTEM Execution

------------------------------------------------------------------------------------- www.ExploitDevelopment.com 2010-WEB-002 CERT VU870532 Security Focus BID 45985 ------------------------------------------------------------------------------------- TITLE: Lomtec ActiveWeb Professional 3.0 CMS...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2006/11/04 12:0 a.m.10 views

PC Tools AntiVirus本地权限提升漏洞

PC Tools AntiVirus是一款功能强大的个人电脑杀毒软件。 PC Tools AntiVirus对自身文件的保护上存漏洞,本地攻击者可能利用此漏洞提升自己的权限。 PC Tools AntiVirus目录及其所有子对象没有设置安全的默认权限,给予了Everyone组Full Control权限,因此本地攻击者可能获得权限提升,以系统权限执行任意代码。 PC Tools AntiVirus 2.1.0.51 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.pctools.com/anti-virus/...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2003/08/20 12:0 a.m.25 views

Microsoft Internet Explorer 5/6 - Object Type Validation

source: https://www.securityfocus.com/bid/8456/info The problem occurs when Internet Explorer receives a response from the server when a web page containing an object tag is parsed. Successful exploitation of this vulnerability could allow a malicious object to be trusted and as such be executed ...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2000/09/07 12:0 a.m.22 views

Локальная дырка в Windows 2000 - переполнение буфера в Still Image Service

Переполнение буфре в сервисе позволяет выполнение кода с привилегией Local System...

1.9AI score
Exploits0References2
Rows per page
Query Builder