Lucene search
K

543 matches found

seebug.org
seebug.org
added 2007/04/28 12:0 a.m.17 views

Google Talk DXImage传送HTML注入漏洞

Google Talk是一款流行的即时聊天程序。 Google Talk不正确处理用户提交的输入,远程攻击者可以利用漏洞进行HTML注入攻击,可能获得敏感信息。 攻击者可以追加脚本代码到文件扩展名后,当Google Talk解析时可导致恶意脚本代码在用户端执行,可泄露敏感信息。 Google Talk 1.0 .104 目前没有解决方案提供: http://www.google.com/talk/...

7.1AI score
Exploits0
myhack58
myhack58
added 2006/10/15 12:0 a.m.57 views

Google Talk Password Recovery-vulnerability warning-the black bar safety net

Information source: evil octal information security team www.eviloctal.com) Google Talk Password Recovery is a utility for finding and decrypting Google Talk passwords that are stored on your computer with a click of a button! This password decoder works when "Remember Password" checkbox is ticke...

7AI score
Exploits0
Prion
Prion
added 2006/04/18 10:2 a.m.19 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in FlexBB 0.5.5 BETA allow remote attackers to inject arbitrary web script or HTML via the 1 ICQ, 2 AIM, 3 MSN, 4 Google Talk, 5 Website Name, 6 Website Address, 7 Email Address, 8 Location, 9 Signature, and 10 Sub-Titles fields in the user profil...

1.9CVSS6.1AI score0.00433EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2006/04/18 10:0 a.m.41 views

CVE-2006-1810

CVE-2006-1810 involves multiple cross-site scripting (XSS) vulnerabilities in FlexBB 0.5.5 BETA . The affected component is the user profile handling, with attacker-controlled inputs in fields such as ICQ, AIM, MSN, Google Talk, Website Name, Website Address, Email Address, Location, Signature, a...

1.9CVSS5.8AI score0.00433EPSS
Exploits0References2Affected Software1
Check Point Advisories
Check Point Advisories
added 2006/03/26 12:0 a.m.25 views

How To Protect Against Instant Messaging Vulnerabilities: Blocking Google Talk

Google Talk is an application used to call or send instant messages for Microsoft Windows operating systems. Instant messaging applications may risk an organization's security in the following ways:1. Vulnerabilities in IM applications could be exploited to compromise a user's system i.e MSN...

5.4CVSS1.9AI score0.00832EPSS
Exploits0
NVD
NVD
added 2005/11/29 9:3 p.m.20 views

CVE-2005-3899

The automatic update feature in Google Talk allows remote attackers to cause a denial of service CPU and memory consumption by poisoning a target's DNS cache and causing a large update file to be sent, which consumes large amounts of CPU and memory during the signature verification, aka BenjiBug...

5.4CVSS6.5AI score0.00817EPSS
Exploits0References3
Cvelist
Cvelist
added 2005/11/29 9:0 p.m.25 views

CVE-2005-3899

The automatic update feature in Google Talk allows remote attackers to cause a denial of service CPU and memory consumption by poisoning a target's DNS cache and causing a large update file to be sent, which consumes large amounts of CPU and memory during the signature verification, aka BenjiBug...

6.5AI score0.00817EPSS
Exploits0References3
CVE
CVE
added 2005/11/29 9:0 p.m.48 views

CVE-2005-3899

CVE-2005-3899 concerns Google Talk’s automatic update mechanism. The vulnerability allows remote attackers to trigger a denial of service by poisoning a target’s DNS cache and forcing a large update file to be processed, which consumes CPU and memory during signature verification. The provided do...

5.4CVSS6.5AI score0.00817EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2005/11/18 11:3 p.m.26 views

CVE-2005-3678

Google Talk before 1.0.0.76, with email notification enabled, allows remote attackers to cause a denial of service connection reset via email with a blank sender...

5CVSS6.6AI score0.00832EPSS
Exploits0References4
CVE
CVE
added 2005/11/18 11:0 p.m.50 views

CVE-2005-3678

CVE-2005-3678 affects Google Talk prior to 1.0.0.76 when email notification is enabled. The vulnerability allows remote attackers to cause a denial-of-service by sending an email with a blank sender, triggering a connection reset. The public documents consistently describe the issue at a high lev...

5CVSS6.6AI score0.00832EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2005/11/18 11:0 p.m.22 views

CVE-2005-3678

Google Talk before 1.0.0.76, with email notification enabled, allows remote attackers to cause a denial of service connection reset via email with a blank sender...

6.6AI score0.00832EPSS
Exploits0References4
Check Point Advisories
Check Point Advisories
added 2005/10/10 12:0 a.m.11 views

Google Talk (CVE-2005-3678; CVE-2005-3899)

...

5.4CVSS6.4AI score0.00832EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/09/08 12:0 a.m.6 views

Google Talk Detection (deprecated)

Binary data 3217.prm...

7.3AI score
Exploits0
securityvulns
securityvulns
added 2002/06/12 12:0 a.m.45 views

Xinet K-Talk Appletalk(tm) xkas vulnerability on IRIX

-----BEGIN PGP SIGNED MESSAGE----- SGI Security Advisory Title: Xinet K-Talk Appletalktm xkas vulnerability Number: 20020604-01-I Date: June 10, 2002 Reference: CAN-2002-0213 - ----------------------- - --- Issue Specifics --- - ----------------------- It's been reported that the Appletalktm...

2.1CVSS0.2AI score0.00345EPSS
Exploits0
NVD
NVD
added 2001/12/06 5:0 a.m.27 views

CVE-2001-0848

join.cfm in e-Zone Media Fuse Talk allows a local user to execute arbitrary SQL code via a semi-colon ; in a form variable...

4.6CVSS7.5AI score0.00326EPSS
Exploits0References3
CVE
CVE
added 2001/11/22 5:0 a.m.48 views

CVE-2001-0848

CVE-2001-0848 affects join.cfm in e-Zone Media Fuse Talk, where a local user can inject and execute arbitrary SQL through a semicolon in a form variable. The vulnerability is tied to SQL injection in the application’s handling of input data, enabling partial confidentiality/integrity/availability...

4.6CVSS7.9AI score0.00326EPSS
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2001/11/02 12:0 a.m.70 views

Fuse Talk vulnerability

e-zonemedia's Fuse Talk is vulnerable to malicious SQL. Improper form sanitization makes it possible for any user to manipulate data as she feels fit. On the sign up form join.cfm is possible to pass a well crafted form variable to the action template it's the same template subsequently join.cfm...

1.1AI score
Exploits0
securityvulns
securityvulns
added 2000/07/14 12:0 a.m.41 views

Linux news 14.07.00

Linux Kernel pre-patch 2.4.0 test4-pre6 Вышел очередной, шестой по счету, пререлиз четвертого тестового ядра Linux Kernel 2.4.0. Подробнее: ftp://ftp.funet.fi/pub/linux/kernel/testing Домен .GNU По сообщению http://Wired.com, Free Software Foundation послали предложение в ICANN на регистрацию...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2000/03/03 12:0 a.m.26 views

Talk Service (talkd, in.talk, ntalk) Detection

The remote service responded to a talk request. A talk server also known as 'talkd', 'in.talk', or 'ntalk' is a service that works over UDP and notifies a user when someone wants to initiate a conversation. Note that talk is nowadays considered by many to be obsolete. C Tenable Network Security,...

5.5AI score
Exploits0References1
CVE
CVE
added 1999/09/29 4:0 a.m.58 views

CVE-1999-0251

The CVE-1999-0251 entry concerns a denial of service in the talk program that allows remote attackers to disrupt a user’s display. The connected Red Hat, EUVD, CVE, and NVD records reiterate the same description; no concrete attack vectors, affected versions, or remediation are specified in the p...

5CVSS7.5AI score0.01871EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder