Lucene search
+L

25 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2004-0472

Malware in sbrugna...

2.6CVSS6.2AI score0.02451EPSS
Exploits0References7
debian
debian
added 2025/06/20 7:41 p.m.10 views

[SECURITY] [DSA 5945-1] konsole security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5945-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 20, 2025 https://www.debian.org/security/faq -...

8.2CVSS7.2AI score0.00551EPSS
Exploits0
nvd
nvd
added 2011/08/10 9:55 p.m.18 views

CVE-2011-1961

The telnet URI handler in Microsoft Internet Explorer 6 through 9 does not properly launch the handler application, which allows remote attackers to execute arbitrary programs via a crafted web site, aka "Telnet Handler Remote Code Execution Vulnerability."...

9.3CVSS7.6AI score0.3434EPSS
Exploits5References5
seebug
seebug
added 2011/08/10 12:0 a.m.26 views

Microsoft Internet Explorer Telnet URI处理器远程代码执行漏洞

Bugtraq ID: 49027 CVE ID:CVE-2011-1961 Microsoft Internet Explorer是一款流行的WEB浏览器。 Microsoft Internet Explorer使用的telnet URI协议处理器存在一个远程代码执行漏洞,攻击者构建一个WEB页,诱使用户解析,可以登录用户上下文执行任意代码。 Microsoft Internet Explorer 9 Microsoft Internet Explorer 8 Microsoft Internet Explorer 7.0 Microsoft Internet Explorer 6.0...

9.3CVSS6.4AI score0.3434EPSS
Exploits5
symantec
symantec
added 2011/08/09 12:0 a.m.18 views

Microsoft Internet Explorer Telnet URI Handler Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a vulnerability that lets attackers execute arbitrary remote code. An attacker can exploit this issue by enticing a legitimate user to use a vulnerable version of the application to access an HTML file from a network share location that contains...

7.5AI score
Exploits0Affected Software6
openvas
openvas
added 2008/01/17 12:0 a.m.23 views

Debian Security Advisory DSA 518-1 (kdelibs)

The remote host is missing an update to kdelibs announced via advisory DSA 518-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later...

7.5CVSS6.6AI score0.07778EPSS
Exploits0References2
nvd
nvd
added 2007/07/27 10:30 p.m.26 views

CVE-2007-4041

Multiple argument injection vulnerabilities in Mozilla Firefox 2.0.0.5 and 3.0alpha allow remote attackers to execute arbitrary commands via a NULL byte %00 and shell metacharacters in a 1 mailto, 2 nntp, 3 news, 4 snews, or 5 telnet URI, a similar issue to CVE-2007-3670...

6.8CVSS7.8AI score0.19655EPSS
Exploits0References6
cve
cve
added 2007/07/27 10:0 p.m.71 views

CVE-2007-4041

CVE-2007-4041 describes multiple argument injection vulnerabilities in Mozilla Firefox 2.0.0.5 and Firefox 3.0alpha that allow remote attackers to execute arbitrary commands via a NULL byte (%00) and shell metacharacters in certain URI handlers (mailto, nntp, news, snews, telnet). The issue is a ...

6.8CVSS8.4AI score0.19655EPSS
Exploits0References6Affected Software2
cvelist
cvelist
added 2006/12/15 10:0 p.m.23 views

CVE-2006-6597

Argument injection vulnerability in HyperAccess 8.4 allows user-assisted remote attackers to execute arbitrary vbscript and commands via the /r option in a telnet:// URI, which is configured to use hawin32.exe...

7.8AI score0.02606EPSS
Exploits0References5
cve
cve
added 2006/12/15 10:0 p.m.59 views

CVE-2006-6597

CVE-2006-6597 affects HyperAccess 8.4. An argument-injection vulnerability lets user-assisted remote attackers run arbitrary vbscript and commands via the /r option in a telnet:// URI configured to use hawin32.exe. The NVD entry assigns a CVSSv2 base score of 6.8 (Network, Medium complexity, no a...

6.8CVSS8.1AI score0.02606EPSS
Exploits0References5Affected Software1
ptsecurity
ptsecurity
added 2006/12/15 12:0 a.m.5 views

PT-2006-7199 · Hyperaccess · Hyperaccess

Name of the Vulnerable Software and Affected Versions: HyperAccess version 8.4 Description: The issue allows user-assisted remote attackers to execute arbitrary vbscript and commands. This is achieved via the /r option in a telnet:// URI, which is configured to use hawin32.exe. Recommendations: F...

6.8CVSS7.5AI score0.02606EPSS
Exploits0References7
nessus
nessus
added 2004/11/23 12:0 a.m.17 views

Van Dyke SecureCRT < 4.1.9 Telnet URI Remote Command Execution

Binary data 2427.prm...

7.5CVSS7.3AI score0.0208EPSS
Exploits0References1
nessus
nessus
added 2004/08/30 12:0 a.m.32 views

GLSA-200405-19 : Opera telnet URI handler file creation/truncation vulnerability

The remote host is affected by the vulnerability described in GLSA-200405-19 Opera telnet URI handler file creation/truncation vulnerability The telnet URI handler in Opera does not check for leading '-' characters in the host name. Consequently, a maliciously-crafted telnet:// link may be able t...

2.6CVSS5.5AI score0.02451EPSS
Exploits0References3
nvd
nvd
added 2004/07/07 4:0 a.m.30 views

CVE-2004-0473

Argument injection vulnerability in Opera before 7.50 does not properly filter "-" characters that begin a hostname in a telnet URI, which allows remote attackers to insert options to the resulting command line and overwrite arbitrary files via 1 the "-f" option on Windows XP or 2 the "-n" option...

2.6CVSS7.1AI score0.02451EPSS
Exploits0References6
nessus
nessus
added 2004/07/06 12:0 a.m.40 views

RHEL 2.1 / 3 : kdelibs (RHSA-2004:222)

Updated kdelibs packages that fix telnet URI handler and mailto URI handler file vulnerabilities are now available. The kdelibs packages include libraries for the K Desktop Environment. KDE Libraries include: kdecore KDE core library, kdeui user interface, kfm file manager, khtmlw HTML widget, ki...

7.5CVSS6AI score0.07778EPSS
Exploits0References4
debian
debian
added 2004/06/14 1:29 p.m.49 views

[SECURITY] [DSA 518-1] New kdelibs packages fix URI handler vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 518-1 [email protected] http://www.debian.org/security/ Martin Schulze June 14th, 2004 http://www.debian.org/security/faq -...

7.5CVSS6AI score0.07778EPSS
Exploits0
osv
osv
added 2004/06/14 12:0 a.m.44 views

DSA-518 kdelibs - unsanitised input

Bulletin has no description...

7.5CVSS6AI score0.07778EPSS
Exploits0
gentoo
gentoo
added 2004/05/25 12:0 a.m.39 views

Opera telnet URI handler file creation/truncation vulnerability

Background Opera is a multi-platform web browser. Description The telnet URI handler in Opera does not check for leading '-' characters in the host name. Consequently, a maliciously-crafted telnet:// link may be able to pass options to the telnet program itself. One example would be the following...

2.6CVSS6.2AI score0.02451EPSS
Exploits0
cvelist
cvelist
added 2004/05/20 4:0 a.m.39 views

CVE-2004-0473

Argument injection vulnerability in Opera before 7.50 does not properly filter "-" characters that begin a hostname in a telnet URI, which allows remote attackers to insert options to the resulting command line and overwrite arbitrary files via 1 the "-f" option on Windows XP or 2 the "-n" option...

7AI score0.02451EPSS
Exploits0References6
cve
cve
added 2004/05/20 4:0 a.m.74 views

CVE-2004-0473

Opera before 7.50 has an argument injection in its telnet URI handler: leading '-' in the telnet host name is not filtered, allowing remote attackers to pass options to the telnet program and overwrite files. The Gentoo GLSA and related advisories describe two concrete outcomes: creation or trunc...

2.6CVSS7AI score0.02451EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder