Lucene search
K

518 matches found

OSV
OSV
added 2017/10/16 12:0 a.m.4 views

UBUNTU-CVE-2017-13087

Wi-Fi Protected Access WPA and WPA2 that support 802.11v allows reinstallation of the Group Temporal Key GTK when processing a Wireless Network Management WNM Sleep Mode Response frame, allowing an attacker within radio range to replay frames from access points to clients...

5.3CVSS6.9AI score0.01742EPSS
Exploits0References5
OSV
OSV
added 2017/10/16 12:0 a.m.4 views

UBUNTU-CVE-2017-13081

Wi-Fi Protected Access WPA and WPA2 that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key IGTK during the group key handshake, allowing an attacker within radio range to spoof frames from access points to clients...

5.3CVSS6.9AI score0.02003EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2017/10/16 12:0 a.m.41 views

CVE-2017-13078

Wi-Fi Protected Access WPA and WPA2 allows reinstallation of the Group Temporal Key GTK during the four-way handshake, allowing an attacker within radio range to replay frames from access points to clients...

5.3CVSS7AI score0.0207EPSS
Exploits0References4
OSV
OSV
added 2017/10/16 12:0 a.m.1 views

UBUNTU-CVE-2017-13078

Wi-Fi Protected Access WPA and WPA2 allows reinstallation of the Group Temporal Key GTK during the four-way handshake, allowing an attacker within radio range to replay frames from access points to clients...

5.3CVSS6.8AI score0.0207EPSS
Exploits0References5
OSV
OSV
added 2017/10/16 12:0 a.m.2 views

UBUNTU-CVE-2017-13080

Wi-Fi Protected Access WPA and WPA2 allows reinstallation of the Group Temporal Key GTK during the group key handshake, allowing an attacker within radio range to replay frames from access points to clients...

5.3CVSS6.9AI score0.02285EPSS
Exploits0References7
Fedora
Fedora
added 2017/09/19 3:27 a.m.38 views

[SECURITY] Fedora 26 Update: synfig-1.2.0-9.fc26.1

Synfig is a powerful, industrial-strength vector-based 2D animation software, designed from the ground-up for producing feature-film quality animation with fewer people and resources. It is designed to be capable of producing feature-film quality animation. It eliminates the need for tweening,...

9.8CVSS1.3AI score0.13393EPSS
Exploits14
FireEye
FireEye
added 2017/04/26 8:0 a.m.26 views

Evolving Analytics for Execution Trace Data

Five years ago, Mandiant released a proof of concept tool named ShimCacheParser, along with a blog post titled “Leveraging the Application Compatibility Cache in Forensic Investigations”. Since then, ShimCache metadata has become increasingly popular as a source of forensic evidence, both for...

7AI score
Exploits0
FireEye
FireEye
added 2017/04/26 8:0 a.m.18 views

Evolving Analytics for Execution Trace Data

Five years ago, Mandiant released a proof of concept tool named ShimCacheParser, along with a blog post titled “Leveraging the Application Compatibility Cache in Forensic Investigations”. Since then, ShimCache metadata has become increasingly popular as a source of forensic evidence, both for...

0.6AI score
Exploits0
0day.today
0day.today
added 2015/03/14 12:0 a.m.30 views

WordPress SEO by Yoast 1.7.3.3 SQL Injection Vulnerability

WordPress SEO by Yoast plugin versions 1.7.3.3 and below suffer from a remote blind SQL injection vulnerability. Title: WordPress SEO by Yoast = 1.7.3.3 - Blind SQL Injection Version/s Tested: 1.7.3.3 Patched Version: 1.7.4 CVSSv2 Base Score: 9 AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:OF/RC:C CVSSv2...

8.1AI score
Exploits0
MSRC
MSRC
added 2013/10/29 7:0 a.m.10 views

Software Defense: mitigating heap corruption vulnerabilities

Heap corruption vulnerabilities are the most common type of vulnerability that Microsoft addresses through security updates today. These vulnerabilities typically occur as a result of programming mistakes that make it possible to write beyond the bounds of a heap buffer a spatial issue or to plac...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/04/20 12:0 a.m.23 views

Mandriva Linux Security Advisory : rpmdevtools (MDVSA-2013:123)

Updated rpmdevtools package fixes security vulnerability : A TOCTOU race condition was found in the way 'annotate-output' used to execute a program annotating the output linewise with time and stream tool of rpmdevtools before 8.3 performed management of its temporary files used for standard outp...

1.2CVSS5.4AI score0.0027EPSS
Exploits0References1
IBM AIX
IBM AIX
added 2013/03/15 3:20 a.m.120 views

Multiple OpenSSL vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Fri Mar 15 03:20:11 CDT 2013 The most recent version of this document is available here: | Updated: Wed Jun 5 10:22:29 CDT 2013 | Update: Fix available for FIPS version | Update: Corrected CVSS base score and vector...

5CVSS7.3AI score0.35584EPSS
Exploits1
The Hacker News
The Hacker News
added 2011/09/19 7:25 p.m.1 views

Session Race Conditions and Session Puzzling – Now Simplified

Session Race Conditions and Session Puzzling – Now Simplified A few months ago Shay Chen , Senior Manager at Hacktics Advanced Security Center HASC published a paper about Session Puzzling , a new application level attack vector of critical severity and numerous uses, but for some bizarre reasons...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2011/09/19 7:25 p.m.13 views

Session Race Conditions and Session Puzzling – Now Simplified

Session Race Conditions and Session Puzzling – Now Simplified A few months ago Shay Chen, Senior Manager at Hacktics Advanced Security Center HASC published a paper about Session Puzzling, a new application level attack vector of critical severity and numerous uses, but for some bizarre reasons,...

6.7AI score
Exploits0
RedHat Linux
RedHat Linux
added 2011/04/08 2:53 a.m.6 views

kernel: orinoco: fix TKIP countermeasure behaviour

The orinocoioctlsetauth function in drivers/net/wireless/orinoco/wext.c in the Linux kernel before 2.6.37 does not properly implement a TKIP protection mechanism, which makes it easier for remote attackers to obtain access to a Wi-Fi network by reading Wi-Fi frames...

3.3CVSS5.9AI score0.0153EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2011/04/08 12:0 a.m.5 views

PT-2012-1310 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.37 Description: The issue is related to the orinoco ioctl set auth function in the Linux kernel, which does not properly implement a TKIP protection mechanism. This makes it easier for remote attackers to...

7.8CVSS5.1AI score0.02523EPSS
Exploits5References23
securityvulns
securityvulns
added 2010/08/11 12:0 a.m.53 views

Microsoft Office Word HTML Linked Objects Memory Corruption Vulnerability - CVE-2010-1903

Dear List, I'm writing on behalf of the Check Point Vulnerability Discovery Team to publish the following vulnerability. Check Point Software Technologies - Vulnerability Discovery Team VDT http://www.checkpoint.com/defense/ Microsoft Office Word HTML Linked Objects Memory Corruption Vulnerabilit...

9.3CVSS0.1AI score0.19399EPSS
Exploits0
seebug.org
seebug.org
added 2007/09/27 12:0 a.m.35 views

Novus 1.0 (notas.asp nota_id) Remote SQL Injection Vulnerability

No description provided by source. Novus - Sistema de administracion y contenido. bug: Sql Inyection. official site: http://novus.com.mx d0rk: "Powered by Novus" free: no system: asp bug found by ka0x D.O.M TEAM we: ka0x, an0de, xarnuz, s0cratex ka0x01atgmail.com tables: 1- anota.notaid 2-...

7.1AI score
Exploits0
Rows per page
Query Builder