Lucene search
+L

83 matches found

GithubExploit
GithubExploit
added 2020/11/15 3:30 p.m.108 views

Exploit for Code Injection in Nette Application

CVE-2020-15227 DISCLAIMER! I take no responsibility of using...

9.8CVSS9.9AI score0.35228EPSS
Exploits3
securityvulns
securityvulns
added 2015/05/17 12:0 a.m.38 views

Server buffer overflow in Pure Faction <= 3.0c

Application: Pure Faction http://www.purefaction.org Versions: = 3.0c Platforms: Windows Bug: server buffer overflow Risk: highly critical Exploitation: remote and automatic requires attacker to have joined server Date: 13 Mar 2015 Author: soulsgetnothing e-mail: soulsgetnothing at hotmail dot co...

2.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.35 views

Oracle Solaris Third-Party Patch Update : perl-58 (cve_2011_2728_denial_of)

The remote Solaris system is missing necessary patches to address security updates : - The bsdglob function in the File::Glob module for Perl before 5.14.2 allows context-dependent attackers to cause a denial of service crash via a glob expression with the GLOBALTDIRFUNC flag, which triggers an...

4.3CVSS8.2AI score0.01397EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.65 views

Oracle Solaris Third-Party Patch Update : nss (cve_2013_1620_lucky_thirteen)

The remote Solaris system is missing necessary patches to address security updates : - The TLS implementation in Mozilla Network Security Services NSS does not properly consider timing side-channel attacks on a noncompliant MAC check operation during the processing of malformed CBC padding, which...

4.3CVSS7AI score0.35584EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.40 views

Oracle Solaris Third-Party Patch Update : bind (cve_2012_1667_denial_of)

The remote Solaris system is missing necessary patches to address security updates : - ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1, 9.9.x before 9.9.1-P1, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P1 does not properly handle resource records with a zero-length RDATA section, which allows...

8.5CVSS6.7AI score0.13405EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.31 views

Oracle Solaris Third-Party Patch Update : libtiff (cve_2012_1173_numeric_errors)

The remote Solaris system is missing necessary patches to address security updates : - Multiple integer overflows in tiffgetimage.c in LibTIFF 3.9.4 allow remote attackers to execute arbitrary code via a crafted tile size in a TIFF file, which is not properly handled by the 1 gtTileSeparate or 2...

6.8CVSS8.3AI score0.06918EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.38 views

Oracle Solaris Third-Party Patch Update : xdg-utils (cve_2008_0386_improper_input)

The remote Solaris system is missing necessary patches to address security updates : - Xdg-utils 1.0.2 and earlier allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a URL argument to 1 xdg-open or 2 xdg-email. CVE-2008-0386 %NASLMINLEVEL 70300 C Tenab...

6.8CVSS8.3AI score0.03171EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.27 views

Oracle Solaris Third-Party Patch Update : py_pil (multiple_vulnerabilities_in_python_image)

The remote Solaris system is missing necessary patches to address security updates : - The 1 loaddjpeg function in JpegImagePlugin.py, 2 Ghostscript function in EpsImagePlugin.py, 3 load function in IptcImagePlugin.py, and 4 copy function in Image.py in Python Image Library PIL 1.1.7 and earlier...

4.4CVSS8.2AI score0.00492EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.308 views

Oracle Solaris Third-Party Patch Update : libxslt (multiple_vulnerabilities_in_libxslt)

The remote Solaris system is missing necessary patches to address security updates : - The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 and earlier, as used in Google Chrome before 10.0.648.127 and other products, allows remote attackers to obtain potentially sensitive...

6.8CVSS8.8AI score0.02455EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.32 views

Oracle Solaris Third-Party Patch Update : icu (cve_2013_0900_race_conditions)

The remote Solaris system is missing necessary patches to address security updates : - Race condition in the International Components for Unicode ICU functionality in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, allows remote attackers to cause a...

6.8CVSS8.3AI score0.01339EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.30 views

Oracle Solaris Third-Party Patch Update : ejabberd (cve_2013_6169_cryptographic_issues)

The remote Solaris system is missing necessary patches to address security updates : - The modpubsub module modpubsub.erl in ejabberd 2.1.8 and 3.0.0-alpha-3 allows remote authenticated users to cause a denial of service infinite loop via a stanza with a publish tag that lacks a node attribute...

4.3CVSS5.4AI score0.02083EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.25 views

Oracle Solaris Third-Party Patch Update : sendmail (cve_2014_3956_information_disclosure)

The remote Solaris system is missing necessary patches to address security updates : - The smcloseonexec function in conf.c in sendmail before 8.14.9 has arguments in the wrong order, and consequently skips setting expected FDCLOEXEC flags, which allows local users to access unintended...

1.9CVSS5.4AI score0.0063EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.34 views

Oracle Solaris Third-Party Patch Update : squid (cve_2013_4123_input_validation)

The remote Solaris system is missing necessary patches to address security updates : - clientsiderequest.cc in Squid 3.2.x before 3.2.13 and 3.3.x before 3.3.8 allows remote attackers to cause a denial of service via a crafted port number in a HTTP Host header. CVE-2013-4123 %NASLMINLEVEL 70300 C...

5CVSS5.4AI score0.80451EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.32 views

Oracle Solaris Third-Party Patch Update : proftpd (cve_2011_4130_use_after)

The remote Solaris system is missing necessary patches to address security updates : - Use-after-free vulnerability in the Response API in ProFTPD before 1.3.3g allows remote authenticated users to execute arbitrary code via vectors involving an error that occurs after an FTP data transfer...

9CVSS7.8AI score0.12804EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.21 views

Oracle Solaris Third-Party Patch Update : gtk (cve_2012_2370_denial_of)

The remote Solaris system is missing necessary patches to address security updates : - Multiple integer overflows in the readbitmapfiledata function in io-xbm.c in gdk-pixbuf before 2.26.1 allow remote attackers to cause a denial of service application crash via a negative 1 height or 2 width in ...

5CVSS6.5AI score0.04096EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.31 views

Oracle Solaris Third-Party Patch Update : hplip (cve_2013_0200_link_following)

The remote Solaris system is missing necessary patches to address security updates : - HP Linux Imaging and Printing HPLIP through 3.12.4 allows local users to overwrite arbitrary files via a symlink attack on the 1 /tmp/hpcupsfilterc .bmp, 2 /tmp/hpcupsfilterk.bmp, 3 /tmp/hpcupsjob.out, 4...

1.9CVSS7.7AI score0.00444EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.27 views

Oracle Solaris Third-Party Patch Update : slocate (cve_2007_0227_information_disclosure)

The remote Solaris system is missing necessary patches to address security updates : - slocate 3.1 does not properly manage database entries that specify names of files in protected directories, which allows local users to obtain the names of private files. NOTE: another researcher reports that t...

5CVSS5.4AI score0.01673EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.53 views

Oracle Solaris Third-Party Patch Update : openssl (multiple_vulnerabilities_in_openssl6) (POODLE)

The remote Solaris system is missing necessary patches to address security updates : - Memory leak in d1srtp.c in the DTLS SRTP extension in OpenSSL 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service memory consumption via a crafted handshake message. CVE-2014-3513 - The SSL...

7.1CVSS6.4AI score0.99999EPSS
Exploits7References6
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.21 views

Oracle Solaris Third-Party Patch Update : samba (cve_2013_4475_access_control)

The remote Solaris system is missing necessary patches to address security updates : - Samba 3.2.x through 3.6.x before 3.6.20, 4.0.x before 4.0.11, and 4.1.x before 4.1.1, when vfsstreamsdepot or vfsstreamsxattr is enabled, allows remote attackers to bypass intended file restrictions by leveragi...

4CVSS7.9AI score0.09017EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.40 views

Oracle Solaris Third-Party Patch Update : telnet (cve_2011_4862_buffer_overflow)

The remote Solaris system is missing necessary patches to address security updates : - Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications aka krb5-appl 1.0.2 and earlier, Heimdal 1.5.1 and earlier, GNU inetutils, and possibly other...

10CVSS6AI score0.95104EPSS
Exploits19References3
Rows per page
Query Builder