Lucene search
K

763 matches found

ATTACKERKB
ATTACKERKB
added 2015/01/21 6:59 p.m.7 views

CVE-2015-0386

Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0, 12.1.2.0, and 12.1.3.0 allows remote attackers to affect availability via unknown vectors related to Web Listener, a different vulnerability than CVE-2013-0338, CVE-2013-2877, and CVE-2014-0191...

5CVSS5.6AI score0.081EPSS
Exploits1References3
CNVD
CNVD
added 2015/01/04 12:0 a.m.3 views

Facebook HipHop Virtual Machine Information Disclosure Vulnerability

Facebook HipHop Virtual Machine is a HipHop virtual machine developed by Facebook Inc. that significantly improves PHP performance for loading dynamic pages. An information disclosure vulnerability exists in versions of Facebook HipHop Virtual Machine prior to 3.3.0, which allows remote attackers...

5CVSS6.2AI score0.01681EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2014/07/31 3:18 p.m.4 views

Important: Red Hat Security Advisory: openstack-keystone security update

Updated openstack-keystone packages that fix two security issues are now available for Red Hat Enterprise Linux OpenStack Platform 3.0 and 4.0. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which...

6.5CVSS5.8AI score0.02308EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2014/02/15 12:0 a.m.4 views

PT-2014-2216 · Iproute2 · Iproute2

Name of the Vulnerable Software and Affected Versions: iproute2 versions prior to 3.3.0 Description: The issue allows local users to overwrite arbitrary files via a symlink attack on a temporary file used by certain scripts. This can be exploited through the configure script or the...

3.3CVSS6AI score0.00352EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2013/01/10 8:39 p.m.7 views

rubygem-actionpack: XSS Vulnerability in strip_tags

Cross-site scripting XSS vulnerability in actionpack/lib/actionview/helpers/sanitizehelper.rb in the striptags helper in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 allows remote attackers to inject arbitrary web script or HTML via malformed HTML markup...

4.3CVSS7.3AI score0.01977EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2012/09/20 5:20 p.m.6 views

Teiid: JDBC socket does not encrypt client login messages by default

The Teiid Java Database Connectivity JDBC socket, as used in JBoss Enterprise Data Services Platform before 5.3.0, does not encrypt login messages by default contrary to documentation and specification, which allows remote attackers to obtain login credentials via a man-in-the-middle MITM attack...

4.3CVSS5.9AI score0.01763EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2011/05/05 6:52 p.m.6 views

(CGIHTTPServer): CGI script source code disclosure

The iscgi method in CGIHTTPServer.py in the CGIHTTPServer module in Python 2.5, 2.6, and 3.0 allows remote attackers to read script source code via an HTTP GET request that lacks a / slash character at the beginning of the URI...

5CVSS7.3AI score0.03924EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2011/01/25 3:30 p.m.5 views

3.0.3): Arbitrary Java code execution via an HTTP request containing a specially-crafted .jar file

SpringSource Spring Framework 2.5.x before 2.5.6.SEC02, 2.5.7 before 2.5.7.SR01, and 3.0.x before 3.0.3 allows remote attackers to execute arbitrary code via an HTTP request containing class.classLoader.URLs0=jar: followed by a URL of a crafted .jar file...

6CVSS7.8AI score0.52003EPSS
Exploits11References4
RedHat Linux
RedHat Linux
added 2010/03/17 1:4 p.m.5 views

Firefox crashes with evidence of memory corruption

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors...

10CVSS7.3AI score0.05458EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2010/03/17 12:38 p.m.6 views

Firefox crashes with evidence of memory corruption

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors...

10CVSS7.3AI score0.05458EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/10/27 11:35 p.m.4 views

Firefox crashes with evidence of memory corruption

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors...

10CVSS7.3AI score0.05458EPSS
Exploits1References4
OSV
OSV
added 2008/05/12 9:20 p.m.5 views

AZL-7422 CVE-2008-2149 affecting package wordnet for versions less than 3.0-38

Stack-based buffer overflow in the searchwn function in Wordnet 2.0, 2.1, and 3.0 might allow context-dependent attackers to execute arbitrary code via a long command line option. NOTE: this issue probably does not cross privilege boundaries except in cases in which Wordnet is used as a back end...

7.5CVSS6.3AI score0.04087EPSS
Exploits2References1
OSV
OSV
added 2008/05/12 9:20 p.m.2 views

DEBIAN-CVE-2008-2149

Stack-based buffer overflow in the searchwn function in Wordnet 2.0, 2.1, and 3.0 might allow context-dependent attackers to execute arbitrary code via a long command line option. NOTE: this issue probably does not cross privilege boundaries except in cases in which Wordnet is used as a back end...

7.5CVSS8.4AI score0.04087EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2006/07/14 12:0 a.m.4 views

PT-2006-4479 · Flexwatch · Flexwatch Network Camera

Name of the Vulnerable Software and Affected Versions: FlexWATCH Network Camera versions 3.0 and earlier Description: A directory traversal issue allows remote attackers to bypass access restrictions for sensitive pages, such as "admin/aindex.asp" or "admin/aindex.html", by using a ".." dot dot a...

7.5CVSS6.7AI score0.0305EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2005/05/25 12:0 a.m.7 views

PT-2005-2722 · Ezdwc · Ezdwc Newsletterez

Name of the Vulnerable Software and Affected Versions: ezdwc NewsletterEz version 3.0 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the password parameter in the "login.asp" file. Recommendations: For ezdwc NewsletterEz version 3.0, conside...

7.5CVSS7.9AI score0.0133EPSS
Exploits1References5
Microsoft Security Update
Microsoft Security Update
added 1976/01/01 12:0 a.m.3 views

2024-11 Security and Quality Rollup for .NET Framework 2.0, 3.0, 3.5 SP1, 4.6.2 for Windows Server 2008 SP2 (KB5046546)

2024-11 Security and Quality Rollup for .NET Framework 2.0, 3.0, 3.5 SP1, 4.6.2 for Windows Server 2008 SP2 KB5046546...

7AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1976/01/01 12:0 a.m.3 views

2024-08 Security and Quality Rollup for .NET Framework 2.0, 3.0, 3.5 SP1, 4.6.2 for Windows Server 2008 SP2 for x64 (KB5042357)

2024-08 Security and Quality Rollup for .NET Framework 2.0, 3.0, 3.5 SP1, 4.6.2 for Windows Server 2008 SP2 for x64 KB5042357...

7AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1976/01/01 12:0 a.m.2 views

Microsoft .NET Framework 3.0: x86 (KB928416)

Microsoft .NET Framework 3.0: x86 KB928416...

6.9AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1976/01/01 12:0 a.m.6 views

2022-07 Cumulative Update Preview for .NET Framework 3.5 and 4.8 for Windows 10 Version 21H2 for ARM64 (KB5015730)

2022-07 Cumulative Update Preview for .NET Framework 3.5 and 4.8 for Windows 10 Version 21H2 for ARM64 KB5015730...

7AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1976/01/01 12:0 a.m.3 views

July, 2017 Preview of Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 on Windows Server 2008 SP2 for x64 (KB4032116)

July, 2017 Preview of Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 on Windows Server 2008 SP2 for x64 KB4032116...

7AI score
Exploits0
Rows per page
Query Builder