Lucene search
K

5410 matches found

Tenable Nessus
Tenable Nessus
added 2009/09/01 12:0 a.m.10 views

Opera < 10.00 Multiple Vulnerabilities

Binary data 800811.prm...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2009/09/01 12:0 a.m.27 views

Opera < 10.00 Multiple Vulnerabilities

Binary data 5146.prm...

7.5CVSS7.3AI score0.02221EPSS
Exploits0References6
Packet Storm
Packet Storm
added 2009/09/01 12:0 a.m.29 views

AIMP2 Audio Converter 2.53b330 Crash

!/usr/bin/python AIMP2 Audio Converter = 2.53 build 330 .pls/.m3u Unicode local crash PoC Found & exploited by: mrme Download: ftp://www.catode.ru/AIMP/aimp2.51.330.zip Tested on: Wind0ws XP SP3 Unicode overflow, maybe someone with better skills can exploit this you need to overwrite SEH handler...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2009/09/01 12:0 a.m.32 views

AIMP2 Audio Converter 2.53b330 - &#039;.pls&#039; / &#039;.m3u&#039; Unicode Crash (PoC)

!/usr/bin/python AIMP2 Audio Converter = 2.53 build 330 .pls/.m3u Unicode local crash PoC Found & exploited by: mrme Download: ftp://www.catode.ru/AIMP/aimp2.51.330.zip Tested on: Wind0ws XP SP3 Unicode overflow, maybe someone with better skills can exploit this you need to overwrite SEH handler...

7.4AI score
Exploits0
Opera Security Advisories
Opera Security Advisories
added 2009/08/29 12:0 a.m.20 views

Opera may show some incorrect characters in the address bar

Some Unicode characters are treated incorrectly, which might cause international domain names that use them to be shown in the wrong format. Showing these addresses in Unicode instead of punycode could allow for limited address spoofing...

2.1AI score
Exploits0Affected Software1
CVE
CVE
added 2009/08/28 3:0 p.m.49 views

CVE-2009-3006

The CVE-2009-3006 entry concerns Maxthon Browser 2.5.3.80 UNICODE. The vulnerability allows a remote attacker to spoof the address bar by using window.open with a relative URI, causing the browser to display an arbitrary URL on the site visited by the victim and potentially trigger a spoofed logi...

4.3CVSS6.9AI score0.01046EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2009/08/20 12:0 a.m.25 views

openSUSE Security Update : icu (icu-1028)

icu does not properly handle invalid byte sequences during Unicode conversion. Remote attackers could potentially exploit that to conduct conduct cross-site scripting XSS attacks CVE-2009-0153. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

4.3CVSS5.8AI score0.0368EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2009/08/18 12:0 a.m.262 views

RHEL 4 : kernel (RHSA-2009:1211)

Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

7.8CVSS6.1AI score0.05471EPSS
Exploits3References7
RedHat Linux
RedHat Linux
added 2009/08/13 3:30 p.m.5 views

kernel: cifs: fix potential buffer overruns when converting unicode strings sent by server

Multiple buffer overflows in the cifs subsystem in the Linux kernel before 2.6.29.4 allow remote CIFS servers to cause a denial of service memory corruption and possibly have unspecified other impact via 1 a malformed Unicode string, related to Unicode string area alignment in fs/cifs/sess.c; or ...

7.1CVSS6.3AI score0.03034EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/08/13 3:30 p.m.65 views

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

7.8CVSS6.3AI score0.05471EPSS
Exploits3References10
Oracle linux
Oracle linux
added 2009/08/13 12:0 a.m.61 views

kernel security and bug fix update

2.6.9-89.0.7.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race avoidanc...

7.8CVSS1.3AI score0.05471EPSS
Exploits3
Prion
Prion
added 2009/08/11 10:30 a.m.26 views

Cross site scripting

CA SiteMinder allows remote attackers to bypass cross-site scripting XSS protections for J2EE applications via a request containing non-canonical, "overlong Unicode" in place of blacklisted characters...

4.3CVSS6.2AI score0.04359EPSS
Exploits1References1
NVD
NVD
added 2009/08/11 10:30 a.m.25 views

CVE-2009-2705

CA SiteMinder allows remote attackers to bypass cross-site scripting XSS protections for J2EE applications via a request containing non-canonical, "overlong Unicode" in place of blacklisted characters...

4.3CVSS5.8AI score0.04359EPSS
Exploits1References1
Cvelist
Cvelist
added 2009/08/11 10:0 a.m.28 views

CVE-2009-2705

CA SiteMinder allows remote attackers to bypass cross-site scripting XSS protections for J2EE applications via a request containing non-canonical, "overlong Unicode" in place of blacklisted characters...

5.8AI score0.04359EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2009/08/11 12:0 a.m.4 views

PT-2009-5093 · Ca · Ca Siteminder

Name of the Vulnerable Software and Affected Versions: CA SiteMinder affected versions not specified Description: The issue allows remote attackers to bypass cross-site scripting XSS protections for J2EE applications. This is achieved by sending a request that contains non-canonical, "overlong...

4.3CVSS5.5AI score0.04359EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2009/08/07 12:0 a.m.22 views

Microsoft Internet Explorer 'findText()' Unicode Parsing DoS Vulnerability

This host has Internet Explorer installed and is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: gbmsiefindtextdosvulnaug09.nasl 6527 2017-07-05 05:56:34Z cfischer $ Microsoft Internet Explorer 'findText' Unicode Parsing DoS Vulnerability Authors: Sharath S Copyright:...

4.3CVSS0.1AI score0.22556EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2009/08/07 12:0 a.m.24 views

Microsoft Internet Explorer 'findText()' Unicode Parsing DoS Vulnerability

Internet Explorer is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS5.2AI score0.22556EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2009/08/05 12:0 a.m.23 views

RadASM 2.2.1.5 Format String

RadASM 2.2.1.5 .mnu File Format string Poc By SkuLL-HacKeR GreetZ : hack4love - Aser ro7 - ThE g0bL!N - Qabandi EAX 00002E2E ECX 41413D92 ECX overwrited EDX 00000002 EBX 00000000 ESP 0013F894 EBP 0013F9AC ASCII "..................................................................." ESI 00187658 ASC...

0.7AI score
Exploits0
Prion
Prion
added 2009/08/03 2:30 p.m.17 views

Code injection

mshtml.dll in Microsoft Internet Explorer 7 and 8 on Windows XP SP3 allows remote attackers to cause a denial of service application crash by calling the JavaScript findText method with a crafted Unicode string in the first argument, and only one additional argument, as demonstrated by a second...

4.3CVSS7AI score0.22556EPSS
Exploits0References4Affected Software1
exploitpack
exploitpack
added 2009/08/03 12:0 a.m.9 views

RadASM 2.2.1.5 - .mnu Local Format String (PoC)

RadASM 2.2.1.5 - .mnu Local Format String PoC RadASM 2.2.1.5 .mnu File Format string Poc By SkuLL-HacKeR GreetZ : hack4love - Aser ro7 - ThE g0bL!N - Qabandi EAX 00002E2E ECX 41413D92 ECX overwrited EDX 00000002 EBX 00000000 ESP 0013F894 EBP 0013F9AC ASCII...

0.5AI score
Exploits0
Rows per page
Query Builder