Lucene search
K

114 matches found

Zero Day Initiative
Zero Day Initiative
added 2012/02/08 12:0 a.m.36 views

IBM Rational Rhapsody BBFlashBack.Recorder.1 TestCompatibilityRecordMode Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Rational Rhapsody. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within BB FlashBa...

9CVSS7.6AI score0.03585EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2009/09/22 2:50 p.m.2 views

kernel: uninit op in SOCKOPS_WRAP() leads to privesc

The Linux kernel 2.6.0 through 2.6.30.4, and 2.4.4 through 2.4.37.4, does not initialize all function pointers for socket operations in protoops structures, which allows local users to trigger a NULL pointer dereference and gain privileges by using mmap to map page zero, placing arbitrary code on...

7.8CVSS7.1AI score0.14749EPSS
Exploits17References4
securityvulns
securityvulns
added 2009/08/31 12:0 a.m.66 views

Linux kernel uninitialized pointers

protoops structure uninitialized pointers...

7.2CVSS4.1AI score0.14749EPSS
Exploits17References2Affected Software1
Prion
Prion
added 2009/06/04 4:30 p.m.10 views

Session fixation

The pciregisteriommuregion function in arch/sparc/kernel/pcicommon.c in the Linux kernel before 2.6.29 on the sparc64 platform allows local users to cause a denial of service system crash by reading the /proc/iomem file, related to uninitialized pointers and the requestresource function...

4.9CVSS6.5AI score0.00673EPSS
Exploits0References10Affected Software1
NVD
NVD
added 2009/06/04 4:30 p.m.26 views

CVE-2009-1914

The pciregisteriommuregion function in arch/sparc/kernel/pcicommon.c in the Linux kernel before 2.6.29 on the sparc64 platform allows local users to cause a denial of service system crash by reading the /proc/iomem file, related to uninitialized pointers and the requestresource function...

4.9CVSS4.3AI score0.00673EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2009/06/04 4:30 p.m.31 views

CVE-2009-1914

The pciregisteriommuregion function in arch/sparc/kernel/pcicommon.c in the Linux kernel before 2.6.29 on the sparc64 platform allows local users to cause a denial of service system crash by reading the /proc/iomem file, related to uninitialized pointers and the requestresource function...

4.9CVSS5.9AI score0.00673EPSS
Exploits0References2
NVD
NVD
added 2009/01/21 1:30 a.m.30 views

CVE-2009-0219

The PDF distiller in the Attachment Service in Research in Motion RIM BlackBerry Enterprise Server BES 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 performs delete operations on uninitialized pointers, which allows user-assisted remote...

9.3CVSS7.2AI score0.04888EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2009/01/21 1:30 a.m.3 views

CVE-2009-0219

The PDF distiller in the Attachment Service in Research in Motion RIM BlackBerry Enterprise Server BES 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 performs delete operations on uninitialized pointers, which allows user-assisted remote...

9.3CVSS6AI score0.04888EPSS
Exploits0References7
Exploit DB
Exploit DB
added 2008/07/08 12:0 a.m.46 views

Poppler 0.8.4 - libpoppler Uninitialized pointer Code Execution

Felipe Andres Manzano [email protected] updates in http://felipe.andres.manzano.googlepages.com/home ''' Sumary: ======= The libpoppler pdf rendering library, can free uninitialized pointers, leading to arbitrary code execution. This vulnerability results from memory management bugs in th...

7.4AI score
Exploits0
FreeBSD
FreeBSD
added 2008/07/07 12:0 a.m.35 views

poppler -- uninitialized pointer

Felipe Andres Manzano reports: The libpoppler pdf rendering library, can free uninitialized pointers, leading to arbitrary code execution. This vulnerability results from memory management bugs in the Page class constructor/destructor...

7.5CVSS6.7AI score0.14253EPSS
Exploits2References1
RedHat Linux
RedHat Linux
added 2008/03/18 6:35 p.m.5 views

krb5: uninitialized pointer use in krb5kdc

KDC in MIT Kerberos 5 krb5kdc does not set a global variable for some krb4 message types, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via crafted messages that trigger a NULL pointer dereference or double-free...

9.8CVSS7.6AI score0.10141EPSS
Exploits1References4
securityvulns
securityvulns
added 2007/12/06 12:0 a.m.33 views

VLC Player ActiveX code exectuion

Few uninitialized pointers references...

5.2AI score
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2007/02/18 12:0 a.m.32 views

SUSE-SA:2007:004: krb5

The remote host is missing the patch for the advisory SUSE-SA:2007:004 krb5. Various bugs in the Kerberos5 libraries and tools were fixed which could be used by remote attackers to crash and potentially execute code in kadmind. - CVE-2006-6144 / MITKRB5-SA-2006-002: the RPC library could call an...

9.3CVSS8.1AI score0.07926EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2006/12/31 5:0 a.m.26 views

CVE-2006-6144

The "mechglue" abstraction interface of the GSS-API library for Kerberos 5 1.5 through 1.5.1, as used in Kerberos administration daemon kadmind and other products that use this library, allows remote attackers to cause a denial of service crash via unspecified vectors that cause mechglue to free...

5CVSS7.2AI score0.05216EPSS
Exploits0References1
Rows per page
Query Builder