Lucene search
K

175 matches found

ThreatPost
ThreatPost
added 2012/08/08 3:14 p.m.23 views

Average Web App Attacked Every Three Days

Do not envy the life of a Web app. It’s a brutal, public existence filled with attacks from all sides. In fact, a new report by Imperva sheds some light on this sad life, showing that a typical Web app is attacked once every three days and some are targeted as many as 2,700 times in a given year...

0.3AI score
Exploits0References1
seebug.org
seebug.org
added 2010/05/31 12:0 a.m.20 views

VLC Media Player <=1.0.6 Malformed Media File Crash PoC

No description provided by source. !/usr/bin/python VLC Media Player =1.0.6 Malformed Media File Crash PoC Found By: DrIDE Tested: Windows 7, Ubuntu 9, OSX 10.6.X Download: http://www.videolan.org Notes: Register overwrites seem very unpredictable at best... Greets: Offsec and Corelan Teams...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2010/05/28 12:0 a.m.12 views

VideoLAN VLC Media Player 1.0.6 - .avi Media File Crash (PoC)

VideoLAN VLC Media Player 1.0.6 - .avi Media File Crash PoC !/usr/bin/python VLC Media Player =1.0.6 Malformed Media File Crash PoC Found By: DrIDE Tested: Windows 7, Ubuntu 9, OSX 10.6.X Download: http://www.videolan.org Notes: Register overwrites seem very unpredictable at best... Greets: Offse...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2010/05/11 12:0 a.m.51 views

Month of PHP Security - Summary - 1st May - 10th May

Hi everyone, 10 days ago the Month of PHP Security 2010 has started at http://www.php-security.org/ and meanwhile 20 vulnerabilities were posted and also 4 user submitted articles were published. Here is a short summary of what was released so far. You can follow the Month of PHP Security on...

8.6AI score
Exploits0
securityvulns
securityvulns
added 2010/03/01 12:0 a.m.34 views

Asterisk invalid ACL processing

/0 CIDR in ACL is processed in unpredictable way...

3.1AI score
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2009/11/23 12:0 a.m.7 views

PT-2009-5845 · Php · Php

Name of the Vulnerable Software and Affected Versions: PHP versions 5.3.x before 5.3.1 Description: The issue in PHP does not recognize the safe mode include dir directive, which allows context-dependent attackers to have an unknown impact by triggering the failure of PHP scripts that perform...

7.5CVSS4.8AI score0.02696EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2006/10/14 12:0 a.m.21 views

Debian DSA-960-3 : libmail-audit-perl - insecure temporary file creation

The former update caused temporary files to be created in the current working directory due to a wrong function argument. This update will create temporary files in the users home directory if HOME is set or in the common temporary directory otherwise, usually /tmp. For completeness below is a co...

2.1CVSS5.4AI score0.00353EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2006/05/28 11:2 p.m.28 views

CVE-2006-1174

useradd in shadow-utils before 4.0.3, and possibly other versions before 4.0.8, does not provide a required argument to the open function when creating a new user mailbox, which causes the mailbox to be created with unpredictable permissions and possibly allows attackers to read or modify the...

3.7CVSS5.9AI score0.00444EPSS
Exploits0References1
NVD
NVD
added 2006/05/28 11:2 p.m.17 views

CVE-2006-1174

useradd in shadow-utils before 4.0.3, and possibly other versions before 4.0.8, does not provide a required argument to the open function when creating a new user mailbox, which causes the mailbox to be created with unpredictable permissions and possibly allows attackers to read or modify the...

3.7CVSS6.2AI score0.00444EPSS
Exploits0References26
Cvelist
Cvelist
added 2006/05/28 11:0 p.m.31 views

CVE-2006-1174

useradd in shadow-utils before 4.0.3, and possibly other versions before 4.0.8, does not provide a required argument to the open function when creating a new user mailbox, which causes the mailbox to be created with unpredictable permissions and possibly allows attackers to read or modify the...

6AI score0.00444EPSS
Exploits0References26
exploitpack
exploitpack
added 2003/03/21 12:0 a.m.17 views

Check Point FW-1 Syslog Daemon - Unfiltered Escape Sequence

Check Point FW-1 Syslog Daemon - Unfiltered Escape Sequence source: https://www.securityfocus.com/bid/7161/info An issue has been discovered in Check Point FW-1 syslog daemon when attempting to process a malicious, remotely supplied, syslog message. Specifically, some messages containing escape...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2003/03/21 12:0 a.m.28 views

Check Point FW-1 Syslog Daemon - Unfiltered Escape Sequence

source: https://www.securityfocus.com/bid/7161/info An issue has been discovered in Check Point FW-1 syslog daemon when attempting to process a malicious, remotely supplied, syslog message. Specifically, some messages containing escape sequences are not properly filtered out. This may result in...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2003/03/15 12:0 a.m.11 views

Sun JDKSDK 1.31.4 IBM JDK 1.3.1 BEA Systems WebLogic 567 - java.util.zip Null Value Denial of Service (3)

Sun JDKSDK 1.31.4 IBM JDK 1.3.1 BEA Systems WebLogic 567 - java.util.zip Null Value Denial of Service 3 source: https://www.securityfocus.com/bid/7109/info Several implementations of the Java Virtual Machine have been reported to be prone to a denial of service condition. This vulnerability occur...

Exploits0
Exploit DB
Exploit DB
added 2003/03/15 12:0 a.m.22 views

Sun JDK/SDK 1.3/1.4 / IBM JDK 1.3.1 / BEA Systems WebLogic 5/6/7 - java.util.zip Null Value Denial of Service (2)

source: https://www.securityfocus.com/bid/7109/info Several implementations of the Java Virtual Machine have been reported to be prone to a denial of service condition. This vulnerability occurs in several methods in the java.util.zip class. The methods can be called with certain types of...

7.4AI score
Exploits0
Debian CVE
Debian CVE
added 2003/01/08 5:0 a.m.30 views

CVE-2002-1395

Internet Message IM 141-18 and earlier uses predictable file and directory names, which allows local users to 1 obtain unauthorized directory permissions via a temporary directory used by impwagent, and 2 overwrite and create arbitrary files via immknmz...

2.1CVSS6.1AI score0.00371EPSS
Exploits0
Rows per page
Query Builder