CentOS 9 : openssh-9.9p1-3.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the openssh-9.9p1-3.el9 build changelog. - Reject URL-strings with NULL characters CVE-2025-61985 - Reject usernames with control characters CVE-2025-61984 Note that Nessus has not...

EUVD-2007-2714

Malware in sbrugna...

CVE-2023-49237

An issue was discovered on TRENDnet TV-IP1314PI 5.5.3 200714 devices. Command injection can occur because the system function is used by davinci to unpack language packs without strict filtering of URL strings...

Command injection

An issue was discovered on TRENDnet TV-IP1314PI 5.5.3 200714 devices. Command injection can occur because the system function is used by davinci to unpack language packs without strict filtering of URL strings...

CVE-2023-49237

An issue was discovered on TRENDnet TV-IP1314PI 5.5.3 200714 devices. Command injection can occur because the system function is used by davinci to unpack language packs without strict filtering of URL strings...

Cross-site Scripting (XSS)

moodle/moodle is vulnerable to cross-site scripting XSS. The attack is possible because it does not escape the message and moreinfourl parameters in outputrenderers.php, allowing an attacker to inject malicious scripts and thereby causing the payload to be rendered and executed when the error...

Memory corruption

Opera before 11.64 does not properly allocate memory for URL strings, which allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted string...

FreeBSD : mplayer -- multiple vulnerabilities (de4d4110-ebce-11dc-ae14-0016179b2dd5)

The Mplayer team reports : A buffer overflow was found in the code used to extract album titles from CDDB server answers. When parsing answers from the CDDB server, the album title is copied into a fixed-size buffer with insufficient size checks, which may cause a buffer overflow. A malicious...

CVE-2002-2216

Soft3304 04WebServer before 1.20 does not properly process URL strings, which allows remote attackers to obtain unspecified sensitive information...

Microsoft Excel 20002003 (French) - Hlink Local Buffer Overflow

Microsoft Excel 20002003 French - Hlink Local Buffer Overflow / -/\NSRocket/- presents Microsoft Excel 2000 and 2003 exploit for WinXP SP2 french with shellcode source integrated Description: Microsoft Excel is prone to a remote code execution issue which may be triggered when a malformed Excel...

Microsoft Excel URL unicode buffer overflow

Added: 06/21/2006 CVE: CVE-2006-3086 BID: 18500 OSVDB: 26666 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows platforms. Problem A buffer overflow in Excel when processing long URL strings allows command execution when a user clicks ...