Lucene search
K

522 matches found

UbuntuCve
UbuntuCve
added 2010/08/19 12:0 a.m.43 views

CVE-2010-2239

Red Hat libvirt, possibly 0.6.0 through 0.8.2, creates new images without setting the user-defined backing-store format, which allows guest OS users to read arbitrary files on the host OS via unspecified vectors...

4.4CVSS7.3AI score0.00325EPSS
Exploits0References2
ThreatPost
ThreatPost
added 2010/05/26 2:41 p.m.9 views

It's Time For a New Privacy Model

The current raft of stories about privacy problems on Facebook and other high-profile sites is leading to a renewed consideration in some circles of whether there’s a need for tighter government regulation of sites’ privacy policies and user notifications. Regulation, experts say, may be the only...

0.1AI score
Exploits0References2
Drupal
Drupal
added 2010/03/03 12:0 a.m.15 views

SA-CONTRIB-2010-022 - Internationalization - Arbitrary code execution

The Internationalization module enables translation of user defined strings using Drupal's locale interface. Some of these user defined strings have Input formats associated with them. As translators can translate texts before they go through the Input filters, using some filters like the PHP...

7.4AI score
Exploits0References7
Check Point Advisories
Check Point Advisories
added 2009/11/26 12:0 a.m.9 views

MySQL CREATE FUNCTION init_syms Buffer Overflow (CVE-2005-2558)

MySQL is an open-source implementation of a relational database management system. MySQL supports the SQL Structured Query Language database query language. To extend the functionality of SQL, MySQL provides a mechanism to call C/C++ functions in external binary libraries. This mechanism is known...

4.6CVSS8AI score0.02328EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2009/10/26 12:0 a.m.10 views

MySQL CREATE FUNCTION Table Arbitrary Library Injection (CVE-2005-0710)

MySQL is an open-source implementation of a relational database management system supporting the SQL Structured Query Language database query language. MySQL allows users to create user-defined functions UDF through the CREATE FUNCTION command. A vulnerability exists in the user-defined function...

4.6CVSS7.4AI score0.12841EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2009/10/25 12:0 a.m.12 views

MySQL CREATE FUNCTION libc Arbitrary Code Execution (CVE-2005-0709)

MySQL is an open-source implementation of a database system supporting the SQL Structured Query Language database query language. MySQL implements a CREATE FUNCTION command that enables a user to create a user-defined function UDF. There exists a vulnerability in the CREATE FUNCTION command of...

4.6CVSS7.6AI score0.1844EPSS
Exploits1
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.11 views

Fedora Update for xfce4-places-plugin FEDORA-2007-4368

Check for the Version of xfce4-places-plugin OpenVAS Vulnerability Test Fedora Update for xfce4-places-plugin FEDORA-2007-4368 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/o...

7.4AI score
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.14 views

Fedora Update for xfce4-places-plugin FEDORA-2007-4385

Check for the Version of xfce4-places-plugin OpenVAS Vulnerability Test Fedora Update for xfce4-places-plugin FEDORA-2007-4385 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/o...

7.4AI score
Exploits0References2
OpenVAS
OpenVAS
added 2009/01/07 12:0 a.m.31 views

Debian Security Advisory DSA 1694-1 (xterm)

The remote host is missing an update to xterm announced via advisory DSA 1694-1. OpenVAS Vulnerability Test $Id: deb16941.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1694-1 xterm Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

9.3CVSS0.04974EPSS
Exploits0
OpenVAS
OpenVAS
added 2009/01/07 12:0 a.m.30 views

Debian: Security Advisory (DSA-1694-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.5AI score0.04974EPSS
Exploits0References2
OSV
OSV
added 2009/01/02 12:0 a.m.56 views

DSA-1694-1 xterm - remote code execution

Bulletin has no description...

9.3CVSS7.2AI score0.04974EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/09/12 12:0 a.m.31 views

Fedora 9 : libHX-1.23-1.fc9 / pam_mount-0.47-1.fc9 (2008-7976)

A security flaw in the pammount's handling of user defined volumes using the 'luserconf' option has been fixed in this update. The vulnerability allowed users to arbitrarily mount filesystems at arbitrary locations. More details about this vulnerability can be found in the announcement message se...

5.5AI score
Exploits0References4
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.18 views

Debian: Security Advisory (DSA-831-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.6CVSS6.6AI score0.02328EPSS
Exploits0References3
PostrgeSql
PostrgeSql
added 2008/01/09 9:0 p.m.70 views

Vulnerability in core server (CVE-2007-6600)

Two vulnerabilities in how ANALYZE executes user defined functions that are part of expression indexes allows users to gain superuser privileges. A valid login that has permissions to create functions and tables is required to exploit this vulnearbility...

6.5CVSS7.2AI score0.03098EPSS
Exploits1Affected Software1
seebug.org
seebug.org
added 2007/12/17 12:0 a.m.44 views

MySQL 4.x/5.0 User-Defined Function Local Privilege Escalation Exploit

No description provided by source. / $Id: raptorudf2.c,v 1.1 2006/01/18 17:58:54 raptor Exp $ raptorudf2.c - dynamic library for dosystem MySQL UDF Copyright c 2006 Marco Ivaldi [email protected] This is an helper dynamic library for local privilege escalation through MySQL run with root...

7.1AI score
Exploits0
Fedora
Fedora
added 2007/12/15 7:31 p.m.16 views

[SECURITY] Fedora 8 Update: xfce4-places-plugin-1.0.0-2.fc8

A menu with quick access to folders, documents, and removable media. The Places plugin brings much of the functionality of GNOME=E2=80=99s Places me nu to Xfce. It puts a simple button on the panel. Clicking on this button opens up a menu with 4 sections: 1 System-defined directories home folder,...

1.6AI score
Exploits0
Fedora
Fedora
added 2007/12/15 7:29 p.m.14 views

[SECURITY] Fedora 7 Update: xfce4-places-plugin-1.0.0-2.fc7

A menu with quick access to folders, documents, and removable media. The Places plugin brings much of the functionality of GNOME=E2=80=99s Places me nu to Xfce. It puts a simple button on the panel. Clicking on this button opens up a menu with 4 sections: 1 System-defined directories home folder,...

1.6AI score
Exploits0
seebug.org
seebug.org
added 2007/02/07 12:0 a.m.20 views

MySQL 4.x/5.0 User-Defined Function Command Execution Exploit (win)

No description provided by source. -- raptorwinudf.sql - A MySQL UDF backdoor kit for Windows -- Copyright c 2007 Marco Ivaldi [email protected] -- -- This is a MySQL backdoor kit for Windows based on the UDFs User Defined -- Functions mechanism. Use it to spawn a reverse shell netcat UDF on...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/02/06 12:0 a.m.57 views

MySQL 4.x5.0 (Windows) - User-Defined Function Command Execution

MySQL 4.x5.0 Windows - User-Defined Function Command Execution -- raptorwinudf.sql - A MySQL UDF backdoor kit for Windows -- Copyright c 2007 Marco Ivaldi -- -- This is a MySQL backdoor kit for Windows based on the UDFs User Defined -- Functions mechanism. Use it to spawn a reverse shell netcat U...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2006/08/28 12:0 a.m.53 views

Citrix Metaframe privilege escalation

Weak permissions for registry key allow user defined DLL to be attacjed to system level process...

3.3AI score
Exploits0References1Affected Software3
Rows per page
Query Builder