Lucene search
K

159 matches found

Microsoft CVE
Microsoft CVE
added 2018/04/10 7:0 a.m.24 views

Windows Kernel Information Disclosure Vulnerability

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an attacker would have to log on ...

5.5CVSS1.7AI score0.0188EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2018/03/13 7:0 a.m.50 views

Windows Remote Assistance Information Disclosure Vulnerability

An information disclosure vulnerability exists when Windows Remote Assistance incorrectly processes XML External Entities XXE. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit this condition, an attacker would ne...

3.1CVSS1.1AI score0.21899EPSS
Exploits4
Microsoft CVE
Microsoft CVE
added 2018/02/13 8:0 a.m.29 views

Windows Kernel Information Disclosure Vulnerability

An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an attacker would have t...

4.7CVSS2.7AI score0.02131EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2018/02/13 8:0 a.m.29 views

Windows Kernel Information Disclosure Vulnerability

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an attacker would have to log on ...

4.7CVSS1.7AI score0.01615EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2017/11/14 8:0 a.m.23 views

Windows GDI Information Disclosure Vulnerability

A Win32k information disclosure vulnerability exists when the Windows GDI component improperly discloses kernel memory addresses. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an attacker...

4.7CVSS1.6AI score0.02091EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/10/11 12:0 a.m.28 views

Microsoft Windows Multiple Vulnerabilities (KB4042067)

This host is missing a critical security update according to Microsoft KB4042067. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.5AI score0.64132EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2017/06/13 7:0 a.m.30 views

Windows Kernel Information Disclosure Vulnerability

An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory. To exploit this vulnerability, an authenticated attacker could run a specially crafted application. An attacker who successfully exploited this vulnerability could obtain information t...

6.5CVSS3.1AI score0.14265EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2017/03/14 7:0 a.m.21 views

Windows Uniscribe Information Disclosure Vulnerability

An information disclosure vulnerability exists when Windows Uniscribe improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are multiple ways an attacker could exploit the...

4.4CVSS2.1AI score0.22471EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2017/03/01 12:18 a.m.31 views

CVE-2017-2625

It was discovered that libXdmcp used weak entropy to generate session keys. On a multi-user system using xdmcp, a local attacker could potentially use information available from the process list to brute force the key, allowing them to hijack other users' sessions...

6.5CVSS3.5AI score0.00534EPSS
Exploits3References1
Microsoft CVE
Microsoft CVE
added 2016/12/13 8:0 a.m.26 views

Microsoft Browser Information Disclosure Vulnerability

An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability, in a web-based attack...

4.3CVSS1.9AI score0.14972EPSS
Exploits0
Kitploit
Kitploit
added 2016/11/18 2:24 p.m.20 views

Acunetix v11 - Web Application Security Testing Tool

London, UK – November 2016 – Acunetix, the pioneer in automated web application security software, has announced the release of version 11. New integrated vulnerability management features extend the enterprise’s ability to comprehensively manage, prioritise and control vulnerability threats –...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2016/04/13 12:0 a.m.39 views

Microsoft Windows XML Core Services Remote Code Execution Vulnerability (3148541)

This host is missing a critical security update according to Microsoft Bulletin MS15-040. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS7.9AI score0.15709EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2014/12/10 12:0 a.m.51 views

Microsoft Internet Explorer Multiple Vulnerabilities (3008923)

This host is missing a critical security update according to Microsoft Bulletin MS14-080. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.3CVSS5AI score0.24646EPSS
Exploits7References12
OpenVAS
OpenVAS
added 2014/03/19 12:0 a.m.36 views

Google Chrome Multiple Vulnerabilities-03 (Mar 2014) - Windows

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

7.5CVSS6.2AI score0.04822EPSS
Exploits4References6
Kitploit
Kitploit
added 2014/02/12 12:13 a.m.38 views

[Mail Password Sniffer] Email Password Recovery and Sniffing Software

Mail Password Sniffer is the free Email Password Sniffing and Recovery Software to recover mail account passwords passing through the network. It automatically detects the Email authentication packets passing through network and decodes the passwords for all Mail Protocols including POP3 , IMAP ,...

7.5AI score
Exploits0
OpenVAS
OpenVAS
added 2014/02/12 12:0 a.m.60 views

Microsoft Internet Explorer Multiple Vulnerabilities (2909921)

This host is missing a critical security update according to Microsoft Bulletin MS14-010. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.3CVSS5AI score0.38434EPSS
Exploits5References26
Kitploit
Kitploit
added 2014/01/20 11:23 p.m.54 views

[Password Sniffer Spy v2.0] Tool to Sniff and Capture HTTP/FTP/POP3/SMTP/IMAP Passwords

Password Sniffer Spy is the all-in-one Password Sniffing Tool to capture Email, Web and FTP login passwords passing through the network. It automatically detects the login packets on network for various protocols and instantly decodes the passwords. Here is the list of supported protocols, HTTP...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/09/06 12:0 a.m.35 views

Mandrake Linux Security Advisory : sgml-tools (MDKSA-2001:030-1)

Insecure handling of temporary file permissions can lead to other users on a multi-user system being able to read the documents being converted. This is due to sgml-tools creating temporary files without any special permissions. The updated packages create a secure temporary directory first, whic...

2.1CVSS5.5AI score0.00436EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2012/08/22 12:0 a.m.21 views

EMC AutoStart ftAgent Opcode 0x2d Subcode 0x1194 Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the EMC Autostart ftAgent, which is deployed on machines managed by EMC Autostart by default. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsi...

10CVSS5.3AI score0.04754EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2012/08/22 12:0 a.m.34 views

EMC AutoStart ftAgent Opcode 0x14 Subcode 0x7F8 Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the EMC Autostart ftAgent, which is deployed on machines managed by EMC Autostart by default. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsi...

10CVSS5.3AI score0.04754EPSS
Exploits0References1
Rows per page
Query Builder