Lucene search
+L

2667 matches found

exploitpack
exploitpack
added 2015/08/21 12:0 a.m.31 views

Microsoft Office 2007 - wwlib.dll fcPlcfFldMom Uninitialized Heap Usage

Microsoft Office 2007 - wwlib.dll fcPlcfFldMom Uninitialized Heap Usage Source: https://code.google.com/p/google-security-research/issues/detail?id=424&can=1 The following crash was observed in Microsoft Office 2007 with Microsoft Office File Validation Add-In disabled and Application Verifier...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2015/08/21 12:0 a.m.36 views

Microsoft Office 2007 - MSPTLS Heap Index Integer Underflow (MS15-081)

Source: https://code.google.com/p/google-security-research/issues/detail?id=431&can=1 The following crash was observed in Microsoft Office 2007 with Microsoft Office File Validation Add-In disabled and Application Verifier enabled for testing and reproduction. This bug also reproduced in Office...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2015/08/21 12:0 a.m.29 views

Microsoft Office 2007 - 'OGL.dll' DpOutputSpanStretch::OutputSpan Out of Bounds Write (MS15-080)

Source: https://code.google.com/p/google-security-research/issues/detail?id=420&can=1 The following crash was observed in Microsoft Office 2007 with Microsoft Office File Validation Add-In disabled and Application Verifier enabled for testing and reproduction. This bug also reproduced in Office...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2015/08/21 12:0 a.m.30 views

Microsoft Office 2007 - 'wwlib.dll' fcPlcfFldMom Uninitialized Heap Usage

Source: https://code.google.com/p/google-security-research/issues/detail?id=424&can=1 The following crash was observed in Microsoft Office 2007 with Microsoft Office File Validation Add-In disabled and Application Verifier enabled for testing and reproduction. This bug also reproduced in Office...

7.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2015/01/26 6:10 p.m.8 views

OpenJDK: class verifier insufficient invokespecial calls verification (Hotspot, 8058982)

A flaw was found in the way the Hotspot component in OpenJDK verified bytecode from the class files. An untrusted Java application or applet could possibly use this flaw to bypass Java sandbox restrictions...

10CVSS6.7AI score0.06877EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/01/26 5:27 p.m.6 views

OpenJDK: class verifier insufficient invokespecial calls verification (Hotspot, 8058982)

A flaw was found in the way the Hotspot component in OpenJDK verified bytecode from the class files. An untrusted Java application or applet could possibly use this flaw to bypass Java sandbox restrictions...

10CVSS6.7AI score0.06877EPSS
Exploits0References5
ArchLinux
ArchLinux
added 2015/01/23 12:0 a.m.69 views

jdk7-openjdk: multiple issues

CVE-2014-3566 man-in-the-middle Nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue. - CVE-2014-6585 out-of-bounds read Allows remote attackers to affect confidentiality via font parsing...

10CVSS7.1AI score0.99999EPSS
Exploits12References17
RedHat Linux
RedHat Linux
added 2015/01/22 9:34 p.m.6 views

OpenJDK: class verifier insufficient invokespecial calls verification (Hotspot, 8058982)

A flaw was found in the way the Hotspot component in OpenJDK verified bytecode from the class files. An untrusted Java application or applet could possibly use this flaw to bypass Java sandbox restrictions...

10CVSS6.7AI score0.06877EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/01/22 9:24 p.m.8 views

OpenJDK: class verifier insufficient invokespecial calls verification (Hotspot, 8058982)

A flaw was found in the way the Hotspot component in OpenJDK verified bytecode from the class files. An untrusted Java application or applet could possibly use this flaw to bypass Java sandbox restrictions...

10CVSS6.7AI score0.06877EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/01/21 9:45 p.m.10 views

OpenJDK: class verifier insufficient invokespecial calls verification (Hotspot, 8058982)

A flaw was found in the way the Hotspot component in OpenJDK verified bytecode from the class files. An untrusted Java application or applet could possibly use this flaw to bypass Java sandbox restrictions...

10CVSS6.7AI score0.06877EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/01/21 9:38 p.m.6 views

OpenJDK: class verifier insufficient invokespecial calls verification (Hotspot, 8058982)

A flaw was found in the way the Hotspot component in OpenJDK verified bytecode from the class files. An untrusted Java application or applet could possibly use this flaw to bypass Java sandbox restrictions...

10CVSS6.7AI score0.06877EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/01/20 10:38 p.m.6 views

OpenJDK: class verifier insufficient invokespecial calls verification (Hotspot, 8058982)

A flaw was found in the way the Hotspot component in OpenJDK verified bytecode from the class files. An untrusted Java application or applet could possibly use this flaw to bypass Java sandbox restrictions...

10CVSS6.7AI score0.06877EPSS
Exploits0References5
GoogleProjectZero
GoogleProjectZero
added 2014/11/19 12:0 a.m.11 views

Project Zero Patch Tuesday roundup, November 2014

Posted by Chris Evans, Registrar of Bugs It’s been about a week since Patch Tuesday, and the Project Zero reports mentioned in the various advisories are now public. We won’t always be writing a Patch Tuesday roundup, but we often will when we believe there is a sufficiently varied and interestin...

7.5AI score
Exploits0
Debian
Debian
added 2014/08/31 9:8 p.m.16 views

[SECURITY] [DSA 2987-2] openjdk-7 regression update

------------------------------------------------------------------------- Debian Security Advisory DSA-2987-2 [email protected] http://www.debian.org/security/ Florian Weimer August 31, 2014 http://www.debian.org/security/faq -...

6.8AI score
Exploits0
NVD
NVD
added 2014/07/02 6:55 p.m.18 views

CVE-2014-4590

Cross-site scripting XSS vulnerability in get.php in the WP Microblogs plugin 0.4.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the oauthverifier parameter...

4.3CVSS5.8AI score0.01629EPSS
Exploits1References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.23 views

Microsoft Java Virtual Machine 3802 Series Bytecode Verifier Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6221/info The Microsoft Java virtual machine implementation contains a vulnerability that may allow for malicious Java applets to escape the security sandbox. An applet constructed at the bytecode-level may be able to...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

Sun/Netscape Java Virtual Machine1.x Bytecode Verifier Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6224/info A vulnerability in the Sun and Netscape Java Virtual Machine has been reported. The vulnerability is related to the bytecode verifier, a component of the Java compiler that ensures legal structure of Java...

7.1AI score
Exploits0
Hacker One
Hacker One
added 2014/04/17 7:42 p.m.32 views

Respondly: OAuth open redirect

An attacker can use an open redirect vulnerability in the Twitter OAuth process to redirect someone to his/her webpage, while also obtaining the OAuth token and verifier of the victim. The vulnerability is right here:...

0.6AI score
Exploits0
Metasploit
Metasploit
added 2014/01/09 12:26 a.m.55 views

Multi Gather Malware Verifier

This module will check a file for malware on VirusTotal based on the checksum. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'net/http' require 'uri' class MetasploitModule 'Multi Gather Malware Verifier',...

0.5AI score
Exploits0
Positive Technologies
Positive Technologies
added 2013/10/25 12:0 a.m.5 views

PT-2014-2778 · Python · Python-Oauth2

Name of the Vulnerable Software and Affected Versions: python-oauth2 affected versions not specified Description: The issue concerns the use of weak random numbers by the make nonce, generate nonce, and generate verifier functions in python-oauth2, making it easier for remote attackers to guess t...

6.3CVSS5.8AI score0.0243EPSS
Exploits0References17
Rows per page
Query Builder