CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

636 matches found

myhack58•added 2006/09/24 12:0 a.m.•9 views

Common 2 7 ＣＧＩ vulnerability methods of attack-vulnerability warning-the black bar safety net

A. phf vulnerability The phf vulnerability seems to be the most classic,almost all of the articles will be introduced,you can execute Server commands,such as display the/etc/passwd: lynx http://www.victim.com/cgi-bin/phf?Q...t%20/etc/passwd But we can still find it? II. php. cgi 2. 0beta10 or...

0.2AI score

Exploits0

securityvulns•added 2006/09/14 12:0 a.m.•54 views

Re: Cisco IOS VTP issues

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, This is a Cisco response to an advisory published by FX of Phenoelit posted as of September 13, 2006 at: http://www.securityfocus.com/archive/1/445896/30/0/threaded and entitled "Cisco Systems IOS VTP multiple vulnerabilities". An official...

Exploits0

securityvulns•added 2006/09/13 12:0 a.m.•33 views

[email protected], [email protected], [email protected]

Phenoelit Advisory wir-haben-auch-mal-was-gefunden 0815 +---+ Title Cisco Systems IOS VTP multiple vulnerabilities Authors FX [email protected] Phenoelit Group http://www.phenoelit.de Advisory http://www.phenoelit.de/stuff/CiscoVTP.txt Affected Products Cisco IOS and CatOS Tested on: C3550 IOS 12.1...

0.7AI score

Exploits0

Cvelist•added 2006/01/27 10:0 p.m.•24 views

CVE-2002-1573

Unspecified vulnerability in the pcilynx ieee1394 firewire driver pcilynx.c in Linux kernel before 2.4.20 has unknown impact and attack vectors, related to "wrap handling."...

6.4AI score0.02221EPSS

Exploits0References3

CVE•added 2006/01/27 10:0 p.m.•58 views

CVE-2002-1573

CVE-2002-1573 refers to an unspecified vulnerability in the Linux kernel’s pcilynx ieee1394 (pcilynx.c) driver, affected in kernels before 2.4.20 and related to wrap handling. The initial description notes unknown impact and attack vectors; public detail is limited. Public references describe the...

10CVSS6.4AI score0.02221EPSS

Exploits0References3Affected Software1

securityvulns•added 2006/01/10 12:0 a.m.•41 views

NetBSD Security Advisory 2006-002: settimeofday() time wrap

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 NetBSD Security Advisory 2006-002 ================================= Topic: settimeofday time wrap Version: NetBSD-current: source prior to December 5, 2005 NetBSD 3.0: not affected NetBSD 2.1: affected NetBSD 2.0.3: affected NetBSD 1.6.2: affected...

6.7AI score

Exploits0

NVD•added 2005/12/31 5:0 a.m.•19 views

CVE-2005-4352

The securelevels implementation in NetBSD 2.1 and earlier, and Linux 2.6.15 and earlier, allows local users to bypass time setting restrictions and set the clock backwards by setting the clock ahead to the maximum unixtime value 19 Jan 2038, which then wraps around to the minimum value 13 Dec 190...

2.1CVSS6.3AI score0.00457EPSS

Exploits1References8

Cvelist•added 2005/12/10 11:0 a.m.•20 views

CVE-2005-4142

The web interface for subscribing new users in Lyris ListManager 5.0 through 8.8b, in combination with a line wrap feature, allows remote attackers to execute arbitrary list administration commands via LFCR %0A%0D sequences in the pw parameter. NOTE: it is not clear whether this is a variant of a...

7.8AI score0.03014EPSS

Exploits1References7

Tenable Nessus•added 2005/12/08 12:0 a.m.•33 views

GLSA-200512-01 : Perl: Format string errors can lead to code execution

The remote host is affected by the vulnerability described in GLSA-200512-01 Perl: Format string errors can lead to code execution Jack Louis discovered a new way to exploit format string errors in Perl that could lead to the execution of arbitrary code. This is perfomed by causing an integer wra...

4.6CVSS8.7AI score0.01374EPSS

Exploits2References4

securityvulns•added 2005/05/23 12:0 a.m.•36 views

[Full-disclosure] Computer Associates Vet Antivirus Library Remote Heap Overflow

Date May 23, 2005 Vulnerability Computer Associates Vet library provides antivirus scan engine capabilities. Vet scan engines allow products to analyze various streams for malware. Vet is vulnerable to an integer wrap during the analysis of an OLE stream. The integer wrap causes an arbitrary heap...

1.4AI score

Exploits0

NVD•added 2002/12/31 5:0 a.m.•20 views

CVE-2002-1573

Unspecified vulnerability in the pcilynx ieee1394 firewire driver pcilynx.c in Linux kernel before 2.4.20 has unknown impact and attack vectors, related to "wrap handling."...

10CVSS6.4AI score0.02221EPSS

Exploits0References3

OSV•added 2002/10/30 12:0 a.m.•29 views

DSA-184 krb4 - buffer overflow

Bulletin has no description...

10CVSS6AI score0.15105EPSS

Exploits0

Cvelist•added 1999/09/29 4:0 a.m.•27 views

CVE-1999-0149

The wrap CGI program in IRIX allows remote attackers to view arbitrary directory listings via a .. dot dot attack...

6.7AI score0.02748EPSS

Exploits0References4

CVE•added 1999/09/29 4:0 a.m.•76 views

CVE-1999-0149

CVE-1999-0149 affects the IRIX “wrap” CGI program. The vulnerability allows remote attackers to perform a directory-listing traversal via a .. (dot dot) attack, exposing arbitrary directories. Multiple sources (Red Hat advisory, CVE records, NVD, Nessus plugin) corroborate that the issue stems fr...

7.5CVSS7AI score0.02748EPSS

Exploits0References4Affected Software1

Tenable Nessus•added 1999/06/22 12:0 a.m.•50 views

IRIX wrap CGI Traversal Arbitrary Directory Listing

The 'wrap' CGI is installed. This CGI allows anyone to get a listing for any directory with mode +755. Note that not all implementations of 'wrap' are vulnerable. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7.5CVSS5.4AI score0.02748EPSS

Exploits0References2

NVD•added 1997/04/19 4:0 a.m.•20 views

CVE-1999-0149

The wrap CGI program in IRIX allows remote attackers to view arbitrary directory listings via a .. dot dot attack...

7.5CVSS0.02748EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by