Canvas - Page 5 of Canvas Vulnerabilities List

canvas•added 2010/06/08 10:30 p.m.•42 views

Immunity Canvas: MS10_032

Name| ms10032 ---|--- CVE| CVE-2010-0485 Exploit Pack| CANVAS Description| ms10032 Notes| CVE Name: CVE-2010-0485 VENDOR: Microsoft Notes: This is a local kernel vulnerability for XP, 2003, and Vista. It will only work on 32 bit platform. The binary will not trigger the bug if running on a 64 bit...

6.8CVSS0.1AI score0.01059EPSS

Exploits6

canvas•added 2010/06/08 6:30 p.m.•49 views

Immunity Canvas: FLASH_NEWFUNCTION

Name| flashnewfunction ---|--- CVE| CVE-2010-1297 Exploit Pack| CANVAS Description| Adobe Acrobat Flash Invalid newfunction call Notes| CVE Name: CVE-2010-1297 VENDOR: Adobe NOTES: Exploitation through an PDF file is more reliable than with a direct HTML/Flash exploit VersionsAffected: Acrobat 9....

9.3CVSS8.2AI score0.92838EPSS

Exploits22

canvas•added 2010/04/28 10:30 p.m.•96 views

Immunity Canvas: JBOSS_JMXCONSOLE_DEPLOYER

Name| jbossjmxconsoledeployer ---|--- CVE| CVE-2010-0738 Exploit Pack| CANVAS Description| jbossjmxconsoledeployer Notes| CVE Name: CVE-2010-0738 VENDOR: Red Hat Notes: JBoss Web JMX Console exposes services that can be used to deploy a new application. This exploit will try to deploy an...

5CVSS6.1AI score0.91523EPSS

Exploits28

canvas•added 2010/04/14 4:0 p.m.•30 views

Immunity Canvas: MS10_025

Name| ms10025 ---|--- CVE| CVE-2010-0478 Exploit Pack| CANVAS Description| ms10025 Notes| CVE Name: CVE-2010-0478 Vendor: Microsoft Notes: This exploit will exploit vulnerable Windows 2000 servers - both with and without the buggy patch. It steals the socket so no listener is needed when using th...

9.3CVSS1.7AI score0.81673EPSS

Exploits10

canvas•added 2010/04/14 4:0 p.m.•199 views

Immunity Canvas: MS10_026

Name| ms10026 ---|--- CVE| CVE-2010-0480 Exploit Pack| CANVAS Description| MPEG Layer-3 codecs stack overflow Notes| CVE Name: CVE-2010-0480 VENDOR: Microsoft MSADV: MS10-026 Repeatability: One Shot MSRC: http://www.microsoft.com/technet/security/Bulletin/MS10-026.mspx Note: This is a client-side...

9.3CVSS1.6AI score0.83493EPSS

Exploits13

canvas•added 2010/04/01 4:30 p.m.•51 views

Immunity Canvas: JAVA_DESERIALIZE2

Name| javadeserialize2 ---|--- CVE| CVE-2010-0094 Exploit Pack| CANVAS Description| javadeserialize2 Notes| CVE Name: CVE-2010-0094 VENDOR: Sun OSVDB: http://osvdb.org/show/osvdb/63484 Repeatability: Infinite client side - no crash References:...

7.5CVSS9.7AI score0.86987EPSS

canvas•added 2010/04/01 4:30 p.m.•43 views

Immunity Canvas: JAVA_METHOD_CHAIN

Name| javamethodchain ---|--- CVE| CVE-2010-0840 Exploit Pack| CANVAS Description| javamethodchain Notes| CVE Name: CVE-2010-0840 VENDOR: Sun Repeatability: Infinite client side - no crash References:...

7.5CVSS2AI score0.92077EPSS

canvas•added 2010/03/10 10:30 p.m.•45 views

Immunity Canvas: IE_PEERS_SETATTRIBUTE

Name| iepeerssetattribute ---|--- CVE| CVE-2010-0806 Exploit Pack| CANVAS Description| iepeerssetattribute Notes| CVE Name: CVE-2010-0806 VENDOR: Microsoft Notes: This is the iepeers exploit for IE 6/7, first discovered in the wild in March, 2010. It will work on both DEP and non-DEP machines and...

9.3CVSS3.2AI score0.87253EPSS

Exploits15

canvas•added 2010/03/03 7:30 p.m.•45 views

Immunity Canvas: IE_HELP

Name| iehelp ---|--- CVE| CVE-2010-0483 Exploit Pack| CANVAS Description| iehelp Notes| CVE Name: CVE-2010-0483 VENDOR: Microsoft Notes: Use from httpserver with name iehelp. Options are: message - Message of the MessageBox to be displayed to the user default: "Press F1 to stop this" Must not be...

7.6CVSS6.2AI score0.83077EPSS

Exploits7

canvas•added 2010/02/22 1:0 p.m.•57 views

Immunity Canvas: ACROBAT_LIBTIFF

Name| acrobatlibtiff ---|--- CVE| CVE-2010-0188 Exploit Pack| CANVAS Description| Adobe Acrobat Reader LibTIFF Integer Overflow Notes| CVE Name: CVE-2010-0188 Notes: VersionsAffected: Acrobat Reader =9.3.0 Repeatability: References: http://www.adobe.com/support/security/bulletins/apsb10-07.html...

9.3CVSS8.1AI score0.93552EPSS

Exploits12

canvas•added 2010/02/04 8:15 p.m.•53 views

Immunity Canvas: IE_DUMPFILES

Name| iedumpfiles ---|--- CVE| CVE-2010-0255 Exploit Pack| CANVAS Description| Internet Explorer local file include Notes| CVE Name: CVE-2010-0255 VENDOR: Microsoft Repeatability: Infinite client side - no crash MSRC: https://vulners.com/cve/CVE-2010-0255 CVS URL:...

4.3CVSS7.3AI score0.49262EPSS

canvas•added 2010/01/22 10:0 p.m.•51 views

Immunity Canvas: IE_COMMENTS

Name| iecomments ---|--- CVE| CVE-2010-0244 Exploit Pack| CANVAS Description| iecomments Notes| CVE Name: CVE-2010-0244 VENDOR: Microsoft MSADV: MS10-0?? VersionsAffected: Repeatability: References: http://www.microsoft.com/technet/security/bulletin/ms10-002.mspx Date public: 12/25/2009...

9.3CVSS1.8AI score0.35699EPSS

canvas•added 2010/01/21 7:30 p.m.•63 views

Immunity Canvas: MS_NTVDM

Name| msntvdm ---|--- CVE| CVE-2010-0232 Exploit Pack| CANVAS Description| NtVdmControl-KiTrap0d local Notes| CVE Name: CVE-2010-0232 VENDOR: Microsoft Notes: This exploit gets you LOCAL/SYSTEM on vulnerable versions of Windows which is essentially all of them. It needs a writable directory to...

7.2CVSS1.5AI score0.75542EPSS

Exploits13

canvas•added 2010/01/15 5:30 p.m.•64 views

Immunity Canvas: AURORA_FLASH

Name| auroraflash ---|--- CVE| CVE-2010-0249 Exploit Pack| CANVAS Description| Aurora vulnerability with ActionScript JIT spraying for IE8 and Windows 7 Notes| CVE Name: CVE-2010-0249 VENDOR: Microsoft VersionsAffected: Repeatability: References: MS10-002 CVE Url: Date public: 01/21/2001 CVSS: 9....

9.3CVSS3.4AI score0.88788EPSS

Exploits16

canvas•added 2010/01/13 7:30 p.m.•60 views

Immunity Canvas: ACROBAT_U3D_MESH

Name| acrobatu3dmesh ---|--- CVE| CVE-2009-3953 Exploit Pack| CANVAS Description| acrobatu3dmesh Notes| CVE Name: CVE-2009-3953 Notes: This exploit works on Windows XP without DEP. DEP defaults to "opt-in" on Windows XP SP2/3. IE8 and modern Firefox will opt-in to DEP, causing this exploit to fai...

10CVSS8.7AI score0.90514EPSS

canvas•added 2009/12/24 4:30 p.m.•109 views

Immunity Canvas: PIWIK

Name| piwik ---|--- CVE| CVE-2009-4137 Exploit Pack| CANVAS Description| Piwik unserialize + destruct Notes| References: 'http://www.sektioneins.com/en/advisories/advisory-032009-piwik-cookie-unserialize-vulnerability/', 'http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-4137' Notes: This...

7.5CVSS2.9AI score0.04884EPSS

canvas•added 2009/12/15 2:30 a.m.•71 views

Immunity Canvas: ACROBAT_NEWPLAYER

Name| acrobatnewplayer ---|--- CVE| CVE-2009-4324 Exploit Pack| CANVAS Description| acrobatnewplayer Notes| CVE Name: CVE-2009-4324 VersionsAffected: Acrobat Reader =8.1.7 and =9.2 Repeatability: References: http://blogs.adobe.com/psirt/2009/12/newadobereaderandacrobatv.html Date public: 12/14/20...

9.3CVSS8.3AI score0.92864EPSS

Exploits21

canvas•added 2009/11/05 4:30 p.m.•105 views

Immunity Canvas: SUN_JAVA_HSBPARSER_LINUX

Name| sunjavahsbparserlinux ---|--- CVE| CVE-2009-3867 Exploit Pack| CANVAS Description| sunjavahsbparserlinux Notes| URL: http://seclists.org/bugtraq/2009/Nov/37 CVE Name: CVE-2009-3867 VENDOR: Sun CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2009-3867...

9.3CVSS0.3AI score0.89244EPSS

canvas•added 2009/11/05 11:30 a.m.•43 views

Immunity Canvas: SUN_JAVA_HSBPARSER

Name| sunjavahsbparser ---|--- CVE| CVE-2009-3867 Exploit Pack| CANVAS Description| sunjavahsbparser Notes| URL: http://seclists.org/bugtraq/2009/Nov/37 CVE Name: CVE-2009-3867 VENDOR: Sun CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2009-3867...

9.3CVSS0.3AI score0.89244EPSS

canvas•added 2009/10/15 10:30 a.m.•49 views

Immunity Canvas: AIXCMSD

Name| aixcmsd ---|--- CVE| CVE-2009-3699 Exploit Pack| CANVAS Description| rpc.cmsd remote root exploit AIX Notes| CVE Name: CVE-2009-3699 Versions Affected: AIX 5.x / AIX 6.x Notes: Repeatability: Unlimited OSVBD: 58726 References:...

10CVSS3.6AI score0.78521EPSS

canvas•added 2009/10/14 10:30 a.m.•45 views

Immunity Canvas: MS09_061_CAS

Name| ms09061cas ---|--- CVE| CVE-2009-0091 Exploit Pack| CANVAS Description| MS09-061 Microsoft .NET CAS Type Verification Vulnerability Notes| URL: http://www.microsoft.com/technet/security/Bulletin/MS09-061.mspx CVE Name: CVE-2009-0091 VENDOR: Microsoft CVE Url:...

9.3CVSS6.2AI score0.38215EPSS

canvas•added 2009/10/14 10:30 a.m.•42 views

Immunity Canvas: MS09_051

Name| ms09051 ---|--- CVE| CVE-2009-0555 Exploit Pack| CANVAS Description| ASFAudiomedia Parsing bug Notes| CVE Name: CVE-2009-0555 VENDOR: Microsoft MSADV: MS09-051 Repeatability: One Shot MSRC: http://www.microsoft.com/technet/security/Bulletin/MS09-051.mspx Note: This is a client-side exploit ...

9.3CVSS2.8AI score0.27788EPSS

canvas•added 2009/09/15 10:30 p.m.•307 views

Immunity Canvas: NGINX

Name| nginx ---|--- CVE| CVE-2009-2629 Exploit Pack| CANVAS Description| Jinx Notes| CVE Name: CVE-2009-2629 VENDOR: nginx Notes: Use -O execshield:0 against Ubuntu targets - the default is to assume you want execshield avoidance. Repeatability: Infinite References:...

7.5CVSS6.2AI score0.781EPSS

Exploits3

canvas•added 2009/09/08 10:30 p.m.•47 views

Immunity Canvas: SMB2_NEGOTIATE_LOCAL

Name| smb2negotiatelocal ---|--- CVE| CVE-2009-3103 Exploit Pack| CANVAS Description| SMB2 Negotiate Pointer Dereference Vulnerability Notes| CVE Name: CVE-2009-3103 VENDOR: Microsoft VersionsAffected: Repeatability: One shot References: http://blog.48bits.com/?p=510,...

10CVSS9.4AI score0.92861EPSS

Exploits20

canvas•added 2009/09/08 6:30 p.m.•63 views

Immunity Canvas: SMB2_NEGOTIATE_REMOTE

Name| smb2negotiateremote ---|--- CVE| CVE-2009-3103 Exploit Pack| CANVAS Description| SMB2 Negotiate Pointer Dereference Vulnerability Notes| CVE Name: CVE-2009-3103 VENDOR: Microsoft MSADV: MS09-050 VersionsAffected: Repeatability: One shot References: http://blog.48bits.com/?p=510,...

10CVSS9.4AI score0.92861EPSS

Exploits20

canvas•added 2009/08/31 8:30 p.m.•350 views

Immunity Canvas: IISFTP_NLST

Name| iisftpnlst ---|--- CVE| CVE-2009-3023 Exploit Pack| CANVAS Description| IISFTPNLST Notes| CVE Name: CVE-2009-3023 VENDOR: Microsoft References: http://lists.grok.org.uk/pipermail/full-disclosure/2009-August/070467.html CVE Url: https://vulners.com/cve/CVE-2009-3023 Date public: 08/31/09 CVS...

9CVSS6.2AI score0.77728EPSS

canvas•added 2009/08/27 5:30 p.m.•62 views

Immunity Canvas: PROTO_OPS_NULL

Name| protoopsnull ---|--- CVE| CVE-2009-2692 / CVE-2009-2698 Exploit Pack| CANVAS Description| protoopsnull / udpsendmsg Notes| References: 'http://blog.cr0.org/2009/08/linux-null-pointer-dereference-due-to.html' Date public: VENDOR: Linux CVE Url: https://vulners.com/cve/CVE-2009-2692 CVE Name:...

7.2CVSS8.2AI score0.26117EPSS

Exploits34

canvas•added 2009/07/23 8:30 p.m.•64 views

Immunity Canvas: ACROBAT_FLASH

Name| acrobatflash ---|--- CVE| CVE-2009-1862 Exploit Pack| CANVAS Description| Adobe Acrobat Flash Uninitialized object Notes| CVE Name: CVE-2009-1862 VENDOR: Adobe NOTES: Exploitation through an PDF file is more reliable than with a direct HTML/Flash exploit VersionsAffected: 10.0 and below...

9.3CVSS7.7AI score0.58566EPSS

canvas•added 2009/07/15 3:30 p.m.•41 views

Immunity Canvas: FIREFOX_35

Name| firefox35 ---|--- CVE| CVE-2009-2477 Exploit Pack| CANVAS Description| Firefox 3.5 Remote Code Execution Notes| CVE Name: CVE-2009-2477 VENDOR: Mozilla Notes: Although the advisories states that this due to improper handling of and tags, this exploit uses another method to reach the...

9.3CVSS0.8AI score0.83306EPSS

Exploits9

canvas•added 2009/07/07 11:30 p.m.•69 views

Immunity Canvas: MS09_032

Name| ms09032 ---|--- CVE| CVE-2008-0015 Exploit Pack| CANVAS Description| Microsoft DirectShow msvidctl.dll Vulnerability Notes| CVE Name: CVE-2008-0015 Vendor: Microsoft Notes: Tested against a Windows XP SP2 & SP3 English, German & Simplified Chinese with IE 6. IE 7 asks for confirmation befor...

9.3CVSS9.4AI score0.81585EPSS

Exploits10

canvas•added 2009/07/05 4:30 p.m.•391 views

Immunity Canvas: FCKEDITOR

Name| FCKEditor ---|--- CVE| CVE-2009-2265 Exploit Pack| CANVAS Description| FCKEditor Notes| CVE Name: CVE-2009-2265 VENDOR: Known Vunlerable Versions: 'ColdFusion MX 8 - 8.01', 'osCMax =2.0', 'RunCMS =1.3a', 'Falt4 CMS', 'Many more to come!' Notes: This exploit has two different variants - one...

7.5CVSS5.9AI score0.92344EPSS

Exploits10

canvas•added 2009/07/01 1:0 p.m.•53 views

Immunity Canvas: NAGIOS_PING

Name| nagiosping ---|--- CVE| CVE-2009-2288 Exploit Pack| CANVAS Description| nagiosping Notes| CVE Name: CVE-2009-2288 VENDOR: http://www.nagios.org/ CVEUrl: https://vulners.com/cve/CVE-2009-2288 Notes: statuswml.cgi in Nagios before 3.1.1 allows remote attackers to execute arbitrary commands vi...

7.5CVSS7.9AI score0.93259EPSS

Exploits14

canvas•added 2009/06/30 10:30 a.m.•60 views

Immunity Canvas: ZENCART_REMOTE

Name| zencartremote ---|--- CVE| CVE-2009-2255 Exploit Pack| CANVAS Description| zencartremote Notes| Repeatability: Infinite CVE URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-2255 VENDOR: www.zen-cart.com/ CVSS: 6.8 CVE Name: CVE-2009-2255...

6.8CVSS0.8AI score0.35175EPSS

Exploits4

canvas•added 2009/06/22 2:30 p.m.•31 views

Immunity Canvas: SUGARCRM_FILEUPLOAD

Name| sugarcrmfileupload ---|--- CVE| CVE-2009-2146 Exploit Pack| CANVAS Description| sugarcrmfileupload Notes| CVE Name: CVE-2009-2146 VENDOR: http://www.sugarcrm.com Notes: Tested on SugarCRM 5.2.0c. This exploits needs a valid username and password for SugarCRM to exploit as the vulnerability...

6CVSS6.7AI score0.09013EPSS

canvas•added 2009/06/10 6:0 p.m.•55 views

Immunity Canvas: SAFARI_FILE_STEALING2

Name| safarifilestealing2 ---|--- CVE| CVE-2009-1699 Exploit Pack| CANVAS Description| Safari 3.2 XSL File Stealing Notes| CVE Name: CVE-2009-1699 VENDOR: Apple Reference: http://scary.beasts.org/security/CESA-2009-006.html Arugments: After you have placed your single file in the correct...

7.1CVSS7.3AI score0.09268EPSS

Exploits3

canvas•added 2009/06/10 6:0 p.m.•39 views

Immunity Canvas: MS09_022

Name| ms09022 ---|--- CVE| CVE-2009-0228 Exploit Pack| CANVAS Description| Microsoft Windows Print Spooler Overflow Notes| CVE Name: CVE-2009-0228 VENDOR: Microsoft MSADV: MS09-022 Repeatability: One shot Note: A string is non-zero terminated after a wcsncpy, ending up in a miscalculation before ...

10CVSS6.7AI score0.42778EPSS

Exploits6

canvas•added 2009/06/10 6:0 p.m.•42 views

Immunity Canvas: MS09_022_LOADDLL

Name| ms09022loaddll ---|--- CVE| CVE-2009-0230 Exploit Pack| CANVAS Description| Microsoft Windows Print Spooler Arbitrary DLL Loading Notes| CVE Name: CVE-2009-0230 VENDOR: Microsoft MSADV: MS09-022-LOADDLL Repeatability: One shot Note: Valid credentials of a user with "Manage Printer" privileg...

9CVSS6.3AI score0.33043EPSS

canvas•added 2009/06/08 1:0 a.m.•30 views

Immunity Canvas: DOKUWIKI_EXEC2

Name| dokuwikiexec2 ---|--- CVE| CVE-2009-1960 Exploit Pack| CANVAS Description| DokuWiki 2009-02-14 Globals overwrite / Code execeution Notes| References: 'www.securityfocus.com/bid/35095' CVE Name: CVE-2009-1960 Repeatability: Infinite CVE Url:...

9.3CVSS1.2AI score0.39038EPSS

canvas•added 2009/06/05 6:30 p.m.•45 views

Immunity Canvas: CPCOMMERCE_RFI

Name| cpcommercerfi ---|--- CVE| CVE-2009-1936 Exploit Pack| CANVAS Description| cpCommerce 1.2.x Remote File Include Notes| CVE Name: CVE-2009-1936 VENDOR: cpCommerce Repeatability: Infinite CVE Url: https://vulners.com/cve/CVE-2009-1936 References: 'http://www.securityfocus.com/bid/35103' CVSS:...

6.8CVSS9.8AI score0.08071EPSS

canvas•added 2009/05/22 6:30 p.m.•33 views

Immunity Canvas: STRAWBERRY_LFI

Name| strawberrylfi ---|--- CVE| CVE-2009-1774 Exploit Pack| CANVAS Description| Strawberry 1.1.1 Local File Include Notes| References: 'http://osvdb.org/show/osvdb/54721' Repeatability: Infinite VENDOR: StrawBerry CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2009-1774 CVE Name:...

9.3CVSS1.2AI score0.43129EPSS

canvas•added 2009/05/22 6:30 p.m.•34 views

Immunity Canvas: PLUCK_LFI

Name| plucklfi ---|--- CVE| CVE-2009-1765 Exploit Pack| CANVAS Description| Pluck 4.6.2 Local File Include Notes| CVE Name: CVE-2009-1765 VENDOR: Pluck Repeatability: Infinite CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2009-1765 References: 'http://www.milw0rm.com/exploits/8715' CVSS:...

6.8CVSS0.6AI score0.45498EPSS

canvas•added 2009/05/06 3:30 p.m.•29 views

Immunity Canvas: QUICKTEAM_RFI

Name| quickteamrfi ---|--- CVE| CVE-2009-1551 Exploit Pack| CANVAS Description| QuickTeam Remote File Include Notes| CVE Name: CVE-2009-1551 VENDOR: quickteam Repeatability: Infinite CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2009-1551 References: 'http://osvdb.org/show/osvdb/54217'...

7.5CVSS1.3AI score0.85244EPSS

canvas•added 2009/04/29 3:30 p.m.•36 views

Immunity Canvas: SYMANTEC_IAO

Name| symanteciao ---|--- CVE| CVE-2009-1430 Exploit Pack| CANVAS Description| Symantec Alert Management System 2 Overflow Notes| CVE Name: CVE-2009-1430 VENDOR: Symantec VersionsAffected: Repeatability: References: http://www.zerodayinitiative.com/advisories/ZDI-09-018/ CVE Url:...

9.3CVSS2.2AI score0.65724EPSS

Exploits9

canvas•added 2009/04/17 2:30 p.m.•94 views

Immunity Canvas: UDEVD

Name| udevd ---|--- CVE| CVE-2009-1185 Exploit Pack| CANVAS Description| udevd Notes| References: 'http://c-skills.blogspot.com/2009/04/udev-trickery-cve-2009-1185-and-cve.html' CVE Name: CVE-2009-1185 VENDOR: Linux Notes: Date public: 04-17-2009 CVE Url:...

7.2CVSS0.4AI score0.89509EPSS

Exploits12

canvas•added 2009/04/13 4:30 p.m.•82 views

Immunity Canvas: CLOUDBURST

Name| CLOUDBURST ---|--- CVE| CVE-2009-1244 Exploit Pack| CANVAS Description| CLOUDBURST VMware Workstation Guest Escape Notes| CVE Name: CVE-2009-1244 VENDOR: VMware Notes: The exploit currently only supports a Windows Guest in a Windows Host, with "Accelerate 3D Graphics" enabled default on new...

6.8CVSS6.5AI score0.00539EPSS

Exploits3

canvas•added 2009/04/06 4:30 p.m.•29 views

Immunity Canvas: ACUTECP_RFI

Name| acutecprfi ---|--- CVE| CVE-2009-1247 Exploit Pack| CANVAS Description| AcuteCP Remote File Include Notes| CVSS: 7.5 Repeatability: Infinite VENDOR: Acutecp CVE Url: https://vulners.com/cve/CVE-2009-1247 CVE Name: CVE-2009-1247...

7.5CVSS6.8AI score0.31813EPSS