Lucene search
K
CertMost viewed

3704 matches found

CERT
CERT
•added 2004/04/30 12:0 a.m.•45 views

Gaim contains a buffer overflow vulnerability in the gaim_quotedp_decode() function

Overview There is a buffer overflow vulnerability in the Gaim gaimquotedpdecode function, which could cause a pointer to reference memory beyond the terminating null byte. Description Gaim is a multi-protocol instant messenger available for a number of operating systems. It includes a feature tha...

9.8CVSS9.7AI score0.11214EPSS
Exploits1References5
CERT
CERT
•added 2004/03/10 12:0 a.m.•45 views

Linux kernel mremap(2) system call does not properly check return value from do_munmap() function

Overview A vulnerability in the Linux mremap2 system call could allow an authenticated, local attacker to execute arbitrary code with root privileges. Description The Linux kernel uses a linked list of vitrual memory area VMA descriptors to reference valid regions of the page table for a given...

6.6AI score
Exploits0References7
CERT
CERT
•added 2004/03/09 12:0 a.m.•45 views

Microsoft Outlook fails to properly filter parameters passed via "mailto:" URL

Overview A vulnerability in the way that Microsoft Outlook 2002 handles a certain type of hyperlink could allow a remote attacker to execute arbitrary code on the vulnerable system. Description Microsoft Outlook provides a centralized application for managing and organizing e-mail messages,...

7.5CVSS8.2AI score0.47676EPSS
Exploits1References5
CERT
CERT
•added 2004/02/10 12:0 a.m.•45 views

Microsoft ASN.1 Library improperly decodes constructed bit strings

Overview The Microsoft ASN.1 Library improperly decodes constructed bit strings which could allow an unauthenticated, remote attacker to execute arbitrary code with SYSTEM privileges. Description Abstract Syntax Notation number One ASN.1 is an international standard used to describe and transmit...

7.5CVSS7.1AI score0.84008EPSS
Exploits4References5
CERT
CERT
•added 2003/11/12 12:0 a.m.•45 views

Microsoft FrontPage Server Extensions contains buffer overflow in remote debugging functionality

Overview Microsoft FrontPage Server Extensions contains a vulnerability that allows remote attackers to execute arbitrary code with local system privileges. Description Microsoft FrontPage Server Extensions FPSE is an optional set of tools that adds functionality to a web site. This functionality...

7.5CVSS7.3AI score0.83075EPSS
Exploits10References2
CERT
CERT
•added 2003/04/29 12:0 a.m.•45 views

PopTop PPTP Server contains buffer overflow in "ctrlpacket.c"

Overview There is a remotely exploitable buffer overflow in PopTop. An exploit for this vulnerability exists and is publicly available. Description From the PopTop web site:PopToP is the PPTP server solution for Linux ports exist for Solaris 2.6, OpenBSD and FreeBSD and others. A buffer overflow...

7.5CVSS7.2AI score0.71026EPSS
Exploits7References5
CERT
CERT
•added 2003/04/25 12:0 a.m.•45 views

Microsoft Internet Explorer does not adequately validate source of dialog frame

Overview Microsoft Internet Explorer IE allows script from a dialog frame in one domain to execute in a different domain, including the Local Machine Zone. The script could read certain local files and data i.e. cookies from other web sites. In the presence of other vulnerabilities VU626395,...

7.6AI score
Exploits0References27
CERT
CERT
•added 2002/10/29 12:0 a.m.•45 views

Apache discloses source code via POST requests to a location with WebDAV and CGI enabled

Overview There is an information leakage in Apache that results from an interaction between WebDAV and CGI. Description Apache version 2.0.42 allows remote attackers to obtain the source code of CGI scripts that are stored in locations for which both CGI and WebDAV are enabled. When a POST reques...

9.3AI score
Exploits0References4
CERT
CERT
•added 2002/10/28 12:0 a.m.•45 views

webalizer vulnerable to buffer overflow when performing reverse DNS lookups

Overview A remotely exploitable buffer overflow exists in all versions of webalizer prior to version 2.01-10. Description webalizer is a web server log file analysis program.webalizer has the ability do resolve hostnames as part of the process of generating reports. A buffer overflow exists in th...

7.5CVSS6.8AI score0.04416EPSS
Exploits0References6
CERT
CERT
•added 2002/07/30 12:0 a.m.•45 views

OpenSSL clients contain a buffer overflow during the SSL3 handshake process

Overview OpenSSL is an open-source implementation of the Secure Sockets Layer SSL protocol. A remotely exploitable vulnerability exists in OpenSSL clients that could lead to the execution of arbitrary code on the client's system. Description OpenSSL clients using SSLv3 prior to version 0.9.6e and...

9.5AI score
Exploits0References2
CERT
CERT
•added 2002/04/10 12:0 a.m.•45 views

Microsoft Internet Information Server (IIS) vulnerable to heap overflow during processing of crafted ".htr" request by "ISM.DLL" ISAPI filter

Overview A buffer overflow in the HTR ISAP extension on IIS servers could permit an intruder to interrupt the normal operation of IIS or possibly execute arbitrary code with the privileges of the HTR extension. Description HTR is a server-side scripting technology for IIS which has largely been...

7.5CVSS7.2AI score0.26054EPSS
Exploits0References5
CERT
CERT
•added 2002/04/10 12:0 a.m.•45 views

Microsoft Internet Information Server (IIS) contains cross-site scripting vulnerability in HTTP error page results

Overview Visitors to web sites that use Microsoft IIS and also use the default error pages are vulnerable to cross-site scripting attacks. Description Cross-site scripting is a form of attack in which an intruder leverages the trust between a victim and a web-site the victim trusts. Quoting from...

7.5CVSS6AI score0.6146EPSS
Exploits0References2
CERT
CERT
•added 2001/09/05 12:0 a.m.•45 views

IBM AIX lsfs utility invokes grep and lslv with relative pathnames

Overview The IBM AIX operating system contains a vulnerability in the lsfs utility that allows a local user to execute arbitrary code as root. Description The IBM AIX lsfs utility displays filesystem information such as mount points, permissions and volume sizes. To list this information, it...

4.6CVSS6.9AI score0.00476EPSS
Exploits1References3
CERT
CERT
•added 2001/03/26 12:0 a.m.•45 views

Sun Solaris DMI to SNMP mapper daemon snmpXdmid contains buffer overflow

Overview There is a buffer overflow in the snmpXdmi daemon, which may allow intruders to gain root privileges on systems running the vulnerable daemon. Description The SNMP-to-DMI mapper daemon snmpXdmi translates Simple Network Management Protocol SNMP events to Desktop Management Interface DMI...

10CVSS6.8AI score0.72036EPSS
Exploits6References8
CERT
CERT
•added 2001/01/29 12:0 a.m.•45 views

ISC BIND 4 contains buffer overflow in nslookupComplain()

Overview The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS by the Internet Software Consortium ISC. There is a buffer overflow vulnerability in BIND 4.9.x, which may allow remote intruders to gain access to systems running BIND. Although BIND 4.9.x is no...

10CVSS7.8AI score0.07654EPSS
Exploits0References6
CERT
CERT
•added 2016/06/01 12:0 a.m.•44 views

Fonality contains a hard-coded password and embedded SSL private key

Overview Fonality previously trixbox Pro version 12.6 and later uses a hard-coded password, and the accompanying HUDweb plugin embeds a private SSL key. Description CWE-259: Use of Hard-coded Password - CVE-2016-2362According to the reporter, FTP is used to sync phone configurations for users, by...

10CVSS8AI score0.02465EPSS
Exploits0References4
CERT
CERT
•added 2014/07/25 12:0 a.m.•44 views

Sabre AirCentre Crew solutions contain a SQL injection vulnerability

Overview Sabre AirCentre Crew solutions version 2010.2.12.20008 and earlier contain an SQL injection vulnerability. Description CWE-89: Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' Sabre AirCentre Crew solutions version 2010.2.12.20008 and earlier are...

7.5CVSS8.3AI score0.01309EPSS
Exploits0References2
CERT
CERT
•added 2014/05/21 12:0 a.m.•44 views

Microsoft Internet Explorer 8 CMarkup use-after-free vulnerability

Overview Microsoft Internet Explorer 8 contains a use-after-free vulnerability that can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Microsoft Internet Explorer 8 contains a use-after-free vulnerability. This can allow for arbitrary code...

9.3CVSS7.2AI score0.34773EPSS
Exploits0References2
CERT
CERT
•added 2014/04/14 12:0 a.m.•44 views

Xangati software release contains relative path traversal and command injection vulnerabilities

Overview Xangati's software release contains relative path traversal CWE-23 and command injection CWE-78 vulnerabilities. Description Xangati's software release contains relative path traversal CWE-23 and command injection CWE-78 vulnerabilities.CWE-23: Relative Path Traversal -CVE-2014-0358 The...

9CVSS6.9AI score0.06162EPSS
Exploits0References3
CERT
CERT
•added 2014/02/28 12:0 a.m.•44 views

CMS Made Simple contains multiple cross-site scripting vulnerabilities

Overview CMS Made Simple contains multiple cross-site scripting vulnerabilities Description CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' - CVE-2014-0334The files: cmsmadesimple/admin/addgroup.php on line 107 contains a post-authentication reflected XS...

3.5CVSS5.5AI score0.0152EPSS
Exploits3References1
CERT
CERT
•added 2013/01/09 12:0 a.m.•44 views

Dell OpenManage Server Administrator version 7.1.0.1 DOM-based XSS vulnerability

Overview Dell OpenManage Server Administrator version 7.1.0.1 and earlier contains a DOM-based cross-site scripting vulnerability. Description CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'Dell OpenManage Server Administrator version 7.1.01 and earlier...

4.3CVSS6.2AI score0.02813EPSS
Exploits0References1
CERT
CERT
•added 2012/11/09 12:0 a.m.•44 views

Oberthur smart cards generate weak certificates

Overview A flaw has been identified in Oberthur ID-One COSMO 64, v5.2 and v5.2a smart cards, which results in public keys that do not satisfy the requirements of the Digital Signature Standard as specified in FIPS PUB 186-3 and its predecessors. Description Oberthur ID-One COSMO 64, v5.2 and v5.2...

6.7AI score
Exploits0References2
CERT
CERT
•added 2011/04/19 12:0 a.m.•44 views

Oracle Outside In contains exploitable vulnerabilities in Lotus 123 and Microsoft CAB file parsers

Overview Oracle Outside In contains exploitable vulnerabilities in Lotus 123 and Microsoft CAB file parsers, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Oracle Outside In is a set of libraries that can decode over 500 different...

7.3AI score
Exploits0References8
CERT
CERT
•added 2011/02/16 12:0 a.m.•44 views

Microsoft Windows browser election message kernel pool overflow

Overview A vulnerability exists in the way the Microsoft Windows browser service handles Browser Election messages. Description From Description of the Microsoft Computer Browser Service:"The browser service maintains a list of the domain name or workgroup name the computer is in, and the protoco...

7.8AI score
Exploits0References4
CERT
CERT
•added 2011/02/10 12:0 a.m.•44 views

Adobe Flash memory corruption vulnerability

Overview Adobe Flash contains an memory corruption vulnerability that can allow a remote, unauthenticated attacker to execute arbitrary code. Description Adobe Flash versions 10.1.102.64 and earlier contain a vulnerability that can result in memory corruption, which can allow arbitrary code...

8.9AI score
Exploits0References3
CERT
CERT
•added 2010/12/01 12:0 a.m.•44 views

ISC BIND named allow-query vulnerability

Overview ISC BIND contains a vulnerability in the processing of the allow-query access control specifier. Description According to ISC:When named is running as an authoritative server for a zone and receives a query for that zone data, it first checks for allow-query acls in the zone statement,...

5CVSS8.6AI score0.09786EPSS
Exploits0References2
CERT
CERT
•added 2009/11/25 12:0 a.m.•44 views

Microsoft Internet Explorer CSS style element vulnerability

Overview Microsoft Internet Explorer IE does not safely reference CSS style elements. Using a specially crafted HTML page, an attacker can cause IE to crash and potentially execute arbitrary code. Description IE contains a vulnerability in the way it references CSS style elements. Processing a...

9.3CVSS6.4AI score0.71802EPSS
Exploits4References6
CERT
CERT
•added 2008/06/25 12:0 a.m.•44 views

Caucho Resin vulnerable to XSS via "file" parameter to "viewfile"

Overview The "viewfile" command provided by Caucho Resin contains a cross-site scripting XSS vulnerability in the "file" parameter. Description Caucho Resin is a Java-based application server. The "viewfile" command that is provided with the Resin documentation is vulnerable to XSS via the "file"...

4.3CVSS5.5AI score0.02849EPSS
Exploits0References2
CERT
CERT
•added 2008/06/10 12:0 a.m.•45 views

BackWeb Lite Install Runner ActiveX stack buffer overflows

Overview The BackWeb Lite Install Runner ActiveX control contains multiple stack buffer overflows, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description BackWeb Lite Install Runner is an ActiveX control that is used to install software on...

9.3CVSS7.3AI score0.08395EPSS
Exploits1References4
CERT
CERT
•added 2007/12/21 12:0 a.m.•44 views

IBM Lotus Domino Web Access ActiveX control stack buffer overflows

Overview The IBM Lotus Domino Web Access ActiveX control contains multiple stack buffer overflow vulnerabilities, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description IBM Lotus Domino includes an ActiveX control called Domino Web Access,...

9.3CVSS6.8AI score0.44184EPSS
Exploits25References4
CERT
CERT
•added 2007/07/06 12:0 a.m.•44 views

Lhaca buffer overflow vulnerability

Overview The Lhaca archiving program contains a buffer overflow vulnerability that may allow an attacker to execute arbitrary code. Description LHA is an archive file format. LHA is used by the Lhaca compression utility.A stack buffer overflow vulnerability exists in the Lhaca program. This...

6.8AI score
Exploits0References8
CERT
CERT
•added 2007/04/03 12:0 a.m.•44 views

MIT Kerberos 5 telnet daemon allows login as arbitrary user

Overview A vulnerability exists in the version of the telnet daemon included with the MIT Kerberos 5 distribution that may allow a remote, unauthorized attacker to log on to the system with elevated privileges. Description A vulnerability exists version of the telnet daemon included with the MIT...

10CVSS9.5AI score0.29842EPSS
Exploits1References7
CERT
CERT
•added 2006/09/28 12:0 a.m.•44 views

Cisco IOS fails to properly handle summary packets in the VLAN Trunking Protocol

Overview Cisco IOS fails to properly handle summary packets in the VLAN Trunking Protocol. This vulnerability may allow a remote, unauthenticated attacker to cause a denial-of-service condition. Description Cisco's VLAN Trunking Protocol VTP provides the ability to manage the addition, deletion,...

7.8CVSS6.1AI score0.04752EPSS
Exploits0References4
CERT
CERT
•added 2006/09/19 12:0 a.m.•44 views

gzip contains a .bss buffer overflow in its LZH handling

Overview The gzip program contains a buffer overflow vulnerability that may allow an attacker to execute arbitrary code or create a denial-of-service condition. Description The gzip program is used to compress and decompress archived files. Some implementations of gzip include support for the LZH...

7.5CVSS7.4AI score0.05641EPSS
Exploits1References2
CERT
CERT
•added 2006/07/24 12:0 a.m.•44 views

OpenOffice.org may fail to recognize embedded Basic macros

Overview The OpenOffice.org team has reported a vulnerability in how the 1.1 and 2.0 versions of OpenOffice.org process basic macros. Description A vulnerability in OpenOffice.org may allow an attacker to inject basic code into documents such that the code will be executed when the document is...

7.6CVSS9.3AI score0.03344EPSS
Exploits0References10
CERT
CERT
•added 2006/01/25 12:0 a.m.•44 views

Oracle Database XML Database SQL Injection vulnerability

Overview Oracle Database XML Database XML DB is vulnerable to SQL injection, possibly allowing a remote attacker to execute arbitrary SQL commands on a vulnerable Oracle installation. Description According to Oracle:Oracle XML DB is a feature of the Oracle Database. It provides a high-performance...

9CVSS7AI score0.05819EPSS
Exploits4References4
CERT
CERT
•added 2005/06/14 12:0 a.m.•44 views

Microsoft Windows help viewer vulnerable to heap overflow

Overview A vulnerability exists in the Microsoft Windows help viewer application that could allow a remote attacker to execute code of their choosing on a vulnerable system. Description The Microsoft Windows help viewer winhlp32.exe provides application assistance to users through a special type ...

5.1CVSS7.2AI score0.34537EPSS
Exploits1References3
CERT
CERT
•added 2005/05/16 12:0 a.m.•44 views

Apple Mac OS X Server NetInfo Setup Tool fails to validate command line parameters

Overview Apple Mac OS X Server NeST tool contains a vulnerability in the processing of command line arguments that could allow an attacker to execute arbitrary code. Description NeST is the NetInfo Setup Tool for Apple Mac OS X Server. There is a buffer overflow vulnerability in the way NeST...

7.2CVSS7.3AI score0.00902EPSS
Exploits0References3
CERT
CERT
•added 2005/04/20 12:0 a.m.•44 views

Mozilla Firefox fails to properly perform security checks on "_search" target

Overview A vulnerability in Mozilla Firefox may allow a remote attacker to install malicious code on or read protected information from a vulnerable system. Description The Firefox web browser features the ability to open a hyperlink in the "search" web panel. Firefox fails to perform adequate...

5CVSS6.3AI score0.01246EPSS
Exploits0References4
CERT
CERT
•added 2005/02/28 12:0 a.m.•44 views

IBM AIX auditselect contains format string vulnerability

Overview IBM AIX auditselect command contains a format string vulnerability that may allow a local attacker to execute arbitrary code. Description According to IBM's Command Reference, the syntax and description of the auditselect command are as follows:$ auditselect -e "Expression" | -f File -m...

7.2CVSS6.8AI score0.00544EPSS
Exploits0References4
CERT
CERT
•added 2004/10/22 12:0 a.m.•44 views

Linux kernel USB drivers do not initialize kernel memory properly

Overview Various Linux USB drivers contain an information disclosure vulnerability that may expose sensitive segments of kernel memory to users. Description USB drivers for several versions the Linux kernel do not properly initialize kernel memory before using it. When an affected USB driver copi...

5.6AI score
Exploits0References5
CERT
CERT
•added 2004/08/04 12:0 a.m.•44 views

libpng integer overflow in image height processing

Overview The Portable Network Graphics library libpng contains a remotely exploitable vulnerability which could cause affected applications to crash. Description The Portable Network Graphics PNG image format is used as an alternative to other image formats such as the Graphics Interchange Format...

5CVSS6.2AI score0.062EPSS
Exploits1References3
CERT
CERT
•added 2004/07/14 12:0 a.m.•44 views

Microsoft Outlook Express fails to properly validate malformed e-mail headers

Overview A vulnerability exists in some versions of Microsoft Outlook Express that could allow a remote attacker to cause a denial of service. Description According to Microsoft Security Bulletin MS04-018, a flaw exists in the way that some versions of Microsoft's Outlook Express mail client...

5CVSS6AI score0.15634EPSS
Exploits0References1
CERT
CERT
•added 2003/10/14 12:0 a.m.•44 views

Microsoft Windows DCOM/RPC vulnerability

Overview A vulnerability exists in Microsoft Windows DCOM/RPC that can be exploited to cause a denial of service. It may be possible for an attacker to execute arbitrary code on a vulnerable system. Description Microsoft Windows Remote Procedure Call RPC "... is a powerful, robust, efficient, and...

5.1CVSS7.7AI score0.14841EPSS
Exploits0References7
CERT
CERT
•added 2003/03/20 12:0 a.m.•44 views

Cryptographic weakness in Kerberos Version 4 protocol

Overview Several cryptographic vulnerabilities exist in the basic Kerberos Version 4 protocol that could allow an attacker to impersonate any user in a Kerberos realm and gain any privilege authorized through that Kerberos realm. Description The MIT Kerberos Development team has discovered a...

7.5CVSS9.3AI score0.04284EPSS
Exploits0References1
CERT
CERT
•added 2002/07/30 12:0 a.m.•44 views

OpenSSL servers contain a buffer overflow during the SSL2 handshake process

Overview OpenSSL is an open-source implementation of the Secure Sockets Layer SSL protocol. A remotely exploitable vulnerability exists in OpenSSL servers that could lead to the execution of arbitrary code on the server. Description Versions of OpenSSL servers prior to 0.9.6e and pre-release...

9.5AI score
Exploits0References1
CERT
CERT
•added 2002/06/18 12:0 a.m.•44 views

Apache web servers fail to handle chunks with a negative size

Overview There is a remotely exploitable vulnerability in the way that Apache web servers or other web servers based on their source code handle data encoded in chunks. This vulnerability is present by default in configurations of Apache web server versions 1.2.2 and above, 1.3 through 1.3.24, an...

7.5CVSS6.5AI score0.95027EPSS
Exploits8References8
CERT
CERT
•added 2002/06/05 12:0 a.m.•44 views

Yahoo! Messenger contains a buffer overflow in the URI handler

Overview Yahoo! Messenger is an instant messaging client. A remotely exploitable vulnerability has been reported in the URI handler of Yahoo! Messenger. Description A remotely exploitable buffer overflow exists in the URI handler of Yahoo! Messenger, versions 5,0,0,1064 and prior, that may permit...

4.6CVSS7.5AI score0.04943EPSS
Exploits0References2
CERT
CERT
•added 2001/12/20 12:0 a.m.•44 views

Microsoft Windows Universal Plug and Play (UPNP) service vulnerable to buffer overflow via malformed advertisement packets

Overview A buffer overflow in Universal Plug and Play UPnP service on Microsoft Windows XP, Microsoft Windows ME, and Microsoft Windows 98 permits an intruder to run arbitrary code on vulnerable systems. Description Universal Plug and Play UPnP is a system to allow network devices to operate...

7.5CVSS7.5AI score0.49483EPSS
Exploits0References7
CERT
CERT
•added 2001/10/10 12:0 a.m.•44 views

Cisco IOS vulnerable to denial of service via Cisco Discovery Protocol

Overview The Cisco IOS contains a denial-of-service vulnerability that allows nearby remote attackers to crash or temporarily disable affected network devices. Description The Cisco Internetwork Operating System IOS contains a vulnerability in its processing of Cisco Discovery Protocol CDP packet...

5CVSS6.6AI score0.0231EPSS
Exploits0References3
Total number of security vulnerabilities3704