Lucene search
+L
CertMost viewed

3705 matches found

cert
cert
added 2007/01/18 12:0 a.m.31 views

Mozilla products vulnerable to heap overflow via miscalculated size during conversion of an image

Overview A vulnerability exists in Mozilla products that may allow a remote attacker to execute arbitrary code or cause a denial of service. Description Mozilla products contain a vulnerability in the CSS cursor property on Microsoft Windows that may result in a crash when handling malicious...

6.8CVSS7.6AI score0.08288EPSS
Exploits0References12
cert
cert
added 2007/01/17 12:0 a.m.31 views

Novell NetMail NMAP vulnerable to buffer overflow when processing "STOR" commands

Overview A vulnerability in the way Novell NetMail handles NMAP "STOR" commands may cause a buffer overflow that may allow remote execution of arbitrary code. Description Novell NetMail's implementation of the Network Messaging Application Protocol NMAP contains a buffer overflow that may occur...

9CVSS7.3AI score0.57909EPSS
Exploits7References3
cert
cert
added 2007/01/09 12:0 a.m.32 views

Microsoft Excel fails to properly process a malformed Column record

Overview Microsoft Excel contains a memory corruption vulnerability that could enable an attacker to exectue arbitrary code and gain complete control of the vulnerable system. Description Microsoft Excel fails to properly handle malformed Column records. When an Excel file is opened, Excel does n...

9.3CVSS7.1AI score0.32093EPSS
Exploits0References5
cert
cert
added 2007/01/02 12:0 a.m.31 views

Apple QuickTime RTSP buffer overflow

Overview Apple QuickTime may allow remote arbitrary code to be executed via a long src parameter in RTSP URL strings. Description A vulnerability exists in the way Apple QuickTime handles specially crafted Real Time Streaming Protocol RTSP URL strings. An attacker may be able to craft a QTL file ...

6.8CVSS7.2AI score0.48419EPSS
Exploits10References12
cert
cert
added 2006/12/14 12:0 a.m.31 views

Microsoft Remote Installation Service Writable Path Vulnerability

Overview A vulnerability in the way Microsoft Remote Installation Service handles TFTP may allow a remote, unauthorized attacker to create or overwrite arbitrary operating system files. Description Microsoft Remote Installation Service contains a vulnerability in the way that it provides TFTP...

7.5CVSS6.4AI score0.31291EPSS
Exploits0References2
cert
cert
added 2006/11/30 12:0 a.m.31 views

Apple Mac OS X CFNetwork may allow arbitrary FTP commands to be executed via a crafted FTP URI

Overview Apple Mac OS X CFNetwork may allow arbitrary FTP commands to be executed via a crafted FTP URI. Description According to Apple Security Update 2006-007:By enticing a user to access a maliciously crafted FTP URI, an attacker can cause the user's FTP client to issue arbitrary FTP commands ...

5.1CVSS6.7AI score0.02309EPSS
Exploits2References2
cert
cert
added 2006/11/29 12:0 a.m.31 views

Apple Mac OS X WebKit deallocated object access vulnerability

Overview Apple Safari WebKit fails to properly deallocate objects. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code. Description According to Apple: WebKit is the open source core of Apple's Safari web browser. It is available as a framework in Mac OS X fo...

6.8CVSS7.1AI score0.05406EPSS
Exploits2References3
cert
cert
added 2006/11/22 12:0 a.m.31 views

Computer Associates BrightStor ARCserve Backup Tape Engine fails to properly handle RPC requests

Overview A vulnerability exists in the Computer Associates BrightStor ARCserve Backup Tape Engine. If successfully exploited, this vulnerability may allow a remote attacker to execute arbitrary code. Description BrightStor ARCserve Backup is a backup and data retention tool that integrates with...

10CVSS7.1AI score0.70215EPSS
Exploits11References9
cert
cert
added 2006/11/22 12:0 a.m.31 views

Apple Mac OS X fails to properly handle corrupted DMG image structures

Overview Apple Mac OS X fails to properly handle corrupted DMG image structures. The complete impact of this vulnerability is unclear, but may include execution of arbitrary code or denial of service. Description A vulnerability in the way Mac OS X com.apple.AppleDiskImageController handles...

9.3CVSS7.9AI score0.09446EPSS
Exploits1References7
cert
cert
added 2006/11/14 12:0 a.m.31 views

Microsoft DirectAnimation Path ActiveX control Spline method integer overflow

Overview A vulnerability in the Microsoft DirectAnimation ActiveX controls may allow a remote attacker to execute arbitrary code on an affected system. Description Microsoft's DirectAnimation is a suite of development functionality, predating Microsoft DirectX, that provides animation support for...

5CVSS7.3AI score0.6033EPSS
Exploits1References6
cert
cert
added 2006/10/26 12:0 a.m.31 views

Novell GroupWise Messenger fails to properly handle HTTP POST requests.

Overview Novell GroupWise Messenger fails to properly handle HTTP POST requests. This vulnerability may allow a remote attacker to cause a denial of service condition. Description Novell GroupWise Messenger fails to properly handle HTTP POST requests. This vulnerability may be triggered by sendin...

5CVSS6.6AI score0.03004EPSS
Exploits0References4
cert
cert
added 2006/10/25 12:0 a.m.31 views

Wireshark contains an unspecified vulnerability in the SCSI dissector

Overview Wireshark contains a vulnerability in the SCSI dissector that may cause a denial-of-service condition. Description The SCSI dissector in Wireshark contains an unspecified error that may allow remote attackers to cause a denial-of-service condition.Wireshark states that Wireshark version...

4.3CVSS7.3AI score0.03336EPSS
Exploits0References13
cert
cert
added 2006/06/22 12:0 a.m.31 views

WinSCP URI handlers fails to properly parse command line switches

Overview A vulnerability has been found in WinSCP, which can be exploited by an attacker to overwrite or add files to the victim's computer. Description WinSCP is an open source SFTP client for Microsoft windows. It supports a file-manager user interface, and uses the SSH protocol to transfer fil...

7.1CVSS5.9AI score0.06453EPSS
Exploits1References2
cert
cert
added 2006/06/13 12:0 a.m.31 views

Microsoft PowerPoint malformed record vulnerability

Overview Microsoft PowerPoint fails to properly handle malformed records. This may allow a remote attacker to execute arbitrary code on a vulnerable system. Description Microsoft PowerPoint Microsoft PowerPoint is presentation software that is available on Microsoft Windows and Apple Mac platform...

7.6CVSS7AI score0.14537EPSS
Exploits0References2
cert
cert
added 2006/06/13 12:0 a.m.31 views

Microsoft JScript memory corruption vulnerability

Overview Microsoft JScript contains a memory corruption vulnerability. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Microsoft JScript According to Microsoft Security Bulletin MS06-023: JScript is the Microsoft...

6.8CVSS6.6AI score0.28602EPSS
Exploits0References2
cert
cert
added 2006/06/13 12:0 a.m.31 views

Microsoft Remote Access Connection Manager service vulnerable to buffer overflow

Overview A vulnerability in the Microsoft Remote Access Connection Manager may allow a remote attacker to execute arbitrary code on a vulnerable system. Description Microsoft describes the Routing and Remote Access Service RRAS as follows:RRAS makes it possible for a computer to function as a...

7.5CVSS7.4AI score0.21943EPSS
Exploits6References2
cert
cert
added 2006/05/30 12:0 a.m.31 views

Symantec products vulnerable to buffer overflow

Overview Symantec products are vulnerable to a stack-based buffer overflow. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code. Description Symantec Client Security and Symantec Antivirus Corporate Edition contain a stack-based buffer overflow. For informati...

10CVSS7AI score0.73558EPSS
Exploits7References5
cert
cert
added 2006/05/09 12:0 a.m.31 views

Microsoft Exchange fails to properly handle vCal and iCal properties

Overview Microsoft Exchange Server does not properly handle the vCal and iCal properties of email messages. Exploitation of this vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on an Exchange Server. Description Microsoft Exchange Server Microsoft's Exchange...

7.5CVSS6.7AI score0.78679EPSS
Exploits2References4
cert
cert
added 2006/03/29 12:0 a.m.31 views

Symantec VERITAS NetBackup contains a buffer overflow vulnerability in the Sharepoint Services daemon

Overview The Symantec VERITAS NetBackup Volume Manager daemon contains a buffer overflow vulnerability which may allow a remote, unauthenticated attacker to execute arbitrary code. Description Symantec VERITAS NetBackup is a client/server based backup software solution. The Sharepoint Services...

7.1CVSS7.4AI score0.10972EPSS
Exploits4References2
cert
cert
added 2006/03/22 12:0 a.m.31 views

Sendmail signal I/O race condition

Overview A race condition in Sendmail may allow a remote attacker to execute arbitrary code. Description Sendmail Sendmail is a widely used mail transfer agent MTA. Mail Transfer Agents MTA MTAs are responsible for sending an receiving email messages over the internet. They are also referred to a...

7.6CVSS7.6AI score0.28144EPSS
Exploits0References5
cert
cert
added 2006/03/17 12:0 a.m.31 views

Apple Mail buffer overflow vulnerability

Overview Apple Mail contains a buffer overflow that may allow a remote attacker to execute arbitrary code on a vulnerable system. Description Apple Mail Mac OS X includes the Mail application Mail.app for handling electronic mail. The Problem Apple Mail contains a buffer overflow caused by lack o...

5.1CVSS7.5AI score0.10835EPSS
Exploits1References3
cert
cert
added 2006/01/11 12:0 a.m.31 views

Apple QuickTime image handling buffer overflow

Overview Apple QuickTime contains a heap-based buffer overflow that may allow an attacker to execute arbitrary code or cause a denial-of-service condition. Description Apple QuickTime fails to properly validate QuickTime Images QTIF, potentially allowing a heap-based buffer overflow to occur. If ...

7.5CVSS7.5AI score0.25506EPSS
Exploits5
cert
cert
added 2005/12/02 12:0 a.m.31 views

Sun Java Runtime Environment applet privilege escalation vulnerability

Overview The Sun Java Runtime Environment JRE may allow an untrusted Java applet to bypass Java security settings and execute arbitrary code. Description The Sun Java Runtime Environment provides the libraries and components necessary to run Java-based applications. There is an unspecified...

7.5CVSS7.3AI score0.04632EPSS
Exploits0References2
cert
cert
added 2005/10/26 12:0 a.m.31 views

Skype vulnerable to heap-based buffer overflow

Overview A heap-based buffer overflow in Skype may allow a remote attacker to execute arbitrary code or cause a denial-of-service condition. Description Skype software provides telephone service over IP networks. Skype contains a buffer overflow in a routine that parses incoming network traffic...

10CVSS7.6AI score0.07295EPSS
Exploits1References3
cert
cert
added 2005/10/11 12:0 a.m.31 views

Microsoft Collaboration Data Objects buffer overflow

Overview A buffer overflow in Microsoft Collaboration Data Objects may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Microsoft Collaboration Data Objects CDO is a scripting library used to develop applications that handle email. Note that C...

7.5CVSS7.3AI score0.43446EPSS
Exploits0References1
cert
cert
added 2005/09/27 12:0 a.m.31 views

Apple Mac OS X QuickDraw Manager fails to properly handle corrupt PICT files

Overview Apple Mac OS X QuickDraw Manager contains a buffer overflow that may allow a remote attacker to execute arbitrary code. Description Apple Mac OS X QuickDraw is a 2D graphics library. It is used by several applications, including Safari, Mail, and Finder. QuickDraw is used to render PICT...

5.1CVSS7.6AI score0.04056EPSS
Exploits0References9
cert
cert
added 2005/09/16 12:0 a.m.31 views

Check Point Firewall rules may improperly handle network traffic

Overview Check Point Firewall CIFS service group may allow unintended traffic to pass through the firewall. Description Check Point Firewall contains a set of predefined service groups designed to handle different types of traffic associated with a service or collection of protocols. For instance...

7.5CVSS6.3AI score0.02329EPSS
Exploits0References5
cert
cert
added 2005/08/09 12:0 a.m.31 views

Microsoft Windows Remote Desktop Protocol service input validation vulnerability

Overview An input validation error in the Microsoft Remote Desktop Protocol RDP service may allow a remote attacker to cause a denial-of-service condition. Description Microsoft describes the Remote Desktop Protocol RDP as follows.RDP is based on, and is an extension of, the T.120 protocol family...

5CVSS6.2AI score0.61183EPSS
Exploits0References10
cert
cert
added 2005/04/12 12:0 a.m.31 views

Microsoft Exchange Server contains unchecked buffer in SMTP extended verb handling

Overview A vulnerability in some versions of Microsoft's Exchange Server may allow a remote attacker to execute arbitrary code on an affected server. Description Microsoft's Exchange Server supports a number of protocols for handling email, including the Simple Mail Transfer Protocol SMTP and SMT...

7.5CVSS7.7AI score0.69482EPSS
Exploits6References5
cert
cert
added 2005/04/12 12:0 a.m.31 views

Microsoft Word contains a buffer overflow vulnerability

Overview Microsoft Word contains a vulnerability that may result in the execution of code on the system with the privileges of the current user. Description Microsoft Word contains a buffer overflow vulnerability that may be exploited by opening a maliciously-crafted word document. Successful...

5.1CVSS7.3AI score0.15219EPSS
Exploits0References1
cert
cert
added 2005/02/04 12:0 a.m.31 views

Squid fails to properly handle oversized reply headers

Overview The Squid web proxy cache may be vulnerable to oversized HTTP reply headers. Description Squid functions as a web proxy and cache application for a number of protocols, including the hypertext transfer protocol HTTP. A defect in the Squid HTTP handling prevents oversized reply headers...

5CVSS5.7AI score0.69661EPSS
Exploits0References3
cert
cert
added 2004/11/03 12:0 a.m.31 views

MailPost vulnerable to cross-site scripting in the 'append' variable passed to the file as part of an HTTP GET request

Overview A cross-site scripting vulnerability is reported to exist in MailPost version 5.1.1sv and possibly earlier versions. Description According to a report by ProCheckUp, MailPost is vulnerable to a Cross-Site Scripting attack via the 'append' variable. The 'append variable is passed as part ...

6AI score
Exploits0References1
cert
cert
added 2004/08/19 12:0 a.m.31 views

Cisco IOS fails to properly handle malformed OSPF packets

Overview A denial-of-service vulnerability exists in Cisco's Internetwork Operating System IOS. This vulnerability may allow remote attackers to conduct denial-of-service attacks on an affected device. Description Open Shortest Path First OSPF is a routing protocol that provides a means for...

7.2AI score
Exploits0References8
cert
cert
added 2004/07/14 12:0 a.m.31 views

Microsoft Windows HTML Help component fails to properly validate input data

Overview There is a vulnerability in the HTML Help component of Microsoft Windows that could allow an attacker to execute arbitrary code on an affected system. Description Microsoft HTML Help provides a standard help system for the Windows operating system. There is a vulnerability in the way...

10CVSS6.9AI score0.45137EPSS
Exploits0References5
cert
cert
added 2004/07/14 12:0 a.m.31 views

Microsoft Windows contains a vulnerability in the way the Windows Shell launches applications

Overview Microsoft Windows contains a remote code execution vulnerability in the way that the Windows Shell launches applications. An remote attacker could exploit this vulnerability to execute arbitrary code if they could trick a user into visiting a malicious website. Description Microsoft...

10CVSS7.2AI score0.46012EPSS
Exploits1References1
cert
cert
added 2004/07/14 12:0 a.m.31 views

Microsoft Windows Task Scheduler Buffer Overflow

Overview Microsoft Windows Task Scheduler has a buffer overflow that may allow a remote or local intruder to execute arbitrary code. Description Microsoft Windows Task Scheduler Mstask.dll is a COM-based API ActiveX control that provides a scheduling service for executing arbitrary commands on a...

10CVSS7.4AI score0.66952EPSS
Exploits4References2
cert
cert
added 2004/05/21 12:0 a.m.31 views

Apple Mac OS X "disk://" URI handler stores arbitrary files in a known location

Overview A vulnerability has been reported in the default "disk://" protocol handler installed on Apple Mac OS X systems. Remote attackers may potentially use this vulnerability to create files on the local system without explicit user consent. We have not independently verified the scope of this...

7.3AI score
Exploits0References2
cert
cert
added 2004/05/14 12:0 a.m.31 views

Sun Java Runtime Environment vulnerable to DoS

Overview The Sun Java Runtime Environment JRE contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial-of-service condition in the Java Virtual Machine JVM. Description The Sun Java Runtime Environment provides the libraries and components necessary to run...

7AI score
Exploits0References4
cert
cert
added 2004/04/05 12:0 a.m.31 views

Outlook Express MHTML protocol handler does not properly validate source of alternate content

Overview The Outlook Express MIME Encapsulation of Aggregate HTML Documents MHTML protocol handler does not adequately validate the source of alternate content. An attacker could exploit this vulnerability to access data and execute script in different security domains. By causing script to be ru...

10CVSS6.5AI score0.6325EPSS
Exploits1References25
cert
cert
added 2004/03/25 12:0 a.m.31 views

Norton AntiSpam contains boundary error within the "SymSpamHelper Class" (symspam.dll) ActiveX component.

Overview Symantec's Norton AntiSpam is a software package that provides spam filtering. A vulnerability in an ActiveX control that ships with Norton AntiSpam may permit a remote attacker to execute arbitrary code on the local system. Description Symantec Norton AntiSpam for Windows installs the...

7.5CVSS7.1AI score0.66567EPSS
Exploits7References3
cert
cert
added 2004/03/09 12:0 a.m.31 views

NetScreen Instant Virtual Extranet (IVE) platform contains cross-site scripting vulnerability in delhomepage.cgi

Overview NetScreen Instant Virtual Extranet IVE platform contains a cross-site scripting vulnerability in the row parameter of delhomepage.cgi, which could allow an attacker to mount a cross-site scripting attack. Description The Instant Virtual Extranet platform is an application security gatewa...

6.1AI score
Exploits0References4
cert
cert
added 2004/01/19 12:0 a.m.31 views

Multiple tools within the Netpbm package create temporary files in an insecure manner

Overview Multiple tools within the Netpbm package create temporary files in an insecure manner. Description Netpbm is a toolkit that contains over 220 separate tools for manipulating graphic images. Multiple tools within the Netpbm package create temporary files insecurely. --- Impact A local...

3.7CVSS6.2AI score0.00413EPSS
Exploits0References3
cert
cert
added 2003/10/30 12:0 a.m.31 views

Avaya Argent Office vulnerable to denial of service via malformed DNS packets

Overview The Avaya Argent Office reboots in response to certain malformed DNS packets, resulting in a denial of service condition. Description The Avaya Argent Office reboots when a packet with an empty payload is sent to UDP port 53 DNS on its internal interface. By sending repeated packets to...

6.9AI score
Exploits0
cert
cert
added 2003/10/16 12:0 a.m.31 views

Microsoft Help and Support Center contains buffer overflow in code used to handle HCP protocol

Overview There is a buffer overflow in the Microsoft Help and Support Center that could permit an attacker to execute arbitrary code with SYSTEM privileges. Description The Microsoft Help and Support Center is a facility within WIndows to provide product help and documentation. Among other things...

7.5CVSS7AI score0.33077EPSS
Exploits0References5
cert
cert
added 2003/10/03 12:0 a.m.31 views

SSH Communications Secure Shell vulnerable to DoS via malformed BER/DER packet

Overview SSH Communications' Secure Shell contains vulnerabilities in ASN.1 libraries that may allow remote attackers to cause a denial-of-service situation, or potentially execute arbitrary code on the server. Description SSH Communications' Secure Shell contains a vulnerability in the decoding ...

8.9AI score
Exploits0References2
cert
cert
added 2003/09/18 12:0 a.m.31 views

Sendmail contains buffer overflow in ruleset parsing

Overview Sendmail contains a buffer overflow vulnerability in the code that parses rulesets. This vulnerability could allow a remote attacker to execute arbitrary code or cause a denial of service on a vulnerable system.This vulnerability does not affect the default configuration. Description...

8.5AI score
Exploits0References2
cert
cert
added 2003/08/20 12:0 a.m.31 views

SGI IRIX contains buffer overflow vulnerability in "cpr" program

Overview A vulnerability in cpr may allow a local attacker execute arbitrary code. Description SGI describes cpr as follows:IRIX Checkpoint and Restart CPR offers a set of user-transparent software management tools, allowing system administrators, operators, and users with suitable privileges to...

7.2CVSS7.3AI score0.00392EPSS
Exploits0References3
cert
cert
added 2003/07/25 12:0 a.m.31 views

Microsoft Windows DirectX MIDI library does not adequately validate MThd track values in MIDI files

Overview A Microsoft Windows DirectX library, quartz.dll, does not properly validate the number of tracks value in Musical Instrument Digital Interface MIDI files. An attacker could exploit this vulnerability to execute arbitrary code or crash any application using the library, causing a denial o...

7.5CVSS7.2AI score0.32667EPSS
Exploits0References3
cert
cert
added 2003/07/21 12:0 a.m.31 views

Symantec ActiveX control vulnerable to buffer overflow

Overview There is a buffer overflow in a component of Symantec's web-based Security Check. Description Symantec describes Security Check as "a free web-based tool that enables users to test their computer's exposure to a wide range of on-line threats. As part of running the check, users may insta...

7.5CVSS6.6AI score0.08696EPSS
Exploits0References9
cert
cert
added 2003/05/13 12:0 a.m.31 views

Adobe Acrobat does not adequately validate Acrobat JavaScript

Overview Adobe Acrobat contains a vulnerability in its JavaScript parsing engine that could allow an attacker to place arbitrary files on the local file system. Description Different versions of Adobe Acrobat software can create, modify, and read Portable Document Format PDF files. Acrobat...

7.5CVSS6AI score0.02106EPSS
Exploits0References6
Total number of security vulnerabilities3705