Lucene search
K

3704 matches found

CERT
CERT
added 2008/02/05 12:0 a.m.35 views

Yahoo! Music Jukebox YMP Datagrid ActiveX control stack buffer overflows

Overview The Yahoo! Music Jukebox YMP Datagrid ActiveX control contains multiple stack buffer overflows, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Yahoo! Music Jukebox is a music player for Microsoft Windows, which includes...

6.8AI score
Exploits0References3
CERT
CERT
added 2008/02/04 12:0 a.m.27 views

Aurigma ImageUploader ActiveX control stack buffer overflows

Overview The Aurigma ImageUploader ActiveX control contains multiple stack buffer overflow vulnerabilities, which may allow a remote attacker to execute arbitrary code on a vulnerable system. Description Aurigma ImageUploader is an ActiveX control that provides the ability to upload pictures usin...

7.1AI score
Exploits0References10
CERT
CERT
added 2008/01/31 12:0 a.m.49 views

Liferay Portal fails to protect against CSRF

Overview Liferay Portal fails to properly protect against Cross-Site Request Forgery CSRF. This may allow a remote attacker to be able to forge requests that Liferay Portal takes action upon. Description Liferay Portal is an enterprise portal solution that uses Java technologies. Liferay Portal...

4.3CVSS6.3AI score0.00602EPSS
Exploits0References3
CERT
CERT
added 2008/01/31 12:0 a.m.44 views

Liferay Portal Admin portlet Shutdown message XSS

Overview Liferay Portal Admin portlet fails to properly validate input to the shutdown message, which can allow a remote, authenticated attacker to inject script into the message displayed to all users when the server is being shut down. Description Liferay Portal is an enterprise portal solution...

4.3CVSS5.8AI score0.01338EPSS
Exploits0References2
CERT
CERT
added 2008/01/31 12:0 a.m.69 views

Liferay Portal User Profile Greeting stored XSS

Overview Liferay Portal fails to properly validate the User Profile "Greeting" value, which can allow script to execute when a user logs into the portal. Description Liferay Portal is an enterprise portal solution that uses Java technologies. The User Profile "Greeting" value of Liferay Portal...

4.3CVSS6.1AI score0.01338EPSS
Exploits0References2
CERT
CERT
added 2008/01/31 12:0 a.m.30 views

Liferay Portal Enterprise Admin User-Agent HTTP header XSS

Overview Liferay Portal contains a cross-site scripting vulnerability in the handling of the User-Agent HTTP header, which can allow a remote, authenticated attacker to gain administrative access. Description Liferay Portal is an enterprise portal solution that uses Java technologies. The...

4.3CVSS6.2AI score0.0201EPSS
Exploits1References2
CERT
CERT
added 2008/01/31 12:0 a.m.37 views

Liferay Portal Forgot Password User-Agent HTTP header XSS

Overview Liferay Portal contains a cross-site scripting vulnerability in the handling of the User-Agent HTTP header, which can allow a remote, authenticated attacker to inject content into "Forgot Password" emails. Description Liferay Portal is an enterprise portal solution that uses Java...

2.6CVSS5.5AI score0.01212EPSS
Exploits0References2
CERT
CERT
added 2008/01/30 12:0 a.m.60 views

SwiftView ActiveX control and plug-in stack buffer overflow

Overview The SwiftView ActiveX control and plug-in contain a stack buffer overflow, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description SwiftView is software used to view or print PCL, HPGL, and TIFF files. SwiftSend is a product used f...

10CVSS6.9AI score0.08377EPSS
Exploits0References2
CERT
CERT
added 2008/01/25 12:0 a.m.58 views

GE Fanuc CIMPLICITY HMI heap buffer overflow

Overview GE Fanuc CIMPLICITY HMI contains a remotely accessible heap buffer overflow vulnerability which may allow a remote attacker to execute arbitrary code. Description GE Fanuc CIMPLICITY HMI is software used for monitoring and control in Supervisory Control And Data Acquisition SCADA systems...

10CVSS7.9AI score0.07917EPSS
Exploits0References3
CERT
CERT
added 2008/01/25 12:0 a.m.32 views

GE Fanuc Proficy Information Portal transmits authentication credentials in plain text

Overview GE Fanuc Proficy Information Portal can transmit authentication credentials in plain text. An attacker could monitor traffic, obtain valid credentials, and gain access to the portal. Description GE Fanuc Proficy Information Portal is a web-based systems reporting tool often used to...

9.8CVSS9.6AI score0.01957EPSS
Exploits0References11
CERT
CERT
added 2008/01/25 12:0 a.m.38 views

inet_network() off-by-one buffer overflow

Overview The inetnetwork resolver function contains an off-by-one buffer overflow, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description The inetnetwork function takes a character string representation for an internet address and returns...

10CVSS7.9AI score0.123EPSS
Exploits1References7
CERT
CERT
added 2008/01/25 12:0 a.m.25 views

GE Fanuc Proficy Information Portal allows arbitrary file upload and execution

Overview GE Fanuc Proficy Information Portal allows authenticated users to upload arbitrary files. An attacker could upload an executable server-side script e.g., an .asp shell on a Microsoft Internet Information Server platform and execute arbitrary commands with the privileges of the web server...

7.5CVSS6.7AI score0.15436EPSS
Exploits6References3
CERT
CERT
added 2008/01/22 12:0 a.m.30 views

Citrix Presentation Server heap based buffer overflow

Overview A heap-based buffer overflow in Citrix Presentation Server may allow a remote attacker to execute arbitrary code on an vulnerable system in the context of the system user. Description Citrix Presentation Server is an application delivery system providing access to users accross a network...

10CVSS7.6AI score0.72963EPSS
Exploits2References3
CERT
CERT
added 2008/01/22 12:0 a.m.13 views

Skype does not properly filter input from external websites

Overview The Skype client does not properly filter user-supplied input from websites that provide video content to Skype users. Description Skype is a peer-to-peer application that provides Voice over IP VoIP and Instant Messaging services. The Skype client is available for the Microsoft Windows,...

6.5AI score
Exploits0References7
CERT
CERT
added 2008/01/15 12:0 a.m.21 views

UPnP enabled by default in multiple devices

Overview Multiple vendors ship devices with UPnP enabled by default. By convincing a user to open a malicious URL, an attacker may be able to remotely control or configure UPnP enabled devices. Description Universal Plug and Play UPnP is a collection of protocols maintained and distributed by the...

6.5AI score
Exploits0References11
CERT
CERT
added 2008/01/10 12:0 a.m.26 views

Apple QuickTime RTSP Response message Reason-Phrase buffer overflow vulnerability

Overview Apple QuickTime contains a buffer overflow vulnerability that may allow a remote, unauthenticated attacker to cause a denial-of-service condition and possibly execute arbitrary code. Description Real Time Streaming Protocol RTSP is a protocol that is used by streaming media systems. Appl...

9.3CVSS7.6AI score0.12405EPSS
Exploits1References9
CERT
CERT
added 2008/01/10 12:0 a.m.48 views

Microsoft Windows IGMPv3 and MLDv2 processing vulnerability

Overview Microsoft Windows fails to properly process IGMPv3 and MLDv2 network traffic. If exploited, this vulnerability may result in arbitrary code execution or a denial-of-service condition. Description Internet Group Management Protoco IGMP is the protocol used by IPv4 hosts to report their...

9.3CVSS7.2AI score0.49205EPSS
Exploits2References13
CERT
CERT
added 2008/01/09 12:0 a.m.32 views

AOL Radio AOLMediaPlaybackControl.exe stack buffer overflow

Overview The AOL AOLMediaPlaybackControl application contains a stack buffer overflow, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description AOL Radio includes several ActiveX controls to stream audio in web pages. The AOL AmpX and...

9.3CVSS7.3AI score0.24341EPSS
Exploits1References3
CERT
CERT
added 2008/01/08 12:0 a.m.14 views

Gateway CWebLaunchCtl ActiveX control buffer overflow

Overview The Gateway CWebLaunchCtl ActiveX control contains a buffer overflow, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable sytem. Description The Gateway Computers CWebLaunchCtlActiveX control, which is provided by weblaunch.ocx and weblaunch2.ocx,...

8AI score
Exploits0References2
CERT
CERT
added 2008/01/08 12:0 a.m.34 views

Microsoft Windows LSASS privilege escalation vulnerability

Overview The Windows LSASS service contains privilege escalation vulnerability. Description The Windows Local Security Authority Subsystem Service LSASS is a process that enforces the local security policy. Per Microsoft Security Bulletin MS08-002: An elevation of privilege vulnerability exists i...

7.2CVSS6.5AI score0.02571EPSS
Exploits1References3
CERT
CERT
added 2008/01/08 12:0 a.m.36 views

SSH Tectia Client and Server ssh-signer local privilege escalation

Overview The SSH Communications Security Tectia Client and Server products are vulnerable to privilege escalation, which may allow a local user to gain root access. Description The SSH Tectia Client and Server products contain an unspecified privilege escalation vulnerability in ssh-signer. A loc...

7.2CVSS6.7AI score0.00942EPSS
Exploits0References5
CERT
CERT
added 2008/01/03 12:0 a.m.27 views

Jetty fails to properly process URLs that contain double / characters

Overview The Jetty web server contains a vulnerability that may allow an attacker to access private files or directories. Description Jetty is a web server that is implemented in Java. Jetty contains a vulnerability in the way it processes URLs with multiple "/" slash characters. See the Jetty...

5CVSS7.8AI score0.03832EPSS
Exploits0References5
CERT
CERT
added 2008/01/03 12:0 a.m.43 views

OpenSSL FIPS Object Module fails to properly generate random seeds

Overview The OpenSSL FIPS Module fails to perform auto-seeding, which may allow an attacker to predict pseudo-randomly generated data. Description OpenSSL is a toolkit that provides SSL and TLS protocols as well as a general purpose cryptography library. The OpenSSL FIPS Object Module provides an...

6.4CVSS5.8AI score0.02312EPSS
Exploits0References8
CERT
CERT
added 2008/01/02 12:0 a.m.13 views

Flash authoring tools create Flash files that contain cross-site scripting vulnerabilities

Overview A number of authoring tools for Flash content may generate files that contain cross-site scripting vulnerabilities. Any site hosting Flash generated by an affected tool could be vulnerable to cross-site scripting. Description ActionScript is a scripting language based on ECMAScript also...

6.4AI score
Exploits0References9
CERT
CERT
added 2007/12/21 12:0 a.m.44 views

IBM Lotus Domino Web Access ActiveX control stack buffer overflows

Overview The IBM Lotus Domino Web Access ActiveX control contains multiple stack buffer overflow vulnerabilities, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description IBM Lotus Domino includes an ActiveX control called Domino Web Access,...

9.3CVSS6.8AI score0.44184EPSS
Exploits25References4
CERT
CERT
added 2007/12/19 12:0 a.m.36 views

Adobe Flash Player asfunction protocol may enable cross-site scripting

Overview The Adobe Flash player asfunction protocol could allow an attacker to conduct cross-site scripting attacks on websites that host vulnerable Flash files. Description The Adobe Flash Player is a player for the Flash media format and enables frame-based animations and multimedia to be viewe...

4.3CVSS5.4AI score0.12931EPSS
Exploits1References9
CERT
CERT
added 2007/12/18 12:0 a.m.39 views

Apple Safari code execution vulnerability

Overview The Apple Safari web browser contains a vulnerability that may allow an attacker to execute arbitrary code. Description Per Apple Security Update 2007-009:A memory corruption issue exists in Safari's handling of feed: URLs. By enticing a user to access a maliciously crafted URL, an...

9.3CVSS9.7AI score0.05589EPSS
Exploits1References1
CERT
CERT
added 2007/12/17 12:0 a.m.56 views

Meridian Prolog Manager uses weak authentication to store and transmit user credentials

Overview Meridian Systems Prolog Manager does not use strong encryption and returns a list of all user credentials when authenticating clients. These behaviors could allow an attacker to obtain user credentials and decrypt passwords. Description Meridian Systems Prolog Manager is a set of...

10CVSS6.7AI score0.05075EPSS
Exploits0References5
CERT
CERT
added 2007/12/14 12:0 a.m.36 views

Microsoft DirectX remote code execution

Overview Microsoft DirectX is vulnerable to a remote code execution vulnerability which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Microsoft DirectX is a feature of the Microsoft Windows operating system used for streaming multimedia...

9.3CVSS7.7AI score0.36234EPSS
Exploits1References1
CERT
CERT
added 2007/12/14 12:0 a.m.32 views

Gesytec Easylon OPC Server fails to properly validate OPC server handles

Overview The Gesytec Easylon OPC Server contains a vulnerability that may allow a remote attacker to execute arbitary code or cause a denial-of-service condition. Description OLE for Process Control OPC is a specification for a standard set of OLE COM objects used in the process control and...

10CVSS7.6AI score0.05689EPSS
Exploits1References5
CERT
CERT
added 2007/12/14 12:0 a.m.24 views

Shadow Utils useradd utility sets incorrect file permissions

Overview The Shadow Utilities contain a vulnerability that may result in new user mailboxes having arbitrary permissions. Description The Shadow Utilities provide tools to manage user accounts.When a new mailbox is created using the useradd utility, the open function does not receive the expected...

3.7CVSS5.6AI score0.00444EPSS
Exploits0References6
CERT
CERT
added 2007/12/14 12:0 a.m.30 views

Microsoft DirectX SAMI parsing buffer overflow

Overview Microsoft DirectX is vulnerable to a stack-based buffer overflow. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Microsoft DirectX is a feature of the Microsoft Windows operating system used for streaming...

8.5CVSS7.1AI score0.45873EPSS
Exploits13References1
CERT
CERT
added 2007/12/12 12:0 a.m.35 views

Microsoft SMBv2 signing vulnerability

Overview A vulnerability in the way Microsoft Server Message Block Version 2 SMBv2 implements digital signing of packets may allow a remote, unauthenticated attacker to gain local user privileges and execute arbitrary code. Description Microsoft Server Message Block SMB Protocol is a network file...

10CVSS6.9AI score0.41243EPSS
Exploits1References2
CERT
CERT
added 2007/12/12 12:0 a.m.25 views

Microsoft Windows Media Format Runtime ASF handling buffer overflow

Overview Microsoft Windows Media Format Runtime is vulnerable to a heap-based buffer overflow. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on an vulnerable system. Description Microsoft Windows Media Format Runtime is used by various Windows Media...

9.3CVSS7.2AI score0.35976EPSS
Exploits1References1
CERT
CERT
added 2007/12/11 12:0 a.m.29 views

Microsoft Windows Vista privilege escalation vulnerability

Overview Microsoft Windows Vista contains a local privilege escalation vulnerability. Description The Windows Advanced Local Procedure Call ALPC does not properly evaluate certain conditions in legacy reply paths.Per Microsoft Security Bulletin MS07-066: An elevation of privilege vulnerability...

7.2CVSS6.4AI score0.037EPSS
Exploits1References1
CERT
CERT
added 2007/12/10 12:0 a.m.27 views

Squid remote denial-of-service vulnerability

Overview The Squid Proxy server contains a vulnerability that may allow an attacker to create a denial-of-service condition that affects the Squid server and systems that rely on it. Description Squid Proxy Cache is a caching proxy that supports the HTTP, HTTPS, and FTP protocols. Squid can also ...

5CVSS6.2AI score0.26858EPSS
Exploits2References4
CERT
CERT
added 2007/12/04 12:0 a.m.43 views

Mortbay Jetty Dump Servlet vulnerable to cross-site scripting

Overview The Mortbay Jetty Dump Servlet contains a cross-site scripting vulnerability. Description Mortbay Jetty is a web server that is written in Java. The Dump Servlet that is included with Jetty is vulnerable to cross-site scripting. Note that according to the vendor, the Dump Servlet is for...

4.3CVSS6.9AI score0.02893EPSS
Exploits0References3
CERT
CERT
added 2007/12/04 12:0 a.m.35 views

Mortbay Jetty vulnerable to HTTP response splitting

Overview Mortbay Jetty is vulnerable to HTTP response splitting, which may allow a remote, unauthenticated attacker to inject various HTTP headers Description Mortbay Jetty is a web server that is written in Java. Jetty fails to properly handle HTTP headers with CRLF sequences, which can allow an...

5CVSS7.5AI score0.03597EPSS
Exploits0References2
CERT
CERT
added 2007/12/04 12:0 a.m.31 views

Mortbay Jetty fails to properly handle cookies with quotes

Overview Mortbay Jetty fails to properly handle cookie quotes, which may allow session hijacking. Description Mortbay Jetty is a web server that is written in Java. Jetty fails to properly handle cookies with certain quote sequences. This can cause the Jetty cookie parsing mechanism to improperly...

7.5CVSS5.2AI score0.03978EPSS
Exploits0References2
CERT
CERT
added 2007/11/27 12:0 a.m.24 views

Apple Mail remote command execution vulnerability

Overview Apple Mail contains a vulnerability that may allow an attacker to execute arbitrary commands on OS X Leopdard 10.5 systems. Description Apple OS X uses resource forks to store structured data in files. Data forks are used to store unstructured data.The AppleDouble standard is specified i...

7.5AI score
Exploits0References7
CERT
CERT
added 2007/11/24 12:0 a.m.58 views

Apple QuickTime RTSP Content-Type header stack buffer overflow

Overview Apple QuickTime contains a stack buffer overflow vulnerability that may allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial-of-service condition. Description Real Time Streaming Protocol RTSP is a protocol that is used by streaming media systems. The Appl...

9.3CVSS7AI score0.41916EPSS
Exploits10References14
CERT
CERT
added 2007/11/20 12:0 a.m.24 views

IBM Director fails to properly time-out connection requests from clients

Overview IBM Director Systems, specifically CIM Server, contains a denial-of-service vulnerability that can allow a remote, unauthenticated attacker to render Director inoperative. Description IBM Director is a suite of system management tools.When a rogue connection request is made to IBM Direct...

7.8CVSS6.3AI score0.02393EPSS
Exploits0References2
CERT
CERT
added 2007/11/19 12:0 a.m.57 views

Invensys Wonderware InTouch creates insecure NetDDE share

Overview Invensys Wonderware InTouch 8.0 creates a NetDDE share that could allow an attacker to run arbitrary programs. Description Invensys Wonderware InTouch HMI Software is used in Supervisory Control And Data Acquisition SCADA systems.Dynamic Data Exchange DDE was designed to allow Microsoft...

9CVSS9AI score0.03EPSS
Exploits0References13
CERT
CERT
added 2007/11/16 12:0 a.m.33 views

RealNetworks player "Lyrics3" buffer overflow

Overview Multiple RealNetworks media players contain a buffer overflow which could allow a remote attacker to execute arbitrary code on an affected system. Description The RealNetworks RealPlayer and Helix Player applications allow users to view local and remote audio and video content. These...

9.3CVSS7.5AI score0.07729EPSS
Exploits0References3
CERT
CERT
added 2007/11/15 12:0 a.m.32 views

Apple QuickTime heap buffer overflow vulnerability

Overview Apple QuickTime contains a buffer overflow vulnerability. If exploited, this vulnerability may allow an attacker to execute code. Description Apple QuickTime is a media player that includes a browser plugin. Color table atoms can set a list of preferred colors for displaying movieson...

9.3CVSS7.5AI score0.46662EPSS
Exploits0References2
CERT
CERT
added 2007/11/15 12:0 a.m.25 views

libFLAC contains multiple vulnerabilities

Overview libFLAC contains multiple vulnerabilities, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description FLAC Free Lossless Audio Codec is a lossless audio format. libFLAC is a library that can process FLAC files. libFLAC contains multip...

9.3CVSS6.6AI score0.06748EPSS
Exploits0References4
CERT
CERT
added 2007/11/14 12:0 a.m.30 views

Apple QuickTime code execution vulnerability

Overview Apple QuickTime contains a buffer overflow vulnerability. If exploited, this vulnerability may allow an attacker to execute code. Description Apple QuickTime is a media player that includes a browser plugin. QuickTime can use atom containers to organize movies and music tracks.From Apple...

9.3CVSS7.7AI score0.07258EPSS
Exploits0References2
CERT
CERT
added 2007/11/14 12:0 a.m.37 views

Apple Mac OS X CoreText uninitialized pointer vulnerability

Overview Apple Mac OS X CoreText contains an uninitialized pointer vulnerability, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Apple Mac OS X CoreText is a framework for handling text on Mac OS X Tiger 10.4 and later. Mac OS X...

6.8CVSS7.8AI score0.03207EPSS
Exploits1References2
CERT
CERT
added 2007/11/13 12:0 a.m.32 views

Apple QuickTime buffer overflow vulnerability

Overview Apple QuickTime contains a stack buffer overflow vulnerability. If exploited, this vulnerability may allow an attacker to execute code. Description Apple QuickTime is a media player that includes a browser plugin. QuickTime can display PICT images.From Apple Article ID: 306896 "About the...

9.3CVSS7.5AI score0.46662EPSS
Exploits0References2
CERT
CERT
added 2007/11/13 12:0 a.m.38 views

Microsoft Windows DNS Server vulnerable to cache poisoning

Overview The Microsoft Windows DNS Server is vulnerable to cache poisoning, which may allow a remote, unauthenticated attacker to cause a Windows DNS server to provide incorrect responses to DNS queries. Description Microsoft Windows DNS Server is a service that provides DNS serving capabilities...

6.4CVSS6.2AI score0.55127EPSS
Exploits2References2
Total number of security vulnerabilities3704