Lucene search
K

3704 matches found

CERT
CERT
•added 2007/01/18 12:0 a.m.•31 views

Mozilla products allows the src attribute in an img element to be changed to a JavaScript URI

Overview Mozilla products contain a cross-site scripting vulnerability due to a vulnerability in the way IMG elements are loaded. Description A vulnerability in the way Mozilla products load IMG elements in a frame may cause a cross-site script injection. According to Mozilla Foundation Security...

6.8CVSS6.1AI score0.03971EPSS
Exploits0References12
CERT
CERT
•added 2007/01/18 12:0 a.m.•40 views

Mozilla products vulnerable to privilege escalation via a JavaScript watch() function

Overview A vulnerability exists in Mozilla products that may allow a remote attacker to gain elevated privileges. Description Mozilla products contain a vulnerability in the way the JavaScript watch function is handled that may result in privilege escalation. According to the Mozilla Foundation...

6.8CVSS6.2AI score0.0283EPSS
Exploits0References13
CERT
CERT
•added 2007/01/18 12:0 a.m.•35 views

Mozilla JavaScript Engine multiple memory corruption vulnerabilities

Overview Several vulnerabilities exists in the Mozilla JavaScript Engine that may allow a remote attacker to compromise a vulnerable system. Description The Mozilla JavaScript Engine contains multiple vulnerabilities that may result in memory corruption. According to the Mozilla Foundation Securi...

6.8CVSS7.6AI score0.04292EPSS
Exploits0References22
CERT
CERT
•added 2007/01/17 12:0 a.m.•33 views

Novell NetMail IMAP server vulnerable to buffer overflow when processing "APPEND" commands

Overview A vulnerability in the way Novell NetMail handles IMAP "APPEND" commands may cause a buffer overflow that may allow remote execution of arbitrary code. Description Novell NetMail's IMAP server contains a buffer overflow that may occur when processing parameters supplied to the "APPEND"...

9CVSS7.5AI score0.58474EPSS
Exploits7References4
CERT
CERT
•added 2007/01/17 12:0 a.m.•30 views

Novell NetMail NMAP vulnerable to buffer overflow when processing "STOR" commands

Overview A vulnerability in the way Novell NetMail handles NMAP "STOR" commands may cause a buffer overflow that may allow remote execution of arbitrary code. Description Novell NetMail's implementation of the Network Messaging Application Protocol NMAP contains a buffer overflow that may occur...

9CVSS7.3AI score0.57909EPSS
Exploits7References3
CERT
CERT
•added 2007/01/17 12:0 a.m.•17 views

Oracle SYS.DBMS_AQ package vulnerable to PL/SQL injection

Overview The Oracle SYS.DBMSAQ package is vulnerable to PL/SQL injection. This vulnerability may allow a remote, authenticated attacker to execute arbitrary PL/SQL commands on a vulnerable Oracle installation. Description The Oracle SYS.DBMSAQ package fails to properly sanitize user input.This ma...

7.6AI score
Exploits0References3
CERT
CERT
•added 2007/01/17 12:0 a.m.•27 views

SISCO OSI stack fails to properly handle malformed packets

Overview A vulnerability exists in the SISCO OSI stack. If this vulnerability is successfully exploited, an attacker could cause a denial-of-service condition. Description The SISCO OSI stack is a component of the SISCO MMS-EASE, ICCP Toolkit for MMS-EASE, AX-S4 MMS and AX-S4 ICCP products. The...

5CVSS6.3AI score0.02041EPSS
Exploits0References4
CERT
CERT
•added 2007/01/17 12:0 a.m.•46 views

Sun Microsystems Java GIF image processing buffer overflow

Overview A vulnerability in the Sun Java Runtime Environment may allow an attacker to execute arbitrary code on a vulnerable system. Description The Sun Java Runtime Environment JRE allows users to run Java applications in a browser or as standalone programs. Sun has made the JRE available for...

6.8CVSS6.8AI score0.10994EPSS
Exploits1References9
CERT
CERT
•added 2007/01/17 12:0 a.m.•25 views

Novell NetMail IMAP vulnerable to DoS when processing "APPEND" commands

Overview A vulnerability in the way Novell Netmail handles IMAP APPEND commands may allow a denial of service. Description Novell Netmail's IMAP server contains a buffer overflow that may occur when processing parameters supplied to the APPEND command. An attacker must login to an affected system...

4CVSS6.8AI score0.01675EPSS
Exploits0References3
CERT
CERT
•added 2007/01/17 12:0 a.m.•35 views

Novell NetMail IMAP vulnerable to buffer overflow when processing "SUBSCRIBE" commands

Overview A vulnerability in the way Novell Netmail handles IMAP SUBSCRIBE commands may cause a buffer overflow that may allow remote execution of arbitrary code. Description Novell Netmail's IMAP server contains a buffer overflow that may occur when processing parameters supplied to the SUBSCRIBE...

6.5CVSS7.6AI score0.5367EPSS
Exploits4References4
CERT
CERT
•added 2007/01/16 12:0 a.m.•30 views

Apple Mac OS X UFS filesystem integer overflow vulnerability

Overview There is an integer overflow in the ffsmountfs function, which is used by Apple's OS X operating system to handle UFS disc images. Description Unix File System UFS is a file system used by Unix and other similar operating systems. Apple OS X supports UFS, partitions, and images. There is...

4.6CVSS8.5AI score0.00964EPSS
Exploits0References7
CERT
CERT
•added 2007/01/15 12:0 a.m.•26 views

Cisco Secure Access Control Server fails to properly handle specially crafted Access-Request messages

Overview Several vulnerabilities in the RADIUS server supplied with Cisco Secure ACS products could allow a remote attacker to execute arbitrary code on an affected system. Description Cisco Secure ACS is a Remote Access Dial-In User Service RADIUS and Terminal Access Controller Access Control...

7.8CVSS8.1AI score0.04123EPSS
Exploits0References4
CERT
CERT
•added 2007/01/15 12:0 a.m.•31 views

Cisco Secure Access Control Server vulnerable to a stack-based buffer overflow via a specially crafted "HTTP GET" request

Overview A vulnerability in the web administrative server supplied with Cisco Secure ACS products could allow a remote attacker to execute arbitrary code on an affected system. Description Cisco Secure ACS is a Remote Access Dial-In User Service RADIUS and Terminal Access Controller Access Contro...

7.5CVSS7.9AI score0.11017EPSS
Exploits0References3
CERT
CERT
•added 2007/01/15 12:0 a.m.•21 views

Cisco Secure Access Control Server fails to properly handle a specially crafted RADIUS Accounting-Request packet

Overview A vulnerability in the RADIUS server supplied with Cisco Secure ACS products could allow a remote attacker to execute arbitrary code on an affected system. Description Cisco Secure ACS is a Remote Access Dial-In User Service RADIUS and Terminal Access Controller Access Control System Plu...

10CVSS7.6AI score0.12718EPSS
Exploits0References4
CERT
CERT
•added 2007/01/12 12:0 a.m.•34 views

Apple Quicktime HREFTrack Cross-Zone Scripting vulnerability

Overview Web browsers running the Apple QuickTime plugin may allow remote web sites to reference content on the local filesystem. This may allow an attacker to execute script within the security context of the local machine. Description Web browser plugins that allow remote web sites to reference...

6.8CVSS5.7AI score0.05638EPSS
Exploits1References2
CERT
CERT
•added 2007/01/12 12:0 a.m.•53 views

CA BrightStor ARCserve Backup Tape Engine RPC buffer overflow

Overview The Computer Associates BrightStor ARCserve Backup Tape Engine RPC service contains a buffer overflow vulnerability. If successfully exploited, this vulnerability may allow a remote attacker to execute arbitrary code. Description BrightStor ARCserve Backup is a backup and data retention...

7.5CVSS7.4AI score0.68809EPSS
Exploits16References6
CERT
CERT
•added 2007/01/12 12:0 a.m.•32 views

Acer LunchApp ActiveX Control fails to properly restrict access to methods

Overview The Acer LunchApp ActiveX control contains methods that can allow a remote, unauthenticated attacker to run arbitrary commands on a vulnerable system. Description The Acer LunchApp ActiveX control is provided by LunchApp.ocx. It contains a method called Run, which takes three parameters:...

9.3CVSS5.8AI score0.1187EPSS
Exploits1References7
CERT
CERT
•added 2007/01/12 12:0 a.m.•35 views

CA BrightStor ARCserve Backup Message Engine RPC buffer overflow

Overview The Computer Associates BrightStor ARCserve Backup Message Engine contains a buffer overflow vulnerability. If successfully exploited, this vulnerability may allow a remote attacker to execute arbitrary code. Description BrightStor ARCserve Backup is a backup and data retention tool that...

7.5CVSS7.4AI score0.68809EPSS
Exploits16References6
CERT
CERT
•added 2007/01/12 12:0 a.m.•36 views

CA BrightStor ARCserve Backup Tape Engine directly calls user supplied data in RPC requests

Overview The Computer Associates BrightStor ARCserve Backup Tape Engine contains a vulnerability in its Tape Engine RPC service. If successfully exploited, this vulnerability may allow a remote attacker to execute arbitrary code. Description BrightStor ARCserve Backup is a backup and data retenti...

7.5CVSS7AI score0.19776EPSS
Exploits1References3
CERT
CERT
•added 2007/01/12 12:0 a.m.•47 views

Microsoft Outlook vulnerable to DoS via a malformed email message

Overview There is a vulnerability in the way Microsoft Outlook handles malformed email messages that may allow a remote, unauthenticated attacker to cause a denial of service. Description Microsoft Outlook contains a vulnerability in the way that it handles certain email message headers. Accordin...

4.3CVSS6.1AI score0.30805EPSS
Exploits0References7
CERT
CERT
•added 2007/01/09 12:0 a.m.•32 views

Microsoft Excel fails to properly process a malformed Column record

Overview Microsoft Excel contains a memory corruption vulnerability that could enable an attacker to exectue arbitrary code and gain complete control of the vulnerable system. Description Microsoft Excel fails to properly handle malformed Column records. When an Excel file is opened, Excel does n...

9.3CVSS7.1AI score0.32093EPSS
Exploits0References5
CERT
CERT
•added 2007/01/09 12:0 a.m.•33 views

Kerberos administration daemon may free uninitialized pointers

Overview A vulnerability exists in the Kerberos administration daemon that may allow a remote, unauthenticated user to free uninitialized pointers. Freeing uninitialized pointers corrupts memory in a way that could allow an attacker to execute code. Description The MIT krb 5 administration daemon...

5CVSS9.6AI score0.05216EPSS
Exploits0References10
CERT
CERT
•added 2007/01/09 12:0 a.m.•32 views

Microsoft Excel vulnerable to arbitrary code execution via malformed record

Overview A vulnerability in Microsoft Excel may allow an attacker to execute arbitrary code on a vulnerable system. Description A vulnerability exists in the way Microsoft Excel handles malformed records.Per Microsoft Security Bulletin MS07-002: A remote code execution vulnerability exists in...

9.3CVSS7.3AI score0.32981EPSS
Exploits0References6
CERT
CERT
•added 2007/01/09 12:0 a.m.•36 views

Microsoft Outlook fails to properly parse Office Saved Searches (.oss) files

Overview A vulnerability exists in the way Microsoft Outlook handles Office Saved Searches .oss. This vulnerability may allow a remote attacker to execute arbitrary code. Description Office Saved Searches .oss contain views of e-mail items that satisfy previous search criteria.Microsoft Outlook...

9.3CVSS7.3AI score0.36843EPSS
Exploits0References7
CERT
CERT
•added 2007/01/09 12:0 a.m.•47 views

Sun Java JRE vulnerable to privilege escalation

Overview A vulnerability in the Sun Java Runtime Environment may allow a malicious applet to gain elevated privileges. Description The Sun Java Runtime Environment JRE allows users to run Java applications in a browser or as standalone programs. Sun has made the JRE available for multiple operati...

9.3CVSS6.2AI score0.03058EPSS
Exploits0References9
CERT
CERT
•added 2007/01/09 12:0 a.m.•49 views

Microsoft Outlook fails to properly process a VEVENT record

Overview Microsoft Outlook contains a memory corruption vulnerability that could enable an attacker to execute arbitrary code and gain complete control of the vulnerable system. Description Microsoft Outlook fails to properly handle malformed VEVENT records. When an .iCal meeting request containi...

9.3CVSS7.2AI score0.32171EPSS
Exploits0References7
CERT
CERT
•added 2007/01/09 12:0 a.m.•37 views

Microsoft Excel fails to properly parse malformed Palette records

Overview A vulnerability in the way that Microsoft Excel handles malformed Palette records could allow an attacker to execute arbitrary code on a vulnerable system. Description Microsoft Excel fails to properly handle Palette records embedded in Excel documents. When a file containing a malformed...

9.3CVSS6.7AI score0.41694EPSS
Exploits4References5
CERT
CERT
•added 2007/01/09 12:0 a.m.•42 views

Sun Java JRE vulnerable to arbitrary code execution via an unspecified error

Overview A vulnerability in the Sun Java Runtime Environment may allow an attacker to execute arbitrary code on a vulnerable system. Description The Sun Java Runtime Environment JRE allows users to run Java applications in a browser or as standalone programs. Sun has made the JRE available for...

9.3CVSS7.6AI score0.03632EPSS
Exploits0References8
CERT
CERT
•added 2007/01/09 12:0 a.m.•31 views

Sun Java JRE vulnerable to arbitrary code execution via an undetermined error

Overview A vulnerability in the Sun Java Runtime Environment may allow an attacker to execute arbitrary code on a vulnerable system. Description The Sun Java Runtime Environment JRE allows users to run Java applications in a browser or as standalone programs. Sun has made the JRE available for...

9.3CVSS7.6AI score0.03632EPSS
Exploits0References9
CERT
CERT
•added 2007/01/09 12:0 a.m.•27 views

Microsoft Internet Explorer VML buffer overflow

Overview Microsoft Internet Explorer IE fails to properly handle Vector Markup Language tags. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Microsoft IE version 5.0 and higher supports the Vector Markup Language VML,...

9.3CVSS6.7AI score0.46488EPSS
Exploits5References7
CERT
CERT
•added 2007/01/09 12:0 a.m.•32 views

Kerberos administration daemon fails to properly initialize function pointers

Overview The Kerberos administration daemon fails to properly initialize pointers. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service. Description A vulnerability exists in the way the Kerberos administration daemon handles...

9.3CVSS9.5AI score0.07926EPSS
Exploits0References12
CERT
CERT
•added 2007/01/09 12:0 a.m.•34 views

Microsoft Excel fails to properly handle malformed IMDATA records

Overview A vulnerability in the way that Microsoft Excel handles malformed image records could allow an attacker to execute arbitrary code on a vulnerable system. Description Microsoft Excel fails to properly validate the size of IMDATA records. When a file containing a malformed IMDATA record is...

9.3CVSS7AI score0.3117EPSS
Exploits0References4
CERT
CERT
•added 2007/01/09 12:0 a.m.•75 views

Mozilla denial of service vulnerability

Overview Certain Mozilla products contain a denial-of-service vulnerability. Description Certain Mozilla products contain a denial-of-service vulnerability that occurs because of an infinite loop in the jsdtoa function. Mozilla Firefox versions prior to 2.0.0.1, Thunderbird prior to 1.5.0.9, and...

4.3CVSS5.7AI score0.0372EPSS
Exploits0References13
CERT
CERT
•added 2007/01/05 12:0 a.m.•35 views

OpenOffice fails to properly process WMF and EMF files

Overview Multiple buffer overflow vulnerabilities exist in the OpenOffice.org office suite. If successfully exploited, these vulnerabilities may allow an attacker to execute arbitrary code on a vulnerable system. Description OpenOffice.org is a free office suite that is available for multiple...

9.3CVSS7.5AI score0.0824EPSS
Exploits0References12
CERT
CERT
•added 2007/01/04 12:0 a.m.•36 views

Citrix ICA Client ActiveX control buffer overflow

Overview A vulnerability in an ActiveX control provided with the Citrix Presentation Server Client could allow a remote attacker to execute arbitrary code on an affected system. Description The Citrix Presentation Server Client software provides an ActiveX control that can be used to integrate th...

6.8CVSS7.3AI score0.34611EPSS
Exploits10References3
CERT
CERT
•added 2007/01/03 12:0 a.m.•73 views

Adobe Acrobat Plug-In cross domain violation

Overview The Adobe Acrobat Plug-In fails to properly validate user-supplied content, which may allow for cross-site scripting. Description Adobe Acrobat Reader is software designed to view Portable Document Format PDF files. Adobe also distributes the Adobe Acrobat Plug-In to allow users to view...

4.3CVSS5.7AI score0.45537EPSS
Exploits2References13
CERT
CERT
•added 2007/01/02 12:0 a.m.•30 views

Apple QuickTime RTSP buffer overflow

Overview Apple QuickTime may allow remote arbitrary code to be executed via a long src parameter in RTSP URL strings. Description A vulnerability exists in the way Apple QuickTime handles specially crafted Real Time Streaming Protocol RTSP URL strings. An attacker may be able to craft a QTL file ...

6.8CVSS7.2AI score0.48419EPSS
Exploits10References12
CERT
CERT
•added 2007/01/02 12:0 a.m.•38 views

ICONICS Dialog Wrapper Module ActiveX control vulnerable to buffer overflow

Overview ICONICS Dialog Wrapper Module ActiveX control contains a buffer overflow. This vulnerability may allow a remote attacker to execute arbitrary code on a vulnerable system. Description OLE for Process Control OPC is a specification for a standard set of OLE COM objects for use in the proce...

7.5CVSS7.2AI score0.07786EPSS
Exploits5References6
CERT
CERT
•added 2007/01/02 12:0 a.m.•32 views

Wireshark HTTP dissector vulnerability

Overview Wireshark contains a vulnerability in the HTTP dissector that may allow an attacker to cause a denial of service condition. Description Wireshark contains a vulnerability in the HTTP dissector that may allow an attacker to cause a denial of service condition. This vulnerability may be...

5CVSS7.4AI score0.02674EPSS
Exploits0References9
CERT
CERT
•added 2006/12/20 12:0 a.m.•38 views

Mozilla Layout Engine vulnerability

Overview A vulnerability exists in the Mozilla Layout Engine that may allow a remote attacker to compromise a vulnerable system. Description The Mozilla Layout Engine contains an unspecified vulnerability that may result in memory corruption. The impact of this memory corruption is unclear...

6.8CVSS6.9AI score0.04292EPSS
Exploits0References24
CERT
CERT
•added 2006/12/20 12:0 a.m.•34 views

Mozilla mail products vulnerable to heap buffer overflow via Content-Type headers

Overview Mozilla mail products contain a heap buffer overflow vulnerability in the way they process Content-Type headers. This may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Mozilla Thunderbird and SeaMonkey contain a buffer overflow...

6.8CVSS7.4AI score0.04208EPSS
Exploits0References6
CERT
CERT
•added 2006/12/20 12:0 a.m.•41 views

Mozilla SVG memory corruption vulnerability

Overview Mozilla products contain a memory corruption vulnerability related to SVG processing. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Scalable Vector Graphics SVG processing code in Mozilla Firefox and SeaMonke...

9.3CVSS6.7AI score0.08604EPSS
Exploits0References14
CERT
CERT
•added 2006/12/19 12:0 a.m.•44 views

Novell NetWare Client for Windows OpenPrinter() function vulnerable to buffer overflow

Overview A vulnerability exists in the Novell NetWare client that could allow a remote attacker to execute arbitrary code on an affected system. Description NetWare is a network operating system produced and maintained by Novell. Novell provides NetWare clients for Microsoft Windows and Linux...

7.5CVSS7.5AI score0.57287EPSS
Exploits15References5
CERT
CERT
•added 2006/12/19 12:0 a.m.•27 views

Novell NetWare Client for Windows EnumPrinters() function vulnerable to buffer overflow

Overview A vulnerability exists in the Novell NetWare client that could allow a remote attacker to execute arbitrary code on an affected system. Description NetWare is a network operating system produced and maintained by Novell. Novell provides NetWare clients for Microsoft Windows and Linux...

7.9AI score
Exploits15References4
CERT
CERT
•added 2006/12/18 12:0 a.m.•20 views

NeoScale Systems CryptoStor 700 series appliances fail to properly perform two-factor authentication

Overview NeoScale Systems CryptoStor 700 series appliances fail to properly perform two-factor authentication. This can make it easier to bypass the CryptoStor authentication process. Description NeoScale Systems CryptoStor Tape units are tape backup encryption appliances. CryptoStor 700 series...

4.9CVSS7AI score0.00766EPSS
Exploits0References4
CERT
CERT
•added 2006/12/18 12:0 a.m.•46 views

GnuPG vulnerable to remote data control

Overview A vulnerability in GnuPG could allow a remote attacker to execute arbitrary code on an affected system. Description GNU Privacy Guard GnuPG is the GNU project's implementation of the OpenPGP standard as defined by RFC2440.OpenPGP messages are processed by GnuPG using data structures call...

10CVSS6.7AI score0.05713EPSS
Exploits0References12
CERT
CERT
•added 2006/12/18 12:0 a.m.•29 views

Intel network drivers privilege escalation vulnerability

Overview A buffer overflow vulnerability in Intel PRO Ethernet drivers may allow local attackers to execute code with elevated privileges. Description Intel network adapter drivers are developed and maintained by Intel for Windows and Linux operating systems. A buffer overflow vulnerability exist...

7.2CVSS7AI score0.00563EPSS
Exploits0References4
CERT
CERT
•added 2006/12/15 12:0 a.m.•36 views

Symantec Veritas NetBackup bpcd.exe CONNECT_OPTIONS buffer overflow

Overview Symantec Veritas NetBackup contains a buffer overflow vulnerability, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Symantec VERITAS NetBackup is a client/server based backup software solution. The NetBackup bpcd daemon is...

10CVSS7.8AI score0.11754EPSS
Exploits0References4
CERT
CERT
•added 2006/12/15 12:0 a.m.•29 views

Symantec Veritas NetBackup bpcd daemon fails to properly validate commands

Overview Symantec Veritas NetBackup is vulnerable to command chaining, which may allow a remote, authenticated attacker to execute arbitrary commands on a vulnerable system. Description Symantec VERITAS NetBackup is a client/server based backup software solution. The NetBackup bpcd daemon fails t...

10CVSS7AI score0.04235EPSS
Exploits4References4
CERT
CERT
•added 2006/12/15 12:0 a.m.•41 views

Symantec Veritas NetBackup bpcd daemon buffer overflow

Overview Symantec Veritas NetBackup contains a buffer overflow vulnerability, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Symantec VERITAS NetBackup is a client/server based backup software solution. The NetBackup bpcd daemon is...

10CVSS7.7AI score0.11948EPSS
Exploits0References6
Total number of security vulnerabilities3704