Lucene search
K

3702 matches found

CERT
CERT
added 2005/10/11 12:0 a.m.32 views

Microsoft Windows Shell fails to handle shortcut files properly

Overview Microsoft Windows Shell does not properly handle some shortcut files and may permit arbitrary code execution when a specially-crafted file is opened. Description Microsoft Windows supports files that point to another file, called "shortcut" files. These files have the .lnk extension, and...

10CVSS7.2AI score0.42749EPSS
Exploits0References1
CERT
CERT
added 2005/10/11 12:0 a.m.31 views

Microsoft Collaboration Data Objects buffer overflow

Overview A buffer overflow in Microsoft Collaboration Data Objects may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Microsoft Collaboration Data Objects CDO is a scripting library used to develop applications that handle email. Note that C...

7.5CVSS7.3AI score0.43446EPSS
Exploits0References1
CERT
CERT
added 2005/10/11 12:0 a.m.60 views

Microsoft Distributed Transaction Coordinator vulnerable to buffer overflow via specially crafted network message

Overview Microsoft Distributed Transaction Coordinator MSDTC may be vulnerable to a flaw that allows remote unauthenticated attackers to execute arbitrary code. Description The Microsoft Distributed Transaction Coordinator MSDTC is described by Microsoft as "distributed transaction facility for...

5CVSS6.9AI score0.39128EPSS
Exploits0References2
CERT
CERT
added 2005/10/11 12:0 a.m.72 views

Microsoft COM+ contains a memory management flaw

Overview Microsoft COM+ contains a vulnerability due to a memory management flaw that may allow an attacker to take complete control of an affected system. Description Microsoft gives the following definition of COM+: COM+ is the next step in the evolution of the Microsoft Component Object Model...

7.5CVSS7AI score0.56856EPSS
Exploits0References6
CERT
CERT
added 2005/10/07 12:0 a.m.27 views

Symantec AntiVirus Scan Engine administrative interface contains a buffer overflow vulnerability

Overview Symantec AntiVirus Scan Engine administrative interface contains a remotely exploitatble buffer overflow that may allow an attacker to execute arbitrary code. Description The Symantec AntiVirus Scan Engine provides a programming interface to Symantec content scanning and virus detection...

10CVSS7.6AI score0.13436EPSS
Exploits0References6
CERT
CERT
added 2005/10/05 12:0 a.m.42 views

Ruby safe-level security model bypass

Overview Ruby contains a vulnerability that may allow arbitrary code to be run without the intended safe-level checks being applied. Description Ruby is a object-oriented scripting language that supports execution of untrusted code with two mechanisms: taint flagging and safe levels. Safe levels...

7.5CVSS6.2AI score0.03256EPSS
Exploits0References4
CERT
CERT
added 2005/10/03 12:0 a.m.37 views

Ruby library contains vulnerable default value

Overview Ruby includes a vulnerable default value that may be used to bypass security restrictions and execute arbitrary code. Description Ruby is vulnerable to an attack on applications using the XML-RPC services via XMLRPC.iPIMethods, due to an insecure default value in utils.rb. Any program or...

7.5CVSS9.6AI score0.06565EPSS
Exploits0References7
CERT
CERT
added 2005/10/03 12:0 a.m.39 views

Microsoft Jet Database Engine fails to properly validate Access database files

Overview A vulnerability in the Microsoft Jet database engine could allow a remote attacker to execute code of their choice on a vulnerable system. Description The Microsoft Jet Database Engine Jet provides data access functionality to a number of other Microsoft and many third party applications...

7.5CVSS6.6AI score0.34021EPSS
Exploits4References4
CERT
CERT
added 2005/09/29 12:0 a.m.27 views

AIX "getconf" contains buffer overflow vulnerability

Overview IBM AIX getconf contains a buffer overflow vulnerability that may lead to arbitrary code execution. Description IBM AIX contains the getconf command that provides information about system configuration. An unspecified buffer overflow condition has been identified in getconf and may lead ...

7.2CVSS7.5AI score0.00523EPSS
Exploits0References3
CERT
CERT
added 2005/09/28 12:0 a.m.39 views

Helix Player format string vulnerability

Overview Helix Player, and media players based on the Helix Player, contain a format string vulnerability that may allow a remote attacker to execute arbitrary code on a vulnerable system. Description Helix Player is used to play various types of media files on UNIX systems. The Helix Media Playe...

5.1CVSS6.7AI score0.13181EPSS
Exploits0References6
CERT
CERT
added 2005/09/27 12:0 a.m.19 views

Clam AntiVirus contains a buffer overflow vulnerability

Overview A buffer overflow in Clam AntiVirus ClamAV may allow a remote attacker to execute arbitrary code. Description Clam AntiVirus is a UNIX-based, anti-virus toolkit often deployed with mail servers to detect malicious attachments. A signedness error in ClamAV libclamav/upx.c may allow a buff...

7AI score
Exploits0References6
CERT
CERT
added 2005/09/27 12:0 a.m.31 views

Apple Mac OS X QuickDraw Manager fails to properly handle corrupt PICT files

Overview Apple Mac OS X QuickDraw Manager contains a buffer overflow that may allow a remote attacker to execute arbitrary code. Description Apple Mac OS X QuickDraw is a 2D graphics library. It is used by several applications, including Safari, Mail, and Finder. QuickDraw is used to render PICT...

5.1CVSS7.6AI score0.04056EPSS
Exploits0References9
CERT
CERT
added 2005/09/27 12:0 a.m.40 views

Apple Mac OS X ImageIO fails to properly handle corrupt GIF files

Overview The Apple Mac OS X ImageIO framework contains a buffer overflow that may allow a remote attacker to execute arbitrary code. Description Apple ImageIO is an image processing framework that was introduced in OS X 10.4 Tiger. ImageIO is used by several applications, including WebCore and...

7.5CVSS7.7AI score0.04848EPSS
Exploits0References7
CERT
CERT
added 2005/09/22 12:0 a.m.25 views

VERITAS Storage Exec DCOM servers contain multiple buffer overflows

Overview VERITAS Storage Exec contains several buffer overflows, which may allow a remote attacker to execute arbitrary code on a vulnerable system. Description VERITAS Storage Exec is software package that performs storage management. Multiple DCOM server components provided by Storage Exec...

8AI score
Exploits0References4
CERT
CERT
added 2005/09/22 12:0 a.m.41 views

Mozilla Firefox fails to properly sanitize user-supplied URIs via shell script

Overview A lack of input validation in a supplemental shell script included with some Mozilla browsers may allow a remote, unauthenticated attacker to execute arbitrary commands. Description The Linux versions of the Mozilla Firefox and Mozilla Suite web browsers include a wrapper shell script fo...

7.5CVSS6.7AI score0.10718EPSS
Exploits0References5
CERT
CERT
added 2005/09/22 12:0 a.m.17 views

VERITAS StorageCentral DCOM servers contain multiple buffer overflows

Overview VERITAS StorageCentral DCOM servers contains several buffer overflows, which may allow a remote attacker to execute arbitrary code on a vulnerable system. Description VERITAS StorageCentral is software package that performs storage management. Multiple DCOM server components provided by...

8AI score
Exploits0References4
CERT
CERT
added 2005/09/21 12:0 a.m.26 views

unace buffer overflow vulnerability

Overview A buffer overflow in the unace compression library may allow a remote attacker to execute arbitrary code. Description The unace compression library is used to decompress ace archives .ace file extension. A lack of input validation on filenames in an ace archive may allow a buffer overflo...

5.1CVSS7.3AI score0.03243EPSS
Exploits0References6
CERT
CERT
added 2005/09/20 12:0 a.m.28 views

TWiki does not properly sanitize URI parameters

Overview A lack of input validation in the TWiki revision control function may allow a remote, unauthenticated attacker to execute arbitrary commands. Description TWiki is a web-based collaborative publishing environment. TWiki does not sanitize user-controlled URI parameters supplied to the...

7.5CVSS6.9AI score0.71104EPSS
Exploits8References5
CERT
CERT
added 2005/09/16 12:0 a.m.31 views

Check Point Firewall rules may improperly handle network traffic

Overview Check Point Firewall CIFS service group may allow unintended traffic to pass through the firewall. Description Check Point Firewall contains a set of predefined service groups designed to handle different types of traffic associated with a service or collection of protocols. For instance...

7.5CVSS6.3AI score0.02329EPSS
Exploits0References5
CERT
CERT
added 2005/09/13 12:0 a.m.40 views

Multiple X servers fail to properly allocate memory for large pixmaps

Overview Multiple X Window System servers contain a pixmap memory allocation flaw that may allow local users to execute code with elevated privileges. Description Multiple X Window System server applications share code that may contain a flaw in the memory allocation for large pixmaps. The affect...

5.1CVSS6.5AI score0.03923EPSS
Exploits0References5
CERT
CERT
added 2005/09/09 12:0 a.m.33 views

mod_ssl fails to properly enforce client certificates authentication

Overview modssl, the Apache web server module for Secure Socket Layer SSL communications, may not properly authenticate client certificates. Description modssl provides Secure Socket Layer SSL communications for the Apache web server. SSL is designed to provide the ability to encrypt and...

10CVSS9.2AI score0.30576EPSS
Exploits0References10
CERT
CERT
added 2005/09/09 12:0 a.m.27 views

Mozilla-based browsers contain a buffer overflow in handling URIs containing a malformed IDN hostname

Overview A vulnerability in the way Mozilla products and derivative programs handle certain malformed URIs could allow a remote attacker to execute arbitrary code on a vulnerable system. Description Mozilla products, including the Mozilla Suite, and Mozilla Firefox are vulnerable to a buffer...

7.5CVSS7.2AI score0.21112EPSS
Exploits2References11
CERT
CERT
added 2005/09/07 12:0 a.m.16 views

DameWare Mini Remote Control vulnerable to buffer overflow via specially crafted authentication requests

Overview A vulnerability in DameWare Mini Remote Control may permit an unauthenticated attacker to execute arbitrary code on the system. Description DameWare Mini Remote Control is a lightweight remote control program intended primarily for administrators and help desks to manage desktop systems....

8.5AI score
Exploits0References9
CERT
CERT
added 2005/09/07 12:0 a.m.13 views

Cisco IOS Firewall Authentication Proxy vulnerable to buffer overflow via specially crafted user authentication credentials

Overview A buffer overflow vulnerability in Cisco IOS Firewall Authentication Proxy may allow a remote unauthenticated attacker to execute arbitrary code or cause a denial of service. Description Cisco IOS Firewall Authentication Proxy is a feature that allows network administrators to apply...

8.9AI score
Exploits0References6
CERT
CERT
added 2005/09/02 12:0 a.m.10 views

UMN Gopher vulnerable to buffer overflow via overly long "+VIEWS:"

Overview The University of Minnesota Gopher client may be vulnerable to a buffer overflow when handling overly long "+VIEWS:" reply messages sent from a malicious server. Description The UMN Gopher suite includes a Gopher client for navigating Gopherspace. However, the Gopher client may incorrect...

8.5AI score
Exploits0References1
CERT
CERT
added 2005/09/02 12:0 a.m.19 views

simpleproxy format string vulnerability

Overview A format string vulnerability in the simpleproxy TCP proxy may allow a remote attacker to execute arbitrary code on a vulnerable system. Description simpleproxy, a basic open source TCP proxy, contains a format string vulnerability in an unspecified HTTP proxy request handling routine. I...

7.5CVSS6.8AI score0.04325EPSS
Exploits0References3
CERT
CERT
added 2005/08/31 12:0 a.m.29 views

Reflection for Secure IT Windows Server can allow login to renamed built-in accounts

Overview WRQ Reflection for Secure IT Windows Server 6.0 can allow a user to login to a Windows built-in account with the default name Administrator and Guest after they are renamed. Description Microsoft Windows includes the built-in accounts Administrator and Guest. If those accounts are rename...

7.2AI score
Exploits0References1
CERT
CERT
added 2005/08/31 12:0 a.m.16 views

Reflection for Secure IT Windows Server 6.0 changed case sensitivity of allow and deny lists

Overview Reflection for Secure IT Windows Server version 6.0 uses different case-sensitivity in evaluating the allow and deny lists as previous versions, potentionally allowing unintended access. Description Reflection for Secure IT Windows Server version 6.0, an SSH server from WRQ formerly know...

6.8AI score
Exploits0References1
CERT
CERT
added 2005/08/24 12:0 a.m.28 views

pam_ldap authentication bypass vulnerability

Overview An error in the pamldap password policy control may allow a remote attacker to gain access to a system. Description pamldap provides LDAP authentication services for UNIX-based systems. A vulnerability in pamldap may allow a remote attacker to bypass the authentication mechanism. If a...

7.5CVSS6.6AI score0.03645EPSS
Exploits0References2
CERT
CERT
added 2005/08/23 12:0 a.m.25 views

Computer Associates Message Queuing software vulnerable to buffer overflows

Overview Computer Associates Message Queuing software contains buffer overflow conditions, which may allow a remote attacker to execute arbitrary code with elevated privileges. Description Computer Associates Message Queuing CAM / CAFT is a software component that provides messaging services. CAM...

10CVSS7.5AI score0.75244EPSS
Exploits7References23
CERT
CERT
added 2005/08/19 12:0 a.m.15 views

Microsoft Internet Explorer can use any COM object

Overview Microsoft Internet Explorer IE will attempt to use COM objects that were not intended to be used in the web browser. This can cause a variety of impacts, such as causing IE to crash. Description Microsoft COMMicrosoft COM is a technology that allows programmers to create reusable softwar...

7AI score
Exploits0References13
CERT
CERT
added 2005/08/18 12:0 a.m.37 views

Microsoft DDS Library Shape Control (msdds.dll) COM object contains an unspecified vulnerability

Overview Microsoft DDS Library Shape Control COM object contains an unspecified vulnerability, which may allow a remote attacker to execute arbitrary code on a vulnerable system. Description Microsoft COMMicrosoft COM is a technology that allows programmers to create reusable software components...

7.5CVSS6.2AI score0.63665EPSS
Exploits1References8
CERT
CERT
added 2005/08/17 12:0 a.m.35 views

Apple Mac OS X Safari vulnerable to arbitrary command execution via URLs in PDF files

Overview Apple Mac OS X WebKit and Safari security controls may be bypassed, possibly allowing remote command execution. Description Mac OS X includes the Safari web browser, which can display Portable Document Format PDF files directly. This functionality is part of the WebKit system framework...

5.1CVSS9.2AI score0.04297EPSS
Exploits0References3
CERT
CERT
added 2005/08/17 12:0 a.m.40 views

Apple Mac OS X Server servermgrd authentication vulnerable to buffer overflow

Overview Apple Mac OS X Server servermgrd contains an unspecified buffer overflow vulnerability in the authentication handling routines. This vulnerability may lead to remote execution of arbitrary code. Description Mac OS X Server contains the servermgrd application for back-end management...

7.5CVSS9.6AI score0.04926EPSS
Exploits0References2
CERT
CERT
added 2005/08/17 12:0 a.m.29 views

Apple Mac OS X Directory Services contains a buffer overflow

Overview A buffer overflow in Apple Mac OS X Directory Service's authentication process may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Apple Mac OS X Server Directory Service provides reading, writing, and authentication services within...

7.5CVSS9.5AI score0.06179EPSS
Exploits0References2
CERT
CERT
added 2005/08/17 12:0 a.m.28 views

Apple Mac OS X AppKit vulnerable to buffer overflow via maliciously crafted Microsoft Word files

Overview A buffer overflow vulnerability exists in a component of Apple's Mac OS X operating system that handles Microsoft Word files. Description The Cocoa Application Framework also referred to as the Application Kit, or AppKit is one of the core Cocoa frameworks supplied with Apple's Mac OS X...

5.1CVSS9.4AI score0.03343EPSS
Exploits0References3
CERT
CERT
added 2005/08/17 12:0 a.m.29 views

Apple Mac OS X AppKit vulnerable to buffer overflow via the handling of maliciously crafted rich text files

Overview A buffer overflow vulnerability exists in a component of Apple's Mac OS X operating system that handles rich text files. Description The Cocoa Application Framework also referred to as the Application Kit, or AppKit is one of the core Cocoa frameworks supplied with Apple's Mac OS X...

7.6CVSS9.4AI score0.04211EPSS
Exploits0References3
CERT
CERT
added 2005/08/17 12:0 a.m.34 views

Apple Safari fails to perform security checks on links in rich text content

Overview Apple Safari fails to perform security checks on hyperlinks in rich text content, which may allow an attacker to execute arbitrary commands on a vulnerable system. Description Mac OS X includes the Safari web browser, which can display rich text RTF files directly. When Safari opens a ri...

7.5CVSS9.4AI score0.04767EPSS
Exploits0References2
CERT
CERT
added 2005/08/16 12:0 a.m.27 views

Adobe Acrobat contains a remotely exploitable buffer overflow

Overview A buffer overflow in Adobe Acrobat/Acrobat Reader may allow a remote attacker to execute arbitrary code or cause a denial-of-service condition Description Adobe Acrobat is a suite of applications that allow users to manipulate PDF Portable Document Format files. A buffer within a core...

7.5CVSS7.3AI score0.13245EPSS
Exploits0References1
CERT
CERT
added 2005/08/16 12:0 a.m.26 views

EMC Legato NetWorker uses weak AUTH_UNIX authentication

Overview EMC Legato NetWorker uses weak AUTHUNIX authentication, allowing a remote attacker to execute arbitrary commands, gain elevated privileges, or cause a denial of service. Description EMC Legato NetWorker is a cross-platform backup and recovery application. It is also repackaged by Sun...

7.5CVSS7.8AI score0.04498EPSS
Exploits0References8
CERT
CERT
added 2005/08/16 12:0 a.m.62 views

EMC Legato NetWorker database services use insufficient authentication

Overview The EMC Legato NetWorker database services use weak authentication, allowing a remote attacker to gain root access to the server. Description EMC Legato NetWorker is a cross-platform backup and recovery application. It is also repackaged by Sun Microsystems as Solstice Backup and StorEdg...

7.5CVSS7.4AI score0.04625EPSS
Exploits0References8
CERT
CERT
added 2005/08/16 12:0 a.m.140 views

EMC Legato NetWorker portmapper allows remote calls to "pmap_set" and "pmap_unset"

Overview The EMC Legato NetWorker PortMapper allows remote access to pmapset and pmapunset. This could allow a remote attacker to cause a denial of service or potentially to eavesdrop on communications between NetWorker programs. Description EMC Legato NetWorker is a cross-platform backup and...

6.4CVSS6.5AI score0.04293EPSS
Exploits0References10
CERT
CERT
added 2005/08/15 12:0 a.m.33 views

Novell eDirectory iMonitor vulnerable to buffer overflow

Overview Novell eDirectory iMonitor contains a buffer overflow that can be remotely exploited to allow execution of arbitrary code or crash an affected system. Description Novell eDirectory iMonitor is a service for monitoring servers in an eDirectory installation. A buffer overflow exists in...

7.5CVSS7.3AI score0.55424EPSS
Exploits7References5
CERT
CERT
added 2005/08/12 12:0 a.m.35 views

GNOME gedit contains format string vulnerability

Overview gedit has a format string vulnerability in some error dialogs that can occur when a file is opened for editing. Description gedit is the official text editor of the GNOME desktop environment. gedit 2.10.2 has a format string error in some some error dialogs that can occur when a file is...

2.6CVSS9.3AI score0.07655EPSS
Exploits0References12
CERT
CERT
added 2005/08/12 12:0 a.m.62 views

VERITAS Backup Exec uses hard-coded authentication credentials

Overview The VERITAS Backup Exec Remote Agent uses hard-coded authentication credentials. An attacker with knowledge of these credentials could access arbitrary files on a vulnerable system. Description VERITAS Backup Exec Remote Agent is a data backup and recovery solution with support for...

10CVSS6.9AI score0.87026EPSS
Exploits3References12
CERT
CERT
added 2005/08/10 12:0 a.m.30 views

Microsoft Windows domain controller denial of service in Kerberos message handling

Overview Microsoft Windows domain controllers do not properly handle some Kerberos messages, potentially allowing a remote, authenticated attacker to cause a denial-of-service condition. Description Microsoft Windows domain controllers running Windows 2000 Server and Server 2003 use the Kerberos...

2.1CVSS6.1AI score0.06521EPSS
Exploits0References1
CERT
CERT
added 2005/08/09 12:0 a.m.42 views

Microsoft Print Spooler service contains a buffer overflow

Overview A buffer overflow in the Microsoft Print Spooler service may allow a remote attacker to execute arbitrary code on a vulnerable system. Description According to Microsoft, the Print Spooler service is ...an executable file that is installed as a service. The spooler is loaded when the...

7.5CVSS7.7AI score0.54538EPSS
Exploits1References2
CERT
CERT
added 2005/08/09 12:0 a.m.29 views

Microsoft Windows Remote Desktop Protocol service input validation vulnerability

Overview An input validation error in the Microsoft Remote Desktop Protocol RDP service may allow a remote attacker to cause a denial-of-service condition. Description Microsoft describes the Remote Desktop Protocol RDP as follows.RDP is based on, and is an extension of, the T.120 protocol family...

5CVSS6.2AI score0.61183EPSS
Exploits0References10
CERT
CERT
added 2005/08/09 12:0 a.m.35 views

Microsoft Plug and Play contains a buffer overflow vulnerability

Overview Microsoft Plug and Play contains a flaw in the handling of message buffers that may result in local or remote arbitrary code execution or denial-of-service conditions. Description The following is from the Microsoft Plug and Play description: Plug and Play PnP allows the operating system...

10CVSS7.6AI score0.93405EPSS
Exploits9References14
CERT
CERT
added 2005/08/09 12:0 a.m.40 views

Microsoft Internet Explorer JPEG rendering library vulnerable to buffer overflow

Overview A vulnerability in the Microsoft Internet Explorer JPEG image rendering routines may allow an attacker to remotely execute arbitrary code. Description Microsoft Internet Explorer is a web browser that is available for a variety of platforms and devices. A flaw in the image rendering...

5.1CVSS7.1AI score0.45597EPSS
Exploits0References5
Total number of security vulnerabilities3702