Lucene search
K

3702 matches found

CERT
CERT
•added 2005/03/30 12:0 a.m.•40 views

Mozilla products vulnerable to heap overflow via specially crafted GIF file

Overview Mozilla products, including the Mozilla Suite, Mozilla Firefox, and Mozilla Thunderbird, are vulnerable to a heap-based overflow in the GIF image-processing routines. Description The Mozilla project produces an application suite Mozilla Suite, web browsers Mozilla Firefox, email software...

5.1CVSS6.9AI score0.15116EPSS
Exploits4References5
CERT
CERT
•added 2005/03/30 12:0 a.m.•30 views

Symantec Norton AntiVirus vulnerable to DoS via the Auto-Protect "SmartScan" feature

Overview Symantec Norton AntiVirus may hang or crash when the Auto-Protect module SmartScan feature scans a renamed file on a network share. Description Symantec Norton AntiVirus is an anti-virus product for desktop and enterprise use. The Norton AntiVirus "Auto-Protect" module provides automatic...

2.1CVSS5.8AI score0.00446EPSS
Exploits0References4
CERT
CERT
•added 2005/03/29 12:0 a.m.•43 views

Multiple Telnet clients fail to properly handle the "LINEMODE" SLC suboption

Overview Multiple Telnet clients contain a data length validation flaw which may allow a server to induce arbitrary code execution on the client host. Description The Telnet network protocol is described in RFC854 and RFC855 as a general, bi-directional communications facility. The Telnet protoco...

7.5CVSS9.7AI score0.08635EPSS
Exploits0References6
CERT
CERT
•added 2005/03/22 12:0 a.m.•27 views

Multiple web browsers vulnerable to spoofing via Internationalized Domain Name support

Overview Multiple web browsers are vulnerable to spoofing attacks through the use of Internationalized Domain Names. Other applications such as email programs may also be vulnerable. Description The Domain Name System The Domain Name System DNS provides name, address, and other information about...

5CVSS5.3AI score0.01651EPSS
Exploits1References13
CERT
CERT
•added 2005/03/18 12:0 a.m.•26 views

McAfee Scan Engine vulnerable to buffer overflow in LHA decoder

Overview A buffer overflow vulnerability in the McAfee Virus Scan Engine may allow a remote attacker to execute arbitrary code on an affected system. Because the vulnerability exists in a core component, a number of different McAfee products are affected. Description The McAfee Antivirus products...

7.5CVSS7.6AI score0.07125EPSS
Exploits1References4
CERT
CERT
•added 2005/03/17 12:0 a.m.•33 views

NotifyLink web client fails to adequately restrict access to administrative functions

Overview The NotifyLink web interface contains a vulnerability that allows authenticated normal users to access functions that have been disabled by an administrator. Description Notify Technology NotifyLink Enterprise Server allows users to synchronize e-mail between a PDA and a mail server. The...

4.6CVSS6.2AI score0.00658EPSS
Exploits0References3
CERT
CERT
•added 2005/03/17 12:0 a.m.•27 views

NotifyLink server provides inadequate protection for cryptographic key material

Overview The NotifyLink key exchange protocol contains a vulnerability that significantly reduces the strength of cryptographic keys used to encrypt mail messages. Description Notify Technology NotifyLink Enterprise Server allows users to synchronize e-mail between a PDA and a mail server. The...

7.5CVSS6.2AI score0.01198EPSS
Exploits0References3
CERT
CERT
•added 2005/03/17 12:0 a.m.•23 views

NotifyLink administrative interface displays user passwords in clear text

Overview The NotifyLink web interface grants administrative users inappropriate access to private user password information. Description Notify Technology NotifyLink Enterprise Server allows users to synchronize e-mail between a PDA and a mail server. The application consists of a PDA-specific...

5CVSS6.2AI score0.01647EPSS
Exploits0References3
CERT
CERT
•added 2005/03/17 12:0 a.m.•29 views

NotifyLink contains multiple SQL injection vulnerabilities

Overview There are multiple vulnerabilities in NotifyLink that allow unauthenticated remote users to view or modify the contents of the NotifyLink SQL database. Possible modifications include the addition of unauthorized user and administrator accounts. Description Notify Technology NotifyLink...

7.5CVSS7.4AI score0.01512EPSS
Exploits0References3
CERT
CERT
•added 2005/03/14 12:0 a.m.•21 views

Apache Tomcat fails to properly handle certain requests

Overview Apache Tomcat does not properly handle certain types of requests allowing a remote attacker to cause a denial of service. Description Apache Tomcat is an implementation of the Java Servlet and JavaServer Page JSP technologies. Tomcat uses the AJP12 protocol on TCP 8007 by default for...

7AI score
Exploits0
CERT
CERT
•added 2005/03/10 12:0 a.m.•41 views

Cisco ACNS RealServer RealSubscruber vulnerable to DoS via malformed IP packets

Overview A vulnerability in Cisco ACNS RealServer RealSubscriber may allow a remote attacker to cause a denial of service on an affected device via malformed IP packets. Description Cisco Application and Content Networking System ACNS is an integrated caching and content-delivery platform. ACNS 5...

5CVSS6.8AI score0.03467EPSS
Exploits0References6
CERT
CERT
•added 2005/03/09 12:0 a.m.•29 views

ISC DHCP contains a format string vulnerabilty in errwarn.c

Overview The Internet Systems Consortium ISC Dynamic Host Configuration Protocol DHCP application contains a format string vulnerability in errwarn.c that could allow an attacker to execute arbitrary code. Description As described in RFC 2131, "The Dynamic Host Configuration Protocol DHCP provide...

10CVSS6.5AI score0.07968EPSS
Exploits0References4
CERT
CERT
•added 2005/03/08 12:0 a.m.•55 views

SafeNet Sentinel License Manager vulnerable to buffer overflow

Overview SafeNet Sentinel License Manager contains a buffer overflow vulnerability, which may allow a remote unauthenticated attacker to execute arbitrary code on the server. Description SafeNet Sentinel License Manager LM is a software-based license management application. It is reported that th...

10CVSS7.5AI score0.7113EPSS
Exploits4References3
CERT
CERT
•added 2005/03/04 12:0 a.m.•45 views

nfs-utils vulnerable to buffer overflow in "getquotainfo()" in "rquota_server.c"

Overview A vulnerability in nfs-utils could permit an attacker to execute arbitrary code on the system or cause a denial of service. Description The NFS protocol provides remote access to shared files accross networks. The nfs-utils package provides an NFS client and server for Linux systems...

10CVSS7.6AI score0.11299EPSS
Exploits0References5
CERT
CERT
•added 2005/02/28 12:0 a.m.•34 views

Gaim vulnerable to DoS via specially crafted HTML

Overview Gaim contains a flaw in HTML processing that may result in an invalid memory access and denial of service condition. Description From the Gaim project:Gaim is a multi-protocol instant messaging IM client for Linux, BSD, MacOS X, and Windows. It is compatible with AIM and ICQ Oscar...

5CVSS6AI score0.03204EPSS
Exploits0References2
CERT
CERT
•added 2005/02/28 12:0 a.m.•43 views

IBM AIX auditselect contains format string vulnerability

Overview IBM AIX auditselect command contains a format string vulnerability that may allow a local attacker to execute arbitrary code. Description According to IBM's Command Reference, the syntax and description of the auditselect command are as follows:$ auditselect -e "Expression" | -f File -m...

7.2CVSS6.8AI score0.00544EPSS
Exploits0References4
CERT
CERT
•added 2005/02/25 12:0 a.m.•30 views

AWStats fails to validate input supplied to pluginmode parameter

Overview AWStats performs inadequate validation on user-controlled data that is supplied to the pluginmode parameter. Exploitation of this vulnerability may allow a remote attacker to execute arbitrary commands. Description AWStats is a Perl CGI script that collects and graphically displays...

7.5CVSS7.1AI score0.01954EPSS
Exploits0References5
CERT
CERT
•added 2005/02/25 12:0 a.m.•35 views

phpBB vulnerable to file disclosure

Overview The phpBB input validation methods may fail to sanitize user input resulting in a disclosure of arbitrary file data. Description phpBB is a customizable open source bulletin board package. It contains functionality that allows users to specify graphic files for use as "avatars." These...

6.4CVSS5.8AI score0.02043EPSS
Exploits0References3
CERT
CERT
•added 2005/02/25 12:0 a.m.•20 views

HP-UX FTP daemon is vulnerable to a buffer overflow

Overview The HP-UX FTP daemon ftpd contains a buffer overflow that may allow an unauthenticated, remote attacker to execute arbitrary code. Description The HP-UX FTP daemon ftpd is vulnerable to a buffer overflow when the FTP daemon is configured to log debugging information. Debug logging is...

8.6AI score
Exploits0References3
CERT
CERT
•added 2005/02/25 12:0 a.m.•13 views

Golden FTP server contains a buffer overflow

Overview Golden FTP server contains a buffer overflow that may allow a remote attacker to execute arbitrary code. Description Golden FTP server is a personal FTP server for the Microsoft Windows platform. The RNTO rename to command is used in conjunction with the RNFR rename from to rename a file...

8.4AI score
Exploits0References2
CERT
CERT
•added 2005/02/21 12:0 a.m.•25 views

WinAmp playlist handling may allow a remote buffer overflow and arbitrary code execution

Overview WinAmp contains a flaw which may allow a remote system compromise if a maliciously crafted playlist is loaded. Description Nullsoft's WinAmp is a multimedia system for Microsoft Windows. WinAmp allows users to create and use "playlists" to play their multimedia files in a customized...

10CVSS7.4AI score0.17257EPSS
Exploits1References7
CERT
CERT
•added 2005/02/21 12:0 a.m.•45 views

Verity Ultraseek contains a cross-site scripting vulnerability in the processing of search requests

Overview Verity's Ultraseek application contains a cross-site scripting vulnerability in the processing of search requests. Description Verity Ultraseek is a web site search engine application. Ultraseek contains a cross-site scripting vulnerability in the processing of search requests. More...

4.3CVSS5.5AI score0.02412EPSS
Exploits0References6
CERT
CERT
•added 2005/02/21 12:0 a.m.•31 views

WinAmp contains a flaw in metadata handling in .mpa and .mp4 files

Overview WinAmp contains a flaw which may allow an attacker to crash WinAmp remotely via .mpa or .mp4 files. Description Nullsoft's WinAmp Player, a popular multimedia system for Microsoft Windows, contains a flaw in the handling of the metadata called "tags" contained within .mpa and .mp4 files...

7AI score
Exploits0References2
CERT
CERT
•added 2005/02/21 12:0 a.m.•51 views

mod_python vulnerable to information disclosure via crafted URL

Overview The Apache modpython module is vulnerable to unintended remote information disclosure using specially crafted URLs. Description From the modpython web page:Modpython is an Apache module that embeds the Python interpreter within the server. With modpython you can write web-based...

7.1AI score
Exploits0References6
CERT
CERT
•added 2005/02/21 12:0 a.m.•46 views

SCO OpenServer vulnerable to privilege escalation in 'scosession' argument handling

Overview A vulnerability in a program supplied with the SCO OpenServer operating system may allow local attackers to gain elevated privileges. Description SCO OpenServer is a UNIX-like operating system for Intel and AMD platforms. The 'scosession' session handling component, which is responsible...

7.2CVSS6.1AI score0.00368EPSS
Exploits0References2
CERT
CERT
•added 2005/02/21 12:0 a.m.•34 views

Gaim vulnerable to HTML processing denial of service

Overview Gaim contains a flaw in HTML processing that may result in an invalid memory access and denial of service condition. Description From the Gaim project:Gaim is a multi-protocol instant messaging IM client for Linux, BSD, MacOS X, and Windows. It is compatible with AIM and ICQ Oscar...

5CVSS6.2AI score0.03484EPSS
Exploits0References2
CERT
CERT
•added 2005/02/21 12:0 a.m.•37 views

Squid fails to parse empty access control lists correctly

Overview The Squid web proxy cache may fail to handle empty Access Control Lists ACLs in the intended manner. Description Squid functions as a web proxy and cache application for a number of protocols. However, Squid Access Control List ACL routines may not parse an empty list as intended. An emp...

6.3AI score
Exploits0References6
CERT
CERT
•added 2005/02/21 12:0 a.m.•26 views

OpenConnect Webconnect MS-DOS device name denial-of-service

Overview OpenConnect WebConnect may stop responding after processing an HTTP request with an MS-DOS device name in it. Description OpenConnect Webconnect provides secured web access and emulation services for backend mainframes and UNIX servers. Versions of Webconnect prior to 6.4.5 and 6.5.1...

5CVSS6.3AI score0.03959EPSS
Exploits0References2
CERT
CERT
•added 2005/02/21 12:0 a.m.•32 views

OpenConnect Webconnect read-only directory traversal vulnerability in jretest.html

Overview OpenConnect Webconnect contains a read-only directory traversal vulnerability in the file jretest.html. Description OpenConnect Webconnect provides secured web access and emulation services for backend mainframes and UNIX servers. Versions of Webconnect prior to 6.4.5 and 6.5.1 running o...

5CVSS6AI score0.12251EPSS
Exploits1References2
CERT
CERT
•added 2005/02/21 12:0 a.m.•39 views

Gaim vulnerable to malformed SNAC packet infinite processing loop

Overview Gaim contains a flaw in the processing of certain packets that may cause a denial of service. Description From the Gaim project:Gaim is a multi-protocol instant messaging IM client for Linux, BSD, MacOS X, and Windows. It is compatible with AIM and ICQ Oscar protocol, MSN Messenger,...

5CVSS6.1AI score0.05296EPSS
Exploits0References2
CERT
CERT
•added 2005/02/11 12:0 a.m.•17 views

Sun Java Plugin may create temporary files with predictable names

Overview The Sun Java Plugin may allow remote users to create files with arbitrary content in a specific location. Description From the Sun Java Plugin page:Java Plug-in technology, included as part of the Java 2 Runtime Environment, Standard Edition JRE, establishes a connection between popular...

6.8AI score
Exploits0References1
CERT
CERT
•added 2005/02/11 12:0 a.m.•35 views

OpenPGP vulnerable to chosen-ciphertext attacks in cipher feedback (CFB) mode

Overview A vulnerability in OpenPGP may allow attackers to recover partial plaintexts from OpenPGP messages that use symmetric encryption. Description A vulnerability in OpenPGP can be used by attackers to recover partial plaintexts from messages employing symmetric encryption. Researchers Serge...

5CVSS5.4AI score0.02946EPSS
Exploits0References3
CERT
CERT
•added 2005/02/10 12:0 a.m.•46 views

Symantec products vulnerable to buffer overflow via a specially crafted UPX file

Overview The Symantec AntiVirus Library DEC2EXE component is vulnerable to remote arbitrary code execution. Description The Symantec AntiVirus Library is used in many Symantec and third-party virus scanning products, including Symantec Norton Antivirus and Symantec BrightMail AntiSpam.The AntiVir...

7.5CVSS7.5AI score0.18832EPSS
Exploits1References6
CERT
CERT
•added 2005/02/10 12:0 a.m.•39 views

AWStats fails to properly filter user-supplied input

Overview A lack of input validation in AWStats may allow a remote attacker to execute arbitrary commands. Description AWStats is a Perl CGI script that collects and graphically displays statistics from web, FTP, and mail servers. The configdir parameter, within the awstats.pl Perl script, is...

7.5CVSS6.8AI score0.74941EPSS
Exploits11References3
CERT
CERT
•added 2005/02/09 12:0 a.m.•19 views

Microsoft Windows SharePoint Services and SharePoint Team Services cross-site scripting vulnerabilities

Overview Microsoft Windows SharePoint Services and SharePoint Team Services contain cross-site scripting vulnerabilities. These vulnerabilities could be exploited to execute arbitrary code in the security context of the affected user. Description Microsoft Windows SharePoint Services for Windows...

4.3CVSS6.4AI score0.20186EPSS
Exploits0References1
CERT
CERT
•added 2005/02/09 12:0 a.m.•32 views

Microsoft DHTML Drag-and-Drop events insufficiently validated

Overview Microsoft DHTML Drag-and-Drop events can manipulate windows to copy objects from one domain to another, including the Local Machine Zone. This vulnerability could allow an attacker to write arbitrary files to the local file system. Description Microsoft Drag-and-Drop events do not proper...

7.5CVSS6.4AI score0.6349EPSS
Exploits1References6
CERT
CERT
•added 2005/02/09 12:0 a.m.•44 views

Microsoft Windows XP named pipe fails to restrict anonymous access

Overview The Server service running on Microsoft Windows XP leaks authentication information. Description The Server service srvsvc.dll is a component of the Server Message Block SMB, and its follow-on, Common Internet File System CIFS. These are network protocols that Windows uses to share files...

7.5CVSS6.4AI score0.4657EPSS
Exploits0References2
CERT
CERT
•added 2005/02/09 12:0 a.m.•30 views

Microsoft Office XP contains buffer overflow vulnerability

Overview A buffer overflow in Microsoft Office XP may allow a remote attacker to execute arbitrary code on a vulnerable system. Description Microsoft Office XP is vulnerable to a buffer overflow. According to MS05-005, the buffer overflow exists in the process that passes URL file locations to...

7.5CVSS7.4AI score0.27489EPSS
Exploits0References1
CERT
CERT
•added 2005/02/09 12:0 a.m.•33 views

SquirrelMail may allow execution of arbitrary code

Overview SquirrelMail 1.2.6 may allow remote execution of arbitrary code via URL manipulation. Description From the SquirrelMail webpage:SquirrelMail is a standards-based webmail package written in PHP4. It includes built-in pure PHP support for the IMAP and SMTP protocols, and all pages render i...

7.5CVSS6.8AI score0.03614EPSS
Exploits0References2
CERT
CERT
•added 2005/02/09 12:0 a.m.•31 views

SquirrelMail vulnerable to command injection because of flawed input checking in S/MIME plug-in

Overview SquirrelMail contains a flaw in its S/MIME plug-in certificate handling routines which may allow arbitrary code to be remotely executed. Description From the SquirrelMail web page:SquirrelMail is a standards-based webmail package written in PHP4. It includes built-in pure PHP support for...

7.5CVSS7.2AI score0.04212EPSS
Exploits0References2
CERT
CERT
•added 2005/02/09 12:0 a.m.•36 views

Microsoft ASP.NET fails to perform proper canonicalization

Overview Microsoft ASP.NET contains a canonicalization vulnerability that may allow a remote unauthenticated attacker to gain access to secure contents. Description Microsoft ASP.NET is a programming framework for creating web applications. The canonicalization routine used by ASP.NET fails to...

9.8CVSS9.4AI score0.73979EPSS
Exploits1References11
CERT
CERT
•added 2005/02/08 12:0 a.m.•30 views

Microsoft OLE buffer overflow

Overview A vulnerability in a way that various programs handle OLE objects could allow a remote attacker to execute arbitrary code on a vulnerable system. Description Microsoft OLE is a technology that allows applications to create and edit compound documents. Compound documents are those...

7.5CVSS7.4AI score0.33206EPSS
Exploits0References1
CERT
CERT
•added 2005/02/08 12:0 a.m.•36 views

Microsoft Internet Explorer contains a Channel Definition Format (CDF) cross-domain vulnerability

Overview Microsoft Internet Explorer contains a vulnerability that may allow unintended information disclosure or remote code execution due to a flaw in handling Channel Definition Format CDF files. Description From the Microsoft Channel Definition Format description:Channel Definition Format CDF...

5.1CVSS7.2AI score0.28331EPSS
Exploits1References6
CERT
CERT
•added 2005/02/08 12:0 a.m.•37 views

Microsoft Internet Explorer contains a DHTML method heap memory corruption vulnerability

Overview Microsoft Internet Explorer contains a flaw in DHTML method handling which may allow a remote attacker to execute arbitrary code. Description The DHTML method handling in Internet Explorer fails to perform proper bounds checking. This vulnerability may allow data to be written outside th...

7.5CVSS6.8AI score0.36841EPSS
Exploits0References10
CERT
CERT
•added 2005/02/08 12:0 a.m.•53 views

Windows Media Player does not properly handle PNG images with excessive width or height values

Overview Microsoft Windows Media Player fails to properly handle PNG images containing unexpected information. Remote attackers may be able to craft a malicious PNG image that would cause Media Player to execute arbitrary code. Description Microsoft Windows Media Player WMP is an application that...

7.5CVSS7.3AI score0.33199EPSS
Exploits0References1
CERT
CERT
•added 2005/02/08 12:0 a.m.•38 views

Microsoft COM Structured Storage Vulnerability

Overview A vulnerability in a way that various programs handle COM objects could allow a local attacker to execute arbitrary code on a vulnerable system. Description Microsoft's COM is a data representation that allows multiple kinds of objects to be stored in one document. COM structured storage...

7.2CVSS6.8AI score0.05132EPSS
Exploits4References1
CERT
CERT
•added 2005/02/08 12:0 a.m.•26 views

Microsoft License Logging Service buffer overflow

Overview A vulnerability in a component of some server versions of Microsoft Windows could allow a remote attacker to execute code on a vulnerable system. Description Microsoft's License Logging Service LLS assists in the management of licenses for some Microsoft server products. An error in the...

10CVSS7.4AI score0.46513EPSS
Exploits1References1
CERT
CERT
•added 2005/02/08 12:0 a.m.•49 views

Microsoft Internet Explorer contains URL decoding cross-domain vulnerability

Overview A URL decoding vulnerability in Microsoft Internet Explorer may allow remote attackers to bypass zone security restrictions and execute arbitrary code on affected systems. Description IE uses a cross-domain security model to maintain separation between browser frames from different...

5.1CVSS6.5AI score0.24305EPSS
Exploits0References4
CERT
CERT
•added 2005/02/08 12:0 a.m.•60 views

Microsoft Windows SMB packet validation vulnerability

Overview A vulnerability in the way that Microsoft Windows handles some SMB packets could allow remote attackers to execute code of their choosing on a vulnerable system. Description The Microsoft Server Message Block SMB, and its follow-on, Common Internet File System CIFS, are network protocols...

7.5CVSS6.9AI score0.73094EPSS
Exploits5References2
CERT
CERT
•added 2005/02/08 12:0 a.m.•46 views

Microsoft Hyperlink Object Library buffer overflow

Overview A buffer overflow exists in the Microsoft Windows system library used when handling hyperlinks. All currently supported versions of Microsoft Windows are affected. Description An unchecked buffer in the Microsoft Object Library is vulnerable to attack when malformed hyperlinks are handle...

7.5CVSS7.1AI score0.41139EPSS
Exploits0References3
Total number of security vulnerabilities3702