Lucene search
K

3702 matches found

CERT
CERT
•added 2002/09/16 12:0 a.m.•30 views

Input-validation vulnerability in PHP-Nuke allows arbitrary command execution via request for remote web site

Overview PHP-Nuke has an input-validation vulnerability that can lead to execution of arbitrary PHP code hosted on another web server. Description PHP-Nuke is a tool designed to ease web site creation and maintenance. PHP-Nuke includes a script named index.php, which uses PHP's include function t...

7.5CVSS7.2AI score0.06497EPSS
Exploits0References1
CERT
CERT
•added 2002/09/16 12:0 a.m.•36 views

Vandyke Software SecureCRT contains buffer overflow vulnerability in password handling code

Overview SecureCRT is vulnerable to buffer overflow from improper handling of long password input. Description SecureCRT is a terminal emulator and SSH client for Windows. If the SSH1 protocol is used and the user enters a password 300 characters or more in length, SecureCRT will crash, with the...

8.3AI score
Exploits0References2
CERT
CERT
•added 2002/09/16 12:0 a.m.•25 views

Microsoft Windows 2000 vulnerable to DoS via malformed packets sent to port 445/tcp

Overview The default configuration of Microsoft Windows 2000 does not properly handle malformed packets received on TCP port 445. As a result, Windows may cease to function normally upon receipt of malformed packets on this port. Description Microsoft LAN Manager LANMAN is enabled by default on...

5CVSS6.3AI score0.515EPSS
Exploits1References1
CERT
CERT
•added 2002/09/16 12:0 a.m.•20 views

IBM AIX FC contains buffer overflow exploitable during session setup

Overview The FC client in IBM's AIX contains a buffer overflow that may cause a core dump in the client. Description The IBM AIX FC client allows a buffer overflow of a few bytes in the client process, which could cause intermittent core dumps during session setup. Overflowing the buffer is...

7.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/16 12:0 a.m.•12 views

PHP fails to filter ASCII control characters from string arguments of mail() function

Overview PHP does not properly filter parameters to its mail function. Description PHP is a scripting language widely used in web application development. PHP includes a function called mail that takes message parameters such as recipient address and sends mail using sendmail. PHP does not filter...

6.5AI score
Exploits0References2
CERT
CERT
•added 2002/09/16 12:0 a.m.•18 views

rsync fails to properly handle negative values specified for signed integers thereby allowing remote command execution

Overview There exist several signed-integer vulnerabilities in rsync. If rsync is run as a daemon, a remote-root compromise may be possible. Description Included in most distributions of Linux, rsync is a popular tool for synchronizing files across multiple hosts. Though not enabled in the defaul...

10CVSS7.1AI score0.34016EPSS
Exploits0
CERT
CERT
•added 2002/09/16 12:0 a.m.•31 views

MIT Kerberos V5 KDC vulnerable to denial-of-service via null pointer dereference

Overview A vulnerability exists in MIT Kerberos V5 Key Distribution Center that may allow attackers to crash multiple KDC servers within the same realm. Description The MIT Kerberos V5 Key Distribution Center KDC contains a vulnerability that allows certain protocol requests to crash the KDC by...

5CVSS9.2AI score0.0483EPSS
Exploits0References2
CERT
CERT
•added 2002/09/16 12:0 a.m.•77 views

Hewlett Packard JetDirect-enabled printers disclose Telnet/HTTP passwords in hex format via "SNMP READ" request

Overview Hewlett Packard HP printers store sensitive administrative account information in a variable that is served to any user that makes a certain SNMP request. Description HP JetDirect-enabled printers are configurable via HTTP and Telnet and accept SNMP requests. These printers store the...

7.5CVSS6.5AI score0.13522EPSS
Exploits0References1
CERT
CERT
•added 2002/09/16 12:0 a.m.•13 views

IBM AIX vulnerable to buffer overflow in RPC routines

Overview IBM AIX contains a possible buffer-overflow vulnerability. Description Version 4.3 of IBM AIX has a possible buffer-overflow vulnerability in its RPC routines, due to use of an incorrect variable data type. No further information is available from the vendor. --- Impact The complete impa...

6.5AI score
Exploits0References1
CERT
CERT
•added 2002/09/14 12:0 a.m.•17 views

Jakarta Tomcat serves JSP source code when supplied malformed HTTP request

Overview Tomcat does not adequately validate HTTP requests and may reveal JSP source code if supplied a malformed HTTP request. Description JavaServer Pages JSP is a technology that allows for the creation of dynamic web content. The Apache Jakarta Project implementation of JSP is known as Tomcat...

7.1AI score
Exploits0References1
CERT
CERT
•added 2002/09/13 12:0 a.m.•17 views

HP Tru64 UNIX "dtsession" contains buffer overflow (SSRT2282)

Overview The HP Tru64 UNIX implementation of "dtsession" contains a locally exploitable buffer overflow. Description From the HP Tru64 UNIX reference pages, the "dtsession" utility "provides ICCCM 1.1 compliant session management functionality during a user's session, the time from login to logou...

8.2AI score
Exploits0References2
CERT
CERT
•added 2002/09/13 12:0 a.m.•23 views

HP Tru64 UNIX ".upd..loader" contains buffer overflow (SSRT2275)

Overview The HP Tru64 UNIX implementation of ".upd..loader" contains a locally exploitable buffer overflow. Description A locally exploitable buffer overflow in ".upd..loader" may permit a local attacker to gain elevated privileges and execute arbitrary code on a vulnerable host. --- Impact A loc...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/13 12:0 a.m.•17 views

HP Tru64 UNIX "mailcv" contains buffer overflow (SSRT2193)

Overview The HP Tru64 UNIX implementation of "mailcv" contains a locally exploitable buffer overflow. Description "mailcv" converts dxmail style folders to UNIX style folders. A locally exploitable buffer overflow in "mailcv" may permit a local attacker to gain elevated privileges and execute...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/13 12:0 a.m.•19 views

Multiple vendors' email content/virus scanners do not adequately check "message/partial" MIME entities

Overview Email anti-virus scanners and content filters from multiple vendors do not adequately check messages containing "message/partial" MIME entities RFC 2046. As a result, viruses, malicious code, or other restricted content may not be detected. Description Section 5.2.2 of RFC 2046 defines t...

7.5CVSS6.5AI score0.06667EPSS
Exploits0References4
CERT
CERT
•added 2002/09/13 12:0 a.m.•9 views

HP Tru64 UNIX "dxpause" contains buffer overflow (SSRT2275)

Overview The HP Tru64 UNIX implementation of "dxpause" contains a locally exploitable buffer overflow. Description "dxpause" is used to lock a display. A locally exploitable buffer overflow in "dxpause" may permit a local attacker to gain elevated privileges and execute arbitrary code on a...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/13 12:0 a.m.•11 views

HP Tru64 UNIX "dxsysinfo" contains buffer overflow (SSRT2275)

Overview The HP Tru64 UNIX implementation of "dxsysinfo" contains a locally exploitable buffer overflow. Description "dxsysinfo" is used to monitor system resources. A locally exploitable buffer overflow in "dxsysinfo" may permit a local attacker to gain elevated privileges and execute arbitrary...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/13 12:0 a.m.•15 views

HP Tru64 UNIX "dtterm" contains buffer overflow (SSRT2280)

Overview The HP Tru64 UNIX implementation of "dtterm" contains a locally exploitable buffer overflow. Description From the HP Tru64 UNIX reference pages, the "dtterm" utility "provides runtime support of legacy applications written for terminals conforming to ANSI X3.64-1979 and ISO 6429:1992E,...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/12 12:0 a.m.•14 views

HP Tru64 UNIX "ping" contains locally exploitable vulnerability (SSRT2229)

Overview The HP Tru64 UNIX implementation of "ping" contains a locally exploitable vulnerability. Description "ping" is used to send ICMP echo requests to other hosts on the Internet. A locally exploitable vulnerability in "ping" may permit a local attacker to perform a denial-of-service attack o...

6.6AI score
Exploits0References1
CERT
CERT
•added 2002/09/12 12:0 a.m.•20 views

Internet Key Exchange (IKE) protocol discloses identity when Aggressive Mode shared secret authentication is used

Overview The Internet Key Exchange IKE protocol discloses username information when Aggressive Mode is used for shared secret authentication. Description The Internet Key Exchange IKE protocol provides a negotiation mechanism that allows an initiator to establish an encrypted session with a...

6.3AI score
Exploits0References9
CERT
CERT
•added 2002/09/12 12:0 a.m.•17 views

HP Tru64 UNIX "deliver" contains buffer overflow (SSRT2275)

Overview The HP Tru64 UNIX implementation of "deliver" contains a locally exploitable buffer overflow. Description "deliver" is used to deliver mail to an IMAP mailbox . A locally exploitable buffer overflow in "deliver" may permit a local attacker to gain elevated privileges and execute arbitrar...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/12 12:0 a.m.•26 views

Microsoft Visual FoxPro fails to properly evaluate filenames before launching application

Overview There is a vulnerability in Microsoft Visual FoxPro 6.0 that allows remote attackers to execute Visual FoxPro applications with the privileges of the victim user. Description Microsoft Visual FoxPro 6.0 contains an unspecified vulnerability that allows remote attackers to execute arbitra...

7.5CVSS7AI score0.11699EPSS
Exploits0References1
CERT
CERT
•added 2002/09/10 12:0 a.m.•12 views

HP Tru64 UNIX "imapd" contains buffer overflow (SSRT2275)

Overview The HP Tru64 UNIX implementation of "imapd" contains a locally exploitable buffer overflow. Description "imapd" is the IMAP daemon. A locally exploitable buffer overflow in "imapd" may permit a local attacker to gain elevated privileges and execute arbitrary code on a vulnerable host. --...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/10 12:0 a.m.•14 views

HP Tru64 UNIX "uux" contains buffer overflow (SSRT2275)

Overview The HP Tru64 UNIX implementation of "uux" contains a locally exploitable buffer overflow. Description "uux" is used to run a command on a remote system. A locally exploitable buffer overflow in "uux" may permit a local attacker to gain elevated privileges and execute arbitrary code on a...

8.5AI score
Exploits0References1
CERT
CERT
•added 2002/09/10 12:0 a.m.•15 views

HP Tru64 UNIX "rdist" contains buffer overflow (SSRT2275)

Overview The HP Tru64 UNIX implementation of "rdist" contains a locally exploitable buffer overflow. Description "rdist" allows a user to maintain identical copies of files on multiple hosts. A locally exploitable buffer overflow in "rdist" may permit a local attacker to gain elevated privileges...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/10 12:0 a.m.•13 views

HP Tru64 UNIX "csh" contains buffer overflow (SSRT2275)

Overview The HP Tru64 UNIX implementation of "csh" contains a locally exploitable buffer overflow. Description "csh" is used to invoke the C shell and interpret commands. A locally exploitable buffer overflow in "csh" may permit a local attacker to gain elevated privileges and execute arbitrary...

8.3AI score
Exploits0References1
CERT
CERT
•added 2002/09/10 12:0 a.m.•14 views

HP Tru64 UNIX "inc" contains buffer overflow (SSRT2275)

Overview The HP Tru64 UNIX implementation of "inc" contains a locally exploitable buffer overflow. Description "inc" is used to incorporate new mail. A locally exploitable buffer overflow in "inc" may permit a local attacker to gain elevated privileges and execute arbitrary code on a vulnerable...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/10 12:0 a.m.•19 views

HP Tru64 UNIX "uucp" contains buffer overflow (SSRT2275)

Overview The HP Tru64 UNIX implementation of "uucp" contains a locally exploitable buffer overflow. Description "uucp" is used to copy files between hosts. A locally exploitable buffer overflow in "uucp" may permit a local attacker to gain elevated privileges and execute arbitrary code on a...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/10 12:0 a.m.•14 views

HP Tru64 UNIX "ps" contains buffer overflow (SSRT2256)

Overview The HP Tru64 UNIX implementation of "ps" contains a locally exploitable buffer overflow. Description "ps" is used to display information about running processes. A locally exploitable buffer overflow in "ps" may permit a local attacker to gain elevated privileges and execute arbitrary co...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/09 12:0 a.m.•30 views

HP Tru64 UNIX "quot" contains buffer overflow (SSRT2191)

Overview The HP Tru64 UNIX implementation of "quot" contains a locally exploitable buffer overflow. Description "quot" is used to summarize file system ownership. A locally exploitable buffer overflow in "quot" may permit a local attacker to gain elevated privileges and execute arbitrary code on ...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/09 12:0 a.m.•23 views

HP Tru64 UNIX "binmail" contains buffer overflow (SSRT0796U)

Overview The HP Tru64 UNIX implementation of "binmail" contains a locally exploitable buffer overflow. Description "binmail" is used to send and display mail messages. A locally exploitable buffer overflow in "binmail" may permit a local attacker to gain elevated privileges and execute arbitrary...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/09 12:0 a.m.•25 views

HP Tru64 UNIX "ipcs" contains buffer overflow (SSRT0794U)

Overview The HP Tru64 UNIX implementation of "ipcs" contains a locally exploitable buffer overflow. Description "ipcs" is used to report inter-process communication status. A locally exploitable buffer overflow in "ipcs" may permit a local attacker to gain elevated privileges and execute arbitrar...

7.2CVSS7.4AI score0.00571EPSS
Exploits0References5
CERT
CERT
•added 2002/09/09 12:0 a.m.•14 views

HP Tru64 UNIX "at" contains buffer overflow (SSRT2189)

Overview The HP Tru64 UNIX implementation of "at" contains a locally exploitable buffer overflow. Description "at" is used to run a job at a later time. A locally exploitable buffer overflow in "at" may permit a local attacker to gain elevated privileges and execute arbitrary code on a vulnerable...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/06 12:0 a.m.•11 views

HP Tru64 UNIX "lprm" contains buffer overflow (SSRT2260)

Overview The HP Tru64 UNIX implementation of "lprm" contains a locally exploitable buffer overflow. Description "lprm" is used to remove requests from a printer spool queue. A locally exploitable buffer overflow in "lprm" may permit a local attacker to gain elevated privileges and execute arbitra...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/06 12:0 a.m.•18 views

HP Tru64 UNIX "lpq" contains buffer overflow (SSRT2275)

Overview The HP Tru64 UNIX implementation of "lpq" contains a locally exploitable buffer overflow. Description "lpq" is used to examine the printer spool queue. A locally exploitable buffer overflow in "lpq" may permit a local attacker to gain elevated privileges and execute arbitrary code on a...

8.2AI score
Exploits0
CERT
CERT
•added 2002/09/06 12:0 a.m.•22 views

HP Tru64 UNIX "lpr" contains buffer overflow (SSRT2275)

Overview The HP Tru64 UNIX implementation of "lpr" contains a locally exploitable buffer overflow. Description "lpr" is used to send files to a print spool. A locally exploitable buffer overflow in "lpr" may permit a local attacker to gain elevated privileges and execute arbitrary code on a...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/06 12:0 a.m.•19 views

HP Tru64 UNIX "lpd" contains buffer overflow (SSRT2275)

Overview The HP Tru64 UNIX implementation of "lpd" contains a locally exploitable buffer overflow. Description "lpd" is used to handle the printer spool area. A locally exploitable buffer overflow in "lpd" may permit a local attacker to gain elevated privileges and execute arbitrary code on a...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/09/05 12:0 a.m.•26 views

HP Tru64 UNIX "traceroute" contains buffer overflow (SSRT2261)

Overview The HP Tru64 UNIX implementation of "traceroute" contains a locally exploitable buffer overflow. Description "traceroute" is used to display the route packets follow from one host to another on the Internet. A locally exploitable buffer overflow in "traceroute" may permit a local attacke...

8.3AI score
Exploits0References1
CERT
CERT
•added 2002/09/05 12:0 a.m.•15 views

HP Tru64 UNIX "lpc" contains buffer overflow (SSRT2260)

Overview The HP Tru64 UNIX implementation of "lpc" contains a locally exploitable buffer overflow. Description "lpc" is used to control the line printer system. A locally exploitable buffer overflow in "lpc" may permit a local attacker to gain elevated privileges and execute arbitrary code on a...

8.3AI score
Exploits0References1
CERT
CERT
•added 2002/09/05 12:0 a.m.•11 views

HP Tru64 UNIX "ypmatch" contains buffer overflow (SSRT2277)

Overview The HP Tru64 UNIX implementation of "ypmatch" contains a locally exploitable buffer overflow. Description "ypmatch" is used to print the value of keys from an NIS map. A locally exploitable buffer overflow in ypmatch may permit a local attacker to gain elevated privileges and execute...

8.3AI score
Exploits0References3
CERT
CERT
•added 2002/09/05 12:0 a.m.•19 views

HP Tru64 UNIX "passwd" contains buffer overflow (SSRT2192)

Overview The HP Tru64 UNIX implementation of "passwd" contains a locally exploitable buffer overflow. Description "passwd" is a utility used to change the password for the current user. A locally exploitable buffer overflow in "passwd" may permit a local attacker to gain elevated privileges and...

8.4AI score
Exploits0References4
CERT
CERT
•added 2002/09/03 12:0 a.m.•40 views

Cisco VPN 3000 series concentrator does not properly handle malformed ISAKMP packets

Overview Cisco VPN 3000 series concentrators do not properly handle specially crafted Internet Security Association and Key Management Protocol ISAKMP packets, which can cause a vulnerable device to reload, denying service to legitimate users. Description According to information on the Cisco web...

5CVSS7AI score0.01417EPSS
Exploits0References7
CERT
CERT
•added 2002/08/30 12:0 a.m.•12 views

HP Tru64 UNIX contains buffer overflow in libc libraries (SSRT2257)

Overview The HP Tru64 Unix operating system contains multiple buffer overflow vulnerabilities. Description A vulnerability exists in the way in which the libc libraries handle environment variables in the HP Tru64 UNIX operating system. As a result, local attackers may be able to execute arbitrar...

8.2AI score
Exploits0References1
CERT
CERT
•added 2002/08/28 12:0 a.m.•33 views

Sun Solaris ptexec does not adequately validate argument passed via -o option

Overview The Sun Solaris ptexec command is subject to a buffer overflow due to not adequately validating arguments passed via the -o option. Description A locally exploitable buffer overflow exists in the ptexec command which is included in the SUNWvts package. This package is not included in the...

7.2CVSS7.6AI score0.01009EPSS
Exploits1References3
CERT
CERT
•added 2002/08/27 12:0 a.m.•25 views

Microsoft Windows Terminal Services Advanced Client (TSAC) contains buffer overflow in process that handles input parameters

Overview Microsoft Windows Terminal Services Advanced Client TSAC contains a remotely exploitable buffer overflow. Description The Microsoft Windows Terminal Services Advanced Client TSAC contains a remotely exploitable buffer overflow. This ActiveX control provides a way to deliver Terminal...

7.5CVSS7.6AI score0.1737EPSS
Exploits0References2
CERT
CERT
•added 2002/08/26 12:0 a.m.•25 views

Microsoft Office Web Components allows reading of local files via "LoadText" method by using URL redirection

Overview The Microsoft Office Web Components allow a remote attacker to read arbitrary files. Description The Microsoft Office Web Components OWC are ActiveX controls that can be embedded in web pages. These controls give users of a website limited Microsoft Office functionality, without having t...

5CVSS6.2AI score0.18766EPSS
Exploits0References4
CERT
CERT
•added 2002/08/23 12:0 a.m.•205 views

Microsoft Windows Server Message Block (SMB) fails to properly handle SMB_COM_TRANSACTION packets requesting NetShareEnum transaction

Overview Microsoft Server Message Block SMB is a protocol for sharing data and resources between computers. SMB may crash upon receipt of a crafted SMBCOMTRANSACTION packet requesting a NetShareEnum transaction. Attackers can use this vulnerability to cause a denial of service. SMB is included in...

7.5CVSS6.5AI score0.30132EPSS
Exploits3References3
CERT
CERT
•added 2002/08/23 12:0 a.m.•23 views

Microsoft Windows Server Message Block (SMB) fails to properly handle SMB_COM_TRANSACTION packets requesting NetServerEnum3 transaction

Overview Microsoft Server Message Block SMB may crash upon receipt of a crafted SMBCOMTRANSACTION packet requesting a NetServerEnum3 transaction. Attackers can use this vulnerability to cause a denial of service. Description SMB is a protocol for sharing data and resources between computers,...

7.6AI score
Exploits0References1
CERT
CERT
•added 2002/08/23 12:0 a.m.•36 views

Microsoft Windows Server Message Block (SMB) fails to properly handle SMB_COM_TRANSACTION packets requesting NetServerEnum2 transaction

Overview Microsoft Server Message Block SMB may crash when it receives a crafted SMBCOMTRANSACTION packet requesting a NetServerEnum2 transaction. Attackers can use this vulnerability to cause a denial of service. Description SMB is a protocol for sharing data and resources between computers. It ...

7.5CVSS6.6AI score0.30132EPSS
Exploits3References2
CERT
CERT
•added 2002/08/22 12:0 a.m.•36 views

Novell Netware RCONAG6 fails to validate user password when "Secure IP" is used to establish connection

Overview Novell Netware RCONAG6 allows users to gain access to the server without a password. Description Novell Netware RCONAG6 allows users to remotely administer a Novell host. A vulnerability in RCONAG6 makes it possible for a remote user to connect to the server without supplying a password...

7.5CVSS6.6AI score0.03317EPSS
Exploits0References1
CERT
CERT
•added 2002/08/20 12:0 a.m.•32 views

FreeBSD privilege elevation vulnerability

Overview A locally exploitable privilege elevation vulnerability exists in FreeBSD. Description A locally exploitable privilege elevation vulnerability exists in FreeBSD. For more information, please see the Pine Internet Security Advisory. --- Impact A local user can gain root privileges. ---...

7.2CVSS5.9AI score0.01552EPSS
Exploits1References5
Total number of security vulnerabilities3702