13538 matches found
Microsoft Word Memory Corruption (MS13-072: CVE-2013-3850)
A remote code execution vulnerability has been reported in Microsoft Word...
Microsoft Internet Explorer Memory Corruption (MS13-069: CVE-2013-3202)
A remote code execution vulnerability exists in Internet Explorer...
Microsoft SharePoint Server MAC Disabled Remote Code Execution (MS13-067; CVE-2013-1330)
A remote code execution vulnerability exists in Microsoft SharePoint Server...
Microsoft Word Memory Corruption (MS13-072: CVE-2013-3848)
A remote code execution vulnerability has been reported in Microsoft Word...
Microsoft Windows Theme File Remote Code Execution (MS13-071; CVE-2013-0810)
A remote code execution vulnerability has been reported in Microsoft Windows...
Microsoft Excel Memory Corruption (MS13-067; CVE-2013-1315)
A remote code execution vulnerability exists in the way that Microsoft Excel parses content in Excel files...
Microsoft SharePoint W3WP Denial of Service (MS13-067; CVE-2013-0081)
A denial of service vulnerability exists in Microsoft SharePoint Server...
Apache HTTP Server mod_rewrite RewriteLog Command Execution (CVE-2013-1862)
A command execution vulnerability has been reported in Apache HTTP web server modrewrite. The vulnerability is due to a lack of input validation in handling certain escape sequences when writing to the log file. A remote attacker can exploit these vulnerabilities by sending a specially crafted HT...
Exim with Dovecot LDA sender_address Parameter Remote Command Execution
A remote command execution vulnerability exist in Exim MTA that uses the Dovecot as the Local Delivery Agent LDA. The vulnerability is due to the dangerous configuration in Dovecot suggesting the "useshell" option. A remote attacker could exploit this vulnerability by sending a malicious...
Oracle Java java.awt.image.ByteComponentRaster Memory Corruption (CVE-2013-2473)
A code execution vulnerability has been reported in Oracle Java Runtime. The vulnerability is due to a memory corruption error in the ByteComponentRaster class from jre/bin/awt.dll. A remote attacker can exploit this vulnerability by enticing a user to open a malicious webpage. Successful...
Microsoft Windows SMB Response Handling Buffer Overflow (CVE-2005-0045)
A remote code execution vulnerability has been reported in the Microsoft Windows Server Message Block SMB client component. A remote attacker can exploit this vulnerability by sending a specially crafted message to an affected system. Successful exploitation would allow an attacker to take comple...
HP Data Protector CRS Opcode 227 Stack Buffer Overflow (CVE-2013-2335)
A stack buffer overflow vulnerability has been discovered in HP Data Protector. The vulnerability exists in the Cell Request Service crs.exe, which listens on a randomly chosen port. The application fails to sanitize input with opcode 227, which can result in a stack buffer overflow. A remote,...
PineApp Mail-SeCure test_li_connection.php Command Injection
A command injection vulnerability exists in PineApp Mail-SeCure...
Measuresoft ScadaPro Multiple Command Directory Traversal Code Execution (CVE-2011-3497)
A command execution vulnerability has been reported in Measuresoft ScadaPro...
Monkey HTTPD Header Parsing Denial of Service (CVE-2013-3843)
A denial of service vulnerability has been reported in Monkey HTTPD Server...
Irfanview JPEG2000 jp2 Stack Buffer Overflow (CVE-2012-0897)
A buffer overflow vulnerability has been reported in Irfanview JPEG2000 v4.3.2.0 jp2 QCD parsing...
McAfee ePolicy Orchestrator UID Multiple SQL Injection (CVE-2013-4882)
Multiple SQL injection vulnerabilities have been reported in McAfee ePolicy Orchestrator...
Oracle Java Runtime Environment storeImageArray Buffer Overflow (CVE-2013-2465)
A code execution vulnerability has been reported in Oracle Java Runtime...
Apache HTTP Server mod_dav MERGE Request Denial of Service (CVE-2013-1896)
A denial of service vulnerability has been reported in the moddav component of Apache HTTP Server...
Mozilla Firefox onreadystatechange Use After Free (CVE-2013-1690)
A code execution vulnerability exists in Mozilla Firefox and Thunderbird...
PHP php_quot_print_encode Heap Buffer Overflow - Improved Performance (CVE-2013-2110)
A heap buffer vulnerability exists in phpquotprintencode function in PHP. The vulnerability is due to an error in parsing strings passed to the function. An attacker can exploit this vulnerability if the application uses the vulnerable function. A successful attack an allow arbitrary code executi...
PHP SSL Certificate Validation Security Bypass (CVE-2013-4248)
A security bypass vulnerability has been reported in PHP SSL Certificate. The vulnerability is due to an error when handling null characters in the Subject Alternative Name field of an X.509 certificate. An unprivileged, remote attacker can exploit this flaw by sending a malicious certificate...
VLC Media Player ABC File Instruction Field Parsing Heap Overflow
A remote code execution vulnerability has been reported in the libmodplug library used by VLC Media Player. The vulnerability is due to an error while parsing Instruction fields in ABC files with the style sheet directive "MIDI drum" or "MIDI gchord". Remote attackers could exploit this...
Oracle Java java.awt.image.IntegerComponentRaster Memory Corruption (CVE-2013-2471)
A code execution vulnerability has been reported in Oracle Java Runtime. The vulnerability is due to a memory corruption error in the IntegerComponentRaster class from jre/bin/awt.dll. A remote attacker can exploit this vulnerability by enticing a user to open a malicious webpage. Successful...
GnuTLS TLS Record Decoding Out-of-bounds Memory Access (CVE-2013-2116)
An out-of-bounds memory access vulnerability has been found in GnuTLS...
SAP NetWeaver SOAP Request SXPG_CALL_SYSTEM Command Execution
A remote command execution vulnerability has been reported in SAP NetWeaver's SOAP interface...
Java JAR Files Download
JAR files can be downloaded to computer systems by users...
PineApp Mail-SeCure ldapsyncnow.php Remote Command Execution
A remote command execution vulnerability has been reported in PineApp Mail-SeCure. The vulnerability is due to exposing of the ldapsyncnow.php file of the administration web interface. A remote attacker can exploit this vulnerability by sending a specially crafted request to the vulnerable server...
Nagios XI Network Monitor Graph Explorer Component Command Injection
A Command Injection vulnerability exists in Nagios XI Network Monitor Graph Explorer Component...
Microsoft Windows Kernel TCP-IP Driver Integer Overflow (MS13-049; CVE-2013-3138)
A denial-of-service vulnerability has been reported in Microsoft Windows TCP/IP stack...
Novell ZENworks Mobile Management MDM.php Code Execution (CVE-2013-1081)
A code execution vulnerability has been reported in ZENworks' Mobile Management system...
Java User Agent Executable Download
Some executable files can be downloaded to computer systems Java user agent. There are cases in which certain traffic, although not intended for malicious use, is very unsafe, since it may transfer shellcode which is undetectable by IPS...
National Instruments Installer Framework Multiple ActiveX Arbitrary File Creation
An arbitrary file writing vulnerability exists in the National Instruments Installer Framework...
IBM Cognos tm1admsd.exe Buffer Overflow (CVE-2012-0202)
Multiple stack-based buffer overflow vulnerabilities have been reported in IBM Cognos TM1 Admin Server...
Novell ZENworks Mobile Management DUSAP.php Code Execution (CVE-2013-1082)
A code execution vulnerability has been reported in Novell's ZENworks Mobile Management system...
Preemptive Protection against Squid idnsALookup DNS Name Handling Buffer Overflow (CVE-2013-4115)
A buffer overflow vulnerability exists in Squid proxy...
EMC AlphaStor Library Control Program Multiple Buffer Overflows (CVE-2013-0946)
Multiple buffer overflow vulnerabilities has been reported in EMC AlphaStor Library Control Program LCP...
IBM SPSS SamplePower Vsflex7l ActiveX Control Buffer Overflow (CVE-2012-5947)
A buffer overflow vulnerability exists in IBM SPSS SamplePower...
Oracle Java JPEGImageWriter Memory Corruption (CVE-2013-2429)
A memory corruption vulnerability has been reported in Oracle Java...
Novell Messenger Client Filename Parameter Stack Buffer Overflow (CVE-2013-1085)
A stack buffer over flow has been reported in Novell Messenger client...
MIT Kerberos 5 KDC prep_reprocess_req NULL Pointer Dereference (CVE-2013-1416)
A denial-of-service vulnerability exists in MIT Kerberos 5 KDC server...
Web Servers Malicious URL Directory Traversal
There exists a directory traversal vulnerability On different web servers...
Microsoft Windows HTTP.sys Denial of Service (MS13-039) - Improved Performance (CVE-2013-1305)
A denial of service vulnerability has been reported in Windows Server 2012 and Windows 8. The vulnerability is due to an error in the way HTTP.sys handles a malicious HTTP header. Successful exploitation would result in a denial of service condition...
Web Servers Malicious HTTP Header Directory Traversal
There exists a directory traversal vulnerability On different web servers...
Oracle WebCenter Content CheckOutAndOpen.dll ActiveX Control Code Execution (CVE-2013-1559)
A remote code execution vulnerability exists in Oracle WebCenter Content...
NTR ActiveX Control StopModule() Remote Code Execution (CVE-2012-0267)
A remote code execution vulnerability has been reported in the NTR ActiveX 1.1.8...
Adobe Flash Player PCM Buffer Integer Overflow (APSB13-17; CVE-2013-3347)
An integer overflow vulnerability has been reported in Adobe Flash Player...
Adobe Flash Player Parameter Memory Corruption (APSB13-17; CVE-2013-3345)
A memory corruption vulnerability has been reported in Adobe Flash Player...
NTR ActiveX Control Check() Method buffer overflow (CVE-2012-0266)
A remote code execution vulnerability has been reported in the NTR ActiveX 1.1.8...
Apache Struts Wildcard Matching OGNL Code Execution (CVE-2013-2134)
A code execution vulnerability exists in Apache Struts OGNL...