Coresecurity - Page 5 of Coresecurity Vulnerabilities List | Vulners.com

CoresecurityRecent

Recent Most viewed

247 matches found

Core Security•added 2008/01/17 12:0 a.m.•27 views

CORE FORCE Kernel Buffer Overflow

Advisory Information Title: CORE FORCE Kernel Buffer Overflow Advisory ID: CORE-2007-1119 Advisory URL:https://www.coresecurity.com/core-labs/advisories/aol-icq-pro-2003b-heap-overflow-vulnerability Date published: 2008-01-17 Date of last update: 2008-01-17 Release mode: Coordinated release...

7.2CVSS8.2AI score0.00544EPSS

Core Security•added 2008/01/07 12:0 a.m.•22 views

SynCE Remote Command Injection

SynCE Remote Command Injection Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Advisory Information Title: SynCE Remote Command Injection Advisory ID: CORE-2007-1106 Advisory URL: http://www.coresecurity.com/?action=item&id=2070 Date published: 2008-01-07 Date...

Core Security•added 2007/12/03 12:0 a.m.•24 views

VLC Activex Bad Pointer Initialization Vulnerability

Advisory ID Internal CORE-2007-1004 1. Advisory Information Title: VLC Activex Bad Pointer Initialization Vulnerability Advisory ID: CORE-2007-1004 Advisory URL: https://www.coresecurity.com/core-labs/advisories/vlc-activex--vulnerability Date published: 2007-12-03 Date of last update: 2007-12-03...

6.8CVSS7.2AI score0.11115EPSS

Core Security•added 2007/11/27 12:0 a.m.•43 views

Lotus Notes buffer overflow in the Lotus WorkSheet file processor

Advisory ID Internal CORE-2007-0821 Advisory Information Title: Lotus Notes buffer overflow in the Lotus WorkSheet file processor Advisory ID: CORE-2007-0821 Date published: 2007-11-27 Date of last update: 2007-11-27 Vendors contacted: IBM Corp. Release mode: COORDINATED RELEASE Vulnerability...

8.8CVSS7.3AI score0.06301EPSS

Core Security•added 2007/03/05 12:0 a.m.•42 views

GnuPG and GnuPG clients unsigned data injection vulnerability

Advisory ID Internal CORE-2007-0115 Date Published: 2007-03-05 Last Update: 2007-03-05 Advisory ID: CORE-2007-0115 Bugtraq IDs: BID 22757 - GnuPG BID 22758 - Enigmail BID 22759 - KMail BID 22760 - Evolution BID 22777 - Sylpheed BID 22778 - Mutt BID 22779 - GNUMail CVE Names: CVE-2007-1263 for the...

7.8CVSS6AI score0.05359EPSS

Core Security•added 2006/09/07 12:0 a.m.•31 views

: AOL ICQ Pro 2003b heap overflow vulnerability

Date Published : 2006-09-07 Last Update : 2006-09-06 Advisory ID : CORE-2006-0321 Bugtraq ID : 19897 CVE Name : CVE-2006-4662 Title : AOL ICQ Pro 2003b heap overflow vulnerability Class : Boundary Error Condition Remotely Exploitable : Yes Locally Exploitable : Yes Advisory URL :...

7.5CVSS7.1AI score0.06154EPSS

Core Security•added 2006/06/09 12:0 a.m.•35 views

IAXclient truncated frames vulnerabilities

Advisory ID Internal CORE-2006-0327 Date Published: 2006-06-09 Last Update: 2006-06-09 Advisory ID: CORE-2006-0327 Bugtraq ID: 18307 CVE Name: CVE-2006-2923 Title: IAXclient truncated frames vulnerabilities Class: Input Validation Error Remotely Exploitable: Yes Locally Exploitable: Yes Vendors...

6.4CVSS7.7AI score0.04299EPSS

Core Security•added 2006/06/09 12:0 a.m.•23 views

: Asterisk PBX truncated video frame vulnerability

Advisory ID Internal CORE-2006-0330 Date Published : 2006-06-09 Last Update : 2006-06-09 Advisory ID : CORE-2006-0330 Bugtraq ID : 18295 CVE Name : CVE-2006-2898 Title : Asterisk PBX truncated video frame vulnerability Class : Input Validation Error Remotely Exploitable : Yes Locally Exploitable ...

7.5CVSS7.3AI score0.04214EPSS

Core Security•added 2006/03/20 12:0 a.m.•24 views

Cross-Site Scripting in Verisign’s haydn.exe CGI script

Date Published: 2006-03-20 Last Update: 2006-03-20 Advisory ID: CORE-2006-0124 Bugtraq ID: 17170 CVE Name: CVE-2006-1344 Title: Cross-Site Scripting in Verisign’s haydn.exe CGI script Class: Input Validation Error Remotely Exploitable: Yes Locally Exploitable: No Advisory...

4.3CVSS5.8AI score0.01945EPSS

Core Security•added 2004/10/12 12:0 a.m.•25 views

IIS NNTP Service XPAT Command Vulnerabilities

Advisory ID Internal CORE-2004-0802 Core Security Advisory https://www.coresecurity.com Date Published: 2004-10-12 Last Update: 2004-10-12 Advisory ID: CORE-2004-0802 Bugtraq ID: Not assigned CVE Name: CAN-2004-0574 Title: IIS NNTP Service XPAT Command Vulnerabilities Class: Boundary error...

10CVSS8AI score0.67822EPSS

Core Security•added 2003/12/10 12:0 a.m.•5 views

DCE RPC Vulnerabilities New Attack Vectors Analysis

Date Published: 2003-12-10 Last Update: 2003-12-10 Advisory ID: CORE-2003-12-05 Title: DCE RPC Vulnerabilities New Attack Vectors Analysis Remotely Exploitable: Yes Locally Exploitable: Yes Vendors contacted: - Microsoft . Core notification: 2003-12-09 . Notification acknowledged by Microsoft:...

Core Security•added 2003/12/10 12:0 a.m.•23 views

DCE RPC Vulnerabilities New Attack Vectors Analysis

Date Published: 2003-12-10 Last Update: 2003-12-10 Advisory ID: CORE-2003-12-05 Title: DCE RPC Vulnerabilities New Attack Vectors Analysis Remotely Exploitable: Yes Locally Exploitable: Yes Vendors contacted: - Microsoft . Core notification: 2003-12-09 . Notification acknowledged by Microsoft:...

Core Security•added 2003/09/18 12:0 a.m.•30 views

Multiple IBM DB2 Stack Overflow Vulnerabilities

Advisory ID Internal CORE-2003-0531 Vulnerability Information: Date Published: 2003-09-18 Last Update: 2003-09-17 Advisory ID: CORE-2003-0531 Bugtraq ID:8552, 8553 CVE Name:CAN-2003-0758, CAN-2003-0759 Title: Multiple IBM DB2 Stack Overflow Vulnerabilities Class: Boundary Error Condition Buffer...

Core Security•added 2003/07/02 12:0 a.m.•4 views

Active Directory Stack Overflow

Advisory ID Internal CORE-2003-0305-03 Date Published: 2003-07-02 Last Update: 2004-04-21 Advisory ID: CORE-2003-0305-03 Bugtraq ID: 7930 CVE Name: CAN-2003-0663 Title: Active Directory Stack Overflow Class: Boundary Error Condition, Denial of Service Remotely Exploitable: Yes Locally Exploitable...

5CVSS7.4AI score0.31881EPSS

Core Security•added 2003/05/27 12:0 a.m.•38 views

Axis Network Camera HTTP Authentication Bypass

Advisory ID Internal CORE-2003-0403 Core Security Technologies Advisory http://www.coresecurity.com Date Published: 2003-05-27 Last Update: 2003-05-23 Advisory ID: CORE-2003-0403 Bugtraq ID: 7652 CVE Name: CAN-2003-0240 Title: Axis Network Camera HTTP Authentication Bypass Class: Access Validatio...

10CVSS7.4AI score0.29521EPSS

Core Security•added 2003/05/05 12:0 a.m.•48 views

Multiple Vulnerabilities in Mirabilis ICQ Pro 2003a client

Advisory ID Internal CORE-2003-0303 Advisory Information: Date Published: 2003-05-05 Last Update: 2003-05-02 Advisory ID: CORE-2003-0303 Bugtraq IDs:7461, 7462, 7463, 7464, 7465, 7466 CVE Names:CAN-2003-0235, CAN-2003-0236, CAN-2003-0237, CAN-2003-0238, CAN-2003-0239 CERT:VU936164, VU792988,...

Core Security•added 2001/06/26 12:0 a.m.•17 views

GroupWise 5.5 User Mailbox Authentication Vulnerability

Advisory ID Internal CORE-2001-0626 GroupWise 5.5 User Mailbox Authentication Vulnerability Core Security Advisory https://www.coresecurity.com Date Published: 2001-06-26 Advisory ID: CORE-2001-0626 Bugtraq ID: None currently assigned. CVE Name: None currently assigned. Title: GroupWise 5.5 User...

Core Security•added 2000/04/14 12:0 a.m.•27 views

MS IIS FrontPage 98 Extensions Buffer Overflow Vulnerability

Advisory ID Internal CORE-041200 1. Advisory Information Date Published: 2000-04-14 Last Update: 2000-04-14 Advisory ID: CORE-041200 Bugtraq ID: 1109 CVE Name: CVE-2000-0260 Title: MS IIS FrontPage 98 Extensions Buffer Overflow Vulnerability Class: Boundary Error Condition Buffer Overflow Remotel...

7.5CVSS8.1AI score0.13893EPSS

Core Security•added 1976/01/01 12:0 a.m.•26 views

MailEnable Buffer Overflow Vulnerability

Advisory ID Internal CORE-2005-0629 Advisory ID: CORE-2005-0629 Bugtraq ID: 14243 CVE Name: CVE-2005-2278 Title: MailEnable Buffer Overflow Vulnerability Class: Boundary Error Condition Stack Buffer Overflow Remotely Exploitable: Yes Locally Exploitable: Yes Vendors contacted: - MailEnable...

7.2CVSS7.3AI score0.8464EPSS

Core Security•added 1976/01/01 12:0 a.m.•11 views

Cfengine RSA Authentication Heap Corruption

Advisory ID Internal CORE-2004-0714 Advisory ID: CORE-2004-0714 Bugtraq ID: 10899, 10900 CVE Name: None currently assigned. Title: Cfengine RSA Authentication Heap Corruption Class: Input validation error Boundary error condition Buffer Overflow Remotely Exploitable: Yes Locally Exploitable: Yes...

Core Security•added 1976/01/01 12:0 a.m.•24 views

BUFFER OVERFLOW IN RSAREF2

Advisory ID Internal CORE-120199 Advisory ID: CORE-120199 CVE Name: CVE-1999-0834 Bugtraq ID: 843 While researching the exploitability of a buffer overflow in SSH up to version 1.2.27, we discovered a second buffer overflow in the implmementation of the RSA algorithm in RSAREF2 from RSA Data...

10CVSS7.7AI score0.02141EPSS

Core Security•added 1976/01/01 12:0 a.m.•33 views

Multiple vulnerabilities in Tooltalk database server

Advisory ID Internal CORE-220528 Advisory Information: Advisory ID: CORE-20020528 Bugtraq ID : 5082, 5083 CVE Name: CVE-2002-0678, CVE-2002-0677 CERT : VU975403, VU299816 Title: Multiple vulnerabilities in Tooltalk database server Class: Implementation flaws Remotely Exploitable: Yes Locally...

7.5CVSS7.2AI score0.09418EPSS

Core Security•added 1976/01/01 12:0 a.m.•24 views

Multiple vulnerabilities in Ximian's Evolution Mail User Agent

Advisory ID Internal CORE-20030304-01 Advisory Information: Advisory ID: CORE-20030304-01 Bugtraq IDs : 7117, 7118, 7119 CVE Name: CAN-2003-0128, CAN-2003-0129, CAN-2003-0130 Title: Multiple vulnerabilities in Ximian's Evolution Mail User Agent Class: Input validation error; Failure to handle...

Core Security•added 1976/01/01 12:0 a.m.•31 views

NAI Net Tools PKI Server Vulnerabilities

Advisory ID Internal CORE-080200 Advisory Information: Advisory ID: CORE-080200 CVE Name:CVE-2000-0740, CVE-2000-0739, CVE-2000-0741 Bugtraq ID:1536, 1537, 1538 Buenos Aires, Argentina While investigating the exploitability of a buffer overflow in the Net Tools PKI Server from Network Associates...

7.5CVSS8.4AI score0.052EPSS

Core Security•added 1976/01/01 12:0 a.m.•6 views

NetMeeting Directory Traversal Vulnerability

Advisory ID Internal CORE-2003-0305-04 Advisory Information: Advisory ID: CORE-2003-0305-04 Bugtraq ID: 7931 CVE Name: None currently assigned. Title: NetMeeting Directory Traversal Vulnerability Class : Input validation error Remotely Exploitable: Yes Locally Exploitable: No Vendors Contacted:...

Core Security•added 1976/01/01 12:0 a.m.•3 views

Vulnerabilidades en BIND y Soluciones

Advisory ID Internal CORE-1999-0024 CVE Name: CVE-1999-0024 Bugtraq ID: 678 Descripción de los problemas Esta advertencia contiene descripciones y soluciones para dos vulnerabilidades presentes en las distribuciones actuales de BIND. Los problemas están siendo explotados activamente en Internet. ...

5CVSS6.2AI score0.04935EPSS

Core Security•added 1976/01/01 12:0 a.m.•60 views

MSN Messenger PNG Image Parsing Vulnerability

Advisory ID Internal CORE-2004-0819 Vulnerability Information: Date Published: 2005-02-08 Last Update: 2005-02-08 Advisory ID: CORE-2004-0819 Bugtraq ID: 12506 CVE Name: CVE-2004-0597 Title: MSN Messenger PNG Image Parsing Vulnerability Class: Boundary Error Condition Stack Buffer Overflow Remote...

10CVSS7.1AI score0.82537EPSS

Core Security•added 1976/01/01 12:0 a.m.•30 views

: Microsoft SRV.SYS SMB_COM_TRANSACTION Denial of Service

Advisory ID Internal CORE-2006-0714 1. Advisory Information Advisory ID : CORE-2006-0714 Bugtraq ID : 19215 CVE Name : CVE-2006-3942 Title : Microsoft SRV.SYS SMBCOMTRANSACTION Denial of Service Class : Failure to Handle Exceptional Conditions Remotely Exploitable : Yes Locally Exploitable : Yes...

7.8CVSS6.8AI score0.73748EPSS

Core Security•added 1976/01/01 12:0 a.m.•4 views

RealServer memory contents disclosure vulnerability

Advisory ID Internal CORE-21116 Advisory Information: Advisory ID: CORE-20001116 Bugtraq ID: 1957 CVE Name:CVE-2000-1181 Title: RealServer memory contents disclosure vulnerability Class: Failure to handle exceptional conditions Remotely Exploitable: Yes Locally Exploitable: Yes Release Mode:...

5CVSS6.5AI score0.07853EPSS

Core Security•added 1976/01/01 12:0 a.m.•3 views

Kerio Personal Firewall Replay Attack and Buffer Overflow

Advisory ID Internal CORE-2003-0305-02 Bugtraq ID: 7179, 7180 CVE Names: CAN-2003-0219, CAN-2003-0220 Title: Kerio Personal Firewall Replay Attack and Buffer Overflow Class: Design Error; Boundary Error Condition Buffer Overflow Remotely Exploitable: Yes Locally Exploitable: Yes Vendors contacted...

Core Security•added 1976/01/01 12:0 a.m.•2 views

Vulnerabilities in PuTTY and PSCP

Advisory ID Internal CORE-2004-0705 Bugtraq ID: 10850, 10870 CVE Name: None currently assigned. Title: Vulnerabilities in PuTTY and PSCP Class: Boundary Error Condition Remotely Exploitable: Yes Locally Exploitable: No Vendors contacted: - Maintainers of PuTTY . Core notification: 2004-07-28...

Core Security•added 1976/01/01 12:0 a.m.•2 views

Network Associates PGP Keyserver 7.0 Administration Web Console Multiple Vulnerabilities

Advisory ID Internal CORE-2001-0813 Bugtraq ID: None currently assigned. CVE Name: None currently assigned. Title: Network Associates PGP Keyserver 7.0 Administration Web Console Multiple Vulnerabilities Class: Access Validation Error/Design Error Remotely Exploitable: Yes Locally Exploitable: Ye...

Core Security•added 1976/01/01 12:0 a.m.•3 views

GNOME's Eye Of Gnome incorrect file name handling

Advisory ID Internal CORE-2003-0304-03 Bugtraq ID: 7121 CVE Name: CAN-2003-0165 CERT: VU363001 Title: GNOME's Eye Of Gnome incorrect file name handling Class: Input validation error Remotely Exploitable: No Locally Exploitable: Yes Vendors contacted: Eye Of Gnome . CORE Notification: 2003-03-14...

4.6CVSS6.1AI score0.01684EPSS

Core Security•added 1976/01/01 12:0 a.m.•4 views

ATT VNC Windows Server Buffer Overflow

Advisory ID Internal CORE-21011502 Bugtraq ID: 2306 CVE Name: CAN-2001-0168 Title: ATT VNC Windows Server Buffer Overflow Class: Boundary Error Condition Buffer Overflow Remotely Exploitable: yes Locally Exploitable: yes Release Mode: USER RELEASE Vulnerability Description: As stated in the VNC...

10CVSS6.4AI score0.7073EPSS

Core Security•added 1976/01/01 12:0 a.m.•3 views

Mutt Controlled IMAP server buffer overflow

Advisory ID Internal CORE-20030304-02 Bugtraq ID: 7120 CVE Name: CAN-2003-0140 Title: Mutt Controlled IMAP server buffer overflow Class: Boundary Error Condition Buffer Overflow Remotely Exploitable: Yes Locally Exploitable: No Vendors notified: . Core Notification: 2003-03-11 . Notification...

7.5CVSS6.2AI score0.04494EPSS

Core Security•added 1976/01/01 12:0 a.m.•3 views

BEA Weblogic Multiple Buffer Overflow Vulnerabilities

Advisory ID Internal CORE-081300 Bugtraq ID: 1570 CVE Name: CVE-2000-0681 Title: BEA Weblogic Multiple Buffer Overflow Vulnerabilities Class: Boundary Error Condition Buffer Overflow Remotely Exploitable: Yes Locally Exploitable: Yes Vulnerability Description: BEA Systems Inc. Weblogic server...

10CVSS6.5AI score0.50858EPSS

Core Security•added 1976/01/01 12:0 a.m.•5 views

ATT VNC Windows Client Buffer Overflow

Advisory ID Internal CORE-21011503 Bugtraq ID: 2305 CVE Name: CAN-2001-0167 Title: ATT VNC Windows Client Buffer Overflow Class: Boundary Error Condition Buffer Overflow Remotely Exploitable: yes Locally Exploitable: yes Release Mode: USER RELEASE Vulnerability Description: As stated in the VNC...

7.6CVSS6.5AI score0.50813EPSS

Core Security•added 1976/01/01 12:0 a.m.•6 views

WU-FTPD Improper Ftpglob Error Handling Vulnerability

Advisory ID Internal CORE-211001 Bugtraq ID: 3581 CVE Name: CVE-2001-0550 CERT: VU886083 Title: WU-FTPD Improper Ftpglob Error Handling Vulnerability Class: Failure to handle exceptional conditions Remotely Exploitable: Yes Locally Exploitable: Yes Release Mode: FORCED RELEASE Vulnerability...

7.5CVSS6.2AI score0.74762EPSS

Core Security•added 1976/01/01 12:0 a.m.•5 views

Inktomi Traffic Server traffic_manager local overflow.

Advisory ID Internal CORE-220620 Bugtraq ID: 5098 CVE Name: CVE-2002-1013 Title: Inktomi Traffic Server trafficmanager local overflow. Class: Boundary error condition buffer overflow Remotely Exploitable: NO Locally Exploitable: Yes Vendors contacted: Inktomi Corporation INKT . Inital email sent:...

7.2CVSS6.5AI score0.00793EPSS

Core Security•added 1976/01/01 12:0 a.m.•2 views

Netscape servers Denial of Service

Advisory ID Internal CORE-2103102 Bugtraq ID: 1867 CVE Name: Non currently assigned. Title: Netscape servers Denial of Service Class: Denial of Service Remotely Exploitable: Yes Locally Exploitable: Yes Release Mode: USER RELEASE Communications with the vendor have been remarkably difficult and t...

Core Security•added 1976/01/01 12:0 a.m.•2 views

Weak authentication in ATT VNC

Advisory ID Internal CORE-21011501 Advisory ID: CORE-2001011501 Bugtraq ID: 2275 CVE Name: None currently assigned. Title: Weak authentication in ATT VNC Class: Design error Remotely Exploitable: yes Locally Exploitable: no Release Mode: USER RELEASE Vulnerability Description: As stated in the VN...

Core Security•added 1976/01/01 12:0 a.m.•2 views

Cisco IOS Web Administration Denial of Service

Advisory ID Internal CORE-22510 Bugtraq ID: 1838 CVE Name: None currently assigned. Title: Cisco IOS Web Administration Denial of Service Class: Denial of Service Remotely Exploitable: Yes Locally Exploitable: Yes Vulnerability Description: The HTTP service facility in the Cisco IOS provides remo...

Core Security•added 1976/01/01 12:0 a.m.•25 views

: Multiples vulnerabilities in ICQ Toolbar 1.3 for Internet Explorer

Advisory ID Internal CORE-2006-0322 Advisory Information Advisory ID : CORE-2006-0322 Bugtraq ID : 19900 CVE Name : CVE-2006-4660 / CVE-2006-4661 Title : Multiples vulnerabilities in ICQ Toolbar 1.3 for Internet Explorer Class : Access Validation Error/Design Error, Input validation error Remotel...

5.8CVSS5.5AI score0.01328EPSS

Core Security•added 1976/01/01 12:0 a.m.•2 views

Netscape Servers Heap Buffer Overflow

Advisory ID Internal CORE-2103101 Bugtraq ID: 1865 CVE Name: Non currently assigned. Title: Netscape Servers Heap Buffer Overflow Class: Boundary Condition Error Buffer Overflow Remotely Exploitable: Yes Locally Exploitable: Yes Release Mode: USER RELEASE Communications with the vendor have been...

Core Security•added 1976/01/01 12:0 a.m.•4 views

Remotely exploitable Buffer overflows and Authentication bypassing bugs on Linksys BEFW11S4 Wireless router and other devices.

Advisory ID Internal CORE-221005 Bugtraq ID: 6301, 6303, 6304, 6208, 6201, 6090 CVE Name: None currently assigned. Title: Remotely exploitable Buffer overflows and Authentication bypassing bugs on Linksys BEFW11S4 Wireless router and other devices. Class: Implementation flaws Remotely Exploitable...

Core Security•added 1976/01/01 12:0 a.m.•3 views

Denial of Service Vulnerabilities in Windows SMB implementation

Advisory ID Internal CORE-220618 Bugtraq ID: 5556 CVE Name: CAN-2002-0724 CERT: VU311619, VU342243, VU250635 Title: Denial of Service Vulnerabilities in Windows SMB implementation Class: Implementation flaws Remotely Exploitable: Yes Locally Exploitable: Yes Vendors contacted: - Microsoft...

7.5CVSS6.5AI score0.30132EPSS

Core Security•added 1976/01/01 12:0 a.m.•19 views

Multiple vulnerabilities in stack smashing protection technologies.

Advisory ID Internal CORE-20020409 Advisory Information: Advisory ID: CORE-20020409 Bugtraq ID:4586, 4589 CVE Name: Non-assigned yet Title: Multiple vulnerabilities in stack smashing protection technologies. Class: Design limitation, Implementation flaw Remotely Exploitable: Yes Locally...

Total number of security vulnerabilities247