Lucene search
+L

4305 matches found

saint
saint
•added 2009/09/23 12:0 a.m.•17 views

Phishing Tool

Added: 09/23/2009 Background This tool serves an HTML form which collects information from users. It allows you to either replicate a real web page, or specify a custom header graphic, a custom footer graphic, and an introductory text message. For best results, design the HTML form to look like a...

6.7AI score
Exploits0
saint
saint
•added 2009/09/22 12:0 a.m.•31 views

Symantec Altiris eXpress NS SC Download ActiveX control vulnerability

Added: 09/22/2009 BID: 36346 OSVDB: 57893 Background The Altiris eXpress NS SC Download ActiveX control is installed with several products, including Altiris Deployment Solution. Problem The Altiris eXpress NS SC Download ActiveX control allows remote files to be downloaded, saved to arbitrary...

7.4AI score
Exploits0
saint
saint
•added 2009/09/22 12:0 a.m.•21 views

Symantec Altiris eXpress NS SC Download ActiveX control vulnerability

Added: 09/22/2009 BID: 36346 OSVDB: 57893 Background The Altiris eXpress NS SC Download ActiveX control is installed with several products, including Altiris Deployment Solution. Problem The Altiris eXpress NS SC Download ActiveX control allows remote files to be downloaded, saved to arbitrary...

7.4AI score
Exploits0
saint
saint
•added 2009/09/22 12:0 a.m.•20 views

Symantec Altiris eXpress NS SC Download ActiveX control vulnerability

Added: 09/22/2009 BID: 36346 OSVDB: 57893 Background The Altiris eXpress NS SC Download ActiveX control is installed with several products, including Altiris Deployment Solution. Problem The Altiris eXpress NS SC Download ActiveX control allows remote files to be downloaded, saved to arbitrary...

7.4AI score
Exploits0
saint
saint
•added 2009/09/22 12:0 a.m.•13 views

Symantec Altiris eXpress NS SC Download ActiveX control vulnerability

Added: 09/22/2009 BID: 36346 OSVDB: 57893 Background The Altiris eXpress NS SC Download ActiveX control is installed with several products, including Altiris Deployment Solution. Problem The Altiris eXpress NS SC Download ActiveX control allows remote files to be downloaded, saved to arbitrary...

7.4AI score
Exploits0
saint
saint
•added 2009/09/17 12:0 a.m.•12 views

ACDSee TIFF file handling buffer overflow

Added: 09/17/2009 BID: 35175 OSVDB: 54822 Background ACDSee is a suite of products for viewing and organizing photos. Problem A buffer overflow vulnerability allows command execution when a user opens a specially crafted TIFF file. Resolution Apply a fix when available. If a fix is not available,...

0.6AI score
Exploits0
saint
saint
•added 2009/09/17 12:0 a.m.•9 views

ACDSee TIFF file handling buffer overflow

Added: 09/17/2009 BID: 35175 OSVDB: 54822 Background ACDSee is a suite of products for viewing and organizing photos. Problem A buffer overflow vulnerability allows command execution when a user opens a specially crafted TIFF file. Resolution Apply a fix when available. If a fix is not available,...

7.8AI score
Exploits0
saint
saint
•added 2009/09/17 12:0 a.m.•14 views

ACDSee TIFF file handling buffer overflow

Added: 09/17/2009 BID: 35175 OSVDB: 54822 Background ACDSee is a suite of products for viewing and organizing photos. Problem A buffer overflow vulnerability allows command execution when a user opens a specially crafted TIFF file. Resolution Apply a fix when available. If a fix is not available,...

0.6AI score
Exploits0
saint
saint
•added 2009/09/17 12:0 a.m.•13 views

ACDSee TIFF file handling buffer overflow

Added: 09/17/2009 BID: 35175 OSVDB: 54822 Background ACDSee is a suite of products for viewing and organizing photos. Problem A buffer overflow vulnerability allows command execution when a user opens a specially crafted TIFF file. Resolution Apply a fix when available. If a fix is not available,...

7.8AI score
Exploits0
saint
saint
•added 2009/09/16 12:0 a.m.•35 views

Safari WebKit floating point number buffer overflow

Added: 09/16/2009 CVE: CVE-2009-2195 BID: 36023 OSVDB: 56988 Background Safari is a web browser for Mac OS X and Windows. Safari is built upon the WebKit browser engine. Problem A buffer overflow vulnerability in WebKit allows command execution when a user loads a page which contains a specially...

9.3CVSS9AI score0.13294EPSS
Exploits4
saint
saint
•added 2009/09/16 12:0 a.m.•33 views

Safari WebKit floating point number buffer overflow

Added: 09/16/2009 CVE: CVE-2009-2195 BID: 36023 OSVDB: 56988 Background Safari is a web browser for Mac OS X and Windows. Safari is built upon the WebKit browser engine. Problem A buffer overflow vulnerability in WebKit allows command execution when a user loads a page which contains a specially...

9.3CVSS9AI score0.13294EPSS
Exploits4
saint
saint
•added 2009/09/16 12:0 a.m.•32 views

Safari WebKit floating point number buffer overflow

Added: 09/16/2009 CVE: CVE-2009-2195 BID: 36023 OSVDB: 56988 Background Safari is a web browser for Mac OS X and Windows. Safari is built upon the WebKit browser engine. Problem A buffer overflow vulnerability in WebKit allows command execution when a user loads a page which contains a specially...

9.3CVSS9AI score0.13294EPSS
Exploits4
saint
saint
•added 2009/09/16 12:0 a.m.•22 views

Safari WebKit floating point number buffer overflow

Added: 09/16/2009 CVE: CVE-2009-2195 BID: 36023 OSVDB: 56988 Background Safari is a web browser for Mac OS X and Windows. Safari is built upon the WebKit browser engine. Problem A buffer overflow vulnerability in WebKit allows command execution when a user loads a page which contains a specially...

9.3CVSS9AI score0.13294EPSS
Exploits4
saint
saint
•added 2009/09/11 12:0 a.m.•47 views

Microsoft Excel BIFF format Qsir record memory corruption

Added: 09/11/2009 CVE: CVE-2009-1134 BID: 35246 OSVDB: 54958 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem A memory corruption vulnerability allows command execution when a user closes a spreadshee...

9.3CVSS7.8AI score0.35698EPSS
Exploits5
saint
saint
•added 2009/09/11 12:0 a.m.•41 views

Microsoft Excel BIFF format Qsir record memory corruption

Added: 09/11/2009 CVE: CVE-2009-1134 BID: 35246 OSVDB: 54958 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem A memory corruption vulnerability allows command execution when a user closes a spreadshee...

9.3CVSS7.8AI score0.35698EPSS
Exploits5
saint
saint
•added 2009/09/11 12:0 a.m.•28 views

VideoLAN VLC Media Player SMB Module Win32AddConnection Buffer Overflow

Added: 09/11/2009 CVE: CVE-2009-2484 BID: 35500 OSVDB: 55509 Background VLC media player is a media player supporting various audio and video formats for multiple platforms. Problem A stack-based buffer overflow vulnerability in the Win32AddConnection function may allow a remote attacker to execu...

9.3CVSS7.7AI score0.3511EPSS
Exploits7
saint
saint
•added 2009/09/11 12:0 a.m.•34 views

VideoLAN VLC Media Player SMB Module Win32AddConnection Buffer Overflow

Added: 09/11/2009 CVE: CVE-2009-2484 BID: 35500 OSVDB: 55509 Background VLC media player is a media player supporting various audio and video formats for multiple platforms. Problem A stack-based buffer overflow vulnerability in the Win32AddConnection function may allow a remote attacker to execu...

9.3CVSS7.7AI score0.3511EPSS
Exploits7
saint
saint
•added 2009/09/11 12:0 a.m.•30 views

Microsoft Excel BIFF format Qsir record memory corruption

Added: 09/11/2009 CVE: CVE-2009-1134 BID: 35246 OSVDB: 54958 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem A memory corruption vulnerability allows command execution when a user closes a spreadshee...

9.3CVSS7.8AI score0.35698EPSS
Exploits5
saint
saint
•added 2009/09/11 12:0 a.m.•51 views

Microsoft Excel BIFF format Qsir record memory corruption

Added: 09/11/2009 CVE: CVE-2009-1134 BID: 35246 OSVDB: 54958 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem A memory corruption vulnerability allows command execution when a user closes a spreadshee...

9.3CVSS7.8AI score0.35698EPSS
Exploits5
saint
saint
•added 2009/09/11 12:0 a.m.•42 views

VideoLAN VLC Media Player SMB Module Win32AddConnection Buffer Overflow

Added: 09/11/2009 CVE: CVE-2009-2484 BID: 35500 OSVDB: 55509 Background VLC media player is a media player supporting various audio and video formats for multiple platforms. Problem A stack-based buffer overflow vulnerability in the Win32AddConnection function may allow a remote attacker to execu...

9.3CVSS7.7AI score0.3511EPSS
Exploits7
saint
saint
•added 2009/09/11 12:0 a.m.•35 views

VideoLAN VLC Media Player SMB Module Win32AddConnection Buffer Overflow

Added: 09/11/2009 CVE: CVE-2009-2484 BID: 35500 OSVDB: 55509 Background VLC media player is a media player supporting various audio and video formats for multiple platforms. Problem A stack-based buffer overflow vulnerability in the Win32AddConnection function may allow a remote attacker to execu...

9.3CVSS7.7AI score0.3511EPSS
Exploits7
saint
saint
•added 2009/09/03 12:0 a.m.•223 views

Microsoft IIS FTP Server NLST Command Remote Overflow

Added: 09/03/2009 CVE: CVE-2009-3023 BID: 36189 OSVDB: 57589 Background Microsoft Internet Information Server IIS includes a web server and an FTP server. Problem A stack overflow in the FTP server in IIS 5 and 6.0 via a crafted NLST command that uses wildcards allows remote authenticated users t...

9CVSS7.4AI score0.90913EPSS
Exploits11
saint
saint
•added 2009/09/03 12:0 a.m.•179 views

Microsoft IIS FTP Server NLST Command Remote Overflow

Added: 09/03/2009 CVE: CVE-2009-3023 BID: 36189 OSVDB: 57589 Background Microsoft Internet Information Server IIS includes a web server and an FTP server. Problem A stack overflow in the FTP server in IIS 5 and 6.0 via a crafted NLST command that uses wildcards allows remote authenticated users t...

9CVSS7.4AI score0.90913EPSS
Exploits11
saint
saint
•added 2009/09/03 12:0 a.m.•40 views

Microsoft IIS FTP Server NLST Command Remote Overflow

Added: 09/03/2009 CVE: CVE-2009-3023 BID: 36189 OSVDB: 57589 Background Microsoft Internet Information Server IIS includes a web server and an FTP server. Problem A stack overflow in the FTP server in IIS 5 and 6.0 via a crafted NLST command that uses wildcards allows remote authenticated users t...

9CVSS7.4AI score0.90913EPSS
Exploits11
saint
saint
•added 2009/09/03 12:0 a.m.•239 views

Microsoft IIS FTP Server NLST Command Remote Overflow

Added: 09/03/2009 CVE: CVE-2009-3023 BID: 36189 OSVDB: 57589 Background Microsoft Internet Information Server IIS includes a web server and an FTP server. Problem A stack overflow in the FTP server in IIS 5 and 6.0 via a crafted NLST command that uses wildcards allows remote authenticated users t...

9.3CVSS7.4AI score0.90913EPSS
Exploits11
saint
saint
•added 2009/09/01 12:0 a.m.•47 views

Oracle Secure Backup property_box.php type parameter command execution

Added: 09/01/2009 CVE: CVE-2009-1978 BID: 35678 OSVDB: 55904 Background Oracle Secure Backup is a centralized tape backup management solution for Oracle Database. Problem A command execution vulnerability in the Oracle Secure Backup web interface allows remote attackers to execute arbitrary...

9CVSS7.2AI score0.64694EPSS
Exploits13
saint
saint
•added 2009/09/01 12:0 a.m.•25 views

Oracle Secure Backup property_box.php type parameter command execution

Added: 09/01/2009 CVE: CVE-2009-1978 BID: 35678 OSVDB: 55904 Background Oracle Secure Backup is a centralized tape backup management solution for Oracle Database. Problem A command execution vulnerability in the Oracle Secure Backup web interface allows remote attackers to execute arbitrary...

9CVSS7.2AI score0.64694EPSS
Exploits13
saint
saint
•added 2009/09/01 12:0 a.m.•44 views

Oracle Secure Backup property_box.php type parameter command execution

Added: 09/01/2009 CVE: CVE-2009-1978 BID: 35678 OSVDB: 55904 Background Oracle Secure Backup is a centralized tape backup management solution for Oracle Database. Problem A command execution vulnerability in the Oracle Secure Backup web interface allows remote attackers to execute arbitrary...

9CVSS7.2AI score0.64694EPSS
Exploits13
saint
saint
•added 2009/09/01 12:0 a.m.•30 views

Oracle Secure Backup property_box.php type parameter command execution

Added: 09/01/2009 CVE: CVE-2009-1978 BID: 35678 OSVDB: 55904 Background Oracle Secure Backup is a centralized tape backup management solution for Oracle Database. Problem A command execution vulnerability in the Oracle Secure Backup web interface allows remote attackers to execute arbitrary...

9CVSS7.2AI score0.64694EPSS
Exploits13
saint
saint
•added 2009/08/27 12:0 a.m.•64 views

Microsoft Office Web Components DataSourceControl ActiveX Control memory allocation

Added: 08/27/2009 CVE: CVE-2009-0562 BID: 35990 OSVDB: 56914 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A heap memory corruption vulnerability in the OWC10.DataSourceControl ActiveX control allows command execution when a use...

9.3CVSS6.5AI score0.2565EPSS
Exploits4
saint
saint
•added 2009/08/27 12:0 a.m.•40 views

Microsoft Office Web Components DataSourceControl ActiveX Control memory allocation

Added: 08/27/2009 CVE: CVE-2009-0562 BID: 35990 OSVDB: 56914 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A heap memory corruption vulnerability in the OWC10.DataSourceControl ActiveX control allows command execution when a use...

9.3CVSS6.5AI score0.2565EPSS
Exploits4
saint
saint
•added 2009/08/27 12:0 a.m.•27 views

Microsoft Office Web Components DataSourceControl ActiveX Control memory allocation

Added: 08/27/2009 CVE: CVE-2009-0562 BID: 35990 OSVDB: 56914 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A heap memory corruption vulnerability in the OWC10.DataSourceControl ActiveX control allows command execution when a use...

9.3CVSS6.5AI score0.2565EPSS
Exploits4
saint
saint
•added 2009/08/27 12:0 a.m.•41 views

Microsoft Office Web Components DataSourceControl ActiveX Control memory allocation

Added: 08/27/2009 CVE: CVE-2009-0562 BID: 35990 OSVDB: 56914 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A heap memory corruption vulnerability in the OWC10.DataSourceControl ActiveX control allows command execution when a use...

9.3CVSS6.5AI score0.2565EPSS
Exploits4
saint
saint
•added 2009/08/26 12:0 a.m.•42 views

Adobe Flash Player authplay.dll vulnerability

Added: 08/26/2009 CVE: CVE-2009-1862 BID: 35759 OSVDB: 56282 Background Adobe Flash Player is a cross-platform browser plug-in providing visual enhancements for web pages. Problem A vulnerability in authplay.dll in Adobe Flash Player allows command execution when a user opens a specially crafted...

9.3CVSS7.8AI score0.25006EPSS
Exploits5
saint
saint
•added 2009/08/26 12:0 a.m.•50 views

Adobe Flash Player authplay.dll vulnerability

Added: 08/26/2009 CVE: CVE-2009-1862 BID: 35759 OSVDB: 56282 Background Adobe Flash Player is a cross-platform browser plug-in providing visual enhancements for web pages. Problem A vulnerability in authplay.dll in Adobe Flash Player allows command execution when a user opens a specially crafted...

9.3CVSS7.8AI score0.25006EPSS
Exploits5
saint
saint
•added 2009/08/26 12:0 a.m.•42 views

Adobe Flash Player authplay.dll vulnerability

Added: 08/26/2009 CVE: CVE-2009-1862 BID: 35759 OSVDB: 56282 Background Adobe Flash Player is a cross-platform browser plug-in providing visual enhancements for web pages. Problem A vulnerability in authplay.dll in Adobe Flash Player allows command execution when a user opens a specially crafted...

9.3CVSS7.8AI score0.25006EPSS
Exploits5
saint
saint
•added 2009/08/26 12:0 a.m.•45 views

Adobe Flash Player authplay.dll vulnerability

Added: 08/26/2009 CVE: CVE-2009-1862 BID: 35759 OSVDB: 56282 Background Adobe Flash Player is a cross-platform browser plug-in providing visual enhancements for web pages. Problem A vulnerability in authplay.dll in Adobe Flash Player allows command execution when a user opens a specially crafted...

9.3CVSS7.8AI score0.25006EPSS
Exploits5
saint
saint
•added 2009/08/24 12:0 a.m.•35 views

Visual Studio Active Template Library object type mismatch vulnerability

Added: 08/24/2009 CVE: CVE-2009-2494 BID: 35982 OSVDB: 56910 Background Microsoft Visual Studio is a product to assist with software development in the Windows operating system. Visual Studio uses Microsoft Active Template Library ATL, which is a set of template-based C++ classes, to help simplif...

10CVSS9.6AI score0.42329EPSS
Exploits6
saint
saint
•added 2009/08/24 12:0 a.m.•35 views

Microsoft Office Web Components OWC.Spreadsheet BorderAround vulnerability

Added: 08/24/2009 CVE: CVE-2009-2496 BID: 35991 OSVDB: 56915 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A heap corruption vulnerability in the OWC10.Spreadsheet ActiveX control allows command execution when a user opens a web...

9.3CVSS6.6AI score0.29462EPSS
Exploits4
saint
saint
•added 2009/08/24 12:0 a.m.•34 views

Microsoft Office Web Components OWC.Spreadsheet BorderAround vulnerability

Added: 08/24/2009 CVE: CVE-2009-2496 BID: 35991 OSVDB: 56915 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A heap corruption vulnerability in the OWC10.Spreadsheet ActiveX control allows command execution when a user opens a web...

9.3CVSS6.6AI score0.29462EPSS
Exploits4
saint
saint
•added 2009/08/24 12:0 a.m.•42 views

Visual Studio Active Template Library object type mismatch vulnerability

Added: 08/24/2009 CVE: CVE-2009-2494 BID: 35982 OSVDB: 56910 Background Microsoft Visual Studio is a product to assist with software development in the Windows operating system. Visual Studio uses Microsoft Active Template Library ATL, which is a set of template-based C++ classes, to help simplif...

10CVSS9.6AI score0.42329EPSS
Exploits6
saint
saint
•added 2009/08/24 12:0 a.m.•50 views

Microsoft Office Web Components OWC.Spreadsheet BorderAround vulnerability

Added: 08/24/2009 CVE: CVE-2009-2496 BID: 35991 OSVDB: 56915 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A heap corruption vulnerability in the OWC10.Spreadsheet ActiveX control allows command execution when a user opens a web...

9.3CVSS6.6AI score0.29462EPSS
Exploits4
saint
saint
•added 2009/08/24 12:0 a.m.•29 views

Microsoft Office Web Components OWC.Spreadsheet BorderAround vulnerability

Added: 08/24/2009 CVE: CVE-2009-2496 BID: 35991 OSVDB: 56915 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A heap corruption vulnerability in the OWC10.Spreadsheet ActiveX control allows command execution when a user opens a web...

9.3CVSS6.6AI score0.29462EPSS
Exploits4
saint
saint
•added 2009/08/24 12:0 a.m.•36 views

Visual Studio Active Template Library object type mismatch vulnerability

Added: 08/24/2009 CVE: CVE-2009-2494 BID: 35982 OSVDB: 56910 Background Microsoft Visual Studio is a product to assist with software development in the Windows operating system. Visual Studio uses Microsoft Active Template Library ATL, which is a set of template-based C++ classes, to help simplif...

10CVSS9.5AI score0.42329EPSS
Exploits6
saint
saint
•added 2009/08/24 12:0 a.m.•30 views

Visual Studio Active Template Library object type mismatch vulnerability

Added: 08/24/2009 CVE: CVE-2009-2494 BID: 35982 OSVDB: 56910 Background Microsoft Visual Studio is a product to assist with software development in the Windows operating system. Visual Studio uses Microsoft Active Template Library ATL, which is a set of template-based C++ classes, to help simplif...

10CVSS6.3AI score0.42329EPSS
Exploits6
saint
saint
•added 2009/08/14 12:0 a.m.•98 views

Microsoft Office Web Components OWC.Spreadsheet.9 HTMLURL property overflow

Added: 08/14/2009 CVE: CVE-2009-1534 BID: 35992 OSVDB: 56916 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A buffer overflow vulnerability in the OWC.Spreadsheet.9 ActiveX control allows command execution when a user loads a web...

9.3CVSS6.8AI score0.5161EPSS
Exploits8
saint
saint
•added 2009/08/14 12:0 a.m.•90 views

Microsoft Office Web Components OWC.Spreadsheet.9 HTMLURL property overflow

Added: 08/14/2009 CVE: CVE-2009-1534 BID: 35992 OSVDB: 56916 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A buffer overflow vulnerability in the OWC.Spreadsheet.9 ActiveX control allows command execution when a user loads a web...

9.3CVSS6.8AI score0.5161EPSS
Exploits8
saint
saint
•added 2009/08/14 12:0 a.m.•124 views

Microsoft Office Web Components OWC.Spreadsheet.9 HTMLURL property overflow

Added: 08/14/2009 CVE: CVE-2009-1534 BID: 35992 OSVDB: 56916 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A buffer overflow vulnerability in the OWC.Spreadsheet.9 ActiveX control allows command execution when a user loads a web...

9.3CVSS6.8AI score0.5161EPSS
Exploits8
saint
saint
•added 2009/08/14 12:0 a.m.•58 views

Microsoft Office Web Components OWC.Spreadsheet.9 HTMLURL property overflow

Added: 08/14/2009 CVE: CVE-2009-1534 BID: 35992 OSVDB: 56916 Background Microsoft Office Web Components OWC are a group of OLE classes implemented as ActiveX controls. Problem A buffer overflow vulnerability in the OWC.Spreadsheet.9 ActiveX control allows command execution when a user loads a web...

9.3CVSS6.8AI score0.5161EPSS
Exploits8
saint
saint
•added 2009/08/12 12:0 a.m.•92 views

Windows Telnet credential reflection

Added: 08/12/2009 CVE: CVE-2009-1930 BID: 35993 OSVDB: 56904 Background Microsoft Windows operating systems come with a telnet service. This service prompts a user to provide a login name and password. Following successful authentication, the server displays a shell prompt, allowing the user to r...

10CVSS9.6AI score0.41388EPSS
Exploits5
Total number of security vulnerabilities4305