Lucene search
K

4305 matches found

Saint
Saint
•added 2006/05/08 12:0 a.m.•244 views

Apache chunked encoding buffer overflow

Added: 05/08/2006 CVE: CVE-2002-0392 BID: 5033 OSVDB: 838 Background Apache web servers support chunked encoding, which is used by a web client to send data to the server in parts, or chunks. Problem A flaw in the calculation of the size of chunked encoding leads to a buffer overflow, allowing...

7.5CVSS6.6AI score0.95027EPSS
Exploits8
Saint
Saint
•added 2006/05/04 12:0 a.m.•41 views

Outlook Express NNTP LIST buffer overflow

Added: 05/04/2006 CVE: CVE-2005-1213 BID: 13951 OSVDB: 17306 Background Outlook Express is a free e-mail client which is included in Windows operating systems. Problem A buffer overflow in Outlook Express allows command execution when processing responses from NNTP servers to LIST commands...

7.5CVSS6.8AI score0.73961EPSS
Exploits8
Saint
Saint
•added 2006/05/04 12:0 a.m.•31 views

Windows Metafile rendering buffer overflow

Added: 05/04/2006 CVE: CVE-2004-0209 BID: 11375 OSVDB: 10692 Background A Windows Metafile image is a 16-bit metafile format that can contain both vector information and bitmap information. Problem A buffer overflow in the Windows Graphics Rendering Engine allows command execution when a malforme...

10CVSS6.6AI score0.62054EPSS
Exploits8
Saint
Saint
•added 2006/05/04 12:0 a.m.•30 views

Outlook Express NNTP LIST buffer overflow

Added: 05/04/2006 CVE: CVE-2005-1213 BID: 13951 OSVDB: 17306 Background Outlook Express is a free e-mail client which is included in Windows operating systems. Problem A buffer overflow in Outlook Express allows command execution when processing responses from NNTP servers to LIST commands...

7.5CVSS6.9AI score0.73961EPSS
Exploits8
Saint
Saint
•added 2006/05/04 12:0 a.m.•69 views

Windows Metafile rendering buffer overflow

Added: 05/04/2006 CVE: CVE-2004-0209 BID: 11375 OSVDB: 10692 Background A Windows Metafile image is a 16-bit metafile format that can contain both vector information and bitmap information. Problem A buffer overflow in the Windows Graphics Rendering Engine allows command execution when a malforme...

10CVSS6.6AI score0.62054EPSS
Exploits8
Saint
Saint
•added 2006/05/04 12:0 a.m.•24 views

Outlook Express NNTP LIST buffer overflow

Added: 05/04/2006 CVE: CVE-2005-1213 BID: 13951 OSVDB: 17306 Background Outlook Express is a free e-mail client which is included in Windows operating systems. Problem A buffer overflow in Outlook Express allows command execution when processing responses from NNTP servers to LIST commands...

7.5CVSS6.8AI score0.73961EPSS
Exploits8
Saint
Saint
•added 2006/05/04 12:0 a.m.•28 views

Outlook Express NNTP LIST buffer overflow

Added: 05/04/2006 CVE: CVE-2005-1213 BID: 13951 OSVDB: 17306 Background Outlook Express is a free e-mail client which is included in Windows operating systems. Problem A buffer overflow in Outlook Express allows command execution when processing responses from NNTP servers to LIST commands...

7.5CVSS6.9AI score0.73961EPSS
Exploits8
Saint
Saint
•added 2006/05/04 12:0 a.m.•32 views

Windows Metafile rendering buffer overflow

Added: 05/04/2006 CVE: CVE-2004-0209 BID: 11375 OSVDB: 10692 Background A Windows Metafile image is a 16-bit metafile format that can contain both vector information and bitmap information. Problem A buffer overflow in the Windows Graphics Rendering Engine allows command execution when a malforme...

10CVSS6.6AI score0.62054EPSS
Exploits8
Saint
Saint
•added 2006/05/04 12:0 a.m.•60 views

Windows Metafile rendering buffer overflow

Added: 05/04/2006 CVE: CVE-2004-0209 BID: 11375 OSVDB: 10692 Background A Windows Metafile image is a 16-bit metafile format that can contain both vector information and bitmap information. Problem A buffer overflow in the Windows Graphics Rendering Engine allows command execution when a malforme...

10CVSS6.7AI score0.62054EPSS
Exploits8
Saint
Saint
•added 2006/05/03 12:0 a.m.•24 views

Internet Explorer IFRAME buffer overflow

Added: 05/03/2006 CVE: CVE-2004-1050 BID: 11515 OSVDB: 11337 Background Internet Explorer is an HTML web browser which comes by default on Microsoft operating systems. Problem A buffer overflow when processing the name attribute in an IFRAME tag allows command execution when a malformed web page ...

10CVSS6.6AI score0.67061EPSS
Exploits4
Saint
Saint
•added 2006/05/03 12:0 a.m.•30 views

Internet Explorer IFRAME buffer overflow

Added: 05/03/2006 CVE: CVE-2004-1050 BID: 11515 OSVDB: 11337 Background Internet Explorer is an HTML web browser which comes by default on Microsoft operating systems. Problem A buffer overflow when processing the name attribute in an IFRAME tag allows command execution when a malformed web page ...

10CVSS6.6AI score0.67061EPSS
Exploits4
Saint
Saint
•added 2006/05/03 12:0 a.m.•33 views

Internet Explorer IFRAME buffer overflow

Added: 05/03/2006 CVE: CVE-2004-1050 BID: 11515 OSVDB: 11337 Background Internet Explorer is an HTML web browser which comes by default on Microsoft operating systems. Problem A buffer overflow when processing the name attribute in an IFRAME tag allows command execution when a malformed web page ...

10CVSS6.6AI score0.67061EPSS
Exploits4
Saint
Saint
•added 2006/05/03 12:0 a.m.•35 views

Internet Explorer IFRAME buffer overflow

Added: 05/03/2006 CVE: CVE-2004-1050 BID: 11515 OSVDB: 11337 Background Internet Explorer is an HTML web browser which comes by default on Microsoft operating systems. Problem A buffer overflow when processing the name attribute in an IFRAME tag allows command execution when a malformed web page ...

10CVSS6.6AI score0.67061EPSS
Exploits4
Saint
Saint
•added 2006/04/27 12:0 a.m.•34 views

Windows Cursor and Icon handling vulnerability

Added: 04/27/2006 CVE: CVE-2004-1049 BID: 12233 OSVDB: 12842 Background The LoadImage API in Microsoft Windows provides functions for loading cursors, animated cursors, and icons. Problem An integer overflow in the LoadImage API allows command execution when a user opens a specially crafted curso...

5.1CVSS6.6AI score0.29743EPSS
Exploits13
Saint
Saint
•added 2006/04/27 12:0 a.m.•93 views

Windows Cursor and Icon handling vulnerability

Added: 04/27/2006 CVE: CVE-2004-1049 BID: 12233 OSVDB: 12842 Background The LoadImage API in Microsoft Windows provides functions for loading cursors, animated cursors, and icons. Problem An integer overflow in the LoadImage API allows command execution when a user opens a specially crafted curso...

5.1CVSS6.6AI score0.29743EPSS
Exploits13
Saint
Saint
•added 2006/04/27 12:0 a.m.•35 views

Windows Cursor and Icon handling vulnerability

Added: 04/27/2006 CVE: CVE-2004-1049 BID: 12233 OSVDB: 12842 Background The LoadImage API in Microsoft Windows provides functions for loading cursors, animated cursors, and icons. Problem An integer overflow in the LoadImage API allows command execution when a user opens a specially crafted curso...

5.1CVSS6.6AI score0.29743EPSS
Exploits13
Saint
Saint
•added 2006/04/27 12:0 a.m.•47 views

Windows Cursor and Icon handling vulnerability

Added: 04/27/2006 CVE: CVE-2004-1049 BID: 12233 OSVDB: 12842 Background The LoadImage API in Microsoft Windows provides functions for loading cursors, animated cursors, and icons. Problem An integer overflow in the LoadImage API allows command execution when a user opens a specially crafted curso...

5.1CVSS6.6AI score0.29743EPSS
Exploits13
Saint
Saint
•added 2006/04/25 12:0 a.m.•51 views

Internet Explorer DHTML object vulnerability

Added: 04/25/2006 CVE: CVE-2005-0553 BID: 13120 OSVDB: 15465 Background Dynamic HTML DHTML allows the creation of interactive web pages. Problem Race conditions in various DHTML methods could allow command execution when a specially crafted web page is loaded in Internet Explorer. Resolution Appl...

5.1CVSS7.5AI score0.50604EPSS
Exploits5
Saint
Saint
•added 2006/04/25 12:0 a.m.•34 views

Internet Explorer DHTML object vulnerability

Added: 04/25/2006 CVE: CVE-2005-0553 BID: 13120 OSVDB: 15465 Background Dynamic HTML DHTML allows the creation of interactive web pages. Problem Race conditions in various DHTML methods could allow command execution when a specially crafted web page is loaded in Internet Explorer. Resolution Appl...

5.1CVSS7.5AI score0.50604EPSS
Exploits5
Saint
Saint
•added 2006/04/25 12:0 a.m.•34 views

Internet Explorer DHTML object vulnerability

Added: 04/25/2006 CVE: CVE-2005-0553 BID: 13120 OSVDB: 15465 Background Dynamic HTML DHTML allows the creation of interactive web pages. Problem Race conditions in various DHTML methods could allow command execution when a specially crafted web page is loaded in Internet Explorer. Resolution Appl...

5.1CVSS7.5AI score0.50604EPSS
Exploits5
Saint
Saint
•added 2006/04/25 12:0 a.m.•71 views

Internet Explorer DHTML object vulnerability

Added: 04/25/2006 CVE: CVE-2005-0553 BID: 13120 OSVDB: 15465 Background Dynamic HTML DHTML allows the creation of interactive web pages. Problem Race conditions in various DHTML methods could allow command execution when a specially crafted web page is loaded in Internet Explorer. Resolution Appl...

5.1CVSS7.5AI score0.50604EPSS
Exploits5
Saint
Saint
•added 2006/04/20 12:0 a.m.•30 views

Novell GroupWise Messenger Accept-Language buffer overflow

Added: 04/20/2006 CVE: CVE-2006-0992 BID: 17503 OSVDB: 24617 Background Novell GroupWise includes the Messaging Agent which offers an HTTP service on port 8300/TCP. Problem A buffer overflow in the Messaging Agent allows remote attackers to execute commands by sending a long, specially crafted...

10CVSS7.3AI score0.72833EPSS
Exploits12
Saint
Saint
•added 2006/04/20 12:0 a.m.•40 views

Novell GroupWise Messenger Accept-Language buffer overflow

Added: 04/20/2006 CVE: CVE-2006-0992 BID: 17503 OSVDB: 24617 Background Novell GroupWise includes the Messaging Agent which offers an HTTP service on port 8300/TCP. Problem A buffer overflow in the Messaging Agent allows remote attackers to execute commands by sending a long, specially crafted...

10CVSS7.3AI score0.72833EPSS
Exploits12
Saint
Saint
•added 2006/04/20 12:0 a.m.•34 views

Novell GroupWise Messenger Accept-Language buffer overflow

Added: 04/20/2006 CVE: CVE-2006-0992 BID: 17503 OSVDB: 24617 Background Novell GroupWise includes the Messaging Agent which offers an HTTP service on port 8300/TCP. Problem A buffer overflow in the Messaging Agent allows remote attackers to execute commands by sending a long, specially crafted...

10CVSS7.3AI score0.72833EPSS
Exploits12
Saint
Saint
•added 2006/04/20 12:0 a.m.•30 views

Novell GroupWise Messenger Accept-Language buffer overflow

Added: 04/20/2006 CVE: CVE-2006-0992 BID: 17503 OSVDB: 24617 Background Novell GroupWise includes the Messaging Agent which offers an HTTP service on port 8300/TCP. Problem A buffer overflow in the Messaging Agent allows remote attackers to execute commands by sending a long, specially crafted...

10CVSS7.3AI score0.72833EPSS
Exploits12
Saint
Saint
•added 2006/04/19 12:0 a.m.•36 views

BrightStor ARCserve Backup discovery service buffer overflow

Added: 04/19/2006 CVE: CVE-2005-2535 BID: 12536 OSVDB: 13814 Background The BrightStor ARCserve Backup server includes a discovery service which listens on ports 41523/TCP and 41524/UDP. Problem A buffer overflow in the discovery service allows remote attackers to execute arbitrary commands...

7.5CVSS7.7AI score0.80866EPSS
Exploits8
Saint
Saint
•added 2006/04/19 12:0 a.m.•27 views

BrightStor ARCserve Backup discovery service buffer overflow

Added: 04/19/2006 CVE: CVE-2005-2535 BID: 12536 OSVDB: 13814 Background The BrightStor ARCserve Backup server includes a discovery service which listens on ports 41523/TCP and 41524/UDP. Problem A buffer overflow in the discovery service allows remote attackers to execute arbitrary commands...

7.5CVSS7.7AI score0.80866EPSS
Exploits8
Saint
Saint
•added 2006/04/19 12:0 a.m.•33 views

BrightStor ARCserve Backup discovery service buffer overflow

Added: 04/19/2006 CVE: CVE-2005-2535 BID: 12536 OSVDB: 13814 Background The BrightStor ARCserve Backup server includes a discovery service which listens on ports 41523/TCP and 41524/UDP. Problem A buffer overflow in the discovery service allows remote attackers to execute arbitrary commands...

7.5CVSS7.7AI score0.80866EPSS
Exploits8
Saint
Saint
•added 2006/04/19 12:0 a.m.•39 views

BrightStor ARCserve Backup discovery service buffer overflow

Added: 04/19/2006 CVE: CVE-2005-2535 BID: 12536 OSVDB: 13814 Background The BrightStor ARCserve Backup server includes a discovery service which listens on ports 41523/TCP and 41524/UDP. Problem A buffer overflow in the discovery service allows remote attackers to execute arbitrary commands...

7.5CVSS7.7AI score0.80866EPSS
Exploits8
Saint
Saint
•added 2006/04/14 12:0 a.m.•183 views

VERITAS NetBackup vnetd bpspsserver buffer overflow

Added: 04/14/2006 CVE: CVE-2006-0991 BID: 17264 OSVDB: 24170 Background VERITAS NetBackup is a backup and recovery solution for multiple platforms. Problem A buffer overflow in bpspsserver allows a remote attacker to execute arbitrary commands by sending a specially crafted Request Service messag...

7.1CVSS7.8AI score0.10972EPSS
Exploits4
Saint
Saint
•added 2006/04/14 12:0 a.m.•64 views

VERITAS NetBackup vnetd bpspsserver buffer overflow

Added: 04/14/2006 CVE: CVE-2006-0991 BID: 17264 OSVDB: 24170 Background VERITAS NetBackup is a backup and recovery solution for multiple platforms. Problem A buffer overflow in bpspsserver allows a remote attacker to execute arbitrary commands by sending a specially crafted Request Service messag...

7.1CVSS7.8AI score0.10972EPSS
Exploits4
Saint
Saint
•added 2006/04/14 12:0 a.m.•35 views

VERITAS NetBackup vnetd bpspsserver buffer overflow

Added: 04/14/2006 CVE: CVE-2006-0991 BID: 17264 OSVDB: 24170 Background VERITAS NetBackup is a backup and recovery solution for multiple platforms. Problem A buffer overflow in bpspsserver allows a remote attacker to execute arbitrary commands by sending a specially crafted Request Service messag...

7.1CVSS7.8AI score0.10972EPSS
Exploits4
Saint
Saint
•added 2006/04/14 12:0 a.m.•50 views

VERITAS NetBackup vnetd bpspsserver buffer overflow

Added: 04/14/2006 CVE: CVE-2006-0991 BID: 17264 OSVDB: 24170 Background VERITAS NetBackup is a backup and recovery solution for multiple platforms. Problem A buffer overflow in bpspsserver allows a remote attacker to execute arbitrary commands by sending a specially crafted Request Service messag...

7.1CVSS7.8AI score0.10972EPSS
Exploits4
Saint
Saint
•added 2006/04/07 12:0 a.m.•79 views

VERITAS Backup Exec Agent Browser hostname buffer overflow

Added: 04/07/2006 CVE: CVE-2004-1172 BID: 11974 OSVDB: 12418 Background VERITAS Backup Exec for Windows is a data backup and recovery solution. Problem A buffer overflow in the VERITAS Backup Exec Agent Browser allows a remote attacker to execute commands by sending a long, specially crafted...

10CVSS7.3AI score0.81791EPSS
Exploits7
Saint
Saint
•added 2006/04/07 12:0 a.m.•65 views

VERITAS Backup Exec Agent Browser hostname buffer overflow

Added: 04/07/2006 CVE: CVE-2004-1172 BID: 11974 OSVDB: 12418 Background VERITAS Backup Exec for Windows is a data backup and recovery solution. Problem A buffer overflow in the VERITAS Backup Exec Agent Browser allows a remote attacker to execute commands by sending a long, specially crafted...

10CVSS7.2AI score0.81791EPSS
Exploits7
Saint
Saint
•added 2006/04/07 12:0 a.m.•21 views

VERITAS Backup Exec Agent Browser hostname buffer overflow

Added: 04/07/2006 CVE: CVE-2004-1172 BID: 11974 OSVDB: 12418 Background VERITAS Backup Exec for Windows is a data backup and recovery solution. Problem A buffer overflow in the VERITAS Backup Exec Agent Browser allows a remote attacker to execute commands by sending a long, specially crafted...

10CVSS7.2AI score0.81791EPSS
Exploits7
Saint
Saint
•added 2006/04/07 12:0 a.m.•37 views

VERITAS Backup Exec Agent Browser hostname buffer overflow

Added: 04/07/2006 CVE: CVE-2004-1172 BID: 11974 OSVDB: 12418 Background VERITAS Backup Exec for Windows is a data backup and recovery solution. Problem A buffer overflow in the VERITAS Backup Exec Agent Browser allows a remote attacker to execute commands by sending a long, specially crafted...

10CVSS7.2AI score0.81791EPSS
Exploits7
Saint
Saint
•added 2006/04/06 12:0 a.m.•21 views

TWiki revision control shell command injection

Added: 04/06/2006 CVE: CVE-2005-2877 BID: 14834 OSVDB: 19403 Background TWiki is a web-based collaboration platform written in PERL. Problem The revision control function in TWiki does not sufficiently check the rev parameter before using it in a shell command call. This allows remote attackers t...

7.5CVSS7.4AI score0.71104EPSS
Exploits8
Saint
Saint
•added 2006/04/06 12:0 a.m.•30 views

TWiki Search.pm shell command injection

Added: 04/06/2006 CVE: CVE-2004-1037 BID: 11674 OSVDB: 11714 Background TWiki is a web-based collaboration platform written in PERL. Problem The Search.pm module does not sufficiently check search strings for illegal characters, allowing remote attackers to execute commands using search strings...

10CVSS6.9AI score0.61668EPSS
Exploits8
Saint
Saint
•added 2006/04/06 12:0 a.m.•56 views

TWiki revision control shell command injection

Added: 04/06/2006 CVE: CVE-2005-2877 BID: 14834 OSVDB: 19403 Background TWiki is a web-based collaboration platform written in PERL. Problem The revision control function in TWiki does not sufficiently check the rev parameter before using it in a shell command call. This allows remote attackers t...

7.5CVSS7.5AI score0.71104EPSS
Exploits8
Saint
Saint
•added 2006/04/06 12:0 a.m.•53 views

TWiki Search.pm shell command injection

Added: 04/06/2006 CVE: CVE-2004-1037 BID: 11674 OSVDB: 11714 Background TWiki is a web-based collaboration platform written in PERL. Problem The Search.pm module does not sufficiently check search strings for illegal characters, allowing remote attackers to execute commands using search strings...

10CVSS6.9AI score0.61668EPSS
Exploits8
Saint
Saint
•added 2006/04/06 12:0 a.m.•24 views

TWiki revision control shell command injection

Added: 04/06/2006 CVE: CVE-2005-2877 BID: 14834 OSVDB: 19403 Background TWiki is a web-based collaboration platform written in PERL. Problem The revision control function in TWiki does not sufficiently check the rev parameter before using it in a shell command call. This allows remote attackers t...

7.5CVSS7.4AI score0.71104EPSS
Exploits8
Saint
Saint
•added 2006/04/06 12:0 a.m.•39 views

TWiki Search.pm shell command injection

Added: 04/06/2006 CVE: CVE-2004-1037 BID: 11674 OSVDB: 11714 Background TWiki is a web-based collaboration platform written in PERL. Problem The Search.pm module does not sufficiently check search strings for illegal characters, allowing remote attackers to execute commands using search strings...

10CVSS6.9AI score0.61668EPSS
Exploits8
Saint
Saint
•added 2006/04/06 12:0 a.m.•27 views

TWiki revision control shell command injection

Added: 04/06/2006 CVE: CVE-2005-2877 BID: 14834 OSVDB: 19403 Background TWiki is a web-based collaboration platform written in PERL. Problem The revision control function in TWiki does not sufficiently check the rev parameter before using it in a shell command call. This allows remote attackers t...

7.5CVSS7.4AI score0.71104EPSS
Exploits8
Saint
Saint
•added 2006/04/06 12:0 a.m.•45 views

TWiki Search.pm shell command injection

Added: 04/06/2006 CVE: CVE-2004-1037 BID: 11674 OSVDB: 11714 Background TWiki is a web-based collaboration platform written in PERL. Problem The Search.pm module does not sufficiently check search strings for illegal characters, allowing remote attackers to execute commands using search strings...

10CVSS6.9AI score0.61668EPSS
Exploits8
Saint
Saint
•added 2006/04/05 12:0 a.m.•32 views

cachefsd heap overflow

Added: 04/05/2006 CVE: CVE-2002-0033 BID: 4674 OSVDB: 779 Background cachefsd is an RPC service which supports local caching of Network File Systems NFS, thereby improving performance on filesystems mounted from an NFS server. Problem A heap overflow in cachefsd allows remote command execution...

10CVSS7AI score0.23078EPSS
Exploits4
Saint
Saint
•added 2006/04/05 12:0 a.m.•34 views

cachefsd heap overflow

Added: 04/05/2006 CVE: CVE-2002-0033 BID: 4674 OSVDB: 779 Background cachefsd is an RPC service which supports local caching of Network File Systems NFS, thereby improving performance on filesystems mounted from an NFS server. Problem A heap overflow in cachefsd allows remote command execution...

10CVSS7AI score0.23078EPSS
Exploits4
Saint
Saint
•added 2006/04/05 12:0 a.m.•42 views

cachefsd heap overflow

Added: 04/05/2006 CVE: CVE-2002-0033 BID: 4674 OSVDB: 779 Background cachefsd is an RPC service which supports local caching of Network File Systems NFS, thereby improving performance on filesystems mounted from an NFS server. Problem A heap overflow in cachefsd allows remote command execution...

10CVSS7AI score0.23078EPSS
Exploits4
Saint
Saint
•added 2006/04/05 12:0 a.m.•24 views

cachefsd heap overflow

Added: 04/05/2006 CVE: CVE-2002-0033 BID: 4674 OSVDB: 779 Background cachefsd is an RPC service which supports local caching of Network File Systems NFS, thereby improving performance on filesystems mounted from an NFS server. Problem A heap overflow in cachefsd allows remote command execution...

10CVSS7AI score0.23078EPSS
Exploits4
Saint
Saint
•added 2006/04/05 12:0 a.m.•28 views

VERITAS NetBackup VMD argument parsing vulnerability

Added: 04/05/2006 CVE: CVE-2006-0989 BID: 17264 OSVDB: 24172 Background VERITAS NetBackup is a backup and recovery solution for multiple platforms. Problem Volume Manager Daemon VMD is affected by a buffer overflow vulnerability when parsing arguments to various commands. This vulnerability allow...

9CVSS7.2AI score0.07927EPSS
Exploits4
Total number of security vulnerabilities4305