Lucene search
K
SecurityvulnsRecent

47153 matches found

securityvulns
securityvulns
added 2012/10/15 12:0 a.m.34 views

VLC code execution

Code execution on PNG files parsing...

3.7AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2012/10/15 12:0 a.m.21 views

BigPond 3G21WB security vulnerabilities

Hard coded credentials, commands injection...

1.8AI score
Exploits0References1
securityvulns
securityvulns
added 2012/10/15 12:0 a.m.46 views

Hard-coded credentials and command-injection vulnerabilities on BigPond 3G21WB

Hard-coded credentials and command-injection vulnerabilities on BigPond 3G21WB ============================================================================== ADVISORY INFORMATION Title: Hard-coded credentials and command-injection vulnerabilities on BigPond 3G21WB Discovery date: 17/09/2012 Relea...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2012/10/15 12:0 a.m.25 views

VLC Player 2.0.3 <= ReadAV Arbitrary Code Execution (Update)

!/usr/bin/perl VLC Player 2.0.3 = ReadAV Arbitrary Code Execution Author: Jean Pascal Pereira [email protected] Vendor URI: http://www.videolan.org/vlc/ Vendor Description: VLC is a free and open source cross-platform multimedia player and framework that plays most multimedia files as well as DVD...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2012/10/15 12:0 a.m.37 views

Cisco ASA / FWSM multiple security vulnerabilities

Buffer overflow, multiple DoS conditions...

9CVSS2.6AI score0.04047EPSS
Exploits0Affected Software3
securityvulns
securityvulns
added 2012/10/15 12:0 a.m.47 views

VMSA-2012-0014 VMware vCenter Operations, CapacityIQ, and Movie Decoder security updates

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ----------------------------------------------------------------------- VMware Security Advisory Advisory ID: VMSA-2012-0014 Synopsis: VMware vCenter Operations, CapacityIQ, and Movie Decoder security updates Issue date: 2012-10-04 Updated on:...

6.9CVSS6.1AI score0.02802EPSS
Exploits0
securityvulns
securityvulns
added 2012/10/15 12:0 a.m.354 views

ESA-2012-025: EMC NetWorker Module for Microsoft Applications (NMM) Multiple Vulnerabilities

ESA-2012-025.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2012-025: EMC NetWorker Module for Microsoft Applications NMM Multiple Vulnerabilities. EMC Identifier: ESA-2012-025 CVE Identifier: CVE-2012-2284,CVE-2012-2290 Severity Rating: See below for individual severity scores EMC...

9.3CVSS1.5AI score0.03626EPSS
Exploits0
securityvulns
securityvulns
added 2012/10/15 12:0 a.m.25 views

Microsoft Excel code execution

Code execution on .xls files parsing...

4.1AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2012/10/15 12:0 a.m.32 views

Apache Cloudstack default account

Default account with known password...

10CVSS3.3AI score0.07771EPSS
Exploits0References1
securityvulns
securityvulns
added 2012/10/15 12:0 a.m.34 views

VMWare applications security vulnerabilities

VMware Movie Decoder code execution, vCenter Operations crossite scripting, vCenter CapacityIQ directory travesal...

6.9CVSS3AI score0.02802EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2012/10/15 12:0 a.m.59 views

[CVE-2012-4501] CloudStack configuration vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 CVE-2012-4501: Apache CloudStack configuration vulnerability Severity: Critical Vendors: The Apache Software Foundation Citrix, Inc. Versions Affected: As no official releases have been made, this does not affect any official Apache CloudStack...

10CVSS1.2AI score0.07771EPSS
Exploits0
securityvulns
securityvulns
added 2012/10/15 12:0 a.m.89 views

[USN-1603-1] Ruby vulnerabilities

========================================================================== Ubuntu Security Notice USN-1603-1 October 10, 2012 ruby1.8 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

5CVSS0.6AI score0.02619EPSS
Exploits1
securityvulns
securityvulns
added 2012/10/15 12:0 a.m.42 views

Ruby restrictions bypass

Untainted strings modification is possible...

5CVSS2.6AI score0.02619EPSS
Exploits1References1Affected Software1
securityvulns
securityvulns
added 2012/10/12 12:0 a.m.67 views

[ MDVSA-2012:162 ] bind

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:162 http://www.mandriva.com/security/ Package : bind Date : October 10, 2012 Affected: 2011., Enterprise Server 5.0 Problem Description: A vulnerability was discovered and corrected in bind: A certain...

7.8CVSS7.5AI score0.34196EPSS
Exploits0
securityvulns
securityvulns
added 2012/10/12 12:0 a.m.46 views

bind DoS

A problem in RBT algorythm implementation causes hang on specific combination of records...

7.8CVSS2.2AI score0.34196EPSS
Exploits0References1
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.63 views

[PRE-SA-2012-07] hostapd: Missing EAP-TLS message length validation

PRE-CERT Security Advisory ========================== Advisory: PRE-SA-2012-07 Released on: 8 October 2012 Affected product: Hostapd 0.6 - 1.0 Impact: denial of service Origin: specially crafted EAP-TLS messages CVSS Base Score: 7.8 Impact Subscore: 6.9 Exploitability Subscore: 10 CVSS Vector:...

4.3CVSS0.6AI score0.0422EPSS
Exploits0
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.54 views

BufferOverflow Vulnerability on Logica HotScan SWIFT Alliance Access Interface

-------------------------------------------------------------------------------- | BufferOverflow Vulnerability on Logica HotScan SWIFT Alliance Access Interface -------------------------------------------------------------------------------- Summary ======= Hotscan Listener interface is prone to...

4.3CVSS2AI score0.0131EPSS
Exploits0
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.50 views

Fortigate UTM WAF Appliance - Multiple Web Vulnerabilities

Title: ====== Fortigate UTM WAF Appliance - Multiple Web Vulnerabilities Date: ===== 2012-09-06 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=557 VL-ID: ===== 557 Common Vulnerability Scoring System: ==================================== 5 Introduction: ============= T...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.38 views

Fortigate UTM WAF Appliance multiple security vulnerabilities

Privilege escalation, crossite scripting...

3.1AI score
Exploits0References3
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.50 views

Microsoft Windows kernel integer overflow

Kernel integer overflow leads to privilege escalation...

7.2CVSS4.1AI score0.01816EPSS
Exploits1Affected Software1
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.90 views

Fortigate UTM WAF Appliance - Cross Site Vulnerabilities

Title: ====== Fortigate UTM WAF Appliance - Cross Site Vulnerabilities Date: ===== 2012-09-07 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=559 VL-ID: ===== 559 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: ============= T...

6.7AI score
Exploits0
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.26 views

Logica HotScan buffer overflow

Buffer overflow on SWIFT Alliance Access Interface request parsing...

4.3CVSS6AI score0.0131EPSS
Exploits0References1
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.20 views

GTA UTM Firewall multiple security vulnerabilities

Multiple crossite scripting possibilities...

2.1AI score
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.26 views

soapbox protection bypass

It's possible to bypass protection by launching second application instance...

2.7AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.19 views

Endpoint Protector multiple security vulnerabilities

Multiple crossite scripting possibilities...

1.7AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.30 views

Key Systems Electronic Key Lockers unauthorized access

Unauthentication port TCP/1010 service access...

5.3AI score
Exploits0References1
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.32 views

hostapd buffer overflow

Buffer overflow during EAP authentication...

4.3CVSS2.9AI score0.0422EPSS
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.31 views

bacula restriction bypass

ACLs are not enforced properly...

4CVSS2.7AI score0.02676EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.35 views

Microsoft SQL Server crossite scripting

SQL Server Report Manager crossite scripting...

4.3CVSS1.2AI score0.16295EPSS
Exploits0Affected Software1
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.29 views

[SECURITY] [DSA 2558-1] bacula security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2558-1 [email protected] http://www.debian.org/security/ Raphael Geissert October 08, 2012 http://www.debian.org/security/faq -...

4CVSS1.7AI score0.02676EPSS
Exploits0
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.47 views

[SECURITY] [DSA 2557-1] hostapd security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2557-1 [email protected] http://www.debian.org/security/ Nico Golde October 08, 2012 http://www.debian.org/security/faq -...

4.3CVSS1.1AI score0.0422EPSS
Exploits0
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.32 views

WingFTP DoS

Crash on ZIP archive requests processing...

6.8CVSS1.7AI score0.02195EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.64 views

GTA UTM Firewall GB 6.0.3 - Multiple Web Vulnerabilities

Title: ====== GTA UTM Firewall GB 6.0.3 - Multiple Web Vulnerabilities Date: ===== 2012-09-10 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=579 VL-ID: ===== 579 Common Vulnerability Scoring System: ==================================== 4 Introduction: ============= The...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.60 views

WingFTP Server Denial of Service Vulnerability

-------------------------------------------------------------------------------- | WingFTP Server Denial of Service Vulnerability| -------------------------------------------------------------------------------- Summary ======= WingFTP server is prone to a remote denial-of-service vulnerability...

6.8CVSS2AI score0.02195EPSS
Exploits0
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.55 views

soapbox Local Root / Privilege Escalation Vulnerability

----------------------------------- soapbox 0.3.1 = Local Root Exploit ----------------------------------- Vendor URI: http://dag.wieers.com/home-made/soapbox/ Credit: Jean Pascal Pereira [email protected] Description: "Soapbox allows to restrict processes to write only to those places you want...

Exploits0
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.53 views

Endpoint Protector v4.0.4.0 - Multiple Web Vulnerabilities

Title: ====== Endpoint Protector v4.0.4.0 - Multiple Web Vulnerabilities Date: ===== 2012-10-01 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=571 VL-ID: ===== 571 Common Vulnerability Scoring System: ==================================== 5 Introduction: =============...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.34 views

Microsoft Windows kerberos server DoS

NULL pointer dereference on authentication request...

5CVSS3.2AI score0.27476EPSS
Exploits0Affected Software1
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.61 views

GTA UTM Firewall GB 6.0.3 - Multiple Web Vulnerabilities

Title: ====== GTA UTM Firewall GB 6.0.3 - Multiple Web Vulnerabilities Date: ===== 2012-09-30 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=579 VL-ID: ===== 579 Common Vulnerability Scoring System: ==================================== 4 Introduction: ============= The...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.53 views

Key Systems Electronic Key Lockers command injection and weak authentication vulnerabilities

OVERVIEW Key Systems Electronic Key Lockers contain a command injection vulnerability which may allow a remote unauthenticated attacker to inject commands into the electronic key locker. Key Systems Electronic Key Lockers also contains weak authentication which could allow an attacker...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2012/10/10 12:0 a.m.59 views

Fortigate UTM WAF Appliance - Multiple Web Vulnerabilities

Title: ====== Fortigate UTM WAF Appliance - Multiple Web Vulnerabilities Date: ===== 2012-09-06 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=557 VL-ID: ===== 557 Common Vulnerability Scoring System: ==================================== 5 Introduction: ============= T...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2012/10/09 12:0 a.m.24 views

Microsoft Works memory corruption

Memory corruption on Word files parsing...

9.3CVSS3.6AI score0.22166EPSS
Exploits0Affected Software1
securityvulns
securityvulns
added 2012/10/09 12:0 a.m.47 views

Microsoft Fast Search Server vulnerabilities

Multiple vulnerabilities in Oracle Outside In built-in libraries...

2.1CVSS2.1AI score0.01182EPSS
Exploits0Affected Software1
securityvulns
securityvulns
added 2012/10/09 12:0 a.m.42 views

Multiple Microsoft web applications crossite scripting

Insufficient HTML sanitization...

4.3CVSS0.7AI score0.28477EPSS
Exploits2Affected Software8
securityvulns
securityvulns
added 2012/10/09 12:0 a.m.46 views

Microsoft Word security vulnerabilities

Memory corruption, use-after-free...

9.3CVSS2.4AI score0.68323EPSS
Exploits2Affected Software3
securityvulns
securityvulns
added 2012/10/07 12:0 a.m.70 views

Secunia Research: Novell GroupWise iCalendar Date/Time Parsing Denial of Service

====================================================================== Secunia Research 17/09/2012 - Novell GroupWise iCalendar Date/Time Parsing Denial of Service - ====================================================================== Table of Contents Affected...

4.3CVSS0.5AI score0.03694EPSS
Exploits0
securityvulns
securityvulns
added 2012/10/07 12:0 a.m.30 views

Novell Groupwise DoS

Crash on iCal parsing...

4.3CVSS2.4AI score0.03694EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2012/10/05 12:0 a.m.99 views

[security bulletin] HPSBMU02815 SSRT100715 rev.3 - HP SiteScope SOAP Security Issues, Remote Disclosure of Information, Remote Code Execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03489683 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03489683 Version: 3 HPSBMU02815...

10CVSS0.5AI score0.6022EPSS
Exploits6
securityvulns
securityvulns
added 2012/10/05 12:0 a.m.45 views

[security bulletin] HPSBMU02813 SSRT100712 rev.1 - HP Operations Orchestration, Remote Execution of Arbitrary Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03490339 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03490339 Version: 1 HPSBMU02813...

10CVSS0.7AI score0.09921EPSS
Exploits0
securityvulns
securityvulns
added 2012/10/05 12:0 a.m.66 views

[security bulletin] HPSBMU02817 SSRT100950 rev.1 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Disclosure of Information

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03507708 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03507708 Version: 1 HPSBMU02817...

5CVSS0.5AI score0.04225EPSS
Exploits0
securityvulns
securityvulns
added 2012/10/05 12:0 a.m.37 views

RSA SecurID Authentication Agent / RSA Authentication Client protection bypass

Under some condition user may login with windows credentials only...

8.5CVSS5AI score0.02661EPSS
Exploits0References1Affected Software2
Total number of security vulnerabilities47153