Lucene search
K
SecurityvulnsRecent

47153 matches found

securityvulns
securityvulns
•added 2012/05/31 12:0 a.m.•21 views

Cisco IOS XR DoS

DoS on malcrafted packets...

2.2AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
•added 2012/05/31 12:0 a.m.•69 views

FreeBSD Security Advisory FreeBSD-SA-12:02.crypt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-12:02.crypt Security Advisory The FreeBSD Project Topic: Incorrect crypt hashing Category: core Module: libcrypt Announced: 2012-05-30 Credits: Rubin Xu, Joseph...

4.3CVSS8.4AI score0.05734EPSS
Exploits0
securityvulns
securityvulns
•added 2012/05/31 12:0 a.m.•48 views

FreeBSD crypt() implementation vulnerability

8-bit characters are ignored during DES hash calculation...

4.3CVSS2.5AI score0.05734EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
•added 2012/05/31 12:0 a.m.•71 views

AST-2012-008: Skinny Channel Driver Remote Crash Vulnerability

Asterisk Project Security Advisory - AST-2012-008 Product Asterisk Summary Skinny Channel Driver Remote Crash Vulnerability Nature of Advisory Denial of Service Susceptibility Remote authenticated sessions Severity Minor Exploits Known No Reported On May 22, 2012 Reported By Christoph Hebeisen...

4CVSS0.3AI score0.02143EPSS
Exploits0
securityvulns
securityvulns
•added 2012/05/31 12:0 a.m.•43 views

Asterisk security vulnerabilities

DoS conditions on Skinny and IAX2 parsing...

4CVSS3.1AI score0.02333EPSS
Exploits0References2Affected Software1
securityvulns
securityvulns
•added 2012/05/24 12:0 a.m.•49 views

[security bulletin] HPSBOV02780 SSRT100766 rev.1 - HP OpenVMS ACMELOGIN, Local Unauthorized

Access and Increased Privileges -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03333494 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID:...

6.9CVSS0.5AI score0.00391EPSS
Exploits0
securityvulns
securityvulns
•added 2012/05/24 12:0 a.m.•31 views

sudo protection bypass

It's possible to bypass IP limitations...

7.2CVSS2.1AI score0.00399EPSS
Exploits0Affected Software1
securityvulns
securityvulns
•added 2012/05/24 12:0 a.m.•71 views

The story of the Linux kernel 3.x...

The story of the Linux kernel 3.x... In 2005 everybody was exited about possibility of bypass ASLR on all Linux 2.6 kernels because of the new concept called VDSO Virtual Dynamic Shared Object. More information about this story can be found at the following link:...

7AI score
Exploits0
securityvulns
securityvulns
•added 2012/05/24 12:0 a.m.•211 views

PHP CGI Argument Injection Remote Exploit V0.3 - PHP Version

?php www.bugreport.ir Title: PHP CGI Argument Injection Remote Exploit V0.3 - PHP Version Vendor: http://www.php.net Vulnerable Version: PHP up to version 5.3.12 and 5.4.2 Exploitation: Remote Original Advisory: http://eindbazen.net/2012/05/php-cgi-advisory-cve-2012-1823/ Original Exploit URL:...

7.5CVSS10AI score0.99998EPSS
Exploits42
securityvulns
securityvulns
•added 2012/05/24 12:0 a.m.•36 views

[SECURITY] [DSA 2476-1] pidgin-otr security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2476-1 [email protected] http://www.debian.org/security/ Jonathan Wiltshire May 19, 2012 http://www.debian.org/security/faq -...

7.5CVSS2.1AI score0.03562EPSS
Exploits0
securityvulns
securityvulns
•added 2012/05/24 12:0 a.m.•35 views

Pidgin otr plugin format string vulnerability

No description provided...

7.5CVSS1.4AI score0.03562EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
•added 2012/05/24 12:0 a.m.•28 views

FlashPeak SlimBrowser buffer overflow

Buffer overflow via TITLE tag...

3.7AI score
Exploits0References1
securityvulns
securityvulns
•added 2012/05/24 12:0 a.m.•75 views

[PRE-SA-2012-03] Linux kernel: Buffer overflow in HFS plus filesystem

PRE-CERT Security Advisory ========================== Advisory: PRE-SA-2012-03 Released on: 10 May 2012 Affected product: Linux Kernel 3.3.x = 3.3.4 2.6.x = 2.6.35.13 Impact: code execution / privilege escalation Origin: HFS plus file system Credit: Timo Warns PRESENSE Technologies GmbH CVE...

7.8CVSS0.7AI score0.04952EPSS
Exploits2
securityvulns
securityvulns
•added 2012/05/24 12:0 a.m.•46 views

Linux kernel multiple security vulnerabilities

DoS conditions, protection bypass, buffer overflow...

7.2CVSS3.2AI score0.00418EPSS
Exploits3References3Affected Software1
securityvulns
securityvulns
•added 2012/05/24 12:0 a.m.•34 views

HP OpenVMS ACMELOGIN privilege escalation

No description provided...

6.9CVSS2AI score0.00391EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
•added 2012/05/24 12:0 a.m.•50 views

FlashPeak SlimBrowser TITLE Denial Of Service Vulnerability

Title: FlashPeak SlimBrowser TITLE Denial Of Service Vulnerability Software : FlashPeak SlimBrowser Software Version : 6.0.1.38 Vendor: FlashPeak Inc.www.flashpeak.com/ Vulnerability Published : 2012-05-16 Vulnerability Update Time : Status : Impact : MediumCVSS2 Base : 5.0,...

0.6AI score
Exploits0
securityvulns
securityvulns
•added 2012/05/24 12:0 a.m.•251 views

PHP multiple security vulnerabilities

DoS conditions, code execution, SQL injections...

7.5CVSS2.3AI score0.99998EPSS
Exploits48References3Affected Software1
securityvulns
securityvulns
•added 2012/05/21 12:0 a.m.•67 views

CVE-2012-2149 OpenOffice.org memory overwrite vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 CVE-2012-2149 OpenOffice.org memory overwrite vulnerability Reference: http://www.openoffice.org/security/cves/CVE-2012-2149.html Severity: Important Vendor: The Apache Software Foundation Versions Affected: OpenOffice.org 3.3 and 3.4 Beta, on all...

7.5CVSS0.8AI score0.13391EPSS
Exploits2
securityvulns
securityvulns
•added 2012/05/21 12:0 a.m.•54 views

CVE-2012-1149 OpenOffice.org integer overflow error in vclmi.dll module when allocating memory for an embedded image object

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 CVE-2012-1149 OpenOffice.org integer overflow error in vclmi.dll module when allocating memory for an embedded image object Reference: http://www.openoffice.org/security/cves/CVE-2012-1149.html Severity: Important Vendor: The Apache Software...

7.5CVSS1.6AI score0.13734EPSS
Exploits0
securityvulns
securityvulns
•added 2012/05/21 12:0 a.m.•619 views

OpenOffice multiple security vulnerabilities

Multiple memory corruptions...

7.5CVSS2.1AI score0.13734EPSS
Exploits4References4Affected Software2
securityvulns
securityvulns
•added 2012/05/21 12:0 a.m.•42 views

OpenSSL DoS

Invalid memory dereference in CBC mode...

6.8CVSS1.8AI score0.28154EPSS
Exploits0Affected Software1
securityvulns
securityvulns
•added 2012/05/21 12:0 a.m.•48 views

SEC Consult SA-20120518 :: Memory overwrite vulnerability in libwpd (OpenOffice.org) - CVE-2012-2149

SEC Consult Vulnerability Lab Security Advisory 20120518-0 ======================================================================= title: libwpd WPXContentListener::closeTableRow memory overwrite product: OpenOffice.org vulnerable version: 3.3.0/3.4 Beta 1 and probably earlier versions fixed...

7.5CVSS0.1AI score0.13391EPSS
Exploits2
securityvulns
securityvulns
•added 2012/05/21 12:0 a.m.•71 views

Apple Quicktime Memory Corruption (CVE-2012-0671)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Qualys Vulnerability & Malware Research Labs VMRL http://www.qualys.com http://www.dissect.pe Memory corruption when Apple Quicktime parsers .pct file CVE-2012-0671 INTRODUCTION Apple Quicktime does not properly parse .pct media files, which causes a...

9.3CVSS0.1AI score0.04844EPSS
Exploits1
securityvulns
securityvulns
•added 2012/05/21 12:0 a.m.•60 views

CVE-2012-2334 Vulnerabilities related to malformed Powerpoint files in OpenOffice.org 3.3.0

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 CVE-2012-2334 Vulnerabilities related to malformed Powerpoint files in OpenOffice.org 3.3.0 Reference: http://www.openoffice.org/security/cves/CVE-2012-2334.html Severity: Important Vendor: The Apache Software Foundation Versions Affected:...

6.8CVSS1.1AI score0.13044EPSS
Exploits2
securityvulns
securityvulns
•added 2012/05/21 12:0 a.m.•87 views

APPLE-SA-2012-05-15-1 QuickTime 7.7.2

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2012-05-15-1 QuickTime 7.7.2 QuickTime 7.7.2 is now available and addresses the following: QuickTime Available for: Windows 7, Vista, XP SP2 or later Impact: Visiting a maliciously crafted website may lead to an unexpected application...

9.3CVSS1.4AI score0.28623EPSS
Exploits24
securityvulns
securityvulns
•added 2012/05/21 12:0 a.m.•69 views

[SECURITY] [DSA-2471-1] ffmpeg security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2471-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 13, 2012 http://www.debian.org/security/faq -...

7.5CVSS2AI score0.04686EPSS
Exploits3
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•39 views

libtasn1 / GnuTLS memory corruption

Memory corruption on some malformed values...

5CVSS2.1AI score0.0446EPSS
Exploits1References1Affected Software2
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•83 views

[USN-1439-1] Horizon vulnerabilities

========================================================================== Ubuntu Security Notice USN-1439-1 May 07, 2012 horizon vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

6.8CVSS0.1AI score0.02415EPSS
Exploits1
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•45 views

Adobe Photoshop CS5.1 U3D.8BI Library Collada Asset Elements Stack Based Buffer Overflow Vulnerability

Adobe Photoshop CS5.1 U3D.8BI Library Collada Asset Elements Stack Based Buffer Overflow Vulnerability download url of a test version: http://www.adobe.com/cfusion/tdrc/index.cfm?product=photoshop Note: Found three weeks before the CS6 release. I could not reproduce against CS6, cannot say if the...

Exploits0
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•29 views

Adobe Photoshop security vulnerabilities

Memory corruptions on files processing...

9.3CVSS2.3AI score0.13436EPSS
Exploits0References3
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•31 views

Apache POI memory exhaustion

Memory exhaustion on Microsoft Word documents processing...

5CVSS2.6AI score0.07503EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•55 views

[SECURITY] [DSA 2468-1] libjakarta-poi-java security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2468-1 [email protected] http://www.debian.org/security/ Florian Weimer May 09, 2012 http://www.debian.org/security/faq -...

5CVSS1.8AI score0.07503EPSS
Exploits0
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•90 views

[USN-1436-1] Libtasn1 vulnerability

========================================================================== Ubuntu Security Notice USN-1436-1 May 02, 2012 libtasn1-3 vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

5CVSS0.7AI score0.0446EPSS
Exploits1
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•50 views

CORE-2012-0123 - SAP Netweaver Dispatcher Multiple Vulnerabilities

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ SAP Netweaver Dispatcher Multiple Vulnerabilities 1. Advisory Information Title: SAP Netweaver Dispatcher Multiple Vulnerabilities Advisory ID: CORE-2012-0123 Advisory URL:...

7.6CVSS0.1AI score0.04216EPSS
Exploits16
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•39 views

SAP NetWeaver multiple security vulnerabilities

Multiple vulnerabilities in Dispatcher service...

7.6CVSS1.9AI score0.04216EPSS
Exploits16References1Affected Software1
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•34 views

Nova DoS

Resources exhaustion via oversized username. Resources exhaustion by quota limitatations bypass...

4CVSS4.7AI score0.02073EPSS
Exploits1References2Affected Software1
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•63 views

chevreto_XSS_file_existence_enum_vulns

======================================================================================== Vulnerable Software: Chevereto upload script Downloaded from: http://code.google.com/p/chevereto/downloads/list http://code.google.com/p/chevereto/downloads/detail?name=cheveretonb1.91.zip&can=2&q= Official...

6.5AI score
Exploits0
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•58 views

ESA-2012-019: EMC Documentum Information Rights Management Multiple Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2012-019: EMC Documentum Information Rights Management Multiple Vulnerabilities. EMC Identifier: ESA-2012-019 CVE Identifiers: CVE-2012-2276, CVE-2012-2277 Severity Rating: CVSS v2 Base Score: 6.3 AV:N/AC:M/Au:S/C:N/I:N/A:C Affected products: EMC...

7.8CVSS0.8AI score0.09071EPSS
Exploits1
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•77 views

[SECURITY] [DSA 2469-1] linux-2.6 security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------------------------- Debian Security Advisory DSA-2469-1 [email protected] http://www.debian.org/security/ Dann Frazier May 10, 2012 http://www.debian.org/security/faq -...

7.2CVSS7.4AI score0.00468EPSS
Exploits3
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•100 views

Drupal 7.14 <= Full Path Disclosure Vulnerability

Drupal 7.14 = Full Path Disclosure Vulnerability Discovered by: Jean Pascal Pereira [email protected] About Drupal: "Drupal is an open source content management platform powering millions of websites and applications. It's built, used, and supported by an active and diverse community of people...

6.7AI score
Exploits0
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•21 views

EMC Documentum Information Rights Management Server DoS

Few different DoS conditions...

7.8CVSS1.2AI score0.09071EPSS
Exploits1References1Affected Software1
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•67 views

[USN-1438-1] Nova vulnerability

========================================================================== Ubuntu Security Notice USN-1438-1 May 03, 2012 nova vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu...

3.5CVSS0.6AI score0.0148EPSS
Exploits0
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•90 views

[SECURITY] [DSA 2466-1] rails security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2466-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst May 09, 2012 http://www.debian.org/security/faq -...

4.3CVSS1.6AI score0.02504EPSS
Exploits0
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•122 views

[ MDVSA-2012:071 ] php

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:071 http://www.mandriva.com/security/ Package : php Date : May 10, 2012 Affected: Enterprise Server 5.0 Problem Description: This is a bugfix and security advisory that upgrades php to the latest 5.3.13...

10CVSS8.8AI score0.99998EPSS
Exploits83
securityvulns
securityvulns
•added 2012/05/14 12:0 a.m.•45 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

6.8CVSS1.6AI score0.02504EPSS
Exploits1References4Affected Software3
securityvulns
securityvulns
•added 2012/05/10 12:0 a.m.•70 views

[security bulletin] HPSBMU02770 SSRT100848 rev.1 - HP Insight Management Agents for Windows Server, Remote Cross Site Request Forgery (CSRF), Cross Site Scripting (XSS), URL Redirection, Unauthorized Modification, Denial of Service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03301267 Version: 1 HPSBMU02770 SSRT100848 rev.1 - HP Insight Management Agents for Windows Server, Remote Cross Site Request Forgery CSRF, Cross Site Scripting XSS, URL Redirection, Unauthorized...

8.3CVSS0.5AI score0.04333EPSS
Exploits0
securityvulns
securityvulns
•added 2012/05/10 12:0 a.m.•58 views

[security bulletin] HPSBMU02772 SSRT100603 rev.1 - HP System Health Application and Command Line Utilities for Linux, Remote Execution of Arbitrary Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03301871 Version: 1 HPSBMU02772 SSRT100603 rev.1 - HP System Health Application and Command Line Utilities for Linux, Remote Execution of Arbitrary Code NOTICE: The information in this Security...

7.5CVSS0.9AI score0.08329EPSS
Exploits0
securityvulns
securityvulns
•added 2012/05/10 12:0 a.m.•60 views

[ MDVSA-2012:067 ] samba

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:067 http://www.mandriva.com/security/ Package : samba Date : May 1, 2012 Affected: 2010.1, 2011. Problem Description: A vulnerability has been found and corrected in samba: Security checks were incorrectly...

6.5CVSS8.6AI score0.04803EPSS
Exploits0
securityvulns
securityvulns
•added 2012/05/10 12:0 a.m.•35 views

HP Insight Management Agents multiple security vulnerabilities

Cross Site Request Forgery CSRF, Cross Site Scripting XSS, URL Redirection, Unauthorized Modification, Denial of Service DoS...

8.3CVSS1.2AI score0.04333EPSS
Exploits0References1
securityvulns
securityvulns
•added 2012/05/10 12:0 a.m.•18 views

Lan Messenger DoS

Crash on network packet parsing...

3.4AI score
Exploits0References1Affected Software1
Total number of security vulnerabilities47153