Securityvulns - Page 49 of Securityvulns Vulnerabilities List | Vulners.com

SecurityvulnsRecent

Recent Most viewed

47153 matches found

securityvulns•added 2014/09/10 12:0 a.m.•55 views

ppp privilege escalation

Access to privileged options is possible...

7.5CVSS3.4AI score0.01484EPSS

Exploits0References1

securityvulns•added 2014/09/03 12:0 a.m.•111 views

[SECURITY] [DSA 3016-1] lua5.2 security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3016-1 [email protected] http://www.debian.org/security/ Florian Weimer September 01, 2014 http://www.debian.org/security/faq -...

5CVSS1.9AI score0.10626EPSS

securityvulns•added 2014/09/03 12:0 a.m.•62 views

[ MDVSA-2014:167 ] file

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:167 http://www.mandriva.com/en/support/security/ Package : file Date : September 2, 2014 Affected: Business Server 1.0 Problem Description: Updated file packages fix security vulnerability: A flaw was found ...

4.3CVSS7.7AI score0.30214EPSS

securityvulns•added 2014/09/03 12:0 a.m.•273 views

Lua buffer overflow

Buffer overflow on function call with large number of arguments...

5CVSS3.6AI score0.10626EPSS

Exploits1References1Affected Software1

securityvulns•added 2014/09/03 12:0 a.m.•40 views

file utility memory corruption

Memory corruption CDF format parsing...

4.3CVSS3.7AI score0.30214EPSS

Exploits2References2Affected Software1

securityvulns•added 2014/09/03 12:0 a.m.•80 views

[USN-2332-1] Linux kernel vulnerabilities

========================================================================== Ubuntu Security Notice USN-2332-1 September 02, 2014 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

6.6CVSS0.3AI score0.14138EPSS

securityvulns•added 2014/09/02 12:0 a.m.•68 views

SEC Consult SA-20140828-0 :: F5 BIG-IP Reflected Cross-Site Scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SEC Consult Vulnerability Lab Security Advisory 20140828-0 ======================================================================= title: Reflected Cross-Site Scripting product: F5 BIG-IP vulnerable version: = 11.5.1 fixed version: 11.6.0 impact: Medi...

4.3CVSS6AI score0.00408EPSS

securityvulns•added 2014/09/02 12:0 a.m.•35 views

Mathematica10.0.0 on Linux /tmp/MathLink vulnerability

The problem reported for Mathematica is present still at version 10.0.0 for the GUI interface the command-line interface may be "safe". Cheers, Paul Szabo [email protected] http://www.maths.usyd.edu.au/u/psz/ School of Mathematics and Statistics University of Sydney Australia ---...

securityvulns•added 2014/09/02 12:0 a.m.•280 views

Mathematica symbolic links vulnerability

Symbolic links vulnerability on temporary files creation...

Exploits0References5Affected Software1

securityvulns•added 2014/09/02 12:0 a.m.•79 views

[SECURITY] [DSA 3014-1] squid3 security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3014-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso August 28, 2014 http://www.debian.org/security/faq -...

5CVSS1.9AI score0.8285EPSS

securityvulns•added 2014/09/02 12:0 a.m.•49 views

squid DoS

DoS via Range: request...

5CVSS2.7AI score0.8285EPSS

Exploits0References1Affected Software1

securityvulns•added 2014/09/02 12:0 a.m.•31 views

F5 BIG-IP crossite scripting

Crossite scripting via POST reuqest...

4.3CVSS2.4AI score0.00408EPSS

Exploits2References1Affected Software1

securityvulns•added 2014/09/01 12:0 a.m.•56 views

[USN-2328-1] GNU C Library vulnerability

========================================================================== Ubuntu Security Notice USN-2328-1 August 29, 2014 eglibc vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

7.5CVSS0.1AI score0.21511EPSS

securityvulns•added 2014/09/01 12:0 a.m.•38 views

GNU glibc buffer overflow

Off-by-one in gconvtranslitfind...

7.5CVSS3.6AI score0.21511EPSS

Exploits6References1Affected Software1

securityvulns•added 2014/08/26 12:0 a.m.•106 views

Pro Chat Rooms v8.2.0 - Multiple Vulnerabilities

Exploit Title: Pro Chat Rooms v8.2.0 - Multiple Vulnerabilities Google Dork: intitle:"Powered by Pro Chat Rooms" Date: 5 August 2014 Exploit Author: Mike Manzotti @ Dionach Ltd Vendor Homepage: http://prochatrooms.com Software Link: http://prochatrooms.com/software.php Version: v8.2.0 Tested on:...

securityvulns•added 2014/08/26 12:0 a.m.•40 views

Node Browserify RCE vuln (<= 4.2.0)

Hello, Discovered an RCE vuln in Browserify =4.2.0. Maintainer patched upstream just 4 hours after responsible disclosure yesterday, now fixed as of 4.2.1. Summary and POC found here: http://iops.io/blog/browserify-rce-vulnerability/ Cal...

securityvulns•added 2014/08/26 12:0 a.m.•29 views

HP Service Manager multiple security vulnerabilities

Crossite scripting, unauthorized access, privilege escalation...

10CVSS2AI score0.3703EPSS

Exploits0References1Affected Software1

securityvulns•added 2014/08/26 12:0 a.m.•52 views

ESA-2014-071: RSA Archer® GRC Platform Multiple Vulnerabilities

ESA-2014-071.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2014-071: RSA Archer® GRC Platform Multiple Vulnerabilities EMC Identifier: ESA-2014-071 CVE Identifier: CVE-2014-2517, CVE-2014-2505, CVE-2014-0640, CVE-2014-0641 Severity Rating: CVSS v2 Base Score: See below for individual scor...

6.8CVSS0.3AI score0.00498EPSS

securityvulns•added 2014/08/26 12:0 a.m.•101 views

ArcGIS for Server Vulnerability Disclosure

Product: ArcGIS for Server Vendor: ESRI Vulnerable Version: 10.1.1 Tested Version: 10.1.1 Vendor Notification: June 19, 2014 Public Disclosure: August 15, 2014 Vulnerability Type: Cross-Site Scripting CWE-79 CVE Reference: CVE-2014-5121 Risk Level: Medium CVSSv2 Base Score: 4.3...

5.8CVSS2.3AI score0.00317EPSS

securityvulns•added 2014/08/26 12:0 a.m.•29 views

XXE Injection in HP Release Control

Hello! I'll give you additional information concerning advisory HP Release Control Authenticated XXE Exploit http://1337day.com/exploit/description/22267. Three different vulnerabilities were used in this exploit for successful attack. For my attack it's needed to use only one vulnerability exact...

securityvulns•added 2014/08/26 12:0 a.m.•42 views

BlackBerry Z10 authentication bypass

Authentication bypass via SMB...

6.1CVSS4.2AI score0.00287EPSS

Exploits3References1

securityvulns•added 2014/08/26 12:0 a.m.•36 views

[SECURITY] [DSA 2999-1] drupal7 security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2999-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso August 09, 2014 http://www.debian.org/security/faq -...

securityvulns•added 2014/08/26 12:0 a.m.•72 views

MITKRB5-SA-2014-001 Buffer overrun in kadmind with LDAP backend

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 MITKRB5-SA-2014-001 MIT krb5 Security Advisory 2014-001 Original release: 2014-08-07 Last update: 2014-08-07 Topic: Buffer overrun in kadmind with LDAP backend CVSSv2 Vector: AV:N/AC:M/Au:S/C:C/I:C/A:C/E:POC/RL:OF/RC:C CVSSv2 Base Score: 8.5 Access...

8.5CVSS7.6AI score0.11304EPSS

securityvulns•added 2014/08/26 12:0 a.m.•63 views

[SECURITY] [DSA 2997-1] reportbug security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2997-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso August 05, 2014 http://www.debian.org/security/faq -...

6.8CVSS1.8AI score0.0068EPSS

securityvulns•added 2014/08/26 12:0 a.m.•86 views

[USN-2311-1] pyCADF vulnerability

========================================================================== Ubuntu Security Notice USN-2311-1 August 11, 2014 python-pycadf vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives...

5CVSS0.5AI score0.0075EPSS

securityvulns•added 2014/08/26 12:0 a.m.•75 views

ESA-2014-079: EMC Documentum Content Server Multiple Vulnerabilities

ESA-2014-079.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2014-079: EMC Documentum Content Server Multiple Vulnerabilities EMC Identifier: ESA-2014-079 CVE Identifier: See below for individual CVEs Severity Rating: CVSS v2 Base Score: See below for individual CVSS score for each CVE...

8.5CVSS1AI score0.92751EPSS

securityvulns•added 2014/08/26 12:0 a.m.•120 views

[SECURITY] [DSA 2970-1] cacti security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2970-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff June 29, 2014 http://www.debian.org/security/faq -...

7.5CVSS1.5AI score0.01868EPSS

securityvulns•added 2014/08/26 12:0 a.m.•38 views

BF and XSS vulnerabilities in Zyxel P660RT2 EE

Hello 3APA3A! These are Brute Force and Cross-Site Scripting vulnerabilities in Zyxel P660RT2 EE ADSL Router. ------------------------- Affected products: ------------------------- Vulnerable is the next model: Zyxel P660RT2 EE. ZyNOS Firmware Version: V3.40 AXN.1. This model with other firmware...

securityvulns•added 2014/08/26 12:0 a.m.•48 views

MEHR Automation System Arbitrary File Download Vulnerability(persian portal)

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Title : MEHR Automation System Arbitrary File Download Vulnerabilitypersian portal Author : alieye vendor : http://shakhesrayane.ir/ Contact : [email protected] Risk : High Class: Remote Google Dork: intext:"[email protected]"...

securityvulns•added 2014/08/26 12:0 a.m.•58 views

CVE-2014-5035 - Opendaylight Vulnerable to Local and Remote File Inclusion in the Netconf (TCP) Service

Title =================== Opendaylight Vulnerable to Local and Remote File Inclusion in the Netconf TCP Service Summary =================== Opendaylight www.opendaylight.com is vulnerable to Local and Remote File Inclusion in the Netconf TCP Service via an External Entity Injection XXE...

6.8CVSS1.8AI score0.00777EPSS

securityvulns•added 2014/08/26 12:0 a.m.•43 views

XSS and CSRF vulnerabilities in Zyxel P660RT2 EE

Hello 3APA3A! These are Cross-Site Scripting and Cross-Site Request Forgery vulnerabilities in Zyxel P660RT2 EE ADSL Router. ------------------------- Affected products: ------------------------- Vulnerable is the next model: Zyxel P660RT2 EE. ZyNOS Firmware Version: V3.40 AXN.1. This model with...

securityvulns•added 2014/08/26 12:0 a.m.•29 views

ESET application privilege escalation

Privilege escalation via EpFwNdis.sys driver...

6.9CVSS3.6AI score0.00062EPSS

Exploits2References1

securityvulns•added 2014/08/26 12:0 a.m.•47 views

MIT krb5 kadmind buffer overflow

Buffer overflow via LDAP...

8.5CVSS4.5AI score0.11304EPSS

Exploits0References1Affected Software1

securityvulns•added 2014/08/26 12:0 a.m.•191 views

LSE Leading Security Experts GmbH - LSE-2014-07-13 - Granding Grand MA 300 - Weak Pin Verification

=== LSE Leading Security Experts GmbH - Security Advisory 2014-07-13 === Grand MA 300 Fingerprint Reader - Weak Pin Verification ------------------------------------------------------------------------ Affected Versions ================= Grand MA 300/ID with firmware 6.60 Issue Overview...

7.8AI score0.46437EPSS

securityvulns•added 2014/08/26 12:0 a.m.•17 views

HP Release Control XXE vulnerability

Few SSI possibilities...

Exploits0References1Affected Software1

securityvulns•added 2014/08/26 12:0 a.m.•139 views

Barracuda Networks Web Security Flex v4.1 - Persistent Vulnerabilities (BNSEC-699)

Document Title: =============== Barracuda Networks Web Security Flex v4.1 - Persistent Vulnerabilities BNSEC-699 References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=750 BARRACUDA NETWORK SECURITY ID: BNSEC-699 Release Date: ============= 2014-08-22...

securityvulns•added 2014/08/26 12:0 a.m.•75 views

[CVE-2014-5335] CSRF in Innovaphone PBX

Title: Innovaphone PBX Admin-GUI CSRF Impact: High CVSS2 Score: 7.8 AV:N/AC:M/Au:S/C:P/I:C/A:C/E:F/RL:U/RC:C Announced: August 21, 2014 Reporter: Rainer Giedat NSIDE ATTACK LOGIC GmbH, www.nsideattacklogic.de Products: Innovaphone PBX Administration GUI Affected Versions: all known versions teste...

6.8CVSS6.7AI score0.00585EPSS

securityvulns•added 2014/08/26 12:0 a.m.•33 views

IBM Maximo crossite scripting

Few different vulnerabilities...

3.5CVSS2.4AI score0.00301EPSS

Exploits0References1Affected Software1

securityvulns•added 2014/08/26 12:0 a.m.•31 views

ESA-2014-067: EMC Documentum D2 Privilege Escalation Vulnerability

ESA-2014-067.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2014-067: EMC Documentum D2 Privilege Escalation Vulnerability EMC Identifier: ESA-2014-067 CVE Identifier: CVE-2014-2515 Severity: CVSSv2 Base Score: 8.5 AV:N/AC:M/Au:S/C:C/I:C/A:C Affected products: • EMC Documentum D2 3.1 and...

8.5CVSS0.8AI score0.00958EPSS

securityvulns•added 2014/08/26 12:0 a.m.•24 views

Kolibri WebServer buffer overflow

Buffer overlow on oversized POST request...

Exploits0References1Affected Software1

securityvulns•added 2014/08/26 12:0 a.m.•91 views

SEC Consult SA-20140805-0 :: Multiple vulnerabilities in Readsoft Invoice Processing and Process Director

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SEC Consult Vulnerability Lab Security Advisory 20140805-0 ======================================================================= title: Multiple vulnerabilities product: Readsoft Invoice Processing / Process Director vulnerable version: Invoice...

securityvulns•added 2014/08/26 12:0 a.m.•24 views

ESA-2014-059: EMC Documentum Multiple Cross-Site Scripting Vulnerabilities

ESA-2014-059.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2014-059: EMC Documentum Multiple Cross-Site Scripting Vulnerabilities EMC Identifier: ESA-2014-059 CVE Identifier: CVE-2014-2511 Severity Rating: CVSS v2 Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P Affected products: • EMC WebTop...

4.3CVSS0.2AI score0.00295EPSS

securityvulns•added 2014/08/26 12:0 a.m.•83 views

Apache Cordova 3.5.1: CVE-2014-3502 update

The following text is amended from the original that was sent on August 4th. More background information on this amendment can be found at http://cordova.apache.org/announcements/2014/08/06/android-351-update.html Android Platform Release: 04 Aug 2014 CVE-2014-3502: Cordova apps can potentially...

4.3CVSS0.1AI score0.01489EPSS

securityvulns•added 2014/08/26 12:0 a.m.•43 views

CVE-2014-5307 - Privilege Escalation in Panda Security Products

Vulnerability title: Privilege Escalation in Panda Security CVE: CVE-2014-5307 Vendor: Panda Security Product: Multiple Affected version: Panda 2014 Products Fixed version: Hotfix hft131306s24r1 Reported by: Kyriakos Economou Details: Latest, and possibly earlier builds, of the PavTPK.sys kernel...

7.2CVSS6.7AI score0.0006EPSS

securityvulns•added 2014/08/26 12:0 a.m.•33 views

EMC RSA Archer multiple security vulnerabilities

CSRF, Pribilege escalation, unauthorized access...

6.8CVSS3.6AI score0.00498EPSS

Exploits0References1Affected Software1

securityvulns•added 2014/08/26 12:0 a.m.•74 views

BlackBerry Z 10 - Storage and Access File-Exchange Authentication By-Pass [MZ-13-04]

--------------------------------------------------------------------- modzero Security Advisory: BlackBerry Z 10 - Storage and Access File-Exchange Authentication By-Pass MZ-13-04 ---------------------------------------------------------------------...

6.1CVSS6.3AI score0.00287EPSS

securityvulns•added 2014/08/26 12:0 a.m.•43 views

Python Imaging Library DoS

DoS on icns decoding...

5CVSS1.9AI score0.01389EPSS

Exploits0References1Affected Software1

securityvulns•added 2014/08/26 12:0 a.m.•89 views

Barracuda Networks Firewall / Web Firewall / Spam&Virus Firewall security vulnerabilities

XSS, restrictions bypass...

2.1AI score0.57469EPSS

Exploits2References8Affected Software3

securityvulns•added 2014/08/26 12:0 a.m.•50 views

[SECURITY] [DSA 3010-1] python-django security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3010-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso August 22, 2014 http://www.debian.org/security/faq -...

6CVSS1.3AI score0.01121EPSS

securityvulns•added 2014/08/26 12:0 a.m.•105 views

[USN-2315-1] serf vulnerability

========================================================================== Ubuntu Security Notice USN-2315-1 August 14, 2014 serf vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...

4CVSS0.7AI score0.02097EPSS

Total number of security vulnerabilities47153