Securityvulns - Page 90 of Securityvulns Vulnerabilities List | Vulners.com

SecurityvulnsRecent

Recent Most viewed

47153 matches found

securityvulns•added 2013/08/28 12:0 a.m.•35 views

VMWare privilege escalation

vmware-mount privilege escalation...

6.9CVSS3.3AI score0.06135EPSS

Exploits4References1

securityvulns•added 2013/08/28 12:0 a.m.•52 views

NEW VMSA-2013-0010 VMware Workstation host privilege escalation vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ----------------------------------------------------------------------- VMware Security Advisory Advisory ID: VMSA-2013-0010 Synopsis: VMware Workstation host privilege escalation vulnerability Issue date: 2013-08-22 Updated on: 2013-08-22 initial...

6.9CVSS6.5AI score0.06135EPSS

securityvulns•added 2013/08/28 12:0 a.m.•86 views

CVE-2013-4124 samba nttrans dos private exploit

Hi Forks! It's my samba private exploit and article of it. the security bug occurs while nttrans reply in samba daemon source code tree. the remote dos exploit that i copied from another nttrans exploit in 2003. and can't test it yet, check it out! CVE-2013-4124 samba dos private exploit: -...

5CVSS0.5AI score0.83531EPSS

securityvulns•added 2013/08/28 12:0 a.m.•34 views

libtiff <= 3.9.5 integer overflow bug

+----------------------------------------------------+ | XADV-2013001 libtiff = 3.9.5 integer overflow bug | +----------------------------------------------------+ vulnerable versions: - libtiff 3.9.5 = - libtiff 3.6.0 not vulnerable versions: - libtiff 4.0.3 - libtiff 4.0.2 - libtiff 4.0.1 -...

securityvulns•added 2013/08/28 12:0 a.m.•81 views

[SECURITY] [DSA 2741-1] chromium-browser security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2741-1 [email protected] http://www.debian.org/security/ Michael Gilbert August 25, 2013 http://www.debian.org/security/faq -...

7.5CVSS1.6AI score0.01382EPSS

securityvulns•added 2013/08/28 12:0 a.m.•202 views

[ MDVSA-2013:221 ] php

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:221 http://www.mandriva.com/en/support/security/ Package : php Date : August 27, 2013 Affected: Business Server 1.0, Enterprise Server 5.0 Problem Description: A vulnerability has been discovered and correct...

6.8CVSS6.3AI score0.09892EPSS

securityvulns•added 2013/08/28 12:0 a.m.•66 views

[ MDVSA-2013:219 ] libtiff

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:219 http://www.mandriva.com/en/support/security/ Package : libtiff Date : August 23, 2013 Affected: Business Server 1.0 Problem Description: Updated libtiff packages fix security vulnerabilities: Pedro Ribei...

6.8CVSS8.7AI score0.18385EPSS

securityvulns•added 2013/08/28 12:0 a.m.•58 views

[SECURITY] [DSA 2744-1] tiff security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2744-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff August 27, 2013 http://www.debian.org/security/faq -...

6.8CVSS1.8AI score0.18385EPSS

securityvulns•added 2013/08/28 12:0 a.m.•32 views

SPICE DoS

assert on loops processing...

5CVSS2.1AI score0.01006EPSS

Exploits0References1Affected Software1

securityvulns•added 2013/08/20 12:0 a.m.•27 views

Photo Transfer Upload v1.0 iOS - Multiple Vulnerabilities

Title: ====== Photo Transfer Upload v1.0 iOS - Multiple Vulnerabilities Date: ===== 2013-08-16 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1047 VL-ID: ===== 1047 Common Vulnerability Scoring System: ==================================== 8.6 Introduction: ============...

securityvulns•added 2013/08/20 12:0 a.m.•227 views

Update: Linksys EA2700, EA3500, E4200v2, EA4500 Unspecified unauthenticated remote access

----------------------------------------------------------------------------- Vulnerabilities: An unspecified bug can cause an unsafe/undocumented TCP port to open allowing for: - Unauthenticated remote access to all pages of the router administration GUI, bypassing any credential prompts under...

securityvulns•added 2013/08/20 12:0 a.m.•60 views

Многочисленные уязвимости в Mozilla Firefox / Seamonkey multiple security vulnerabilities

Multiple memory corruptions, integer overflows, array index overflows, information leak...

10CVSS3AI score0.27259EPSS

Exploits34References27Affected Software3

securityvulns•added 2013/08/20 12:0 a.m.•22 views

Sitecom wireless routers multiple security vulnerabilities

Undocumented hardcoded accounts, undocumented telnet access, weak WPA and administrator accounts generation...

Exploits0References1

securityvulns•added 2013/08/20 12:0 a.m.•96 views

x90c WOFF Firefox 1day exploit

Hi Forks! I share my WOFF 1day exploit. attachment: http://www.x90c.org/exploits/x90cWOFFexploit.tgz dep bypass vulnerability: CVE-2010-1028 WOFF Heap Corruption due to Integer Overflow affacted Products: - Mozilla Firefox 3.6 Gecko 1.9.2 - Mozilla Firefox 3.6 Beta1, 3, 4, 5 Beta2 ko not released...

9.3CVSS1.1AI score0.09896EPSS

securityvulns•added 2013/08/20 12:0 a.m.•35 views

Copy to WebDAV v1.1 iOS - Multiple Web Vulnerabilities

Title: ====== Photo Transfer Upload v1.0 iOS - Multiple Vulnerabilities Date: ===== 2013-08-16 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1047 VL-ID: ===== 1047 Common Vulnerability Scoring System: ==================================== 8.6 Introduction: ============...

securityvulns•added 2013/08/20 12:0 a.m.•50 views

Linksys EA access points authentication bypass

It's possible to access web administration without authentication...

4AI score0.04105EPSS

Exploits2References2

securityvulns•added 2013/08/20 12:0 a.m.•46 views

Multiple vulnerabilities on Sitecom N300/N600 devices

Multiple vulnerabilities on Sitecom N300/N600 devices ===================================================== ADVISORY INFORMATION Title: Multiple vulnerabilities on Sitecom N300/N600 devices Discovery date: 01/06/2013 Release date: 19/08/2013 Credits: Roberto Paleari [email protected],...

securityvulns•added 2013/08/17 12:0 a.m.•36 views

libXfont memory corruption

Memory corruption on compressed font parsing...

9.3CVSS3.4AI score0.07018EPSS

Exploits0References1

securityvulns•added 2013/08/14 12:0 a.m.•83 views

[SECURITY] [DSA 2736-1] putty security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2736-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso August 11, 2013 http://www.debian.org/security/faq -...

6.8CVSS1.4AI score0.01751EPSS

securityvulns•added 2013/08/14 12:0 a.m.•93 views

PuTTY / WinSCP security vulnerabilities

SSH handshake heap buffer overflow, protection bypass, information leakage...

6.8CVSS2AI score0.01751EPSS

Exploits4References2Affected Software2

securityvulns•added 2013/08/14 12:0 a.m.•29 views

Microsoft Active Directory Federation Services information leakage

It's possible to obtain service account information to cause account locking via unsuccessful logon attempts...

5CVSS3.6AI score0.30931EPSS

Exploits1Affected Software1

securityvulns•added 2013/08/14 12:0 a.m.•50 views

Microsoft Exchange Oracle libraries security vulnerabilities

Outlook Web Access vulnerabilities because of vulnerable Oracle Outside In libraries...

6.8CVSS2.4AI score0.00988EPSS

Exploits0Affected Software1

securityvulns•added 2013/08/14 12:0 a.m.•114 views

[PSA-2013-0811-1] Oracle Java storeImageArray() Invalid Array Indexing

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 +------------------------------------------------------------------------------+ | Packet Storm Advisory 2013-0811-1 | | http://packetstormsecurity.com/ | +------------------------------------------------------------------------------+ | Title: Oracle...

securityvulns•added 2013/08/12 12:0 a.m.•45 views

[slackware-security] gnupg / libgcrypt (SSA:2013-215-01)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 slackware-security gnupg / libgcrypt SSA:2013-215-01 New gnupg and libgcrypt packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix a security issue. New libgpg-error packages are also available for Slackware 13....

1.9CVSS7.5AI score0.00093EPSS

securityvulns•added 2013/08/12 12:0 a.m.•47 views

Hikvision IP Cameras multiple security vulnerabilities

Code execution, protection bypass, information leakage...

10CVSS2.3AI score0.56432EPSS

Exploits10References1

securityvulns•added 2013/08/12 12:0 a.m.•102 views

[SECURITY] [DSA 2732-1] chromium-browser security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2732-1 [email protected] http://www.debian.org/security/ Michael Gilbert July 31, 2013 http://www.debian.org/security/faq -...

7.5CVSS0.3AI score0.01545EPSS

securityvulns•added 2013/08/12 12:0 a.m.•59 views

Cisco IOS / ASA / FWSM / NX-OS / StarOS OSPF protocol vulnerability

LSA packet routing table manipulation...

5.8CVSS2.7AI score0.00819EPSS

securityvulns•added 2013/08/12 12:0 a.m.•112 views

SEC Consult SA-20130805-0 :: Vodafone EasyBox Default WPS PIN Algorithm Weakness

SEC Consult Vulnerability Lab Security Advisory 20130805-0 ======================================================================= title: Vodafone EasyBox Default WPS PIN Algorithm Weakness product: EasyBox 802 & EasyBox 803 vulnerable version: EasyBox 802 - all versions EasyBox 803 - Production...

securityvulns•added 2013/08/12 12:0 a.m.•95 views

HP Data Protector Arbitrary Remote Command Execution

""" HP Data Protector Arbitrary Remote Command Execution This script allows to execute a command with an arbitrary number of arguments. The trick calls 'perl.exe' interpreter installed with HP Data Protector inside the directory installpath/bin/. The main goal of the script is to bypass the...

10CVSS0.5AI score0.89891EPSS

securityvulns•added 2013/08/12 12:0 a.m.•40 views

gnupg / libcrypt RSA implementation flush+reload timing attack

Private key recovery by using CPU L3 cache timings...

1.9CVSS4.1AI score0.00093EPSS

Exploits0References1Affected Software2

securityvulns•added 2013/08/12 12:0 a.m.•26 views

Apache suexec security vulnerabilities

Protection bypass, privilege escalation...

Exploits0References1Affected Software1

securityvulns•added 2013/08/12 12:0 a.m.•32 views

Cisco TelePresence security vulnerabilities

DoS, directory traversal, backdoor account...

10CVSS4AI score0.00861EPSS

securityvulns•added 2013/08/12 12:0 a.m.•40 views

Two Vulnerabilities in NetworkMiner : DLL Hijacking + Directory Traversal

Security Advisory ID: NETRESEC-1386968 http://netresec.com/?b=1386968 NetworkMiner version 1.4.1 and older is vulnerable to DLL hijacking and contains a directory traversal vulnerability. ==Description== NetworkMiner is a tool designed for network forensics and network security monitoring. It is...

securityvulns•added 2013/08/12 12:0 a.m.•85 views

Update: Full Disclosure - WD My Net N600, N750, N900, N900C - Plain Text Disclosure of Admin Credentials

Vulnerable Systems: Western Digital My Net Series Wireless Routers: N600 Firmware 1.03.12 N600 Firmware 1.04.16 N750 Firmware 1.03.12 N750 Firmware 1.04.16 N900 Firmware 1.05.12 N900 Firmware 1.06.18 N900 Firmware 1.06.28 N900C Firmware 1.05.12 N900C Firmware 1.06.18 N900C Firmware 1.06.28 CVE...

4.3CVSS6.7AI score0.08274EPSS

securityvulns•added 2013/08/12 12:0 a.m.•30 views

Apache mod_dav_svn DoS

Assertion failure on COPY, DELETE and MOVE commands processing...

4CVSS2.6AI score0.00665EPSS

Exploits0References1

securityvulns•added 2013/08/12 12:0 a.m.•36 views

TP-Link IP cameras security vulnerabilities

Code execution, protection bypass...

2.8AI score0.49292EPSS

Exploits7References2Affected Software1

securityvulns•added 2013/08/12 12:0 a.m.•54 views

CORE-2013-0618 - Multiple Vulnerabilities in TP-Link TL-SC3171 IP Cameras

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Multiple Vulnerabilities in TP-Link TL-SC3171 IP Cameras 1. Advisory Information Title: Multiple Vulnerabilities in TP-Link TL-SC3171 IP Cameras Advisory ID: CORE-2013-0618 Advisory URL:...

10CVSS0.4AI score0.74537EPSS

securityvulns•added 2013/08/12 12:0 a.m.•119 views

Multiple vulnerabilities on D-Link DIR-645 devices

Multiple vulnerabilities on D-Link DIR-645 devices ================================================== ADVISORY INFORMATION Title: Multiple vulnerabilities on D-Link DIR-645 devices Discovery date: 06/03/2013 Release date: 02/08/2013 Advisory URL:...

securityvulns•added 2013/08/12 12:0 a.m.•90 views

[security bulletin] HPSBMU02902 rev.1 - HP Integrated Lights-Out iLO3, iLO4 IPMI Cipher Suite 0 Authentication Bypass Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03844348 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03844348 Version: 1 HPSBMU02902 rev....

9CVSS0.7AI score0.00602EPSS

securityvulns•added 2013/08/12 12:0 a.m.•37 views

Apache suEXEC privilege elevation / information disclosure

Apache suEXEC privilege elevation / information disclosure Discovered by Kingcope/Aug 2013 The suEXEC feature provides Apache users the ability to run CGI and SSI programs under user IDs different from the user ID of the calling web server. Normally, when a CGI or SSI program executes, it runs as...

securityvulns•added 2013/08/12 12:0 a.m.•48 views

[ MDVSA-2013:207 ] samba

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:207 http://www.mandriva.com/en/support/security/ Package : samba Date : August 6, 2013 Affected: Business Server 1.0, Enterprise Server 5.0 Problem Description: A vulnerability has been found and corrected i...

5CVSS7.6AI score0.83531EPSS

securityvulns•added 2013/08/12 12:0 a.m.•46 views

HP SiteScope code execution

Code execution via SOAP...

10CVSS2.2AI score0.83849EPSS

Exploits10References1Affected Software1

securityvulns•added 2013/08/12 12:0 a.m.•74 views

Rgpg 0.2.2 Ruby Gem Remote Command Injection

Title: Rgpg 0.2.2 Ruby Gem Remote Command Injection Date: 7/31/2013 Advisory Author: Larry W. Cashdollar, @larry0 CVE: CVE-2013-4203 Download: https://rubygems.org/gems/rgpg Description: "A simple Ruby wrapper around gpg command for file encryption. rgpg is a simple API for interacting with the g...

7.5CVSS0.1AI score0.01422EPSS

securityvulns•added 2013/08/12 12:0 a.m.•59 views

[SECURITY] [DSA 2734-1] wireshark security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2734-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff August 05, 2013 http://www.debian.org/security/faq -...

5CVSS1.6AI score0.01503EPSS

securityvulns•added 2013/08/12 12:0 a.m.•38 views

FTP OnConnect v1.4.11 iOS - Multiple Web Vulnerabilities

Title: ====== FTP OnConnect v1.4.11 iOS - Multiple Web Vulnerabilities Date: ===== 2013-08-04 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1041 VL-ID: ===== 1041 Common Vulnerability Scoring System: ==================================== 8.6 Introduction: =============...

securityvulns•added 2013/08/12 12:0 a.m.•32 views

Security vulnerabilities in different Ruby Gems

VUlnerabilities in different libraries...

7.5CVSS2.2AI score0.01422EPSS

Exploits3References8Affected Software5

securityvulns•added 2013/08/12 12:0 a.m.•46 views

HP Data Protector code execution

Unauthorized perl commands execution...

10CVSS2.5AI score0.89891EPSS

Exploits30References1

securityvulns•added 2013/08/12 12:0 a.m.•20 views

Netresec NetworkMiner security vulnerabilities

Code execution, directory traversal...

Exploits0References1Affected Software1

securityvulns•added 2013/08/12 12:0 a.m.•30 views

Cisco Wide Area Application Services, CDS, VDS, CDM code execution

Code execution via HTTP POST request, privilege escalation...

10CVSS2.6AI score0.07922EPSS

securityvulns•added 2013/08/12 12:0 a.m.•75 views

Huawei B153 router information leakage

WPA2 key leakage without authentication...

Exploits0References1

Total number of security vulnerabilities47153