released software vulnerabilities
vulnerabilities.aspcode.net
Searching released software vulnerabilities
Microsoft Internet Information Services (IIS) s
Information
|
Microsoft
|
Services
|
Internet
|
Microsoft Internet Information Services (IIS) server 4.0 SP4, without certain hotfixes released for SP4, does not require authentication credentials under certain conditions, which allows remote attackers to bypass authentication requirements, as demonstrated by connecting via Microsoft Visual InterDev 6.0.
Microsoft Internet Explorer 6.0 and earlier all
showModelessDialog
|
Microsoft
|
released
|
infinite
|
modeless
|
Explorer
|
Internet
|
service
|
earlier
|
dialogs
|
dialog
|
causes
|
denial
|
allows
|
focus
|
usage
|
while
|
local
|
cause
|
users
|
which
|
loop
|
via
|
not
|
CPU
|
Microsoft Internet Explorer 6.0 and earlier allows local users to cause a denial of service via an infinite loop for modeless dialogs showModelessDialog, which causes CPU usage while the focus for the dialog is not released.
Entercept Agent 2.5 agent for Windows, released
Entercept
|
released
|
Windows
|
before
|
Agent
|
May
|
Entercept Agent 2.5 agent for Windows, released before May 21, 2002, allows local administrative users to obtain the entercept agent password, which could allow the administrators to log on as the entercept_agent account and conceal their identity.
McAfee Anti-Virus Engine DATS drivers before 43
Anti-Virus
|
drivers
|
before
|
McAfee
|
Engine
|
DATS
|
McAfee Anti-Virus Engine DATS drivers before 4398 released on Oct 13th 2004 and DATS Driver before 4397 October 6th 2004 allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.
Spooler in Apache Foundation James 2.2.0 allows
Foundation
|
Spooler
|
Apache
|
James
|
Spooler in Apache Foundation James 2.2.0 allows local users to cause a denial of service (memory consumption) by triggering various error conditions in the retrieve function, which prevents a lock from being released and causes a memory leak.
The shmctl function in Linux 2.6.9 and earlier
function
|
shmctl
|
Linux
|
The shmctl function in Linux 2.6.9 and earlier allows local users to unlock the memory of other processes, which could cause sensitive memory to be swapped to disk, which could allow it to be read by other users once it has been released.
Rakkarsoft RakNet network library 2.33 and earl
Rakkarsoft
|
network
|
library
|
RakNet
|
Rakkarsoft RakNet network library 2.33 and earlier, when released before 30 May 2005, and as used in multiple products including nFusion Elite Warriors: Vietnam, allows remote attackers to cause a denial of service (infinite loop) via a zero-byte UDP packet.
Multiple buffer overflows in LISTSERV 14.3 and
overflows
|
LISTSERV
|
Multiple
|
buffer
|
Multiple buffer overflows in LISTSERV 14.3 and 14.4, including LISTSERV Lite and HPO, with the web archive interface enabled, allow remote attackers to execute arbitrary code via unknown attack vectors related to the WA CGI. NOTE: technical details will be released after the grace period has ended on Saturday, June 03, 2006.
Cross-site scripting (XSS) vulnerability in Ope
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in Open WebMail (OWM) 2.52, and other versions released before 05/12/2006, allows remote attackers to inject arbitrary web script or HTML via the (1) To and (2) From fields in openwebmail-main.pl, and possibly (3) other unspecified vectors related to "openwebmailerror calls that need to display HTML."
Cross-site scripting (XSS) vulnerability in ope
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in openwebmail-read.pl in Open WebMail (OWM) 2.52, and other versions released before 06/18/2006, allows remote attackers to inject arbitrary web script or HTML via the from field. NOTE: some third party sources have mentioned the "to" and "from" fields, although CVE analysis shows that these are associated with the previous version, a different executable, and a different CVE.
Memory leak in Juniper JUNOS 6.4 through 8.0, b
Juniper
|
through
|
Memory
|
before
|
built
|
JUNOS
|
leak
|
May
|
Memory leak in Juniper JUNOS 6.4 through 8.0, built before May 10, 2006, allows remote attackers to cause a denial of service (kernel packet memory consumption and crash) via crafted IPv6 packets whose buffers are not released after they are processed.
Buffer overflow in FileCOPA FTP Server before 1
FileCOPA
|
overflow
|
Server
|
before
|
Buffer
|
FTP
|
Buffer overflow in FileCOPA FTP Server before 1.01 released on 18th July 2006, allows remote authenticated attackers to execute arbitrary code via a long argument to the LIST command.
Mozilla Network Security Service (NSS) library
Security
|
Service
|
Mozilla
|
Network
|
Mozilla Network Security Service (NSS) library before 3.11.3, as used in Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5, when using an RSA key with exponent 3, does not properly handle extra data in a signature, which allows remote attackers to forge signatures for SSL/TLS and email certificates, a similar vulnerability to CVE-2006-4339. NOTE: on Tuesday, November 07, 2006, Mozilla released an advisory stating that these versions were not completely patched by MFSA2006-60. The newer fixes for 1.5.0.7 are covered by CVE-2006-5462.
** DISPUTED ** Stack-based buffer overflow in
unspecified
|
Stack-based
|
JavaScript
|
attackers
|
arbitrary
|
involving
|
DISPUTED
|
overflow
|
Mozilla
|
vectors
|
Firefox
|
execute
|
allows
|
remote
|
buffer
|
code
|
via
|
** DISPUTED ** Stack-based buffer overflow in Mozilla Firefox allows remote attackers to execute arbitrary code via unspecified vectors involving JavaScript. NOTE: the vendor and original researchers have released a follow-up comment disputing the severity of this issue, in which the researcher states that "we mentioned that there was a previously known Firefox vulnerability that could result in a stack overflow ending up in remote code execution. However, the code we presented did not in fact do this... I have not succeeded in making this code do anything more than cause a crash and eat up system resources".
** DISPUTED ** Multiple unspecified vulnerabil
vulnerabilities
|
unspecified
|
DISPUTED
|
Multiple
|
vectors
|
claimed
|
ToorCon
|
Firefox
|
Mozilla
|
during
|
impact
|
have
|
** DISPUTED ** Multiple unspecified vulnerabilities in Mozilla Firefox have unspecified vectors and impact, as claimed during ToorCon 2006. NOTE: the vendor and original researchers have released a follow-up comment disputing this issue, in which one researcher states that "I have no undisclosed Firefox vulnerabilities. The person who was speaking with me made this claim, and I honestly have no idea if he has them or not."
** DISPUTED ** Unspecified vulnerability in th
vulnerability
|
expand_stack
|
Unspecified
|
grsecurity
|
privileges
|
DISPUTED
|
function
|
vectors
|
allows
|
users
|
local
|
gain
|
via
|
PaX
|
** DISPUTED ** Unspecified vulnerability in the expand_stack function in grsecurity PaX allows local users to gain privileges via unspecified vectors. NOTE: the grsecurity developer has disputed this issue, stating that "the function they claim the vulnerability to be in is a trivial function, which can, and has been, easily checked for any supposed vulnerabilities." The developer also cites a past disclosure that was not proven. As of Saturday, January 20, 2007, the original researcher has released demonstration code.
** DISPUTED ** Multiple SQL injection vulnerab
cgi-bin/reorder2asp
|
vulnerabilities
|
unspecified
|
arbitrary
|
attackers
|
SalesCart
|
injection
|
commands
|
Multiple
|
DISPUTED
|
Shopping
|
password
|
execute
|
vectors
|
remote
|
field
|
other
|
allow
|
Cart
|
SQL
|
via
|
** DISPUTED ** Multiple SQL injection vulnerabilities in cgi-bin/reorder2.asp in SalesCart Shopping Cart allow remote attackers to execute arbitrary SQL commands via the password field and other unspecified vectors. NOTE: the vendor disputes this issue, stating "We were able to reproduce this sql injection on an old out-of-date demo on the website but not on the released product."
SQL injection vulnerability in forum/include/er
forum/include/error/autherrorcfm
|
vulnerability
|
errorcode
|
attackers
|
arbitrary
|
injection
|
parameter
|
FuseTalk
|
commands
|
execute
|
allows
|
remote
|
SQL
|
via
|
SQL injection vulnerability in forum/include/error/autherror.cfm in FuseTalk allows remote attackers to execute arbitrary SQL commands via the errorcode parameter. NOTE: a patch may have been released privately between April and June 2007. NOTE: this issue may overlap CVE-2007-3273.
Multiple unspecified vulnerabilities in the SVG
vulnerabilities
|
unspecified
|
Multiple
|
vectors
|
Windows
|
parsing
|
impact
|
remote
|
attack
|
Safari
|
engine
|
Apple
|
Beta
|
have
|
SVG
|
Multiple unspecified vulnerabilities in the SVG parsing engine in Apple Safari 3 Beta for Windows have unspecified remote attack vectors and impact. NOTE: this issue contains no actionable information, but it was released by a reliable researcher.
The IAX2 channel driver (chan_iax2) in Asterisk
channel
|
driver
|
IAX2
|
The IAX2 channel driver (chan_iax2) in Asterisk Open 1.2.x before 1.2.23, 1.4.x before 1.4.9, and Asterisk Appliance Developer Kit before 0.6.0, when configured to allow unauthenticated calls, allows remote attackers to cause a denial of service (resource exhaustion) via a flood of calls that do not complete a 3-way handshake, which causes an ast_channel to be allocated but not released.
Software vulnerabilities results 1 to 20 of 22
Page:
1
2
►