The goal of this project is to make virtual world a safer and better place without child pornography, major computer crime and RIAA.
Login As
You can log in if you are registered at one of these services:
Security Bulletins
Latest Malware Updates

Infostealer.Posteal

02/26/2015

Downloader.Busadom

02/26/2015

Trojan.Ladocosm

02/26/2015

SONAR.SuspDocRun

02/25/2015

SONAR.SuspHelpRun

02/25/2015
Security News

CVE-1999-0182

Samba has a buffer overflow which allows a remote attacker to obtain root access by specifying a long password.

09/30/1997

CVE-1999-0955

Race condition in wu-ftpd and BSDI ftpd allows remote attackers to gain root access via the SITE EXEC command.

09/23/1997

CVE-1999-0282

** REJECT **  DO NOT USE THIS CANDIDATE NUMBER.  ConsultIDs: CVE-1999-1584, CVE-1999-1586.  Reason: This candidate combined references from one issue with the description from another issue.  Notes: Users should consult CVE-1999-1584 and CVE-1999-1586 to obtain the appropriate name.  All references and descriptions in this candidate have been removed to prevent accidental usage.

09/23/1997

CVE-1999-0267

Buffer overflow in NCSA HTTP daemon v1.3 allows remote command execution.

09/23/1997

CVE-1999-1125

Oracle Webserver 2.1 and earlier runs setuid root, but the configuration file is owned by the oracle account, which allows any local or remote attacker who obtains access to the oracle account to gain privileges or modify arbitrary files by modifying the configuration file.

09/19/1997

CVE-1999-0965

Race condition in xterm allows local users to modify arbitrary files via the logging option.

09/19/1997

CVE-1999-0956

The NeXT NetInfo _writers property allows local users to gain root privileges or conduct a denial of service.

09/19/1997

CVE-1999-0667

The ARP protocol allows any host to spoof ARP replies and poison the ARP cache to conduct IP address spoofing or a denial of service.

09/19/1997

CVE-1999-1214

The asynchronous I/O facility in 4.4 BSD kernel does not check user credentials when setting the recipient of I/O notification, which allows local users to cause a denial of service by using certain ioctl and fcntl calls to cause the signal to be sent to an arbitrary process ID.

09/15/1997

CVE-1999-0079

Remote attackers can cause a denial of service in FTP by issuing multiple PASV commands, causing the server to run out of available ports.

09/12/1997

CVE-1999-1275

Lotus cc:Mail release 8 stores the postoffice password in plaintext in a hidden file which has insecure permissions, which allows local users to gain privileges.

09/08/1997

CVE-1999-1139

Character-Terminal User Environment (CUE) in HP-UX 11.0 and earlier allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the IOERROR.mytty file.

09/01/1997

CVE-1999-1133

HP-UX 9.x and 10.x running X windows may allow local attackers to gain privileges via (1) vuefile, (2) vuepad, (3) dtfile, or (4) dtpad, which do not authenticate users.

09/01/1997

CVE-1999-0237

Remote execution of arbitrary commands through Guestbook CGI program.

09/01/1997

CVE-1999-0191

IIS newdsn.exe CGI script allows remote users to overwrite files.

09/01/1997

CVE-1999-0183

Linux implementations of TFTP would allow access to files outside the restricted directory.

09/01/1997

CVE-1999-0177

The uploader program in the WebSite web server allows a remote attacker to execute arbitrary programs.

09/01/1997

CVE-1999-0148

The handler CGI program in IRIX allows arbitrary command execution.

09/01/1997

CVE-1999-0115

AIX bugfiler program allows local users to gain root access.

09/01/1997

CVE-1999-0071

Apache httpd cookie buffer overflow for versions 1.1.1 and earlier.

09/01/1997

Security News 142181 - 142200 of 142559
First | Prev. | 7108 7109 7110 7111 7112 | Next | Last All
Security Advisories Database

Remote Code Execution Vulnerability in Microsoft OpenType Font Driver

A remote attacker can execute arbitrary code on the target system.

07/21/2015

SQL Injection Vulnerability in Piwigo

SQL inection vulnerability has been discovered in Piwigo.

02/05/2015

Cross-site Scripting Vulnerability in DotNetNuke

A cross-site scripting (XSS) vulnerability has been discovered in DotNetNuke.

02/05/2015

Cross-site Scripting Vulnerability in Hitachi Command Suite

A cross-site scripting vulnerability was found in Hitachi Command Suite.

02/02/2015

Denial of service vulnerability in FreeBSD SCTP RE_CONFIG Chunk Handling

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in Apache Traffic Server HTTP TRACE Max-Forwards

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in MalwareBytes Anti-Exploit "mbae.sys"

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in Linux Kernel splice

An attacker can perform a denial of service attack.

01/29/2015

Denial of service vulnerability in Python Pillow Module PNG Text Chunks Decompression

An attacker can perform a denial of service attack.

01/20/2015