The goal of this project is to make virtual world a safer and better place without child pornography, major computer crime and RIAA.
Login As
You can log in if you are registered at one of these services:
Security Bulletins
Latest Malware Updates

Infostealer.Posteal

02/26/2015

Downloader.Busadom

02/26/2015

Trojan.Ladocosm

02/26/2015

SONAR.SuspDocRun

02/25/2015

SONAR.SuspHelpRun

02/25/2015

CVE Database

CVE-1999-1517

runtar in the Amanda backup system used in various UNIX operating systems executes tar with root privileges, which allows a user to overwrite or read arbitrary files by providing the target files to runtar.

11/01/1999

CVE-1999-1077

Idle locking function in MacOS 9 allows local attackers to bypass the password protection of idled sessions via the programmer\'s switch or CMD-PWR keyboard sequence, which brings up a debugger that the attacker can use to disable the lock.

11/01/1999

CVE-1999-0854

Ultimate Bulletin Board stores data files in the cgi-bin directory, allowing remote attackers to view the data if an error occurs when the HTTP server attempts to execute the file.

11/01/1999

CVE-1999-0830

Buffer overflow in SCO UnixWare Xsco command via a long argument.

11/01/1999

CVE-1999-0829

HP Secure Web Console uses weak encryption.

11/01/1999

CVE-1999-0827

By default, Internet Explorer 5.0 and other versions enables the "Navigate sub-frames across different domains" option, which allows frame spoofing.

11/01/1999

CVE-1999-0354

Internet Explorer 4.x or 5.x with Word 97 allows arbitrary execution of Visual Basic programs to the IE client through the Word 97 template, which doesn't warn the user that the template contains executable content.  Also applies to Outlook when the client views a malicious email message.

11/01/1999

CVE-1999-1577

Buffer overflow in HHOpen ActiveX control (hhopen.ocx) 1.0.0.1 for Internet Explorer 4.01 and 5 allows remote attackers to execute arbitrary commands via long arguments to the OpenHelp method.

10/31/1999

CVE-1999-0873

Buffer overflow in Skyfull mail server via MAIL FROM command.

10/30/1999

CVE-1999-1532

Netscape Messaging Server 3.54, 3.55, and 3.6 allows a remote attacker to cause a denial of service (memory exhaustion) via a series of long RCPT TO commands.

10/29/1999

CVE-1999-1226

Netscape Communicator 4.7 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long certificate key.

10/28/1999

CVE-1999-0950

Buffer overflow in WFTPD FTP server allows remote attackers to gain root access via    a series of MKD and CWD commands that create nested directories.

10/28/1999

CVE-1999-0915

URL Live! web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.

10/28/1999

CVE-1999-0882

Falcon web server allows remote attackers to determine the absolute path of the web root via long file names.

10/28/1999

CVE-1999-1234

LSA (LSASS.EXE) in Windows NT 4.0 allows remote attackers to cause a denial of service via a NULL policy handle in a call to (1) SamrOpenDomain, (2) SamrEnumDomainUsers, and (3) SamrQueryDomainInfo.

10/26/1999

CVE-1999-1076

Idle locking function in MacOS 9 allows local users to bypass the password protection of idled sessions by selecting the "Log Out" option and selecting a "Cancel" option in the dialog box for an application that attempts to verify that the user wants to log out, which returns the attacker into the locked session.

10/26/1999

CVE-1999-0903

genfilt in the AIX Packet Filtering Module does not properly filter traffic to destination ports greater than 32767.

10/26/1999

CVE-1999-0881

Falcon web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.

10/26/1999

CVE-1999-0884

The Zeus web server administrative interface uses weak encryption for its passwords.

10/25/1999

CVE-1999-0883

Zeus web server allows remote attackers to read arbitrary files by specifying the file name in an option to the search engine.

10/25/1999

CVE Database 89241 - 89260 of 90570
First | Prev. | 4461 4462 4463 4464 4465 | Next | Last

Security Advisories Database

Remote Code Execution Vulnerability in Microsoft OpenType Font Driver

A remote attacker can execute arbitrary code on the target system.

07/21/2015

SQL Injection Vulnerability in Piwigo

SQL inection vulnerability has been discovered in Piwigo.

02/05/2015

Cross-site Scripting Vulnerability in DotNetNuke

A cross-site scripting (XSS) vulnerability has been discovered in DotNetNuke.

02/05/2015

Cross-site Scripting Vulnerability in Hitachi Command Suite

A cross-site scripting vulnerability was found in Hitachi Command Suite.

02/02/2015

Denial of service vulnerability in FreeBSD SCTP RE_CONFIG Chunk Handling

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in Apache Traffic Server HTTP TRACE Max-Forwards

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in MalwareBytes Anti-Exploit "mbae.sys"

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in Linux Kernel splice

An attacker can perform a denial of service attack.

01/29/2015

Denial of service vulnerability in Python Pillow Module PNG Text Chunks Decompression

An attacker can perform a denial of service attack.

01/20/2015