The goal of this project is to make virtual world a safer and better place without child pornography, major computer crime and RIAA.
Login As
You can log in if you are registered at one of these services:
Security Bulletins
Latest Malware Updates

Infostealer.Posteal

02/26/2015

Downloader.Busadom

02/26/2015

Trojan.Ladocosm

02/26/2015

SONAR.SuspDocRun

02/25/2015

SONAR.SuspHelpRun

02/25/2015

CVE Database

CVE-1999-0523

ICMP echo (ping) is allowed from arbitrary hosts.

01/01/1999

CVE-1999-0520

A system-critical NETBIOS/SMB share has inappropriate access control.

01/01/1999

CVE-1999-0515

An unrestricted remote trust relationship for Unix systems has been set up, e.g. by using a + sign in /etc/hosts.equiv.

01/01/1999

CVE-1999-0512

A mail server is explicitly configured to allow SMTP mail relay, which allows abuse by spammers.

01/01/1999

CVE-1999-0497

Anonymous FTP is enabled.

01/01/1999

CVE-1999-0495

A remote attacker can gain access to a file system using ..  (dot dot) when accessing SMB shares.

01/01/1999

CVE-1999-0465

Remote attackers can crash Lynx and Internet Explorer using an IMG tag with a large width parameter.

01/01/1999

CVE-1999-0454

A remote attacker can sometimes identify the operating system of a host based on how it reacts to some IP or ICMP packets, using a tool such as nmap or queso.

01/01/1999

CVE-1999-0453

An attacker can identify a CISCO device by sending a SYN packet to port 1999, which is for the Cisco Discovery Protocol (CDP).

01/01/1999

CVE-1999-0452

A service or application has a backdoor password that was placed there by the developer.

01/01/1999

CVE-1999-0448

IIS 4.0 and Apache log HTTP request methods, regardless of how long they are, allowing a remote attacker to hide the URL they really request.

01/01/1999

CVE-1999-0401

A race condition in Linux 2.2.1 allows local users to read arbitrary memory from /proc files.

01/01/1999

CVE-1999-0399

The DCC server command in the Mirc 5.5 client doesn't filter characters from file names properly, allowing remote attackers to place a malicious file in a different location, possibly allowing the attacker to execute commands.

01/01/1999

CVE-1999-0398

In some instances of SSH 1.2.27 and 2.0.11 on Linux systems, SSH will allow users with expired accounts to login.

01/01/1999

CVE-1999-0397

The demo version of the Quakenbush NT Password Appraiser sends passwords across the network in plaintext.

01/01/1999

CVE-1999-0395

A race condition in the BackWeb Polite Agent Protocol allows an attacker to spoof a BackWeb server.

01/01/1999

CVE-1999-0394

DPEC Online Courseware allows an attacker to change another user's password without knowing the original password.

01/01/1999

CVE-1999-0393

Remote attackers can cause a denial of service in Sendmail 8.8.x and 8.9.2 by sending messages with a large number of headers.

01/01/1999

CVE-1999-0388

DataLynx suGuard trusts the PATH environment variable to execute the ps command, allowing local users to execute commands as root.

01/01/1999

CVE-1999-0384

The Forms 2.0 ActiveX control (included with Visual Basic for Applications 5.0) can be used to read text from a user's clipboard when the user accesses documents with ActiveX content.

01/01/1999

CVE Database 119841 - 119860 of 120568
First | Prev. | 5991 5992 5993 5994 5995 | Next | Last

Security Advisories Database

Remote Code Execution Vulnerability in Microsoft OpenType Font Driver

A remote attacker can execute arbitrary code on the target system.

07/21/2015

SQL Injection Vulnerability in Piwigo

SQL inection vulnerability has been discovered in Piwigo.

02/05/2015

Cross-site Scripting Vulnerability in DotNetNuke

A cross-site scripting (XSS) vulnerability has been discovered in DotNetNuke.

02/05/2015

Cross-site Scripting Vulnerability in Hitachi Command Suite

A cross-site scripting vulnerability was found in Hitachi Command Suite.

02/02/2015

Denial of service vulnerability in FreeBSD SCTP RE_CONFIG Chunk Handling

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in Apache Traffic Server HTTP TRACE Max-Forwards

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in MalwareBytes Anti-Exploit "mbae.sys"

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in Linux Kernel splice

An attacker can perform a denial of service attack.

01/29/2015

Denial of service vulnerability in Python Pillow Module PNG Text Chunks Decompression

An attacker can perform a denial of service attack.

01/20/2015