Search
Keyword: usojan.linux.cve20165195.c
CVE-2005-2371 Directory traversal vulnerability in Oracle Reports 6.0, 6i, 9i, and 10g allows remote attackers to overwrite arbitrary files via (1) "..", (2) Windows drive letter (C:), and (3)
2011-1398 The sapi_header_op function in main/SAPI.c in PHP before 5.3.11 and 5.4.x before 5.4.0RC2 does not check for %0D sequences (aka carriage return characters), which allows remote attackers to
This Trojan may be hosted on a website and run when a user accesses the said website. Once a malware successfully exploits the said vulnerability, it causes certain actions to be done on the system.
buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before 9.10.4-P3, and 9.11.x before 9.11.0rc3 does not properly construct responses, which allows remote attackers to cause a denial of service
A denial-of-service vulnerability exists in ISC BIND. The vulnerability is due to an incorrect boundary check, leading to a REQUIRE assertion failure in openpgpkey_61.c. A remote, unauthenticated
The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service (reachable assertion and application crash) via crafted BER
The symmetric-key feature in the receive function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p2 requires a correct MAC only if the MAC field has a nonzero length, which makes it easier for
The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct ECDHE-to-ECDH downgrade attacks and
CVE-2007-5333 Apache Tomcat 6.0.0 through 6.0.14, 5.5.0 through 5.5.25, and 4.1.0 through 4.1.36 does not properly handle (1) double quote (") characters or (2) %5C (encoded backslash) sequences in a
Integer overflow in ext/shmop/shmop.c in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (crash) and possibly read sensitive memory via a large third argument to the
fopen_wrappers.c in PHP 5.3.x through 5.3.3 might allow remote attackers to bypass open_basedir restrictions via vectors related to the length of a filename. Apply associated Trend Micro DPI Rules.
CVE-2006-5334 cve: Unspecified vulnerability in Oracle Spatial component in Oracle Database 9.0.1.5, 9.2.0.7, and 10.1.0.5 has unknown impact and remote authenticated attack vectors related to
Microsoft addresses several vulnerabilities in its March batch of patches. More information are found in the Trend Micro Security Intelligence Blog . (MS17-006) Cumulative Security Update for
Microsoft addresses the following vulnerabilities in its December batch of patches: (MS15-124) Cumulative Security Update for Internet Explorer (3116180) Risk Rating: Critical This security update
Microsoft addresses several vulnerabilities in its September batch of patches: CVE-2017-8597 | Microsoft Edge Information Disclosure Vulnerability Risk Rating: Important This security update resolves
Microsoft addresses several vulnerabilities in its November batch of patches. CVE-2017-8700 - ASP.NET Core Information Disclosure Vulnerability Risk Rating: Moderate A n information disclosure
Microsoft addresses vulnerabilities in its April security bulletin. Trend Micro Deep Security covers the following: CVE-2018-0994 - Chakra Scripting Engine Memory Corruption Vulnerability Risk
Microsoft addresses several vulnerabilities in its December batch of patches, several of which addresses remote code execution vulnerabilities. CVE-2017-11885 - Windows RRAS Service Remote Code
Microsoft addresses several vulnerabilities in its July batch of patches: CVE-2017-0243 | Microsoft Office Remote Code Execution Vulnerability Risk Rating: Important A remote code execution
Microsoft addresses the following vulnerabilities in its batch of patches for July 2015: (MS15-058) Vulnerabilities in SQL Server Could Allow Remote Code Execution (3065718) Risk Rating: Important