Aggregator

CVE-2006-0705 | F-Secure SSH Server up to 6.0.0.9 SFTP Server logging format string (VU#419241 / Nessus ID 20902)

Vuldb Updates
5 months 2 weeks ago
A vulnerability was found in F-Secure SSH Server up to 6.0.0.9 and classified as critical. This issue affects the function logging of the component SFTP Server. The manipulation leads to format string. The identification of this vulnerability is CVE-2006-0705. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Play

Dark Feed IO
5 months 2 weeks ago

You must login to view this content

cohenido

CVE-2006-0769 | Sun Solaris 10.0 in.rexecd Local Privilege Escalation (Nessus ID 20943 / ID 115330)

Vuldb Updates
5 months 2 weeks ago
A vulnerability was found in Sun Solaris 10.0 and classified as problematic. This issue affects some unknown processing of the component in.rexecd. The manipulation leads to Local Privilege Escalation. The identification of this vulnerability is CVE-2006-0769. Local access is required to approach this attack. There is no exploit available. It is recommended to apply a patch to fix this issue.
vuldb.com

CVE-2006-0839 | Snort 2.4.3 frag3 Preprocessor ip_option_length security check (ID 34043 / XFDB-24811)

Vuldb Updates
5 months 2 weeks ago
A vulnerability was found in Snort 2.4.3 and classified as critical. Affected by this issue is some unknown functionality of the component frag3 Preprocessor. The manipulation of the argument ip_option_length leads to security check for standard. This vulnerability is handled as CVE-2006-0839. The attack may be launched remotely. There is no exploit available. It is recommended to apply restrictive firewalling.
vuldb.com

CVE-2006-0901 | Sun Solaris 8.0/9.0/10.0 Filesystem memory corruption (Nessus ID 21011 / ID 115333)

Vuldb Updates
5 months 2 weeks ago
A vulnerability classified as critical was found in Sun Solaris 8.0/9.0/10.0. Affected by this vulnerability is an unknown functionality of the component Filesystem. The manipulation leads to memory corruption. This vulnerability is known as CVE-2006-0901. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to apply a patch to fix this issue.
vuldb.com

CVE-2006-0848 | Apple Mac OS X Server 10.4.5 Terminal config (VU#999708 / Nessus ID 20990)

Vuldb Updates
5 months 2 weeks ago
A vulnerability classified as critical has been found in Apple Mac OS X Server 10.4.5. Affected is an unknown function of the component Terminal. The manipulation leads to configuration. This vulnerability is traded as CVE-2006-0848. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

Play

Dark Feed IO
5 months 2 weeks ago

You must login to view this content

cohenido

Play

Dark Feed IO
5 months 2 weeks ago

You must login to view this content

cohenido

CVE-2024-55554 | Intrexx Portal Server up to 12.0.1 User-defined Portlet cross site scripting (EUVD-2024-52805)

Vuldb Updates
5 months 2 weeks ago
A vulnerability has been found in Intrexx Portal Server up to 12.0.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component User-defined Portlet. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-55554. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-55553 | Frrouting up to 10.2 RIB Revalidation resource consumption (EUVD-2024-52804 / Nessus ID 214524)

Vuldb Updates
5 months 2 weeks ago
A vulnerability classified as problematic has been found in Frrouting up to 10.2. Affected is an unknown function of the component RIB Revalidation. The manipulation leads to resource consumption. This vulnerability is traded as CVE-2024-55553. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-55517 | Polaris FT Intellect Core Banking up to 9.5 Interllect Core Search groupType sql injection (EUVD-2024-52790)

Vuldb Updates
5 months 2 weeks ago
A vulnerability, which was classified as critical, was found in Polaris FT Intellect Core Banking up to 9.5. Affected is an unknown function of the component Interllect Core Search. The manipulation of the argument groupType leads to sql injection. This vulnerability is traded as CVE-2024-55517. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2025-6489 | itsourcecode Agri-Trading Online Shopping System 1.0 /transactionsave.php del sql injection (EUVD-2025-18855)

Vuldb Updates
5 months 2 weeks ago
A vulnerability has been found in itsourcecode Agri-Trading Online Shopping System 1.0 and classified as critical. This vulnerability affects unknown code of the file /transactionsave.php. The manipulation of the argument del leads to sql injection. This vulnerability was named CVE-2025-6489. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com

Scattered Spider Targets Aflac, Other Insurance Companies

Security Boulevard
5 months 2 weeks ago

The prolific Scattered Spider threat group, which recently targeted U.S. and UK retailers in a series of attacks, is now turning its attention to the insurance industry and appears to have landed a big victim in Aflac after compromising networks and systems of the Philadelphia Insurance and Erie Insurance companies.

The post Scattered Spider Targets Aflac, Other Insurance Companies appeared first on Security Boulevard.

Jeffrey Burt

CVE-2024-55515 | Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 3.90 Web Interface /upload_ipslib.php form name unrestricted upload (EUVD-2024-52788)

Vuldb Updates
5 months 2 weeks ago
A vulnerability, which was classified as critical, was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90. Affected is an unknown function of the file /upload_ipslib.php of the component Web Interface. The manipulation of the argument form name leads to unrestricted upload. This vulnerability is traded as CVE-2024-55515. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com

CVE-2024-55516 | Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 3.90 Web Interface /upload_sysconfig.php form name unrestricted upload (EUVD-2024-52789)

Vuldb Updates
5 months 2 weeks ago
A vulnerability has been found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /upload_sysconfig.php of the component Web Interface. The manipulation of the argument form name leads to unrestricted upload. This vulnerability is known as CVE-2024-55516. The attack can be launched remotely. There is no exploit available.
vuldb.com

Managed ad