The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.
History of vulnerabilities analyzed by Vigil@nce:
Konqueror: Cross Site Scripting via a comment
An attacker can create a HTML page containing a comment generating a Cross Site Scripting attack...
AIX: buffer overflow of rdist, rsh, rcp and rlogin
A local attacker can elevate his privileges using an overflow of r-commands...
Solaris: denial of service of LOFS
An attacker located in a non-global zone using a readonly LOFS filesystem can move or rename files...
Windows Mobile: denials of service
An attacker can create malicious documents generating denials of service on Windows Mobile...
Word: code execution 2bis
An attacker can create a malicious Word document leading to code execution when it is opened...
Wireshark, Ethereal: several vulnerabilities
Several vulnerabilities of Wireshark permit a remote attacker to create a denial of service...
Cisco IOS: denial of service of SIP
An attacker can generate a denial of service on routers with SIP activated...
Solaris: denial of service via ICMP
An attacker can panic system by sending an ICMP packet of Echo Request type...
Drupal: code execution via a comment
An attacker allowed to post a comment can execute code on Drupal service...
SQL-Ledger, LedgerSMB: code execution via a redirect
An authenticated attacker can use a HTTP redirect in order to execute code in SQL-Ledger or LedgerSMB...
chmlib: buffer overflow
An attacker can create a malicious CHM file leading to code execution in chmlib...
ulogd: several overflows
Several overflows were identified in ulogd and could lead to a denial of service or to code execution...
Cisco Catalyst: denial of service of VTP
An attacker can send a malicious VTP packet in order to restart switches...
AIX: access to POP and IMAP
An attacker can authenticate to a mail account via pop3d, pop3ds, imapd or imapds...
Xine-ui: format string error of errors_create_window
An attacker can use a format string attack in the errors_create_window() function...
Word: code execution 4
An attacker can create a malicious Word document leading to code execution when it is opened...
InterScan VirusWall: buffer overflow of VSAPI
An attacker can create an overflow in softwares linked to libvsapi.so library...
PHP: bypassing safemode uid
An attacker can bypass uid restriction enforced by safemode...
PGP Desktop: privilege elevation
A local attacker can obtain System privileges via a vulnerability of PGP Desktop service...
VPN-1: bypassing ICS
An attacker can deactivate checks conducted by ICS before authentication on VPN-1...
Symantec Web Security: Cross Site Scripting and denial of service
An attacker can exploit two vulnerabilities of Symantec Web Security...
Bind: denial of service during DNSSEC validation
When ISC Bind validates ANY responses with DNSSEC, an assertion occurs and stops Bind...
Bind: denial of service during access to a fetch context
An attacker can send a malicious DNS query to stop the ISC Bind service...
gtk2: denial of service of GdkPixbufLoader
An attacker can create a malicious image which stops softwares linked with gtk2...
Cisco IOS: vulnerability via an IP Option
An attacker can send an IPv4 packet containing a malicious Option in order to stop or to execute code on the device...
Cisco IOS: denial of service via IPv6 Routing Header
An attacker can send a malicious packet in order to stop the device...
Cisco IOS: denial of service via TCP
An attacker can send several TCP packets in order to progressively saturate the device...

   

Direct access to page 1 21 41 61 81 101 121 141 161 164 165 166 167 168 169 170 171 172 174 176 177 178 179 180 181 182 183 184 201 221 241 261 281 301 321 341 361 381 401 421 441 461 481 501 521 541 561 581 601 621 641 661 681 701 721 741 761 781 801 821 841 861 881 901 921 941 961 981 1001 1021 1041 1061 1081 1089