Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

daniel a. vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2000-0973
Buffer overflow in curl earlier than 6.0-1.1, and curl-ssl earlier than 6.0-1.2, allows remote malicious users to execute arbitrary commands by forcing a long error message to be generated.
Daniel Stenberg Curl 6.4Daniel Stenberg Curl 6.5Daniel Stenberg Curl 7.3Daniel Stenberg Curl 7.4Daniel Stenberg Curl 6.0Daniel Stenberg Curl 6.1Daniel Stenberg Curl 7.1Daniel Stenberg Curl 7.1.1Daniel Stenberg Curl 6.5.1Daniel Stenberg Curl 6.5.2Daniel Stenberg Curl 6.1betaDaniel Stenberg Curl 6.3Daniel Stenberg Curl 7.2Daniel Stenberg Curl 7.2.1
NA
CVE-2005-4077
Multiple off-by-one errors in the cURL library (libcurl) 7.11.2 up to and including 7.15.0 allow local users to trigger a buffer overflow and cause a denial of service or bypass PHP security restrictions via certain URLs that (1) are malformed in a way that prevents a terminating...
Daniel Stenberg Curl 7.13Daniel Stenberg Curl 7.13.1Daniel Stenberg Curl 7.11.2Daniel Stenberg Curl 7.13.2Daniel Stenberg Curl 7.14Daniel Stenberg Curl 7.12.2Daniel Stenberg Curl 7.12.3Daniel Stenberg Curl 7.12Daniel Stenberg Curl 7.12.1Daniel Stenberg Curl 7.14.1Daniel Stenberg Curl 7.15
NA
CVE-2004-2065
DansGuardian 2.8 and previous versions allows remote malicious users to bypass the extension filtering rule via a hex encoded extension or . in the filename.
Daniel Barron Dansguardian 2.2.6Daniel Barron Dansguardian 2.2.7Daniel Barron Dansguardian 2.8Daniel Barron Dansguardian 2.2.7.1Daniel Barron Dansguardian 2.2.8Daniel Barron Dansguardian 2.2.9Daniel Barron Dansguardian 2.2.4Daniel Barron Dansguardian 2.2.5Daniel Barron Dansguardian 2.6.1.5Daniel Barron Dansguardian 2.7.3.1Daniel Barron Dansguardian 2.2.10Daniel Barron Dansguardian 2.2.9.1Daniel Barron Dansguardian 2.4.5.1
NA
CVE-2010-1513
Multiple integer overflows in src/image.c in Ziproxy prior to 3.0.1 allow remote malicious users to execute arbitrary code via (1) a large JPG image, related to the jpg2bitmap function or (2) a large PNG image, related to the png2bitmap function, leading to heap-based buffer over...
Daniel Mealha Cabrita Ziproxy 2.7.1Daniel Mealha Cabrita Ziproxy 2.7.0Daniel Mealha Cabrita Ziproxy 2.3.0Daniel Mealha Cabrita Ziproxy 2.2.2Daniel Mealha Cabrita Ziproxy 1.5.1Daniel Mealha Cabrita Ziproxy 1.5.0Daniel Mealha Cabrita Ziproxy 1.2Daniel Mealha Cabrita Ziproxy 2.6.9Daniel Mealha Cabrita Ziproxy 2.5.9Daniel Mealha Cabrita Ziproxy 2.5.1Daniel Mealha Cabrita Ziproxy 2.5.0Daniel Mealha Cabrita Ziproxy 2.2.1Daniel Mealha Cabrita Ziproxy 2.2.0Daniel Mealha Cabrita Ziproxy 2.1.1Daniel Mealha Cabrita Ziproxy 1.4.0Daniel Mealha Cabrita Ziproxy 1.3Daniel Mealha Cabrita Ziproxy 1.1Daniel Mealha Cabrita ZiproxyDaniel Mealha Cabrita Ziproxy 2.4.8Daniel Mealha Cabrita Ziproxy 2.5.2Daniel Mealha Cabrita Ziproxy 2.7.2Daniel Mealha Cabrita Ziproxy 2.4.1
NA
CVE-2004-2283
Unknown vulnerability in DansGuardian prior to 2.6.1-13 allows remote malicious users to bypass URL filters via a crafted request that causes a page to be added to the clean page cache.
Daniel Barron Dansguardian 2.6.1.10Daniel Barron Dansguardian 2.6.1.12Daniel Barron Dansguardian 2.6.1.8Daniel Barron Dansguardian 2.6.1.9Daniel Barron Dansguardian 2.6.1.11
NA
CVE-2004-2282
DansGuardian prior to 2.7.7-2 allows remote malicious users to bypass URL filters via a ".." in the request.
Daniel Barron Dansguardian 2.7.5Daniel Barron Dansguardian 2.7.6Daniel Barron Dansguardian 2.7.7Daniel Barron Dansguardian 2.7.7.1 BetaDaniel Barron Dansguardian 2.7.3
NA
CVE-2007-3153
The ares_init:randomize_key function in c-ares, on platforms other than Windows, uses a weak facility for producing a random number sequence (Unix rand), which makes it easier for remote malicious users to spoof DNS responses by guessing certain values.
Daniel Stenberg C-ares 1.0Daniel Stenberg C-ares 1.1Daniel Stenberg C-ares 1.3.2Daniel Stenberg C-ares 1.2Daniel Stenberg C-ares 1.2.1Daniel Stenberg C-ares 1.3Daniel Stenberg C-ares 1.3.1
NA
CVE-2007-3152
c-ares prior to 1.4.0 uses a predictable seed for the random number generator for the DNS Transaction ID field, which might allow remote malicious users to spoof DNS responses by guessing the field value.
Daniel Stenberg C-ares 1.0Daniel Stenberg C-ares 1.3.2Daniel Stenberg C-ares 1.1Daniel Stenberg C-ares 1.2Daniel Stenberg C-ares 1.2.1Daniel Stenberg C-ares 1.3Daniel Stenberg C-ares 1.3.1
NA
CVE-2006-1061
Heap-based buffer overflow in cURL and libcURL 7.15.0 up to and including 7.15.2 allows remote malicious users to execute arbitrary commands via a TFTP URL (tftp://) with a valid hostname and a long path.
Daniel Stenberg Curl 7.15.1Daniel Stenberg Curl 7.15.2Daniel Stenberg Curl 7.15.0
NA
CVE-2005-0391
geneweb 4.10 and previous versions does not properly check file permissions and content during conversion, which allows malicious users to modify arbitrary files.
Daniel De Rauglaudre Geneweb
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionSSRFbuffer overflowCVE-2023-28952CVE-2023-41822CVE-2024-27956CVE-2023-7028CVE-2024-34447CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook