9 results (0.005 seconds)

CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0

Cross-domain vulnerability in Apple Safari for Windows 3.0.1 allows remote attackers to bypass the "same origin policy" and access restricted information from other domains via JavaScript that overwrites the document variable and statically sets the document.domain attribute. Una vulnerabilidad de tipo cross-domain en Apple Safari para Windows versión 3.0.1, permite a atacantes remotos omitir la "same origin policy" y acceder a información restringida de otros dominios por medio de JavaScript que sobrescribe la variable document y establece estáticamente el atributo document.domain. • http://osvdb.org/38860 http://www.0x000000.com/?i=371 http://www.securityfocus.com/bid/24700 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0

NTLM Security Support Provider (NTLMSSP) service does not properly check the function number in an LPC request, which could allow local users to gain administrator level access. • http://razor.bindview.com/publish/advisories/adv_NTLMSSP.html http://www.securityfocus.com/bid/2348 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-008 https://exchange.xforce.ibmcloud.com/vulnerabilities/6076 •

CVSS: 5.0EPSS: 2%CPEs: 1EXPL: 0

Memory leak in PPTP server in Windows NT 4.0 allows remote attackers to cause a denial of service via a malformed data packet, aka the "Malformed PPTP Packet Stream" vulnerability. • http://www.securityfocus.com/bid/2368 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-009 https://exchange.xforce.ibmcloud.com/vulnerabilities/6103 •

CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 0

Memory leak in SNMP agent in Windows NT 4.0 before SP5 allows remote attackers to conduct a denial of service (memory exhaustion) via a large number of queries. • http://support.microsoft.com/support/kb/articles/q196/2/70.asp https://exchange.xforce.ibmcloud.com/vulnerabilities/1974 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A952 •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0

Tcpip.sys in Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service via an ICMP Subnet Mask Address Request packet, when certain multiple IP addresses are bound to the same network interface. • http://support.microsoft.com/support/kb/articles/Q192/7/74.ASP https://exchange.xforce.ibmcloud.com/vulnerabilities/3894 •