"> High Vulnerabilities PrimaryVendor -- Product Description Discovered Published CVSS Score Source & Patch Info alphadmin -- alphadmin_cms AlphAdmin CMS 1.0.5/03 allows remote attackers to bypass authentication and gain administrative access by setting the aa_login cookie value to 1. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. unknown 2008-07-25 7.5 CVE-2008-3300BID AlstraSoft -- Affiliate Network Pro SQL injecti
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info apple -- iphone_os The Settings component in Apple iOS before 5, when a configuration profile is used for a locale other than English, does not properly implement localization, which makes it easier for attackers to have an unspecified impact by leveraging incorrect configuration display. 2011-10-14 9.3 CVE-2011-3430 atcom -- netvolution SQL injection vulnerability in default.asp in ATCOM N
"> High Vulnerabilities PrimaryVendor -- Product Description Discovered Published CVSS Score Source & Patch Info Adobe -- PhotoshopAdobe -- Photoshop Elements Buffer overflow in Adobe Photoshop CS2 and CS3, and Photoshop Elements 5.0, allows user-assisted remote attackers to execute arbitrary code via a crafted .PNG file. unknown 2007-04-30 8.0 CVE-2007-2365MILW0RMBIDFRSIRTSECUNIAXF AFFLIB -- AFFLIB Multiple stack-based buffer overflows in AFFLIB before 2.2.6 allow remote attackers t
/*-->*/ /*-->*/ /*-->*/ /*-->*/ The US-CERT Cyber Security Bulletin provides a summary of new and updated vulnerabilities, exploits, trends, and malicious code that have recently been openly reported. Information in the Cyber Security Bulletin is a compilation of open source and US-CERT vulnerability information. As such, the Cyber Security Bulletin includes information published by sources outside of US-CERT and should not be considered the result of US-CERT analysis or as an offici
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info automatedsolutions -- modbus/tcp_master_opc_server Heap-based buffer overflow in Automated Solutions Modbus/TCP Master OPC Server before 3.0.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a MODBUS response packet with a crafted length field. 2011-01-28 7.6 CVE-2010-4709CERT-VNVUPENMISCBIDEXPLOIT-DBSECUNIACONFIRM cisco -- ios Unspecifie
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info apple -- mac_os_x Directory Service in Apple Mac OS X through 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a crafted message. 2013-06-05 9.3 CVE-2013-0984 google -- chrome Google Chrome before 27.0.1453.110 on Windows provides an incorrect handle to a renderer process in unspecified circumstances, which allows remote attackers to cau