Skip to main content
CVE-2012-6066 CRITICAL POC THREAT Emergency

freeSSHd.exe in freeSSHd through 1.2.6 allows remote attackers to bypass authentication via a crafted session, as demonstrated by an OpenSSH client with modified versions of ssh.c and sshconnect2.c. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 75.9%.

SSH Authentication Bypass Freesshd
NVD Exploit-DB
CVSS 2.0
9.3
EPSS
75.9%
Threat
5.6
CVE-2012-5975 CRITICAL POC THREAT Emergency

The SSH USERAUTH CHANGE REQUEST feature in SSH Tectia Server 6.0.4 through 6.0.20, 6.1.0 through 6.1.12, 6.2.0 through 6.2.5, and 6.3.0 through 6.3.2 on UNIX and Linux, when old-style password. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 25.7%.

SSH Authentication Bypass Tectia Server
NVD Exploit-DB GitHub
CVSS 2.0
9.3
EPSS
25.7%
Threat
4.1
CVE-2012-5137 CRITICAL Act Now

Use-after-free vulnerability in Google Chrome before 23.0.1271.95 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the Media. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Google Denial Of Service Memory Corruption Use After Free Chrome +1
NVD
CVSS 2.0
10.0
EPSS
4.0%
CVE-2012-6067 CRITICAL Act Now

freeFTPd.exe in freeFTPd through 1.0.11 allows remote attackers to bypass authentication via a crafted SFTP session, as demonstrated by an OpenSSH client with modified versions of ssh.c and. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SSH Authentication Bypass Freeftpd
NVD
CVSS 2.0
10.0
EPSS
1.0%
CVE-2012-5138 CRITICAL Act Now

Google Chrome before 23.0.1271.95 does not properly handle file paths, which has unspecified impact and attack vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Google Chrome Opensuse
NVD
CVSS 2.0
10.0
EPSS
0.8%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy