SINUMERIK 828D V4.7, SINUMERIK 840D Sl V4.7, SINUMERIK 840D Sl V4.8 Security Vulnerabilities

Debian Security Advisory DSA 1270-2 (openoffice.org)

The remote host is missing an update to openoffice.org announced via advisory DSA 1270-2. Several security related problems have been discovered in OpenOffice.org, the free office suite. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2007-0002 iDefense...

Debian: Security Advisory (DSA-1419-1)

The remote host is missing an update for the...

Debian Security Advisory DSA 1419-1 (openoffice.org, hsqldb)

The remote host is missing an update to openoffice.org, hsqldb announced via advisory DSA...

Debian Security Advisory DSA 1246-1 (openoffice.org)

The remote host is missing an update to openoffice.org announced via advisory DSA 1246-1. John Heasman from Next Generation Security Software discovered a heap overflow in the handling of Windows Metafiles in OpenOffice.org, the free office suite, which could lead to a denial of service and...

Debian: Security Advisory (DSA-1246-1)

The remote host is missing an update for the...

Debian Security Advisory DSA 1104-2 (openoffice.org)

The remote host is missing an update to openoffice.org announced via advisory DSA 1104-2. Loading malformed XML documents can cause buffer overflows in OpenOffice.org, a free office suite, and cause a denial of service or execute arbitrary code. It turned out that the correction in DSA 1104-1 was.....

Debian: Security Advisory (DSA-1270-1)

The remote host is missing an update for the...

Debian: Security Advisory (DSA-1307-1)

The remote host is missing an update for the...

Debian Security Advisory DSA 1270-1 (openoffice.org)

The remote host is missing an update to openoffice.org announced via advisory DSA 1270-1. Several security related problems have been discovered in OpenOffice.org, the free office suite. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2007-0002 iDefense...

Determine OS and list of installed packages via SSH login

This script will, if given a userid/password or key to the remote system, login to that system, determine the OS it is running, and for supported systems, extract the list of installed...

Debian Security Advisory DSA 1307-1 (openoffice.org)

The remote host is missing an update to openoffice.org announced via advisory DSA...

Debian Security Advisory DSA 1375-1 (openoffice.org)

The remote host is missing an update to openoffice.org announced via advisory DSA...

Debian: Security Advisory (DSA-1375-1)

The remote host is missing an update for the...

Fedora 8 : moodle-1.8.4-1.fc8 (2008-0610)

Upgrade to 1.8.4, fix CVE-2008-0123. Added Tamil (Sri Lanka) support. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

Fedora 7 : moodle-1.8.4-1.fc7 (2008-0627)

Upgrade to 1.8.4, fix CVE-2008-0123. Added Tamil (Sri Lanka) support. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

levelone-root.txt

...

Level-One WBR-3460A Grants Root Access

Advisory: Level-One WBR-3460A Grants Root Access Risk: High Vendor Status: Vendor has not released an updated version Release Date: 08/01/2008 Last Modified: 01/01/2008 Author: Anastasios Monachos [anastasiosm(at)gmail(dot)com] I Affected Products: Level-One WBR-3460A latest firmware available...

openSUSE 10 Security Update : OpenOffice_org (OpenOffice_org-4802)

This update of OpenOffice_org adds restrictions to SQL statements of Java-based databases to avoid the execution of native Jave code by creating procedures....

Web Server Malicious JavaScript Link Detection

The remote web server seems to link to malicious JavaScript files hosted on a third-party website. This typically means that the remote web server has been compromised, and it may infect its visitors as...

Mandrake Linux Security Advisory : mozilla-firefox (MDKSA-2007:246)

A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 2.0.0.11. This update provides the latest Firefox to correct these issues. As well, it provides Firefox 2.0.0.11 for older...

remote code execution in OpenOffice_org

OpenOffice_org was updated to add restrictions to SQL statements of Java-based databases to avoid the execution of native Java code by creating procedures. (CVE-2007-4575) Solution There is no known workaround, please install the update...

Debian DSA-1419-1 : openoffice.org - programming error

A vulnerability has been discovered in HSQLDB, the default database engine shipped with OpenOffice.org. This could result in the execution of arbitrary Java code embedded in a OpenOffice.org database document with the user's privilege. This update requires an update of both openoffice.org and...

[SECURITY] [DSA 1419-1] New OpenOffice.org packages fix arbitrary Java code execution

Debian Security Advisory DSA 1419-1 [email protected] http://www.debian.org/security/ Martin Schulze December 5th, 2007 http://www.debian.org/security/faq Package : openoffice.org, hsqldb Vulnerability : programming...

Unfixed XSS vulnerability at www.teach12.com

Security researcher SCRiPToRiuM, has submitted on 12/02/2007 a cross-site-scripting (XSS) vulnerability affecting www.teach12.com, which at the time of submission ranked 64154 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 12/02/2007. It is...

Ubuntu 5.04 / 6.06 LTS : openoffice.org-amd64, openoffice.org vulnerabilities (USN-313-1)

It was possible to embed Basic macros in documents in a way that OpenOffice.org would not ask for confirmation about executing them. By tricking a user into opening a malicious document, this could be exploited to run arbitrary Basic code (including local file access and modification) with the...

Fedora 7 : moodle-1.8.2-1.fc7 (2007-1445)

Upgrade to 1.8.2, Security fixes for 247582. Also corrects bug 245750, cron job problem. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...

openSUSE 10 Security Update : moodle (moodle-3959)

This update fixes the following issues : possible remote file inclusion (CVE-2007-1429) XSS injection in SCORM 1.2 reports Fixed XSS in login block Additionally changes : Fixed visibility of site blogs moodle-config.php is now located in /etc/moodle/ added safe_mode and...

openSUSE 10 Security Update : OpenOffice_org (OpenOffice_org-4319)

This update of OpenOffice_org fixes a bug in TIFF parsing code that leads to a heap overflow. (CVE-2007-2834) This bug can be exploited with user assistance to execute arbitrary...

openSUSE 10 Security Update : OpenOffice_org (OpenOffice_org-2682)

Following security problems were fixed in OpenOffice_org : This update also brings OpenOffice_org to version 2.0.4.17, same as SUSE Linux Enterprise Desktop 10 and contains lots of bugfixes. CVE-2007-0002: Various problems were fixed in the Wordperfect converter library libwpd in OpenOffice_org...

openSUSE 10 Security Update : OpenOffice_org (OpenOffice_org-1698)

Following security problems were found in OpenOffice_org : CVE-2006-2198: A security vulnerability in OpenOffice.org may make it possible to inject basic code into documents which is executed upon loading of the document. The user will not be asked or notified and the macro will...

Stack overflow

Stack-based buffer overflow in the Line Printer Daemon (LPD) in Cisco IOS before 12.2(18)SXF11, 12.4(16a), and 12.4(2)T6 allow remote attackers to execute arbitrary code by setting a long hostname on the target system, then causing an error message to be printed, as demonstrated by a telnet...

CVE-2007-5381

Stack-based buffer overflow in the Line Printer Daemon (LPD) in Cisco IOS before 12.2(18)SXF11, 12.4(16a), and 12.4(2)T6 allow remote attackers to execute arbitrary code by setting a long hostname on the target system, then causing an error message to be printed, as demonstrated by a telnet...

SUSE-SA:2007:052: OpenOffice_org

The remote host is missing the patch for the advisory SUSE-SA:2007:052...

Debian DSA-1375-1 : openoffice.org - buffer overflow

A heap overflow vulnerability has been discovered in the TIFF parsing code of the OpenOffice.org suite. The parser uses untrusted values from the TIFF file to calculate the number of bytes of memory to allocate. A specially crafted TIFF image could trigger an integer overflow and subsequently a...

Mandrake Linux Security Advisory : openoffice.org (MDKSA-2007:186)

An integer overflow in the TIFF parser in OpenOffice.org prior to version 2.3 allows remote attackers to execute arbitrary code via a TIFF file with crafted values which triggers the allocation of an incorrect amount of memory which results in a heap-based buffer overflow. Updated packages have...

remote code execution in OpenOffice_org

OpenOffice_org was updated to fix a bug in TIFF parsing code that lead to a heap overflow. (CVE-2007-2834) Solution There is no known workaround, please install the update...

[SECURITY] [DSA 1375-1] New OpenOffice.org packages fix arbitrary code execution

Debian Security Advisory DSA 1375-1 [email protected] http://www.debian.org/security/ Martin Schulze September 17th, 2007 http://www.debian.org/security/faq Package : openoffice.org Vulnerability : buffer overflow Problem...

MDKA-2007:086 : mozilla-firefox

The previous Mozilla Firefox updates did not properly handle the default and GNOME themes which prevented buttons from being displayed. As well, there were some problems with language support. These updated packages are being provided to correct the...

Cisco IOS Show IP BGP Regexp远程拒绝服务漏洞

Cisco IOS是一款流行的网络操作系统。 Cisco IOS不正确处理部分CLI命令，远程攻击者可以利用漏洞对系统进行拒绝服务攻击，可导致设备重启。 问题存在于处理"show ip bgp regexp"命令时，如果提交部分规则表达式作为参数并执行，结果可导致路由器重启或重建BGP路由表。如果多次成功利用此问题，可导致路由器变的重复不可用。 Cisco IOS XR 3.4.1 Cisco IOS XR 3.4 Cisco IOS XR 3.3.4 Cisco IOS XR 3.3.3 Cisco IOS XR 3.3.2 Cisco IOS XR 3.3.1 Cisco IOS XR....

Cisco IOS Next Hop Resolution Protocol Vulnerability

...

Mandrake Linux Security Advisory : mozilla-firefox (MDKSA-2007:152)

A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 2.0.0.6. This update provides the latest Firefox to correct these issues. As well, it provides Firefox 2.0.0.6 for older...

TISA2007-06-Public.txt

...

[Full-disclosure] Element CMS script insertion vulnerability

========================================================================= TeamIntell Security Advisory TISA2007-06-Public Element CMS "s" parameter script insertion vulnerability Release Date: 14.7.2007 Severity: Less critical Impact: Cross-site scripting (XSS) Status: ...

Mandrake Linux Security Advisory : openoffice.org (MDKSA-2007:144)

A heap overflow flaw was found in the RTF import filter of OpenOffice.org. If a victim were to open a specially crafted RTF file, OpenOffice.org could crash or possibly execute arbitrary code. Updated packages have been patched to prevent the above...

Mandrake Linux Security Advisory : mozilla-thunderbird (MDKSA-2007:119)

A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Thunderbird program, version 1.5.0.12. This update provides the latest Thunderbird to correct these...

Mandrake Linux Security Advisory : mozilla-firefox (MDKSA-2007:120)

A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 1.5.0.12. This update provides the latest Firefox to correct these...

Debian DSA-1307-1 : openoffice.org - heap overflow

John Heasman discovered a heap overflow in the routines of OpenOffice.org that parse RTF files. A specially crafted RTF file could cause the filter to overwrite data on the heap, which may lead to the execution of arbitrary...

[SECURITY] [DSA 1307-1] New OpenOffice.org packages fix arbitrary code execution

Debian Security Advisory DSA 1307-1 [email protected] http://www.debian.org/security/ Martin Schulze June 12th, 2007 http://www.debian.org/security/faq Package : openoffice.org Vulnerability : heap overflow Problem...

SUSE-SA:2007:023: OpenOffice_org,libwpd

The remote host is missing the patch for the advisory SUSE-SA:2007:023...

Cmd mode under the invasion of technology Encyclopedia of Cmd,mode,intrusion,technical-vulnerability warning-the black bar safety net

Foreword Cmd Shell(command line interaction)is a hack eternal topic. It is historic and enduring. This article is intended to introduce and summarize some of the command line under control of the Windows System. These methods are as far as possible use the system comes with the tools to...