7624 matches found
PT-2013-1430 · Gnu +2 · Gdb +2
Name of the Vulnerable Software and Affected Versions: GNU Project Debugger GDB versions prior to 7.5 Description: The issue allows local users to gain privileges via crafted files, such as Python scripts, when .debug gdb scripts is defined. This occurs because GDB automatically loads certain fil...
Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Microsoft Internet Explorer CHTML Use-After-Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Microsoft Windows OLE Automation Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Microsoft...
Microsoft Internet Explorer COmWindowProxy Use-After-Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
PT-2013-2071 · Microsoft · Internet Explorer
Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer versions 8 through 9 Description: The issue allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object. This occurs due to the way Internet Explorer accesses a...
Slackware 14.0 / current : openssl (SSA:2013-042-01)
New openssl packages are available for Slackware 14.0, and -current to fix a bug in openssl-1.0.1d. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2013-042-01. The text itself is copyright...
Linksys E1500E2500 - Multiple Vulnerabilities
Linksys E1500E2500 - Multiple Vulnerabilities Device Name: Linksys E1500 / E2500 Vendor: Linksys ============ Device Description: ============ The Linksys E1500 is a Wireless-N Router with SpeedBoost. It lets you access the Internet via a wireless connection or through one of its four switched...
Slackware 14.0 / current : curl (SSA:2013-038-01)
New curl packages are available for Slackware 14.0, and -current to fix a security issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2013-038-01. The text itself is copyright C Slackwa...
PT-2013-06: Current User Context Access in Oracle Siebel CRM
The specialists of the Positive Research center have detected a Current User Context Access vulnerability in Oracle Siebel CRM. An attacker is able to access the system and operate in the name of aby user. The attacker can get context bruteforcing certain cookie values. All systems with hard-code...
Microsoft Internet Explorer Layout Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Microsoft .NET Framework System.DirectoryServices.Protocols Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft .NET Framework. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Slackware 12.1 / 12.2 / 13.0 / 13.1 / 13.37 / 14.0 / current : mysql (SSA:2013-022-01)
New mysql packages are available for 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix security and other issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2013-022-01. The tex...
Slackware 13.37 / 14.0 / current : mozilla-firefox (SSA:2013-009-01)
New mozilla-firefox packages are available for Slackware 13.37, 14.0, and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2013-009-01. The text itself is...
Slackware 13.37 / 14.0 / current : seamonkey (SSA:2013-009-03)
New seamonkey packages are available for Slackware 13.37, 14.0, and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2013-009-03. The text itself is copyrigh...
mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 13.37, 14.0, and -current to fix security issues. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/mozilla-thunderbird-17.0.2-i486-1slack14.0.txz: Upgraded. This release contains security fixes and improvements...
mozilla-firefox
New mozilla-firefox packages are available for Slackware 13.37, 14.0, and -current to fix security issues. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/mozilla-firefox-18.0-i486-1slack14.0.txz: Upgraded. This release contains security fixes and improvements. For more...
Microsoft Internet Explorer execCommand Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Microsoft Internet Explorer CMarkup outerText Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Microsoft Internet Explorer OnRowsInserted Event Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...