144 matches found
CVE-2015-0519
The InputAccel Database IADB installation process in EMC Captiva Capture 7.0 before patch 25 and 7.1 before patch 13 places a cleartext InputAccel IA SQL password in a DAL log file, which allows local users to obtain sensitive information by reading a file...
Apple QuickTime FlashPix NumberOfTiles - Remote Code Execution Vulnerability
No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | Day 2 Binary Analysis | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/apple-quicktime-flashpix-numberoftiles-vulnerability/ ''' ''' Title : Apple QuickTime...
openSUSE Security Update : flash-player (openSUSE-SU-2014:0679-1)
5 vulnerabilities were discovered for the flash-player packages in openSUSE versions 12.3 and 13.1. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2014-377. The text description of...
GLSA-201406-08 : Adobe Flash Player: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201406-08 Adobe Flash Player: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could possibly...
Adobe Flash Player Multiple Vulnerabilities (May 2014) - Mac OS X
Adobe Flash Player is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:flashplayer";...
SuSE 11.3 Security Update : flash-player (SAT Patch Number 9259)
Adobe flash-player was updated to version 11.2.202.359 to resolve several security issues : - Remote attackers could execute arbitrary code and bypass a sandbox protection mechanism via unspecified vectors. CVE-2014-0510 - Remote attackers could bypass the Same Origin Policy via unspecified...
CVE-2014-0517
Adobe Flash Player and AIR vulnerabilities (CVE-2014-0517) allow bypass of intended access restrictions in specific older builds: Flash Player before 13.0.0.214 (Windows/macOS) and before 11.2.202.359 (Linux), and AIR SDK before 13.0.0.111. The issue is described as a bypass via unspecified vecto...
CVE-2014-0519
CVE-2014-0519 describes a sandbox security bypass in Adobe Flash Player and AIR components. The flaw affects Flash Player pre-13.0.0.214 on Windows/macOS and pre-11.2.202.359 on Linux, plus AIR SDK before 13.0.0.111, enabling attackers to bypass access restrictions via crafted files opened by a u...
MS KB2957151: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer
The remote host is missing KB2957151. It is, therefore, affected by multiple vulnerabilities : - An unspecified use-after-free vulnerability exists that could allow for the execution of arbitrary code. CVE-2014-0510 - An unspecified vulnerability exists that could be used to bypass the same origi...
Oracle Linux 5 : kernel (ELSA-2008-0519)
The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2008-0519 advisory. - x8664 copyuser doesn't zero tail bytes on page fault Vitaly Mayatskikh 451275 451276 CVE-2008-2729 - x8664 fix possible data leaks in copyfromuser...
Oracle Linux 6 : openssh (ELSA-2013-0519)
The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2013-0519 advisory. 5.3p1-84.1 - Add a 'netcat mode' ssh -W 860809 5.3p1-83 - fix the required authentications patch 869903 5.3p1-82 - check return value of PK11Authenticate in...
CVE-2013-0519
CVE-2013-0519 affects IBM Sterling Secure Proxy 3.2.0, 3.3.01 before 3.3.01.23 iFix 1, 3.4.0 before 3.4.0.6 iFix 1, and 3.4.1 before 3.4.1.7, where the web-server version is disclosed in (1) an unspecified page title and (2) an HTTP header, enabling remote disclosure of a version string. IBM reme...
CentOS Update for openssh CESA-2013:0519 centos6
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
RHEL 6 : openssh (RHSA-2013:0519)
Updated openssh packages that fix one security issue, multiple bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score,...
RHEL 3 / 4 : flash-plugin (RHSA-2009:0334)
An updated Adobe Flash Player package that fixes several security issues is now available for Red Hat Enterprise Linux 3 and 4 Extras. This update has been rated as having critical security impact by the Red Hat Security Response Team. The flash-plugin package contains a Firefox-compatible Adobe...
CVE-2012-0519
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.2.0.2, when running on Windows, allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors...
CVE-2012-0519
CVE-2012-0519 is an Oracle issue affecting the Core RDBMS in Oracle Database Server 11.2.0.2 on Windows. The vulnerability is described as an unspecified issue that allows remote authenticated users to impact confidentiality, integrity, and availability via unknown vectors. Connected sources refe...
SuSE 10 Security Update : flash-player (ZYPP Patch Number 6020)
Specially crafted swf files could cause a buffer overflow in flash-player. Attackers could potentially exploit that to execute code on the victim's machine. CVE-2009-0519 / CVE-2009-0520 / CVE-2009-0114 / CVE-2009-0521 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of...
CVE-2011-0519
The CVE-2011-0519 entry describes a SQL injection vulnerability in the Gallarific PHP Photo Gallery script (version 2.1 and possibly other versions) where the id parameter in gallery.php enables remote attackers to execute arbitrary SQL commands. The Red Hat and NVD entries agree on the affected ...
Month Of Abysssec Undisclosed Bugs - Apple QuickTime FlashPix
''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | Day 2 Binary Analysis | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/apple-quicktime-flashpix-numberoftiles-vulnerability/ ''' ''' Title : Apple QuickTime FlashPix NumberOfTiles Remote Code...