Stable Channel Update

The Stable Channel has been updated to 36.0.1985.143 for Windows, Mac and Linux. This release contains a Flash Player update. Security Fixes and Rewards This update includes 12 security fixes. Below, we highlight fixes that were either contributed by external researchers or particularly...

Debian: Security Advisory (DSA-2581-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Linux 4 : thunderbird (ELSA-2010-0682)

From Red Hat Security Advisory 2010:0682 : An updated thunderbird package that fixes several security issues is now available for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS...

CVE-2013-3167

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 does not properly handle objects in memory, which allows local users to gain privileges via a crafted application, aka "Win3...

CVE-2013-3167

Win32k.sys in the Windows kernel-mode drivers exposes a local privilege-escalation vulnerability (CVE-2013-3167) by improperly handling in-memory objects. A crafted user-mode/application can exploit this to gain kernel-level privileges. Affected products include Windows XP (SP2/SP3), Windows Serv...

Microsoft Windows Kernel 'Win32k.sys'本地权限提升漏洞(CVE-2013-3167)

BUGTRAQ ID: 60949 CVECAN ID: CVE-2013-3167 Microsoft Windows是微软公司推出的一系列操作系统。 Windows 内核模式驱动程序不正确地处理内存对象的方式中存在一个信息泄露漏洞，可能导致特权提升。 0 Microsoft Windows Windows XP Service Pack 3 Microsoft Windows Windows Vista x64 Edition Serv Microsoft Windows Windows Vista Service Pack 2 Microsoft Windows Windows...

Microsoft Windows Kernel 'Win32k.sys' CVE-2013-3167 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel due an information disclosure error. A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the comple...

[SECURITY] [DSA 2581-1] mysql-5.1 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2581-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez December 04, 2012 http://www.debian.org/security/faq -...

Scientific Linux Security Update : mysql on SL6.x i386/x86_64 (20121114)

This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages. CVE-2012-1688, CVE-2012-1690, CVE-2012-1703, CVE-2012-2749, CVE-2012-0540, CVE-2012-1689, CVE-2012-1734, CVE-2012-3163,...

CentOS Update for mysql CESA-2012:1462 centos6

Check for the Version of mysql OpenVAS Vulnerability Test CentOS Update for mysql CESA-2012:1462 centos6 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

CVE-2012-3167

CVE-2012-3167 : Unspecified vulnerability in the MySQL Server component of Oracle MySQL 5.1.63 and earlier, and 5.5.25 and earlier, could allow remote authenticated users to affect availability via unknown vectors related to Server Full Text Search. The connected documents corroborate that this f...

Scientific Linux Security Update : thunderbird on SL4.x, SL5.x i386/x86_64

Several flaws were found in the processing of malformed HTML mail content. An HTML mail message containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird. CVE-2010-3169 A buffer overflow flaw was found...

Scientific Linux Security Update : seamonkey on SL3.x, SL4.x i386/x86_64

Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause SeaMonkey to crash or, potentially, execute arbitrary code with the privileges of the user running SeaMonkey. CVE-2010-3169 A buffer overflow flaw was found in SeaMonkey. A web...

HP OpenView Network Node Manager ov.dll Buffer Overflow (CVE-2011-3167)

A stack-based buffer overflow vulnerability has been reported in HP OpenView Network Node Manager NNM...

HP OpenView Network Node Manager Multiple Code Execution Vulnerabilities (HPSBMU02712 SSRT100649)

The installed version of HP Network Node Manager is affected by the following vulnerabilities : - A remote code execution vulnerability exists because the 'nnmRptConfig.exe' CGI application does not adequately validate user-supplied input. CVE-2011-3165 - A remote code execution vulnerability...

HP OpenView Network Node Manager OVBuildPath Overflow

Added: 02/20/2012 CVE: CVE-2011-3167 BID: 50471 OSVDB: 76775 Background HP OpenView Network Node Manager NNM is a network monitoring solution based on SNMP. Problem User supplied data from the NNM web interface is passed to the OVBuildPath function in ov.dll. This function contains a stack overfl...

HP OpenView Network Node Manager OVBuildPath Overflow

Added: 02/20/2012 CVE: CVE-2011-3167 BID: 50471 OSVDB: 76775 Background HP OpenView Network Node Manager NNM is a network monitoring solution based on SNMP. Problem User supplied data from the NNM web interface is passed to the OVBuildPath function in ov.dll. This function contains a stack overfl...

HP OpenView Network Node Manager ov.dll _OVBuildPath Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'HEAD', :uri =...

CVE-2011-3167

creationtimestamp| type| source ---|---|--- 2012-01-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18388 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/hpnnmovbuildpathtextfile.rb 2025-02-06...

HP OpenView Network Node Manager Multiple RCE Vulnerabilities

HP OpenView Network Node Manager NNM is prone to multiple remote code-execution vulnerabilities because it fails to sanitize user-supplied data. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective rig...