71 matches found
Debian Security Advisory DSA 3263-1 (proftpd-dfsg - security update)
Vadim Melihow discovered that in proftpd-dfsg, an FTP server, the modcopy module allowed unauthenticated users to copy files around on the server, and possibly to execute arbitrary code. OpenVAS Vulnerability Test $Id: deb3263.nasl 6609 2017-07-07 12:05:59Z cfischer $ Auto-generated from advisory...
Debian: Security Advisory (DSA-3263-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2014-3263
Cisco IOS Software ScanSafe module (15.3(3)M) is affected by CVE-2014-3263, where unauthenticated, remote attackers can trigger a denial of service (device reload) by sending HTTPS packets that must be redirected to a ScanSafe tower, via Bug ID CSCum97038. The concrete impact is a reload of the t...
CVE-2013-3263
CVE-2013-3263 affects the WordPress WP Ultimate Email Marketer Plugin (tested with version 1.1.0 and possibly earlier). The connected sources describe multiple XSS vulnerabilities that allow remote attackers to inject arbitrary script or HTML via a range of parameters (siteurl, action, campaignna...
Digium Asterisk IAX2 POKE Request Denial of Service (CVE-2008-3263)
A denial of service vulnerability has been reported in Digium Asterisk...
[security bulletin] HPSBMU02815 SSRT100715 rev.3 - HP SiteScope SOAP Security Issues, Remote Disclosure of Information, Remote Code Execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03489683 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03489683 Version: 3 HPSBMU02815...
CVE-2012-3263
Unspecified vulnerability in a SOAP feature in HP SiteScope 11.10 through 11.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1465...
CVE-2012-3263
HP SiteScope versions 11.10–11.12 are affected by CVE-2012-3263 due to a vulnerability in the SOAP feature that could allow remote code execution via unknown vectors (ZDI-CAN-1465). The HP Security Bulletin HPSBMU02815 rev.3 documents that update v11.13 fixes the issue; after applying the update,...
Fedora Update for zabbix FEDORA-2011-10583
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Gentoo Security Advisory GLSA 201201-01 (phpMyAdmin)
The remote host is missing updates announced in advisory GLSA 201201-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Zabbix < 1.8.6 Multiple Vulnerabilities
According to its self-reported version number, the instance of Zabbix listening on the remote host is earlier than 1.8.6. It could, therefore, be affected by multiple vulnerabilities. - An input validation error exists in the script 'acknow.php' that allows arbitrary script or HTML injection via...
CVE-2011-3263
zabbixagentd in Zabbix before 1.8.6 and 1.9.x before 1.9.4 allows context-dependent attackers to cause a denial of service CPU consumption by executing the vfs.file.cksum command for a special device, as demonstrated by the /dev/urandom device...
CVE-2011-3263
zabbixagentd in Zabbix before 1.8.6 and 1.9.x before 1.9.4 allows context-dependent attackers to cause a denial of service CPU consumption by executing the vfs.file.cksum command for a special device, as demonstrated by the /dev/urandom device...
CVE-2011-3263
CVE-2011-3263 affects Zabbix: zabbix_agentd in Zabbix < 1.8.6 and 1.9.x
phpMyAdmin 3.x setup脚本远程跨站脚本漏洞
CVE ID: CVE-2010-3263 phpMyAdmin是用PHP编写的工具,用于通过WEB管理MySQL。 phpMyAdmin的setup脚本没有正确地过滤提交给setup/frames/index.inc.php页面的参数,远程攻击者可以通过恶意服务器名称注入并执行任意Web脚本或HTML。 phpMyAdmin 3.x 厂商补丁: phpMyAdmin ---------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
CVE-2010-3263
Cross-site scripting XSS vulnerability in setup/frames/index.inc.php in the setup script in phpMyAdmin 3.x before 3.3.7 allows remote attackers to inject arbitrary web script or HTML via a server name...
CVE-2010-3263
Cross-site scripting XSS vulnerability in setup/frames/index.inc.php in the setup script in phpMyAdmin 3.x before 3.3.7 allows remote attackers to inject arbitrary web script or HTML via a server name...
CVE-2010-3263
Cross-site scripting XSS vulnerability in setup/frames/index.inc.php in the setup script in phpMyAdmin 3.x before 3.3.7 allows remote attackers to inject arbitrary web script or HTML via a server name...
CVE-2010-3263
CVE-2010-3263 is a cross-site scripting (XSS) vulnerability in phpMyAdmin's setup script (setup/frames/index.inc.php) affecting phpMyAdmin 3.x before 3.3.7. An attacker can inject arbitrary script/HTML via the server name, enabling XSS in the affected interface. The provided documents state the a...
XSS attack on setup script.
PMASA-2010-7 Announcement-ID: PMASA-2010-7 Date: 2010-09-08 Summary XSS attack on setup script. Description It was possible to conduct a XSS attack using spoofed request to setup script. Severity We consider this vulnerability to be non critical. Affected Versions For 3.x: versions before 3.3.7 a...