84 matches found
CVE-2015-3963
CVE-2015-3963 describes a TCP initial sequence number (ISN) predictability vulnerability in Wind River VxWorks (various versions, including 5.x–7.x as deployed by Schneider Electric SAGE RTUs). The root cause is generation of predictable TCP ISNs, enabling remote attackers to spoof or disrupt TCP...
openSUSE Security Update : MozillaFirefox (openSUSE-SU-2012:1064-1)
Mozilla Firefox, Thunderbird, xulrunner, seamonkey 15.0 update bnc777588 - MFSA 2012-57/CVE-2012-1970 Miscellaneous memory safety hazards - MFSA 2012-58/CVE-2012-1972/CVE-2012-1973/CVE-2012-1974/CVE-20 12-1975 CVE-2012-1976/CVE-2012-3956/CVE-2012-3957/CVE-2012-3958/ CVE-2012-3959...
openSUSE Security Update : MozillaFirefox (openSUSE-SU-2012:1065-1)
Mozilla Firefox, Thunderbird, xulrunner, seamonkey 15.0 update bnc777588 - MFSA 2012-57/CVE-2012-1970 Miscellaneous memory safety hazards - MFSA 2012-58/CVE-2012-1972/CVE-2012-1973/CVE-2012-1974/CVE-20 12-1975 CVE-2012-1976/CVE-2012-3956/CVE-2012-3957/CVE-2012-3958/ CVE-2012-3959...
CVE-2014-3963
Consolidated details: CVE-2014-3963 affects ownCloud Server before 6.0.1. The root cause is an improper permissions check, enabling remote authenticated users to access arbitrary preview pictures via unspecified vectors. The vulnerability impacts preview access and does not indicate remote code e...
CVE-2013-3963
Cross-site request forgery CSRF vulnerability in goform/usermanage in Grandstream GXV3501, GXV3504, GXV3601, GXV3601HD/LL, GXV3611HD/LL, GXV3615W/P, GXV3651FHD, GXV3662HD, GXV3615WPHD, GXV3500, and possibly other camera models allows remote attackers to hijack the authentication of unspecified...
CVE-2013-3963
CVE-2013-3963 describes a CSRF vulnerability in Grandstream goform/usermanage affecting GXV3501/3504/3601/3601HD/LL/3611HD/LL/3615W/P/3651FHD/3662HD/3615WP_HD/3500 (and potentially other camera models) that lets remote attackers hijack a victim’s session to add users. Root cause is CSRF in the us...
CVE-2013-3963
creationtimestamp| type| source ---|---|--- 2013-06-12 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38584...
SuSE Update for MozillaFirefox openSUSE-SU-2012:1065-1 (MozillaFirefox)
Check for the Version of MozillaFirefox OpenVAS Vulnerability Test $Id: gbsuse201210651.nasl 8045 2017-12-08 08:39:37Z santu $ SuSE Update for MozillaFirefox openSUSE-SU-2012:1065-1 MozillaFirefox Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH,...
openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2012:1065-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
RHEL 5 : mysql (RHSA-2009:1289)
Updated mysql packages that fix various security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. MySQL is a multi-user, multi-threaded SQL database server. It consists of...
SuSE Update for MozillaFirefox openSUSE-SU-2012:1064-1 (MozillaFirefox)
Check for the Version of MozillaFirefox OpenVAS Vulnerability Test $Id: gbsuse201210641.nasl 8285 2018-01-04 06:29:16Z teissa $ SuSE Update for MozillaFirefox openSUSE-SU-2012:1064-1 MozillaFirefox Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH,...
MozillaFirefox: Update to version 15 (critical)
Mozilla Firefox, Thunderbird, xulrunner, seamonkey 15.0 update bnc777588 MFSA 2012-57/CVE-2012-1970 Miscellaneous memory safety hazards MFSA 2012-58/CVE-2012-1972/CVE-2012-1973/CVE-2012-1974/CVE-2012-1 975 CVE-2012-1976/CVE-2012-3956/CVE-2012-3957/CVE-2012-3958/CVE- 2012-3959...
CVE-2012-3963
CVE-2012-3963 is a Use-after-free in Mozilla Firefox's js::gc::MapAllocToTraceKind that can allow remote code execution. Affected: Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, SeaMonkey before 2.12. Mitigation: upgrade to Firefo...
CVE-2012-3963
Use-after-free vulnerability in the js::gc::MapAllocToTraceKind function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to execute arbitrary code via unspecified vectors...
Google Chrome Multiple Vulnerabilities - February 12 (MAC OS X)
The host is installed with Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnfeb12macosx.nasl 6521 2017-07-04 14:51:10Z cfischer $ Google Chrome Multiple Vulnerabilities - February 12 MAC OS X Authors: Madhuri D Copyright: Copyright c 20...
FreeBSD Ports: chromium
The remote host is missing an update to the system as announced in the referenced advisory. VID fe1976c2-5317-11e1-9e99-00262d5ed8ee OpenVAS Vulnerability Test $ Description: Auto generated from VID fe1976c2-5317-11e1-9e99-00262d5ed8ee Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
Gentoo Security Advisory GLSA 201201-02 (MySQL)
The remote host is missing updates announced in advisory GLSA 201201-02. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
FreeBSD : chromium -- multiple vulnerabilities (fe1976c2-5317-11e1-9e99-00262d5ed8ee)
Google Chrome Releases reports : 73478 Low CVE-2011-3953: Avoid clipboard monitoring after paste event. Credit to Daniel Cheng of the Chromium development community. 92550 Low CVE-2011-3954: Crash with excessive database usage. Credit to Collin Payne. 93106 High CVE-2011-3955: Crash aborting an...
CVE-2011-3963
CVE-2011-3963 affects Google Chromium/Chrome components; description indicates a denial-of-service via out-of-bounds read triggered by PDF FAX image handling. Connected advisories reference Chromium-related vulnerabilities (CVE-2011-3963 among others) and cite remediation guidance. Gentoo GLSA 20...
Microsoft Windows Kernel NDProxy本地权限提升漏洞(MS10-099)
BUGTRAQ ID: 45269 CVE ID: CVE-2010-3963 Microsoft Windows是微软发布的非常流行的操作系统。 Microsoft Windows的NDProxy驱动在实现上存在漏洞,攻击者可利用此漏洞以内核级别权限执行任意代码,完全控制受影响的计算机。 此漏洞源于由于未正确验证从用户模式传递到内核的输入,导致路由和远程访问NDProxy驱动程序溢出。 Microsoft Windows XP Microsoft Windows Server 2003 AVAYA Meeting Exchange 厂商补丁: Microsoft ---------...