98 matches found
Seamonkey Multiple Vulnerabilities (Dec 2009) - Linux
Seamonkey browser is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 12 : seamonkey-2.0.1-1.fc12 (2009-13362)
Update to new upstream SeaMonkey version 2.0.1, fixing multiple security issues detailed in the upstream advisories: http://www.mozilla.org/security/known- vulnerabilities/seamonkey20.htmlseamonkey2.0.1 CVE-2009-3979 CVE-2009-3980 CVE-2009-3982 CVE-2009-3983 CVE-2009-3984 CVE-2009-3985...
Fedora 11 : Miro-2.5.2-7.fc11 / blam-1.8.5-17.fc11 / chmsee-1.0.1-14.fc11 / epiphany-2.26.3-7.fc11 / etc (2009-13333)
Update to new upstream Firefox version 3.5.6, fixing multiple security issues detailed in the upstream advisories: http://www.mozilla.org/security/known- vulnerabilities/firefox35.htmlfirefox3.5.6 Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox /...
CVE-2009-3980
CVE-2009-3980 affects Mozilla Firefox 3.5.x prior to 3.5.6, SeaMonkey prior to 2.0.1, and Thunderbird; the issue is memory corruption in the browser engine that can lead to a denial of service or potentially arbitrary code execution via unknown vectors. Public records indicate fixes in Firefox 3....
Mozilla Foundation Security Advisory 2009-65
Mozilla Foundation Security Advisory 2009-65 Title: Crashes with evidence of memory corruption rv:1.9.1.6/ 1.9.0.16 Impact: Critical Announced: December 15, 2009 Reporter: Mozilla developers and community Products: Firefox, Thunderbird, SeaMonkey Fixed in: Firefox 3.5.6 Firefox 3.0.16 SeaMonkey...
CVE-2008-3980
Unspecified vulnerability in the Upgrade component in Oracle Database 10.1.0.5 and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors...
CVE-2008-3980
CVE-2008-3980 affects Oracle Database 10.1.0.5 and 10.2.0.3, specifically the Upgrade component. The vulnerability allows remote authenticated users to impact confidentiality and integrity via unknown vectors; the exact vectors/conditions are not detailed in the provided documents. Oracle’s Octob...
FreeBSD Ports: trac, ja-trac
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
SuSE 10 Security Update : PHP5 (ZYPP Patch Number 3980)
This update fixes multiple bugs in php : - predictable generaton of an initialization vector IV in the mcrypt extension - additional cookie attributes could be injected via a session id - specially crafted files could cause integer overflows in gd and leverage them to at least crash gd based...
CVE-2007-3980
CVE-2007-3980 describes a PHP remote file inclusion vulnerability in page.php of RCMS Pro RGameScript Pro, allowing remote code execution via a URL in the id parameter. The issue arises from unvalidated user input enabling RFI, with the affected product identified as RCMS Pro RGameScript Pro. CVS...
CVE-2006-3980
PHP remote file inclusion vulnerability in administrator/components/commgm/help.mgm.php in Mambo Gallery Manager MGM 0.95r2 and earlier for Mambo 4.5 allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...
CVE-2006-3980
PHP remote file inclusion vulnerability in administrator/components/commgm/help.mgm.php in Mambo Gallery Manager MGM 0.95r2 and earlier for Mambo 4.5 allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...
CVE-2006-3980
The CVE-2006-3980 entry describes a PHP remote file inclusion in Mambo Gallery Manager (MGM) 0.95r2 and earlier for Mambo 4.5, caused by using a URL in mosConfig_absolute_path within administrator/components/com_mgm/help.mgm.php. This vulnerability allows remote attackers to execute arbitrary PHP...
Edgewall Software Trac SQL injection flaw
The remote web server contains a CGI script that is affected by a SQL injection flaw. Description: The remote host is running Trac, an enhanced wiki and issue tracking system for software development projects written in python. The remote version of this software is prone to a SQL injection flaw...
Edgewall Software Trac SQL injection flaw
The remote version of Trac is prone to a SQL injection flaw through the ticket query module due to SPDX-FileCopyrightText: 2005 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
CVE-2005-3980
CVE-2005-3980 describes an SQL injection in Edgewall Trac’s ticket query module, exploitable via the group parameter. The vulnerability affects Trac 0.9 and possibly earlier, enabling remote SQL commands to be executed. Multiple sources (NVD, OSV, OpenVAS, and OSV detail entries) corroborate the ...
CVE-2005-3980
SQL injection vulnerability in the ticket query module in Edgewall Trac 0.9 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the group parameter...
CVE-2005-3980
SQL injection vulnerability in the ticket query module in Edgewall Trac 0.9 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the group parameter...