Lucene search
K

135 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 12:7 a.m.42 views

Security Bulletin: Mozilla firefox vulnerability issues on SONAS (CVE-2013-5590, CVE-2013-5595, CVE-2013-5597, CVE-2013-5599, CVE-2013-5600, CVE-2013-5601, CVE-2013-5602, CVE-2013-5604)

Summary SONAS is shipped with Mozilla firefox, for which fixes are available for security vulnerabilities. Vulnerability Details CVE ID: CVE-2013-5590 CVE-2013-5595 CVE-2013-5597 CVE-2013-5599 CVE-2013-5600 CVE-2013-5601 CVE-2013-5602 CVE-2013-5604 DESCRIPTION: SONAS is shipped with Mozilla...

10CVSS0.1AI score0.06493EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 12:7 a.m.40 views

Security Bulletin: Mozilla firefox vulnerability issues on IBM Storwize V7000 Unified (CVE-2013-5590, CVE-2013-5595, CVE-2013-5597, CVE-2013-5599, CVE-2013-5600, CVE-2013-5601, CVE-2013-5602, CVE-2013-5604)

Summary IBM Storwize V7000 Unified is shipped with Mozilla firefox, for which fixes are available for security vulnerabilities. Vulnerability Details CVE ID: CVE-2013-5590 CVE-2013-5595 CVE-2013-5597 CVE-2013-5599 CVE-2013-5600 CVE-2013-5601 CVE-2013-5602 CVE-2013-5604 DESCRIPTION: IBM Storwize...

10CVSS0.5AI score0.06493EPSS
Exploits0Affected Software1
Cloud Foundry
Cloud Foundry
added 2017/03/31 12:0 a.m.51 views

USN-3225-1: libarchive vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description It was discovered that libarchive incorrectly handled hardlink entries when extracting archives. A remote attacker could possibly use this issue to overwrite arbitrary files. CVE-2016-5418 Christian...

8.6CVSS7.8AI score0.06251EPSS
Exploits1
OpenVAS
OpenVAS
added 2017/03/10 12:0 a.m.35 views

Ubuntu: Security Advisory (USN-3225-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.2AI score0.06251EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2017/03/10 12:0 a.m.65 views

Ubuntu 14.04 LTS / 16.04 LTS : libarchive vulnerabilities (USN-3225-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3225-1 advisory. It was discovered that libarchive incorrectly handled hardlink entries when extracting archives. A remote attacker could possibly use this...

8.6CVSS7.3AI score0.06251EPSS
Exploits1References8
Ubuntu
Ubuntu
added 2017/03/09 6:41 p.m.90 views

USN-3225-1: libarchive vulnerabilities

It was discovered that libarchive incorrectly handled hardlink entries when extracting archives. A remote attacker could possibly use this issue to overwrite arbitrary files. CVE-2016-5418 Christian Wressnegger, Alwin Maier, and Fabian Yamaguchi discovered that libarchive incorrectly handled...

8.6CVSS7.1AI score0.06251EPSS
Exploits1
Mageia
Mageia
added 2017/02/20 1:0 p.m.36 views

Updated libarchive packages fix security vulnerability

An error in the lhareadfileheader1 function archivereadsupportformatlha.c in libarchive 3.2.2 allows remote attackers to trigger an out-of-bounds read memory access and subsequently cause a crash via a specially crafted archive. CVE-2017-5601...

7.5CVSS5.6AI score0.04447EPSS
Exploits0References3
Debian
Debian
added 2017/01/31 7:46 a.m.55 views

[SECURITY] [DLA 810-1] libarchive security update

Package : libarchive Version : 3.0.4-3+wheezy5+deb7u1 CVE ID : CVE-2017-5601 Debian Bug : 853278 It was discovered that there was a heap buffer overflow in libarchive, a multi-format archive and compression library. For Debian 7 "Wheezy", this issue has been fixed in libarchive version...

7.5CVSS7AI score0.04447EPSS
Exploits0
CVE
CVE
added 2017/01/27 10:1 p.m.149 views

CVE-2017-5601

CVE-2017-5601 affects libarchive 3.2.2, where an error in the lha_read_file_header_1() function (archive_read_support_format_lha.c) allows a remote attacker to trigger an out-of-bounds read and crash the application via a specially crafted archive. External sources in the connected documents cons...

7.5CVSS6.6AI score0.04447EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2016/10/25 2:31 p.m.1 views

CVE-2016-5601

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 12.1.3.0, 12.2.1.0, and 12.2.1.1 allows local users to affect confidentiality and integrity via vectors related to CIE Related Components...

6.3CVSS5.8AI score0.00395EPSS
Exploits0References3
CVE
CVE
added 2016/10/25 2:0 p.m.56 views

CVE-2016-5601

CVE-2016-5601 affects Oracle WebLogic Server within Oracle Fusion Middleware 12.1.3.0, 12.2.1.0, and 12.2.1.1. The issue is described as an unspecified vulnerability in the CIE Related Components subcomponent that allows a local attacker to impact confidentiality and integrity. The CVSS data (NVD...

6.3CVSS5.3AI score0.00395EPSS
Exploits0References3Affected Software1
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.24 views

Oracle: Security Advisory (ELSA-2013-1476)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.4AI score0.06493EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/05/20 12:0 a.m.57 views

SUSE SLED11 / SLES11 Security Update : wireshark (SUSE-SU-2013:0238-1)

This update to 1.8.4 fixes the following issues : - Wireshark could leak potentially sensitive host name resolution information when working with multiple pcap-ng files. wnpa-sec-2012-30, CVE-2012-5592 - The USB dissector could go into an infinite loop. wnpa-sec-2012-31, CVE-2012-5593 - The sFlow...

7.1AI score
Exploits1References37
CVE
CVE
added 2014/09/09 1:0 a.m.51 views

CVE-2014-5601

The CVE-2014-5601 issue affects the Android app 1800CONTACTS (com.contacts1800.ecomapp) version 2.7.0, where the app does not verify SSL/TLS X.509 certificates when establishing HTTPS connections. Root cause: missing/incorrect certificate validation logic allows MITM attackers to spoof servers an...

5.4CVSS6AI score0.00271EPSS
Exploits0References3Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

RealPlayer ierpplug.dll ActiveX Control Playlist Name Buffer Overflow

No description provided by source. $Id: realplayerimport.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.29 views

openSUSE Security Update : seamonkey (openSUSE-SU-2013:1788-1)

update to SeaMonkey 2.22 bnc847708 - rebased patches - requires NSS 3.15.2 or higher - MFSA 2013-93/CVE-2013-5590/CVE-2013-5591/CVE-2013-5592 Miscellaneous memory safety hazards - MFSA 2013-94/CVE-2013-5593 bmo868327 Spoofing addressbar through SELECT element - MFSA 2013-95/CVE-2013-5604...

10CVSS7.6AI score0.06493EPSS
Exploits0References27
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.27 views

openSUSE Security Update : seamonkey (openSUSE-SU-2013:1644-1)

update to SeaMonkey 2.22 bnc847708 - rebased patches - requires NSS 3.15.2 or higher - MFSA 2013-93/CVE-2013-5590/CVE-2013-5591/CVE-2013-5592 Miscellaneous memory safety hazards - MFSA 2013-94/CVE-2013-5593 bmo868327 Spoofing addressbar through SELECT element - MFSA 2013-95/CVE-2013-5604...

10CVSS7.6AI score0.06493EPSS
Exploits0References27
OpenVAS
OpenVAS
added 2013/11/19 12:0 a.m.47 views

SuSE Update for Mozilla Suite openSUSE-SU-2013:1633-1 (Mozilla Suite)

Check for the Version of Mozilla Suite OpenVAS Vulnerability Test $Id: gbsuse201316331.nasl 8045 2017-12-08 08:39:37Z santu $ SuSE Update for Mozilla Suite openSUSE-SU-2013:1633-1 Mozilla Suite Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH,...

10CVSS0.6AI score0.08894EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2013/11/19 12:0 a.m.26 views

openSUSE: Security Advisory for Mozilla (openSUSE-SU-2013:1634-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2013/11/17 12:0 a.m.43 views

SuSE 11.2 Security Update : MozillaFirefox (SAT Patch Number 8545)

Mozilla Firefox was updated to the 17.0.10ESR release, fixing various bugs and security issues : - Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption und...

10CVSS7.8AI score0.06493EPSS
Exploits0References25
Rows per page
Query Builder