9293 matches found
Design/Logic Flaw
Sun Ray Server Software 4.1 on Solaris 10, when Automatic Multi-Group Hotdesking AMGH is enabled, responds to a logout action by immediately logging the user in again, which makes it easier for physically proximate attackers to obtain access to a session by going to an unattended DTU device...
CVE-2009-4314
Sun Ray Server Software 4.1 on Solaris 10, when Automatic Multi-Group Hotdesking AMGH is enabled, responds to a logout action by immediately logging the user in again, which makes it easier for physically proximate attackers to obtain access to a session by going to an unattended DTU device...
Microsoft Security Advisory (954157) Security Enhancements for the Indeo Codec
Microsoft Security Advisory 954157 Security Enhancements for the Indeo Codec Published: December 08, 2009 Version: 1.0 General Information Executive Summary Microsoft is announcing the availability of an update that provides security mitigations to the Indeo codec on supported editions of Microso...
Microsoft Security Bulletin MS09-069 - Important Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service (974392)
Microsoft Security Bulletin MS09-069 - Important Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service 974392 Published: December 08, 2009 Version: 1.0 General Information Executive Summary This security update resolves a privately reported vulnerability in...
CentOS 4 / 5 : ntp (CESA-2009:1648)
An updated ntp package that fixes a security issue is now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Network Time Protocol NTP is used to synchronize a computer's time with a referenced...
The command line to kill various antivirus and security software of the method summary-the vulnerability warning-the black bar safety net
At the command line please use ntsd –c-q-p PID 或者 使用 c:\pskill.exe ravmon command to kill rising software About Norton Enterprise Edition“automatic File Protection“of the close method: 1Turn off the service:net stop "Symantec AntiVirus" successfully closed! 2closing process:Rtvscan, the CCAPP and...
CVE-2009-4167
Unspecified vulnerability in the Automatic Base Tags for RealUrl ltbasetag extension 1.0.0 for TYPO3 allows remote attackers to conduct "Cache spoofing" attacks via unspecified vectors...
CVE-2009-4167
CVE-2009-4167 affects TYPO3 through the RealUrl lt_basetag extension (version 1.0.0). The vulnerability is described as an unspecified remote issue that enables “Cache spoofing” via unspecified vectors. The connected Red Hat, NVD, and CVE records reiterate an unspecified vulnerability without pro...
CVE-2009-4167
Unspecified vulnerability in the Automatic Base Tags for RealUrl ltbasetag extension 1.0.0 for TYPO3 allows remote attackers to conduct "Cache spoofing" attacks via unspecified vectors...
Microsoft SMS Remote Control Service Denial of Service (CVE-2004-0728)
Microsoft's Systems Management Server SMS is a change and configuration management server for the Microsoft Windows platforms. One component of this system is a client utility that allows an administrator to obtain control over remote client computer. This remote assistance service is installed a...
Symantec VERITAS NetBackup Volume Manager Buffer Overflow (CVE-2006-0989)
The Symantec VERITAS NetBackup server product suite is an enterprise backup system solution available for various platforms. It is capable of performing scheduled automatic backups as well as manual backups invoked by a client. A minimal backup environment consists of backup agents and a master...
CVE-2009-3931
Incomplete blacklist vulnerability in browser/download/downloadexe.cc in Google Chrome before 3.0.195.32 allows remote attackers to force the download of certain dangerous files via a "Content-Disposition: attachment" designation, as demonstrated by 1 .mht and 2 .mhtml files, which are...
Microsoft Security Bulletin MS09-064 - Critical Vulnerability in License Logging Server Could Allow Remote Code Execution (974783)
Microsoft Security Bulletin MS09-064 - Critical Vulnerability in License Logging Server Could Allow Remote Code Execution 974783 Published: November 10, 2009 Version: 1.0 General Information Executive Summary This security update resolves a privately reported vulnerability in Microsoft Windows...
Hack stunt invasion site automatic installation of back door analysis-vulnerability warning-the black bar safety net
autorun. inf 2. shell. bat 3.hao.exeself-extracting file Idea: put all in C drive. When broiler master double-click the C drive to run automatically when the first file. The first file drive run the second file. While the second run of the third You run can be normal into the C drive. Will not...
Code execution with blender files
.blend files may contain python code with automatic execution...
Opera may allow scripts to access feeds
Opera may allow scripts to run on the feed subscription page, thereby gaining access to the feeds object. This can be used for automatic subscription of feeds, or reading other feeds...
Microsoft Security Bulletin MS09-051 - Critical Vulnerabilities in Windows Media Runtime Could Allow Remote Code Execution (975682)
Microsoft Security Bulletin MS09-051 - Critical Vulnerabilities in Windows Media Runtime Could Allow Remote Code Execution 975682 Published: October 13, 2009 Version: 1.0 General Information Executive Summary This security update resolves two privately reported vulnerabilities in Windows Media...
RedHat Security Advisory RHSA-2009:1459
The remote host is missing updates announced in advisory RHSA-2009:1459. The cyrus-imapd packages contain a high-performance mail server with IMAP, POP3, NNTP, and Sieve support. Multiple buffer overflow flaws were found in the Cyrus IMAP Sieve implementation. An authenticated user able to create...
KesionCMS(section news)upload vulnerability-vulnerability warning-the black bar safety net
Prius special A bit tasteless,with a few days before the publication of the iis6 filename parsing vulnerability achieve to obtain webshell. First find the use of tech-ex systems site,registered members,and then input KSeditor/selectupfiles. asp, Open after upload x. asp;x. jpg format image file,i...
Mozilla Plugs Drive-By Download Holes in Firefox
Mozilla has released a new version of its flagship Firefox browser to fix 10 vulnerabilities that put Web surfers at risk of code execution attacks. The Firefox 3.5.3 update — available for Windows, Mac and Linux users — patches security holes that could allow drive-by download attacks if a user...