DeWeS 0.4.2 - Directory Traversal

Advisory ID: HTB23167 Product: DeWeS web server Twilight CMS Vendor: Strata Technologies LLC Vulnerable Versions: 0.4.2 and probably prior Tested Version: 0.4.2 Vendor Notification: July 24, 2013 Public Disclosure: August 21, 2013 Vulnerability Type: Path Traversal CWE-22 CVE Reference:...

Cotonti 0.9.13 SQL Injection

Advisory ID: HTB23164 Product: Cotonti Vendor: Cotonti Team Vulnerable Versions: 0.9.13 and probably prior Tested Version: 0.9.13 Vendor Notification: July 10, 2013 Vendor Patch: July 17, 2013 Public Disclosure: July 31, 2013 Vulnerability Type: SQL Injection CWE-89 CVE Reference: CVE-2013-4789...

php security, bug fix and enhancement update

5.3.3-22 - php-xml provides php-xmlreader and php-xmlwriter 874987 - fix possible NULL derefence and buffer overflow 879179 - fix zend garbage collector 848186, 868375 5.3.3-21 - fix CVE reference in previous changelog entry 5.3.3-20 - remove reproducer from security fix for CVE-2012-0781 5.3.3-1...

DEBIAN-CVE-2013-1624

The TLS implementation in the Bouncy Castle Java library before 1.48 and C library before 1.8 does not properly consider timing side-channel attacks on a noncompliant MAC check operation during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attack...

Buffalo Linkstation Privilege Escalation

Release Date. 5-Dec-2012 Last Update. - Vendor Notification Date. - Product. Linkstation & Others Platform. Buffalo Technology Affected versions. Including Actual Version Severity Rating. High Impact. Admin Password Reset Attack Vector. From remote Solution Status. Don't use Buffalo CVE reference...

Joomla! Component Techfolio 1.0 - SQL Injection

Techfolio 1.0 Component Joomla SQL Injection Release Date Bug. 27-Oct-2011 Date Added. 30-Sep-2011 Vendor Notification Date. Never Product. Techfolio Platform. Joomla Affected versions. 1.0 Type. Non-Commercial Attack Vector. Sql Injection Solution Status. unpublished CVE reference. Not yet...

CVE-2011-1971

The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly parse file metadata, which allows local users to cause a denial of service reboot via a crafted file, aka "Windows Kernel Metadata Parsing DOS Vulnerability."...

acroread: multiple XSS flaws (APSB11-03)

Cross-site scripting XSS vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2011-0604...

CVE-2007-0548

creationtimestamp| type| source ---|---|--- 2010-11-05 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/15422...

python: stringobject, unicodeobject integer overflows

Multiple integer overflows in Python 2.2.3 through 2.5.1, and 2.6, allow context-dependent attackers to have an unknown impact via a large integer value in the tabsize argument to the expandtabs method, as implemented by 1 the stringexpandtabs function in Objects/stringobject.c and 2 the...

Firefox JavaScript garbage collection crash

The JavaScript engine in Mozilla Firefox before 2.0.0.14, Thunderbird before 2.0.0.14, and SeaMonkey before 1.1.10 allows remote attackers to cause a denial of service garbage collector crash and possibly have other impacts via a crafted web page. NOTE: this is due to an incorrect fix for...

CVE-2007-2436

Connected documents confirm CVE-2007-1861 is part of a set of kernel vulnerabilities addressed by multiple advisories (e.g., RHSA-2007-0347, CESA-2007:0347, ELSA-2007-0347). The OpenVAS/Nessus entries reference this CVE alongside related issues (e.g., CVE-2007-1496, CVE-2007-2172, CVE-2007-2242) ...

CVE-2007-0584

CVE-2007-0584 affects the PhP Generic Library & Framework for comm (G-neric) via the file membres/membreManager.php. The vulnerability is a remote file inclusion that allows an attacker to place a URL in the include_path parameter, leading to remote code execution on the affected system. Document...

CVE-2006-6114

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-5854. Reason: This candidate is a duplicate of CVE-2006-5854. Notes: All CVE users should reference CVE-2006-5854 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

SoX Local Buffer Overflow Exploiter (Via Crafted WAV File)

No description provided by source. --------------------------------- Begin Code: sox-exploiter.c --------------------------------- / Copyright Rosiello Security 2004 http://www.rosiello.org CVE Reference: CAN-2004-0557 Bug Type: Stack Overflow Date: 01/08/2004 Ulf Harnhammar reported that there a...

[SA19697] warforge.NEWS Multiple Vulnerabilities

TITLE: warforge.NEWS Multiple Vulnerabilities SECUNIA ADVISORY ID: SA19697 VERIFY ADVISORY: http://secunia.com/advisories/19697/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting, Manipulation of data WHERE: From remote REVISION: 1.1 originally posted 2006-04-19 SOFTWARE: warforge.NEWS 1...

[Full-disclosure] URL filter bypass in Fortinet

URL filter bypass in Fortinet Severity: Low Impact: Bypass Fortinet web filter Vulnerabilty type: Design error Affected products: FortiGate v2.8 CVE reference: CAN-2005-3058 Vulnerability Description: ------------------------- It is possible to bypass Fortinet URL blocker by making special HTTP...

CVE-2005-3011

The sortoffline function for texindex in texinfo 4.8 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files...

CVE-2005-2069

pamldap and nssldap, when used with OpenLDAP and connecting to a slave using TLS, does not use TLS for the subsequent connection if the client is referred to a master, which may cause a password to be sent in cleartext and allows remote attackers to sniff the password...

security flaw

The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 CVE-2004-0888 is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities...