CVE-2011-2142

The Web Client Service in IBM Datacap Taskmaster Capture 8.0.1 before FP1 requires a cleartext password, which has unspecified impact and attack vectors...

CVE-2011-2142

The CVE-2011-2142 issue affects IBM Datacap Taskmaster Capture 8.0.1 prior to FP1, where the Web Client Service requires a cleartext password. The available data (NVD entry) states the impact and vectors as unspecified, with CVSS v2 base score 5.0 (Medium) and a network attack vector with no auth...

[ MDVSA-2011:083 ] wireshark

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2011:083 http://www.mandriva.com/security/ Package : wireshark Date : May 12, 2011 Affected: 2010.0, 2010.1, Corporate 4.0, Enterprise Server 5.0 Problem Description: This advisory updates wireshark to the latest...

[SECURITY] Fedora 13 Update: wireshark-1.2.16-1.fc13

Wireshark is a network traffic analyzer for Unix-ish operating systems. This package lays base for libpcap, a packet capture and filtering library, contains command-line utilities, contains plugins and documentation for wireshark. A graphical user interface is packaged separately to GTK+ package...

CVE-2011-0850

Unspecified vulnerability in Oracle PeopleSoft Enterprise CRM 8.9 Bundle 41 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Order Capture...

Design/Logic Flaw

Unspecified vulnerability in Oracle PeopleSoft Enterprise CRM 8.9 Bundle 41 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Order Capture...

CVE-2011-0850

Unspecified vulnerability in Oracle PeopleSoft Enterprise CRM 8.9 Bundle 41 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Order Capture...

Wireshark DECT dissector vulnerability

Overview Wireshark's DECT dissector contains a remote code execution vulnerability in the context of the user running a packet capture or reading a packet capture file. Description Paul Makowski's report states:/epan/dissectors/packet-dect.c contains a stack-based buffer overflow via a call to...

Wireshark 1.5.1 Development Release !

Wireshark 1.5.1 Development Release ! Wireshark 1.5.1 has been released. Installers for Windows, OS X, and source code are now available. New and Updated Features The following features are new or have been significantly updated since version 1.4: 1. Wireshark can import text dumps, similar to...

DerbyCon Security Conference 2011

We are happy to announce that Offensive Security will be sponsoring DerbyCon. DerbyCon is a new hacker conference located in Louisville Kentucky. Our goal is to bring back an old style, community driven hacker con chocked full of amazing talks, live events and all around fun. The idea for DerbyCo...

CVE-2011-0024

Heap-based buffer overflow in wiretap/pcapng.c in Wireshark before 1.2 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted capture file...

DEBIAN-CVE-2011-0024

Heap-based buffer overflow in wiretap/pcapng.c in Wireshark before 1.2 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted capture file...

CVE-2011-0024

Heap-based buffer overflow in wiretap/pcapng.c in Wireshark before 1.2 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted capture file...

Heap overflow

Heap-based buffer overflow in wiretap/pcapng.c in Wireshark before 1.2 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted capture file...

CVE-2011-0024

Heap-based buffer overflow in wiretap/pcapng.c in Wireshark before 1.2 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted capture file...

NGS00014 Technical Advisory: Cisco IPSec VPN Implementation Group Name Enumeration

======= Summary ======= Name: Cisco IPSec VPN Implementation Group Name Enumeration Release Date: 22 March 2011 Reference: NGS00014 Discoverer: Gavin Jones Vendor: Cisco Vendor Reference: CSCei51783, CSCtj96108 Systems Affected: ASA 5500 Series Adaptive Security Appliances -Cisco PIX 500 Series...

CVE-2011-0160

WebKit, as used in Apple Safari before 5.0.4 and iOS before 4.3, does not properly handle redirects in conjunction with HTTP Basic Authentication, which might allow remote web servers to capture credentials by logging the Authorization HTTP header...

CVE-2011-0160

WebKit, as used in Apple Safari before 5.0.4 and iOS before 4.3, does not properly handle redirects in conjunction with HTTP Basic Authentication, which might allow remote web servers to capture credentials by logging the Authorization HTTP header...

Wireshark multiple security vulnerabilities

Memory corruptions and DoS conditions on different capture files formats and different network protocols parsing...

DEBIAN-CVE-2011-1143

epan/dissectors/packet-ntlmssp.c in the NTLMSSP dissector in Wireshark before 1.4.4 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted .pcap file...