[SECURITY] Fedora 13 Update: wireshark-1.2.10-1.fc13

Wireshark is a network traffic analyzer for Unix-ish operating systems. This package lays base for libpcap, a packet capture and filtering library, contains command-line utilities, contains plugins and documentation for wireshark. A graphical user interface is packaged separately to GTK+ package...

ARP Spoof

Added: 08/23/2010 Background The Address Resolution Protocol ARP is used to resolve IP addresses into the hardware addresses which are used for delivering packets on a local network. Problem It is possible to send a computer a forged ARP reply, which is then stored in that computer's cache. This...

Authentication Capture: SMTP

This module provides a fake SMTP service that is designed to capture authentication credentials. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Authentication Capture: SMTP', 'Description' = %...

Ubuntu 8.04 LTS / 10.04 LTS : firefox, firefox-3.0, xulrunner-1.9.2 vulnerabilities (USN-930-1)

If was discovered that Firefox could be made to access freed memory. If a user were tricked into viewing a malicious site, a remote attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. This issue only affected Ubuntu 8.0...

CVE-2010-1416

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, does not properly restrict the reading of a canvas that contains an SVG image pattern from a different web site, which allows remote attackers to read images from other sites via a crafte...

Cross site scripting

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, does not properly restrict the reading of a canvas that contains an SVG image pattern from a different web site, which allows remote attackers to read images from other sites via a crafte...

CVE-2010-1416

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, does not properly restrict the reading of a canvas that contains an SVG image pattern from a different web site, which allows remote attackers to read images from other sites via a crafte...

CVE-2010-1416

CVE-2010-1416 affects WebKit in Apple Safari prior to 5.0 on Mac OS X 10.5–10.6 and Windows, and prior to 4.1 on Mac OS X 10.4. It occurs because reading a canvas that contains an SVG image pattern from a different site is not properly restricted, enabling a cross-site image capture. This could a...

CVE-2010-1416

Removed by vendor...

[SECURITY] Fedora 13 Update: kdegraphics-4.4.3-1.fc13.1

Graphics applications, including gwenview an image viewer kamera digital camera support kcolorchooser a color chooser kolourpaint4 an easy-to-use paint program kruler screen ruler and color measurement tool ksnapshot screen capture utility okular a document viewer...

[SECURITY] Fedora 12 Update: kdegraphics-4.4.3-1.fc12.1

Graphics applications, including gwenview an image viewer kamera digital camera support kcolorchooser a color chooser kolourpaint4 an easy-to-use paint program kruler screen ruler and color measurement tool ksnapshot screen capture utility okular a document viewer...

Google in Apology Mode After WiFi Data Grab

Google co-founder Sergey Brin says the company “screwed up” when it equipped its world-roving Street View cars with software code that spent three years capturing personal data from open Wi-Fi networks. “Let me just say: We screwed up,” Brin told a room full of reporters this afternoon at the...

Mac OS X 10.5.3 Update / Mac OS X Security Update 2008-003

The remote host is missing Mac OS X 10.5.3 Update / Mac OS X Security Update 2008-003. One or more of the following components are affected: AFP Server Apache AppKit Apple Pixlet Video ATS CFNetwork CoreFoundation CoreGraphics CoreTypes CUPS Flash Player Plug-in Help Viewer iCal International...

Mac OS X 10.5.3 Update / Mac OS X Security Update 2008-003

The remote host is missing Mac OS X 10.5.3 Update / Mac OS X Security Update 2008-003. SPDX-FileCopyrightText: 2010 LSS Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

Oracle Document Capture 10g - ActiveX Control Buffer Overflow (Metasploit)

$Id: oracledcsubmittoexpress.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Oracle Database Multiple Vulnerabilities (April 2010 CPU)

The remote Oracle database server is missing the April 2010 Critical Patch Update CPU and therefore is potentially affected by security issues in the following components : - Core RDBMS - JavaVM - Change Data Capture - Audit %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

CVE-2010-0876

Unspecified vulnerability in the Life Sciences - Oracle Clinical Remote Data Capture Option component in Oracle Industry Product Suite 4.5.3 and 4.6 allows remote attackers to affect integrity, related to RDC Onsite...

Design/Logic Flaw

Unspecified vulnerability in the Change Data Capture component in Oracle Database 9.2.0.8 and 9.2.0.8DV allows remote authenticated users to affect confidentiality and integrity, related to SYS.DBMSCDCPUBLISH...

CVE-2010-0870

Unspecified vulnerability in the Change Data Capture component in Oracle Database 9.2.0.8 and 9.2.0.8DV allows remote authenticated users to affect confidentiality and integrity, related to SYS.DBMSCDCPUBLISH...

Design/Logic Flaw

Unspecified vulnerability in the Life Sciences - Oracle Clinical Remote Data Capture Option component in Oracle Industry Product Suite 4.5.3 and 4.6 allows remote attackers to affect integrity, related to RDC Onsite...