3653 matches found
Debian DSA-1911-1 : pygresql - missing escape function
It was discovered that pygresql, a PostgreSQL module for Python, was missing a function to call PQescapeStringConn. This is needed, because PQescapeStringConn honours the charset of the connection and prevents insufficient escaping, when certain multibyte character encodings are used. The new...
Debian DSA-1909-1 : postgresql-ocaml - missing escape function
It was discovered that postgresql-ocaml, OCaml bindings to PostgreSQL's libpq, was missing a function to call PQescapeStringConn. This is needed, because PQescapeStringConn honours the charset of the connection and prevents insufficient escaping, when certain multibyte character encodings are use...
[SECURITY] Fedora 12 Update: openoffice.org-3.1.1-19.26.fc12
OpenOffice.org is an Open Source, community-developed, multi-platform office productivity suite. It includes the key desktop applications, such as a word processor, spreadsheet, presentation manager, formula editor and drawing program, with a user interface and feature set similar to other office...
Weatimages Directory Traversal and LFI Vulnerabilities
Exploit for unknown platform in category web applications ====================================================== Weatimages Directory Traversal and LFI Vulnerabilities ====================================================== Weatimages Directory Traversal&Local File Include Vulnerabilities By:...
Weatimages - Directory Traversal / Local File Inclusion
Weatimages Directory Traversal&Local File Include Vulnerabilities By: e.wiZz! Script info: Site: http://nazarkin.name/projects/weatimages/download.php In the wild... index.php: ... //kill oneself if user trying to access resource with '/../' in path if strstrurldecode$SERVER'REQUESTURI', '/../'...
phpPowerCards 2.0 Cross Site Scripting
======================================================================================== | Title : phpPowerCards 2.0 Cross Site Scripting Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | | EDB-ID : ...
Ubuntu 8.04 LTS / 8.10 : pygresql vulnerability (USN-870-1)
Steffen Joeris discovered that PyGreSQL 3.8 did not use PostgreSQL's safe string and bytea functions in its own escaping functions. As a result, applications written to use PyGreSQL's escaping functions are vulnerable to SQL injections when processing certain multi-byte character sequences. Becau...
Dell Windows 7 upgrade program for free application vulnerability-vulnerability warning-the black bar safety net
Dell to 7 Introduction The Dell™ Windows® 7 upgrade option program, to provide users with an upgrade to Windows® 7 operating system support for client the the PC more streamlined. Today the plan is broke there are application vulnerabilities exist, comparable to a time before online much noise...
Format string
Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer 2003 SP3; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 do not...
Memory corruption
Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer 2003 SP3; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allows...
Microsoft Office Excel Multiple Vulnerabilities (972652)
This host is missing a critical security update according to Microsoft Bulletin MS09-067. OpenVAS Vulnerability Test $Id: secpodms09-067.nasl 6533 2017-07-05 08:41:34Z santu $ Microsoft Office Excel Multiple Vulnerabilities 972652 Authors: Sharath S Copyright: Copyright c 2009 SecPod,...
Microsoft Products GDI Plus Code Execution Vulnerabilities (957488)
This host is missing a critical security update according to Microsoft Bulletin MS09-062. OpenVAS Vulnerability Test $Id: secpodms09-062.nasl 5363 2017-02-20 13:07:22Z cfi $ Microsoft Products GDI Plus Code Execution Vulnerabilities 957488 Authors: Sharath S Updated to Check Visio Viewer 2007 - B...
Microsoft Products GDI Plus Code Execution Vulnerabilities (957488)
This host is missing a critical security update according to Microsoft Bulletin MS09-062. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
[SECURITY] [DSA 1910-1] New mysql-ocaml packages provide secure escaping
------------------------------------------------------------------------ Debian Security Advisory DSA-1910-1 [email protected] http://www.debian.org/security/ Steffen Joeris October 14, 2009 http://www.debian.org/security/faq -...
Heap overflow
Heap-based buffer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP3, Office Excel Viewer 2003 Gold and...
Integer overflow
Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP3, Office Excel Viewer 2003 Gold and SP3, Offic...
CVE-2009-3126
CVE-2009-3126 corresponds to the GDI+ PNG Integer Overflow vulnerability described in MS09-062. The issue arises from an integer overflow in GDI+ when processing PNG images, which could allow remote code execution if a user opens a specially crafted image. The vulnerability affects a wide range o...
DSA-1911-1 pygresql - missing escape function
Bulletin has no description...
PT-2009-4908 · Microsoft · Works +26
Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer version 6 SP1 Windows XP versions SP2 and SP3 Office XP version SP3 Office 2003 version SP3 2007 Microsoft Office System versions SP1 and SP2 Office Project 2002 version SP1 Visio 2002 version SP2 Office Word Viewe...
DSA-1909-1 postgresql-ocaml - missing escape function
Bulletin has no description...