DSA-1910-1 mysql-ocaml - missing escape function

Bulletin has no description...

PT-2009-4908 · Microsoft · Works +26

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer version 6 SP1 Windows XP versions SP2 and SP3 Office XP version SP3 Office 2003 version SP3 2007 Microsoft Office System versions SP1 and SP2 Office Project 2002 version SP1 Visio 2002 version SP2 Office Word Viewe...

DSA-1911-1 pygresql - missing escape function

Bulletin has no description...

Security Update for the 2007 Microsoft Office System (KB951944)

A security vulnerability exists in the 2007 Microsoft Office System and the Compatibility Pack for the 2007 Office system that could allow remote code execution. This update resolves that vulnerability...

Microsoft GDI+ PNG File Integer Overflow Remote Code Execution Vulnerability

Description Microsoft GDI+ is prone to a remote code-execution vulnerability because the vector graphics link library improperly processes PNG image files. An attacker could exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts m...

Microsoft GDI+ WMF File Processing Remote Code Execution Vulnerability

Description Microsoft GDI+ is prone to a remote code-execution vulnerability because the vector graphics link library improperly processes WMF image files. An attacker could exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts m...

Microsoft GDI+ CCITT G4 TIFF File Processing Memory Corruption Remote Code Execution Vulnerability

Description Microsoft GDI+ is prone to a remote code-execution vulnerability because the vector graphics link library improperly processes TIFF image files. This issue occurs when CCITT G4 compressed TIFF images are decompressed. An attacker could exploit this issue to execute arbitrary code with...

Microsoft GDI+ PNG File Processing Remote Code Execution Vulnerability

Description Microsoft GDI+ is prone to a remote code-execution vulnerability because the vector graphics link library improperly processes PNG image files. An attacker could exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts m...

Fedora Core 10 FEDORA-2009-9386 (proftpd)

The remote host is missing an update to proftpd announced via advisory FEDORA-2009-9386. OpenVAS Vulnerability Test $Id: fcore20099386.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-9386 proftpd Authors: Thomas Reinke Copyright: Copyright c 2009...

Fedora 10 : proftpd-1.3.2a-5.fc10 (2009-9386)

This update has a large number of changes from previous Fedora packages; the highlights are as follows: - Update to upstream release 1.3.2a - Fix SQL injection vulnerability at login 485125, CVE-2009-0542 - Fix SELinux compatibility 498375 - Fix audit logging 506735 - Fix default configuration...

[SECURITY] [DSA 1878-2] New devscripts packages fix regressions

------------------------------------------------------------------------ Debian Security Advisory DSA-1878-2 [email protected] http://www.debian.org/security/ Florian Weimer September 11, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1878-1] New devscripts packages fix remote code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-1878-1 [email protected] http://www.debian.org/security/ Florian Weimer September 02, 2009 http://www.debian.org/security/faq -...

DSA-1878-1 devscripts - remote code execution

Bulletin has no description...

[SECURITY] Fedora 11 Update: xerces-c27-2.7.0-8.fc11

Xerces-C is a validating XML parser written in a portable subset of C++. Xerces-C makes it easy to give your application the ability to read and wri te XML data. A shared library is provided for parsing, generating, manipulatin g, and validating XML documents. Xerces-C is faithful to the XML 1.0...

[SECURITY] Fedora 10 Update: squirrelmail-1.4.19-2.fc10

SquirrelMail is a basic webmail package written in PHP4. It includes built-in pure PHP support for the IMAP and SMTP protocols, and all pages render in pure HTML 4.0 with no Javascript for maximum compatibility across browsers. It has very few requirements and is very easy to configure and instal...

CVE-2009-2719

The Java Web Start implementation in Sun Java SE 6 before Update 15 allows context-dependent attackers to cause a denial of service NullPointerException via a crafted .jnlp file, as demonstrated by the jnlpfile/appletDesc/index.htmlmisc test in the Technology Compatibility Kit TCK for the Java...

Design/Logic Flaw

The Java Web Start implementation in Sun Java SE 6 before Update 15 allows context-dependent attackers to cause a denial of service NullPointerException via a crafted .jnlp file, as demonstrated by the jnlpfile/appletDesc/index.htmlmisc test in the Technology Compatibility Kit TCK for the Java...

CVE-2009-2719

The Java Web Start implementation in Sun Java SE 6 before Update 15 allows context-dependent attackers to cause a denial of service NullPointerException via a crafted .jnlp file, as demonstrated by the jnlpfile/appletDesc/index.htmlmisc test in the Technology Compatibility Kit TCK for the Java...

Mozilla Foundation Security Advisory 2009-43

Mozilla Foundation Security Advisory 2009-43 Title: Heap overflow in certificate regexp parsing Impact: Critical Announced: August 1, 2009 Reporter: Moxie Marlinspike Products: Firefox, Thunderbird, SeaMonkey, NSS Fixed in: Firefox 3.5 NSS 3.12.3 Description Moxie Marlinspike reported a heap...

JDK DoS with crafted .jnlp file

The Java Web Start implementation in Sun Java SE 6 before Update 15 allows context-dependent attackers to cause a denial of service NullPointerException via a crafted .jnlp file, as demonstrated by the jnlpfile/appletDesc/index.htmlmisc test in the Technology Compatibility Kit TCK for the Java...