8293 matches found
Important: Red Hat Security Advisory: java-1.7.0-openjdk security update
Updated java-1.7.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...
Fedora Update for leptonica FEDORA-2013-1490
Check for the Version of leptonica OpenVAS Vulnerability Test Fedora Update for leptonica FEDORA-2013-1490 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...
APPLE-SA-2013-01-28-1 iOS 6.1 Software Update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2013-01-28-1 iOS 6.1 Software Update iOS 6.1 Software Update is now available and addresses the following: Identity Services Available for: iPhone 3GS and later, iPod touch 4th generation and later, iPad 2 and later Impact: Authentication...
[SECURITY] Fedora 18 Update: leptonica-1.69-5.fc18
The library supports many operations that are useful on Document images Natural images Fundamental image processing and image analysis operations Rasterop aka bitblt Affine transforms scaling, translation, rotation, shear on images of arbitrary pixel depth Projective and bi-linear transforms Bina...
Apple iOS < 6.1 Multiple Vulnerabilities
Binary data appleios61check.nbin...
Costin Raiu on the Red October Cyberespionage Campaign
Dennis Fisher talks with Costin Raiu and Ryan Naraine about the newly uncovered Red October cyberespionage campaign that has targeted embassies, diplomats, research facilities and military targets for more than five years now. Raiu explains the origins of the campaign, where the attackers likely...
[SECURITY] Fedora 18 Update: php-symfony2-HttpKernel-2.1.6-1.fc18
HttpKernel provides the building blocks to create flexible and fast HTTP-based frameworks. It takes a Request as an input and should return a Response as an output. Using this interface makes your code compatible with all frameworks using the Symfony2 components. And this will give you many cool...
[SECURITY] Fedora 18 Update: pki-core-10.0.0-2.fc18
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D =3D=3D=3D=3D=3D=3D=3D=3D=3D || ABOUT "CERTIFICATE SYSTEM" || =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D =3D=3D=3D=3D=3D=3D=3D=3D=3D Certificate System CS is an enterprise software system...
FreeBSD : YUI JavaScript library -- JavaScript injection exploits in Flash components (aa4f86af-3172-11e2-ad21-20cf30e32f6d)
The YUI team reports : Vulnerability in YUI 2.4.0 through YUI 2.9.0 A XSS vulnerability has been discovered in some YUI 2 .swf files from versions 2.4.0 through 2.9.0. This defect allows JavaScript injection exploits to be created against domains that host affected YUI .swf files. If your site...
Apple QuickTime multiple security vulnerabilities
Multiple memory corruptions on different file formats and server responses parsing and in ActiveX components...
Joomla Component com_garyscookbook file upload Vulnerability
Exploit for php platform in category web applications Exploit Title: joomla comgaryscookbook file upload Author: Over-X email: email protected Vendor or Software Link: www.joomla.it Version: 242 Google dork: "inurl:comgaryscookbook" Tested on: win Xp...
YUI JavaScript library -- JavaScript injection exploits in Flash components
The YUI team reports: Vulnerability in YUI 2.4.0 through YUI 2.9.0 A XSS vulnerability has been discovered in some YUI 2 .swf files from versions 2.4.0 through 2.9.0. This defect allows JavaScript injection exploits to be created against domains that host affected YUI .swf files. If your site loa...
Important: java-1.6.0-openjdk
Issue Overview: Multiple improper permission check issues were discovered in the Beans, Swing, and JMX components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions. CVE-2012-5086, CVE-2012-5084, CVE-2012-5089 Multiple improper permission...
OpenJDK: JSSE denial of service (JSSE, 7186286)
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.238 and earlier allows remote attackers to affect availability, related to JSSE...
java security update
CentOS Errata and Security Advisory CESA-2012:1385 Updated java-1.6.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring Syst...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Joomla! before 1.5.12 allow remote attackers to inject arbitrary web script or HTML via the HTTPREFERER header to 1 components/comcontent/views/article/tmpl/form.php, 2 components/comuser/controller.php, 3 plugins/system/legacy/html.php, or 4...
CVE-2011-4909
Multiple cross-site scripting XSS vulnerabilities in Joomla! before 1.5.12 allow remote attackers to inject arbitrary web script or HTML via the HTTPREFERER header to 1 components/comcontent/views/article/tmpl/form.php, 2 components/comuser/controller.php, 3 plugins/system/legacy/html.php, or 4...
Gentoo Security Advisory GLSA 201209-07 (icu)
The remote host is missing updates announced in advisory GLSA 201209-07. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Mac OS X v10.6.8 Multiple Vulnerabilities (2012-004)
This host is missing an important security update according to Mac OS X 10.6.8 Update/Mac OS X Security Update 2012-004. OpenVAS Vulnerability Test $Id: gbmacosxsu12-004.nasl 6521 2017-07-04 14:51:10Z cfischer $ Mac OS X v10.6.8 Multiple Vulnerabilities 2012-004 Authors: Madhuri D Copyright:...
Design/Logic Flaw
The WebLaunch feature in Cisco Secure Desktop before 3.6.6020 does not properly validate binaries that are received by the downloader process, which allows remote attackers to execute arbitrary code via vectors involving 1 ActiveX or 2 Java components, aka Bug IDs CSCtz76128 and CSCtz78204...