NX Server Free Edition, NX Node: Privilege escalation

Background NX Server Free Edition is a remote display technology by No Machine. NX Node provides the shared components for NX Server. Description NX Server Free Edition and NX Node use nxconfigure.sh, a setuid script containing an unspecified vulnerability. Impact A local attacker could gain...

ABB Multiple Components Buffer Overflow

Overview Independent researchers Terry McCorkle and Billy Rios identified a buffer overflow vulnerability in multiple components of the ABB WebWare Server application. These components have been found to contain vulnerabilities in the COM and scripting interfaces. Follow-up investigation by ABB...

CVE-2011-4084

...

CentOS Update for icu CESA-2011:1815 centos5 i386

Check for the Version of icu OpenVAS Vulnerability Test CentOS Update for icu CESA-2011:1815 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

CVE-2011-4599

Stack-based buffer overflow in the canonicalize function in common/uloc.c in International Components for Unicode ICU before 49.1 allows remote attackers to execute arbitrary code via a crafted locale ID that is not properly handled during variant canonicalization...

Oracle Database Server Multiple Unspecified Vulnerabilities

Oracle database is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Oracle Database Server Multiple Unspecified Vulnerabilities

Oracle database is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

SAE Sina cloud after the end of an arbitrary file read vulnerability and fix-vulnerability warning-the black bar safety net

Describe: Sina SAE uses an unsafe third-party components, may result in any read after end of file Detailed description: http://pma.tools.sinaapp.com/ Is a mysql management client, using phpmyadmin, according to a recent 80sec in the tick published on phpmyadmin arbitrary file reading vulnerabili...

Worlds first windows 8 Bootkit to be released at MalCon

Worlds first windows 8 Bootkit to be released atMalCon It is amazing how fast security measures are bypassed by hackers. it seems Windows 8 is now Malconed! Peter Kleissner has created the world's first Windows 8 Bootkit which is planned to be released in India at the International Malware...

Researchers 'Convinced' Duqu Written By Same Group as Stuxnet

Researchers are fairly confident now that whoever wrote the Duqu malware also was involved in some way in developing the Stuxnet worm. They’re also confident that they have not yet identified all of the individual components of Duqu, meaning that there are potentially some other capabilities that...

Security Release: Symfony 2.0.6

Symfony 2.0.6 has just been released. It addresses a security vulnerability in the EntityUserProvider as provided in the Doctrine bridge. If you let your users update their login/username from a form, and if you are using Doctrine as a user provider, then you are vulnerable and you should upgrade...

TDSS Rootkit and DNSchanger: An Unholy Alliance

The TDSS rootkit has proven to be more pliable and adaptable than a campaigning politician, and attackers have used it in various forms for the last three or four years for all sorts of different attacks. It shows up in drive-by downloads, targeted attacks and just about everything in between, an...

Joomla Multiple Components SQLi Vulnerabilities

Joomla with multiple components is prone to SQL injection SQLi vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Joomla Multiple Components SQL Injection Vulnerabilities

This host is running Joomla with multiple components and is prone to SQL injection vulnerabilities. OpenVAS Vulnerability Test $Id: gbjoomlamultcomponentssqlinjvuln.nasl 7052 2017-09-04 11:50:51Z teissa $ Joomla Multiple Components SQL Injection Vulnerabilities Authors: Madhuri D Copyright:...

Zenturi ProgramChecker ActiveX Components ActiveX Controls Buffer Overflows (CVE-2007-2987)

Multiple buffer overflow vulnerabilities have been reported in Zenturi ProgramChecker. The vulnerabilities are due to a data validation failure, resulting in a buffer overflow. A remote attacker may exploit these vulnerabilities by enticing a target user to open a specially crafted HTML file...

Apple OS X multiple security vulnerabilities

Multiple vulnerabilities in different system components...

OpenVAS - Advanced Open Source vulnerability scanner

OpenVAS - Advanced Open Source vulnerability scanner OpenVAS is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution.The powerful and comprehensive OpenVAS solution is available as Free Software and maintained...

Microsoft Office Web Components DataSource Code Execution (MS08-017; CVE-2007-1201)

A remote code execution vulnerability has been reported in Microsoft Office Web Components. The vulnerability is due to insufficient verification of the control's DataSource path. A remote attacker may exploit this vulnerability by enticing an unsuspecting user to open a specially crafted web-pag...

Microsoft Office Web Components URL Parsing Buffer Overflow (MS08-017; CVE-2006-4695)

A buffer overflow vulnerability has been reported in Microsoft Office Web Components. The vulnerability is due to improper handling of certain URLs. A remote attacker may exploit this vulnerability by enticing a target user to visit a malicious web-page. Successful exploitation would allow an...

Apple iPhone multiple security vulnerabilities

Multiple vulnerabilities in different system components and applications...