RedHat Update for net-snmp RHSA-2013:0124-01

Check for the Version of net-snmp OpenVAS Vulnerability Test RedHat Update for net-snmp RHSA-2013:0124-01 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Default application configuration files are available for download

h3. Summary of The Bug By browsing to the following URL path user would be able to download any files under /atlassian-jira/WEB-INF/... code/s/1519/3/1.0//WEB-INF/...code The above URL will be accessible by any users including anonymous even to an instance that does not allow anonymous access h5...

Default application configuration files are available for download

panel:bgColor=e7f4fa NOTE: This bug report is for Confluence Server. Using Confluence Cloud? See the corresponding bug report|http://jira.atlassian.com/browse/CONFCLOUD-27693. panel h3. Summary of The Bug By browsing to the following URL path user would be able to download any files under...

[SECURITY] [DSA 2600-1] cups security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2600-1 [email protected] http://www.debian.org/security/ Nico Golde January 06, 2013 http://www.debian.org/security/faq -...

DSA-2600-1 cups - privilege escalation

Bulletin has no description...

CUPS privilege escalation

Weak permissions for configuration files...

DataArmor / DriveArmor Privilege Escalation / Decryption Vulnerability

DataArmor and DriveArmor versions prior to 3.0.12.861 suffer from restricted environment breakout, privilege escalation, and full disk decryption vulnerabilities. ======= Summary ======= Name: DataArmor Full Disk Encryption - Restricted Environment breakout, Privilege Escalation and Full Disk...

Citadel Trojan Updates with Dynamic Config Mechanism that Streamlines Fraud Activity

The elusive authors of the Citadel Trojan have released a new version of their banking botnet malware and service. The latest version, the sixth since it debuted in January and dubbed Rain, includes a dynamic configuration mechanism that allows botmasters to inject malicious content to compromise...

Moderate: Red Hat Security Advisory: rhncfg security, bug fix, and enhancement update

Updated rhncfg packages that fix one security issue, two bugs, and add one enhancement are now available for Red Hat Network Tools for Red Hat Enterprise Linux 5 and 6; Red Hat Enterprise Linux 5.3 Long Life; and Red Hat Enterprise Linux 5.6, 6.0, 6.1, and 6.2 Extended Update Support. The Red Hat...

CentOS Update for firefox CESA-2012:1350 centos5

Check for the Version of firefox OpenVAS Vulnerability Test CentOS Update for firefox CESA-2012:1350 centos5 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

ZEN Load Balancer - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/55638/info ZEN Load Balancer is prone to the following security vulnerabilities: 1. Multiple arbitrary command-execution vulnerabilities 2. Multiple information-disclosure vulnerabilities 3. An arbitrary file-upload vulnerability An attacker can exploit...

Security Advisory - Buffer Overflow in Huawei UTPS Back-End

The back-end software UTPS is the application software which is operated on the management data card of PC to realize the configuration and dial-up connection of data card, instant messages receiving and sending, telephone directory management and the like. The current product has a vulnerability...

Failed to parse "-quiescedsnap"

Challenge After you upgrade to VMware vSphere 4.1 Update 3, a new line is added to virtual machine configuration files .vmx. The line makes the VM configuration files invalid. As a result, Veeam Backup & Replication jobs fail. Solution The issue has been resolved in build 6.1.0.205. For details,...

SuSE 10 Security Update : IBM Java (ZYPP Patch Number 8283)

IBM Java 1.5.0 was updated to SR14 fixing bugs and security issues. http://www.ibm.com/developerworks/java/jdk/alerts/ Also three bugs have been fixed : - fix bnc771808: create symlink /usr/bin/javaws properly - fix bnc666744: mark all configuration files as %confignoreplace - fix bnc773021: add...

SuSE 10 Security Update : IBM Java (ZYPP Patch Number 8281)

IBM Java 1.4.2 was updated to SR13 FP13 fixing bugs and security issues. http://www.ibm.com/developerworks/java/jdk/alerts/ Also the following bug has been fixed : - fix bnc666744: mark all configuration files as %confignoreplace %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text...

Slackware: Security Advisory (SSA:2006-081-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mandrake Linux Security Advisory : joe (MDKSA-2000:072)

When exiting joe in a non-standard way such as a system crash, closing an xterm, or a network connection going down, joe will unconditionally append its open buffers to the file DEADJOE. This can be exploited by the creation of DEADJOE symlinks in directories where root would normally use joe. In...

Mandrake Linux Security Advisory : joe (MDKSA-2001:026)

The joe text editor looks for configuration files in the current working directory, the user's home directory, and finally in /etc/joe. A malicious user could create their own .joerc configuration file and attempt to get other users to use it. If this were to happen, the user could potentially...

QNAP Turbo NAS 3.7.3 File Disclosure

Vulnerability: Multiple Path Injection Product: QNAP Turbo NAS Vendor: QNAP Version affected: = 3.7.3 build 20120801 Status: Unpatched Website: http://web.qnap.com/prodetailfeature.asp?pid=202 Discovered by: Andrea Fabrizi Email: [email protected] Web: http://www.andreafabrizi.it This...

Fedora Update for perl-Config-IniFiles FEDORA-2012-7763

Check for the Version of perl-Config-IniFiles OpenVAS Vulnerability Test Fedora Update for perl-Config-IniFiles FEDORA-2012-7763 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...