[SECURITY] Fedora 13 Update: cvs-1.11.23-10.fc13

CVS Concurrent Versions System is a version control system that can record the history of your files usually, but not always, source code. CVS only stores the differences between versions, instead of every version of every file you have ever created. CVS also keeps a log of who, when, and why...

[SECURITY] Fedora 12 Update: subversion-1.6.13-1.fc12.1

Subversion is a concurrent version control system which enables one or more users to collaborate in developing and maintaining a hierarchy of files and directories while keeping a history of all changes. Subversion only stores the differences between versions, instead of every complete file...

[SECURITY] [DSA 2118-1] New subversion packages fix authentication bypass

--------------------------------------------------------------------------- Debian Security Advisory DSA-2118-1 [email protected] http://www.debian.org/security/ Nico Golde October 8th, 2010 http://www.debian.org/security/faq -...

Advantech Studio Test Web Server Buffer Overflow

Overview The ICS-CERT has received a report from independent security researcher Jeremy Brown that reveals a stack-based buffer overflow vulnerability in the test web server bundled with Advantech Studio Version 6.1. This web server is intended to be used for testing purposes and should not be us...

CVE-2010-2826

SQL injection vulnerability in Cisco Wireless Control System WCS 6.0.x before 6.0.196.0 allows remote authenticated users to execute arbitrary SQL commands via vectors related to the ORDER BY clause of the Client List screens, aka Bug ID CSCtf37019...

Sql injection

SQL injection vulnerability in Cisco Wireless Control System WCS 6.0.x before 6.0.196.0 allows remote authenticated users to execute arbitrary SQL commands via vectors related to the ORDER BY clause of the Client List screens, aka Bug ID CSCtf37019...

CVE-2010-2826

SQL injection vulnerability in Cisco Wireless Control System WCS 6.0.x before 6.0.196.0 allows remote authenticated users to execute arbitrary SQL commands via vectors related to the ORDER BY clause of the Client List screens, aka Bug ID CSCtf37019...

SQL Injection Vulnerability in Cisco Wireless Control System

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

Cisco Security Advisory: SQL Injection Vulnerability in Cisco Wireless Control System

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: SQL Injection Vulnerability in Cisco Wireless Control System Advisory ID: cisco-sa-20100811-wcs Revision 1.0 For Public Release 2010 August 11 1600 UTC GMT +---------------------------------------------------------------------...

Cisco Wireless Control System crossite scripting

Crossite scripting and SQL injection in Web interface...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Cisco Wireless Control System WCS 7.x before 7.0.164, as used in Cisco Unified Wireless Network UWN Solution 7.x before 7.0.98.0, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCtg33854...

Cross site scripting

Cross-site scripting XSS vulnerability in webacs/QuickSearchAction.do in the search feature in the web interface in Cisco Wireless Control System WCS before 6.0194.0 and 7.x before 7.0.164 allows remote attackers to inject arbitrary web script or HTML via the searchText parameter, aka Bug ID...

CVE-2010-2987

Multiple cross-site scripting XSS vulnerabilities in Cisco Wireless Control System WCS 7.x before 7.0.164, as used in Cisco Unified Wireless Network UWN Solution 7.x before 7.0.98.0, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCtg33854...

CVE-2010-2987

CVE-2010-2987 describes multiple reflected XSS vulnerabilities in Cisco Wireless Control System (WCS) 7.x up to 7.0.163/164, used with Cisco Unified Wireless Network (UWN) Solution 7.x up to 7.0.98.0. The issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Cisco Wireless Control System XSS

Product Name: Cisco Wireless Control System Vendor: http://www.cisco.com Date: 4 August, 2010 Author: [email protected] [email protected] Original URL: http://www.tomneaves.com/CiscoWirelessControlSystemXSS.txt Discovered: 8 July, 2010 Disclosed: 4 August, 2010 I. DESCRIPTION The Cisco Wireless...

Netartmedia iBoutique.MALL - SQL Injection

Netartmedia iBoutique.MALL - SQL Injection Name : Netartmedia iBoutique.MALL SQLi Vulnerability Date : june, 28 2010 Critical Level : HIGH Vendor Url : http://www.netartmedia.net/mall/ Author : Sid3^effects aKa HaRi special thanks to : r0073r inj3ct0r.com,L0rd...

CVE-2010-0595

creationtimestamp| type| source ---|---|--- 2010-05-27 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-10-147-01...

CVE-2010-0599

creationtimestamp| type| source ---|---|--- 2010-05-27 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-10-147-01...

Fedora Update for ikiwiki FEDORA-2010-4933

Check for the Version of ikiwiki OpenVAS Vulnerability Test Fedora Update for ikiwiki FEDORA-2010-4933 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

IntelliCom NetBiter devices have default HICP passwords

Overview IntelliCom NetBiter devices ship with default passwords for the HICP network configuration service. An attacker with network access could change network settings and prevent legitimate users from accessing the HICP service. Description IntelliCom NetBiter products use the proprietary HIC...