1577 matches found
Beckhoff TwinCAT Read Access Violation
Overview This Advisory is a follow-up to the Alert, ICS-ALERT-11-256-06—BECKHOFF TWINCAT READ ACCESS VIOLATION, that was published September 13, 2011, on the Industrial Control Systems Cyber Emergency Response Team ICS-CERT web page. ICS-CERT is aware of a public report of a read access violation...
Subversion "mod_dav_svn"多个拒绝服务和信息泄露漏洞
BUGTRAQ ID: 48091 CVE ID: CVE-2011-1752,CVE-2011-1783,CVE-2011-1921,CVE-2011-1921 Subversion是一个自由,开源的版本控制系统。 Subversion在moddavsvn的实现上存在多个拒绝服务和信息泄露漏洞,远程攻击者可利用这些漏洞使应用程序崩溃,消耗掉所有内存资源或获取敏感信息。 Subversion的moddavsvn Apache HTTPD服务器模块在某些情境中会进入不存在的且每次重复都分配内存的逻辑循环,最终消耗服务器上的所有内存。 Apache Group Subversion 1.x...
Rockwell RSLogix Overflow Vulnerability
Overview This updated advisory is a follow-up to the Alert titled “ICS-ALERT-11-256-05A—Rockwell RSLogix Overflow Vulnerability” that was published September 13, 2011, on the Industrial Control Systems Cyber Emergency Response Team ICS-CERT web page. ICS-CERT is aware of a public report of an...
mod_dav_svn, subversion security update
CentOS Errata and Security Advisory CESA-2011:0862 Updated subversion packages that fix three security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CV...
Siemens WinCC Flexible Runtime Heap Overflow
Overview ICS-CERT originally released Advisory ICSA-11-244-01P on the US-CERT secure Portal on September 01, 2011. This web page release was delayed to allow users sufficient time to download and install the update. Independent security researchers Billy Rios and Terry McCorkle have reported a...
GE Intelligent Platforms Proficy Plant Applications Buffer Overflow
Overview ICS CERT originally released Advisory ICSA-11-243-01P on the US-CERT secure Portal on August 31, 2011. This web page release was delayed to allow users time to download and install the update. ICS-CERT has received a report from GE concerning a stack-based buffer overflow vulnerability i...
7T Interactive Graphical SCADA System dc.exe Directory Traversal
Added: 06/03/2011 CVE: CVE-2011-1566 BID: 46936 OSVDB: 72349 Background 7-Technologies Interactive Graphical SCADA System IGSS is a Supervisory Control and Data Acquisition SCADA solution used mainly in Denmark and the US. Problem An input validation error in the Data Collector service dc.exe whe...
Serious SCADA Security Flaw Affects Critical Infrastructure Firms
The U.S.’s Computer Emergency Response Team CERT issued a warning to critical infrastructure firms on Wednesday about a serious security hole in products from Massachusetts firm Iconics that could leave critical systems vulnerable to remote attacks. U.S. companies in the electricity, oil and gas,...
[SECURITY] Fedora 14 Update: ikiwiki-3.20110328-1.fc14
Ikiwiki is a wiki compiler. It converts wiki pages into HTML pages suitable for publishing on a website. Ikiwiki stores pages and history in a revision control system such as Subversion or Git. There are many other features, including support for blogging, as well as a large array of plugins...
[SECURITY] Fedora 15 Update: ikiwiki-3.20110328-1.fc15
Ikiwiki is a wiki compiler. It converts wiki pages into HTML pages suitable for publishing on a website. Ikiwiki stores pages and history in a revision control system such as Subversion or Git. There are many other features, including support for blogging, as well as a large array of plugins...
Fedora Update for loggerhead FEDORA-2011-4107
Check for the Version of loggerhead OpenVAS Vulnerability Test Fedora Update for loggerhead FEDORA-2011-4107 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
CVE-2011-0951
The web-based management interface in Cisco Secure Access Control System ACS 5.1 before 5.1.0.44.6 and 5.2 before 5.2.0.26.3 allows remote attackers to change arbitrary user passwords via unspecified vectors, aka Bug ID CSCtl77440...
Design/Logic Flaw
The web-based management interface in Cisco Secure Access Control System ACS 5.1 before 5.1.0.44.6 and 5.2 before 5.2.0.26.3 allows remote attackers to change arbitrary user passwords via unspecified vectors, aka Bug ID CSCtl77440...
[SECURITY] Fedora 15 Update: loggerhead-1.18.1-1.fc15
Loggerhead is a WSGI app that provides a web interface to the Bazaar version control system. It can be used to navigate a branch history, view who changed lines in a file, look at patches, and perform searches...
CVE-2011-0951
CVE-2011-0951 affects Cisco Secure Access Control System (ACS) 5.1 (with patches 3/4/5) and 5.2 (no patches or patches 1–2). The web-based management interface contains an authentication/authorization flaw that lets a remote, unauthenticated attacker change arbitrary user passwords via unspecifie...
Cisco Secure Access Control System privilege escalation
It's possible to reset any user's password...
Cisco Secure Access Control System Password Modification Vulnerability
Cisco Secure Access Control System ACS contains a vulnerability that could allow an unauthenticated, remote attacker to modify user passwords. The vulnerability is due to improper security restrictions on user password change functions in the web-based management interface of the Cisco Secure ACS...
RedHat Update for subversion RHSA-2011:0257-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for subversion FEDORA-2011-0099
Check for the Version of subversion OpenVAS Vulnerability Test Fedora Update for subversion FEDORA-2011-0099 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
Fedora Update for git FEDORA-2010-18973
Check for the Version of git OpenVAS Vulnerability Test Fedora Update for git FEDORA-2010-18973 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...