CVE-2010-1230

Google Chrome before 4.1.249.1036 does not have the expected behavior for attempts to delete Web SQL Databases and clear the Strict Transport Security STS state, which has unspecified impact and attack vectors...

CVE-2010-1230

CVE-2010-1230 affects Google Chrome prior to 4.1.249.1036. The issue concerns incorrect behavior when attempting to delete Web SQL Databases and clear STS state. The impact is described as unspecified; no exploit vectors are provided in the documents. Severity is CVSS v2 base score 10.0 (HIGH). N...

Google Chrome < 4.1.249.1036 Multiple Vulnerabilities

The version of Google Chrome installed on the remote host is prior to 4.1.249.1036. It is, therefore, affected by multiple vulnerabilities : - Multiple race conditions and pointer errors in the sandbox infrastructure. Issue 28804, 31880 - An error relating to persisted metadata such as Web...

mysql security update

CentOS Errata and Security Advisory CESA-2010:0110 Updated mysql packages that fix several security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. MySQL is a multi-user, multi-threaded S...

The corporate website is black universal vulnerability-the vulnerability warning-the black bar safety net

The corporate website is black universal vulnerability Webmasters runaway revenge only in this document to each enterprise network administrator, I hope for your help - The runaway revenge 1, The default account and password General network company for the enterprises to do the website or the...

Acidcat CMS 3.5 - Multiple Vulnerabilities

Acidcat CMS 3.5 - Multiple Vulnerabilities ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | // \ || || // \ || || ============================================================================== » Note...

Acidcat CMS 3.5 - Multiple Vulnerabilities

============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | // \ || || // \ || || ============================================================================== » Note : Forever RevengeHack.Com-Ar-Ge.Org Acildi...

[SECURITY] Fedora 11 Update: ocaml-mysql-1.0.4-8.fc11.1

ocaml-mysql is a package for ocaml that provides access to mysql databases. It consists of low level functions implemented in C and a module Mysql intended for application development...

IBM Db2 Multiple Vulnerabilities (Oct 2009) - Linux

IBM DB2 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:db2"; ifdescription...

CVE-2009-0209

PI Server in OSIsoft PI System before 3.4.380.x does not properly use encryption in the default authentication process, which allows remote attackers to read or modify information in databases via unspecified vectors...

CVE-2009-0209

CVE-2009-0209 concerns OSIsoft PI Server prior to 3.4.380.x, where the default authentication mechanism is insecure and does not encrypt credentials, enabling a remote attacker to read or modify information in PI Server databases via unspecified vectors. The vulnerability is tied to the PI Server...

CVE-2009-0209

PI Server in OSIsoft PI System before 3.4.380.x does not properly use encryption in the default authentication process, which allows remote attackers to read or modify information in databases via unspecified vectors...

SuSE9 Security Update : PostgreSQL (YOU Patch Number 11509)

This update fixes two vulnerabilities that affect the backend server and can only be exploited by authenticated users to cause a denial-of-service, or maybe to access other tables/databases without authentication. CVE-2007-0555 CVE-2007-0556 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Th...

DSA-1882-1 xapian-omega - cross-site scripting

Bulletin has no description...

[SECURITY] Fedora 11 Update: apr-util-1.3.9-1.fc11

The mission of the Apache Portable Runtime APR is to provide a free library of C data structures and routines. This library contains additional utility interfaces for APR; including support for XML, LDAP, database interfaces, URI parsing and more...

[SECURITY] Fedora 10 Update: apr-util-1.3.9-1.fc10

The mission of the Apache Portable Runtime APR is to provide a free library of C data structures and routines. This library contains additional utility interfaces for APR; including support for XML, LDAP, database interfaces, URI parsing and more...

Researchers Releasing Tool to Break Into Oracle Databases

From CNet News.com Elinor Mills During their presentation at the Black Hat and Defcon hacker conferences next week in Las Vegas, security experts will release a tool that can be used to break into Oracle databases. Chris Gates and Mario Ceballos will present Oracle Pentesting Methodology and give...

phpMyAdmin Installation Not Password Protected

The version of phpMyAdmin installed on the remote web server allows unrestricted, unauthenticated access. This is likely due to setting the 'authtype' to 'config' and storing login credentials in the configuration file. A remote attacker could exploit this to execute arbitrary SQL queries, delete...

[SECURITY] Fedora 10 Update: apr-util-1.3.7-1.fc10

The mission of the Apache Portable Runtime APR is to provide a free library of C data structures and routines. This library contains additional utility interfaces for APR; including support for XML, LDAP, database interfaces, URI parsing and more...

SQL injection

Added: 04/10/2009 Background Structured Query Language SQL is the most common language understood by modern relational databases. Problem A web program uses input parameters within an SQL query in an unsafe manner. This could allow a remote attacker to inject arbitrary SQL commands via a speciall...