[SECURITY] Fedora 22 Update: librsync-1.0.0-1.fc22

librsync implements the "rsync" algorithm, which allows remote differencing of binary files. librsync computes a delta relative to a file's checksum, so the two files need not both be present to generate a delta. This library was previously known as libhsync up to version 0.9.0. The current versi...

Pragyan CMS 3.0 - SQL Injection

Pragyan CMS 3.0 - SQL Injection Advisory: SQL injection vulnerability in Pragyan CMS v.3.0 Advisory ID: SROEADV-2015-11 Author: Steffen Rösemann Affected Software: Pragyan CMS v.3 Vendor URL: https://github.com/delta/pragyan, http://delta.nitt.edu/ Vendor Status: vendor did not respond after...

PT-2023-25554 · Monetdb +1 · Monetdb Server +1

Name of the Vulnerable Software and Affected Versions: MonetDB Server versions 11.45.17 through 11.46.0 Description: The issue in the log create delta component allows attackers to cause Denial of Service DoS via crafted SQL statements. Recommendations: For MonetDB Server versions 11.45.17 throug...

Pilot CMS Cross Site Request Forgery / Cross Site Scripting Vulnerabilities

CMS Pylot suffers from cross site request forgery and cross site scripting vulnerabilities. These are Cross-Site Scripting and Cross-Site Request Forgery vulnerabilities in CMS Pylot "Ïèëîò" on Russian. It's Ukrainian commercial CMS from Delta-X. ------------------------- Affected products:...

CMS Pylot Cross Site Request Forgery / Cross Site Scripting

Hello list! These are Cross-Site Scripting and Cross-Site Request Forgery vulnerabilities in CMS Pylot "Ïèëîò" on Russian. It's Ukrainian commercial CMS from Delta-X. ------------------------- Affected products: ------------------------- Vulnerable are all versions of CMS Pylot. Developers from...

XSS and CSRF vulnerabilities in CMS Pylot

Hello 3APA3A! These are Cross-Site Scripting and Cross-Site Request Forgery vulnerabilities in CMS Pylot "Пилот" on Russian. It's Ukrainian commercial CMS from Delta-X. ------------------------- Affected products: ------------------------- Vulnerable are all versions of CMS Pylot. Developers from...

Delta is the aeration system vulnerabilities to others may access your boarding pass information-vulnerability warning-the black bar safety net

In recent years, the airline piloting through smartphone or tablet and other mobile devices to achieve boarding procedures, which is expected in the future to truly achieve the paperless. But in the project the initial stage of the natural presence of various problems, 1 2 November 1 6, one of th...

EGYWEB (Mantrac) <= Remote File Disclosure Exploit

database passwords can be drawn.. Usage Info python exploit.py http://TARGET.COM EGYWEB Mantrac Example and tested on; http://www.deltagroup.com.eg http://www.mantracvostok.ru http://www.mantracghana.com http://www.mantracnigeria.com http://www.mantrackenya.com http://www.mantractanzania.com...

Password Door 8.4 Local Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/33634/info Password Door is prone to a local buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. Attackers may leverage this issue to execute arbitrary code in the...

Ciberia Content Federator <= 1.0.1 (path) Remote File Include Exploit

No description provided by source. !/usr/bin/perl Portal Name : ciberia 1.0Ciberia Content Federatormaquetacionsocio.php Remote File Inclusion Exploit BUG: Path/socios/maquetacionsocio.php?path=Dr.Trojan.TxT Vulnerable Code: 1-include $path/datos/datossocios.php; 2-include...

cutenews aj-fork <= 167f (cutepath) Remote File Include Vulnerability

No description provided by source. =========================================================================================================== DeltasecurityTEAM www.Deltasecurity.ir =========================================================================================================== Portal...

Threat Outbreak Alert: Fake Airline Ticket Order Notification Email Messages on September 5, 2013

Medium Alert ID: 30669 First Published: 2013 September 5 19:50 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an airline ticket notification for the recipient. The text in the email message attempts to convince the...

Code injection

The Innominate mGuard Smart HW before HW-101130 and BD before BD-101030, mGuard industrial RS, mGuard delta HW before HW-103060 and BD before BD-211010, mGuard PCI, mGuard blade, and EAGLE mGuard appliances with software before 7.5.0 do not use a sufficient source of entropy for private keys, whi...

CVE-2012-3006

The CVE-2012-3006 entry concerns Innominate mGuard devices (Smart HW before HW-101130, BD before BD-101030, Industrial RS, Delta HW before HW-103060, BD before BD-211010, PCI, Blade, EAGLE) running software before 7.5.0. The root cause is insufficient entropy when generating private keys for HTTP...

ZDI-11-315 : Apple QuickTime FLC Delta Decompression Remote Code Execution Vulnerability

ZDI-11-315 : Apple QuickTime FLC Delta Decompression Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-315 October 27, 2011 -- CVE ID: CVE-2011-3249 -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C -- Affected Vendors: Apple -- Affected Products: Apple Quicktime --...

Apple QuickTime FLC Delta Decompression Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Quicktim...

Oracle, other companies hacked by Social Engineering attack in #DefCon 19

Oracle, other companies hacked by Social Engineering attack in DefCon 19 A weekend contest from 4th August to 7th August , at the world's largest hacking convention in Las Vegas showed one reason why big corporations seem to be such easy prey for cyber criminals : their workers are poorly trained...

Seccubus v1.5.3 - latest version download

"Tool to automatically fire regular security scans with Nessus. Compare results of the current scan with the previous scan and report on the delta in a web interface. Main objective of the tool is to make repeated scans more efficient." This is mostly a bugfix release. Download Seccubus v1.5.3...

CVE-2010-3846

Array index error in the applyrcschange function in rcs.c in CVS 1.11.23 allows local users to gain privileges via an RCS file containing crafted delta fragment changes that trigger a heap-based buffer overflow...

ALPINE-CVE-2010-3846

Array index error in the applyrcschange function in rcs.c in CVS 1.11.23 allows local users to gain privileges via an RCS file containing crafted delta fragment changes that trigger a heap-based buffer overflow...