Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the kernel-devel-2.6.32 package of the Red Hat Enterprise Linux operating system can be exploited, leading to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the accessibility of protected information

The multiple vulnerabilities of the openssl-devel-1.0.1e package for the Red Hat Enterprise Linux operating system may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...

From the client game bug looking of security risks-vulnerability warning-the black bar safety net

Although the now app development a growing trend in web applications, large-scale software also makes extensive use of the existing framework with the existing frameworks and engines improve, the vast majority of security issues have been resolved. But encountered some customization needs,...

SAP HANA Web-based Development Workbench SQL Injection Vulnerability

SAP HANA is a high-performance real-time data analytics platform that provides data querying capabilities that allow users to directly query and analyze large amounts of real-time business data.SAP HANA Web-based Development Workbench is a Web-based development platform. A SQL injection...

SUSE SLED11 / SLES11 Security Update : libfreebl3 (SUSE-SU-2013:1920-1)

Mozilla NSS has been updated to the 3.15.3.1 security release. The update blacklists an intermediate CA that was abused to create man in the middle certificates. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has...

SAP NetWeaver RFC SDK Information Disclosure Vulnerability

SAP NetWeaver is a business suite of solutions that provides a development and runtime environment for SAP applications. the RFC SDK is one of the software development kits used to build C++ function-controlled RFC communications on an external client. An information disclosure vulnerability exis...

! metasploit exploit module development tutorial! - Vulnerability warning-the black bar safety net

How to write a Metasploit POST-development module ! Metasploit currently has a about a 1 5 0 a exploit module. Most of the exploits using the module are through the Windows, Solaris and Cisco these platforms were collected. At the same time, Metasploit can also for these modules on the line...

[USN-2539-1] Django vulnerabilities

========================================================================== Ubuntu Security Notice USN-2539-1 March 23, 2015 python-django vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivative...

TORNADO Computer Trading CMS - SQL Injection Vulnerability

Document Title: =============== TORNADO Computer Trading CMS - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1489 Release Date: ============= 2015-05-05 Vulnerability Laboratory ID VL-ID: ====================================...

IBM JDK Java Information Disclosure Vulnerability

IBM Java is a JRE runtime environment. An information disclosure vulnerability exists in the IBM JDK Java virtual machine, which allows attackers to exploit the vulnerability to bypass privilege checks and gain access to sensitive information...

TORNADO Computer Trading CMS SQL Injection

Document Title: =============== TORNADO Computer Trading CMS - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1489 Release Date: ============= 2015-05-05 Vulnerability Laboratory ID VL-ID: ====================================...

suricata -- TLS/DER Parser Bug (DoS)

OISF Development Team reports: The OISF development team is pleased to announce Suricata 2.0.8. This release fixes a number of issues in the 2.0 series. The most important issue is a bug in the DER parser which is used to decode SSL/TLS certificates could crash Suricata. This issue was reported b...

[SECURITY] Fedora 21 Update: mingw-openssl-1.0.2a-1.fc21

The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries which provide various cryptographic algorithms and protocols. This package contains Windows MinGW libraries and development tools...

TORNADO Computer Trading - SQL Injection Vulnerability

Document Title: =============== TORNADO Computer Trading - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1489 Release Date: ============= 2015-05-04 Vulnerability Laboratory ID VL-ID: ==================================== 148...

[SECURITY] Fedora 22 Update: mingw-openssl-1.0.2a-1.fc22

The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries which provide various cryptographic algorithms and protocols. This package contains Windows MinGW libraries and development tools...

Realtek SDK miniigd SOAP Service RCE

According to its banner, the Realtek Software Development Kit is running on the remote device. It is, therefore, affected by a flaw in the miniigd SOAP service due to a failure to properly sanitize user input when handling NewInternalClient requests. An unauthenticated, remote attacker, using a...

[SECURITY] Fedora 20 Update: icu-50.1.2-12.fc20

Tools and utilities for developing with icu...

The vulnerability of the OpenSUSE operating system allows malicious actors to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Mesa-devel package in the OpenSUSE operating system can lead to breaches of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...

The vulnerability of the Red Hat Enterprise Linux operating system, which allows a remote attacker to compromise the accessibility of protected information

The vulnerability of the qspice-libs-devel-0.3.0 package for the Red Hat Enterprise Linux operating system can lead to a violation of the accessibility of protected information. This vulnerability can be exploited remotely...

The vulnerability of the Red Hat Enterprise Linux operating system allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the qt-devel-4.6.2 package for the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...