Duvys Media web design and development file upload

Exploit for php platform in category web applications Exploit Title: duvys media web design and development file upload Date: 01.08.2012 Author: DzErRoR Category:: webapps.. Google dork: intext:Website by Duvys Media: Tested on: win7 Demo sites: http://omnirehab.com/...

Scientific Linux Security Update : nss, nss-util, and nspr on SL6.x i386/x86_64 (20120620)

Network Security Services NSS is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. Netscape Portable Runtime NSPR provides platform independence for non-GUI operating system facilities. It was found that a Certificate Authori...

Scientific Linux Security Update : java-1.6.0-sun on SL5.x i386/x86_64 (BEAST)

The Sun 1.6.0 Java release includes the Sun Java 6 Runtime Environment and the Sun Java 6 Software Development Kit. This update fixes several vulnerabilities in the Sun Java 6 Runtime Environment and the Sun Java 6 Software Development Kit. Further information about these flaws can be found on th...

Scientific Linux Security Update : java-1.6.0-openjdk on SL6.x i386/x86_64 (20120214)

These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. It was discovered that Java2D did not properly check graphics rendering objects before passing them to the native renderer. Malicious input, or an untrusted Java application or applet could u...

Scientific Linux Security Update : java-1.6.0-openjdk on SL5.x i386/x86_64

These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. Integer overflow flaws were found in the way Java2D parsed JPEG images and user-supplied fonts. An attacker could use these flaws to execute arbitrary code with the privileges of the user...

CentOS Update for nspr CESA-2012:1091 centos6

Check for the Version of nspr OpenVAS Vulnerability Test CentOS Update for nspr CESA-2012:1091 centos6 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

CentOS Update for java CESA-2011:1380 centos5 x86_64

Check for the Version of java OpenVAS Vulnerability Test CentOS Update for java CESA-2011:1380 centos5 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

Apple XCode 4.x 信息泄露漏洞

BUGTRAQ ID: 54679 CVE ID: CVE-2012-3698,CVE-2011-3389 Xcode是苹果机器上所使用的开发工具。 Apple Xcode 4.4之前版本在实现上存在安全漏洞，可被恶意用户利用泄露敏感信息，劫持用户会话，绕过某些安全限制。 1） SSL 3.0和TLS 1.0协议的实现中存在设计错误。 2） DR实现中的错误可允许App Store应用访问用Xcode构建的Helper工具中的密钥链项目。 0 Apple XCode 4.x 厂商补丁： Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

p5-RT-Authen-ExternalAuth -- privilege escalation

The RT development team reports: RT::Authen::ExternalAuth 0.10 and below for all versions of RT are vulnerable to an escalation of privilege attack where the URL of a RSS feed of the user can be used to acquire a fully logged-in session as that user. CVE-2012-2770 has been assigned to this...

Hack a Server - The man behind the idea

"Choose a job you love, and you will never have to work a day in your life" said Confucius. These would be the words that describe Marius Corîci the most. In 2003 he started doing business in the plumbing industry and co-founded ITS Group, a franchise for Romstal Company, the biggest plumbing...

WaveMaker Studio Requires No Authentication

The version of WaveMaker Studio detected on the remote host does not require authentication. A remote, unauthenticated attacker could exploit this to create, modify, and deploy projects. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...

WaveMaker Studio Detection

WaveMaker Studio, a WYSIWYG development studio, was detected on the remote host. This application is a component of the WaveMaker development platform. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid60061; scriptversion"1.3"; scriptcvsdate"Date: 2019/11/22";...

Moderate: Red Hat Security Advisory: java-1.4.2-ibm-sap security update

Updated java-1.4.2-ibm-sap packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6 for SAP. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detail...

[SECURITY] Fedora 16 Update: php-ZendFramework-1.11.12-1.fc16

Extending the art & spirit of PHP, Zend Framework is based on simplicity, object-oriented best practices, corporate friendly licensing, and a rigorou sly tested agile code base. Zend Framework is focused on building more secure, reliable, and modern Web 2.0 applications & web services, and...

Millions of Passwords leaked from Social Site Formspring

Formspring, a social Q&A website popular with teenagers,this week disabled its users' passwords after discovering a security breach. Formspring founder and CEO Ade Olonoh apologized to users for the inconvenience, and advised them to change their passwords when they log back into Formspring. A bl...

RedHat Update for java-1.6.0-openjdk RHSA-2012:0135-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Citadel Malware Crew May Be Taking Its Wares Off the Market

It turns out that malware authors–at least some of them–may have an interest in economics. Perhaps worried about market saturation or commoditization, the distributors of the Citadel malware, which has been used to deliver ransomware in the past, are apparently about to take their creation off th...

[SECURITY] Fedora 16 Update: ImageMagick-6.7.0.10-5.fc16

ImageMagick is an image display and manipulation tool for the X Window System. ImageMagick can read and write JPEG, TIFF, PNM, GIF, and Photo CD image formats. It can resize, rotate, sharpen, color reduce, or add special effects to an image, and when finished you can either save the completed wor...

Fedora Update for php-symfony-symfony FEDORA-2012-8911

Check for the Version of php-symfony-symfony OpenVAS Vulnerability Test Fedora Update for php-symfony-symfony FEDORA-2012-8911 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/o...

[SECURITY] Fedora 16 Update: php-symfony-symfony-1.4.18-1.fc16

Symfony is a complete framework designed to optimize the development of web applications by way of several key features. For starters, it separates a w eb application's business rules, server logic, and presentation views. It contains numerous tools and classes aimed at shortening the development...