2074 matches found
Design/Logic Flaw
Unspecified vulnerability in the Extensible Interface Platform in Web Services in Xerox WorkCentre 7655, 7665, and 7675 allows remote attackers to make configuration changes via unknown vectors...
Xerox WorkCentre Extensible Interface Platform Unspecified Security Bypass (XRX08-006)
According to its model number and software version, the remote host is a Xerox WorkCentre device that reportedly contains an unspecified vulnerability affecting the Extensible Interface Platform feature in the product's Web Services. A remote attacker may be able to leverage this issue to make...
Fedora 8 : kvm-60-6.fc8 (2008-4604)
Tue May 27 2008 Glauber Costa - 60-6.fc8 - Fix Cirrus heap overflow vulnerability 448524 - Fri May 23 2008 Daniel P. Berrange - 60-5.fc8 - Put PTY in rawmode - Fri May 16 2008 Glauber Costa - 60-4.fc8 - Fix problem with cirrus device that was breaking vnc connections rhbz 446830 - Wed Feb 27 2008...
Cosminexus, Processing Kit for XML and Hitachi Developer's Kit for Java Buffer Overflow Vulnerabilities
Overview Cosminexus, Processing Kit for XML and Hitachi Developer's Kit for Java may suffer from buffer overflow when a Java application handles GIF images with the image-processing APIs. Impact An attacker could execute arbitrary code. Solution Please refer to the 'Vendor Information' section fo...
CVE-2008-1114
Vocera Communications wireless handsets, when using Protected Extensible Authentication Protocol PEAP, do not validate server certificates, which allows remote wireless access points to steal hashed passwords and conduct man-in-the-middle MITM attacks...
[SECURITY] Fedora 7 Update: httpd-2.2.6-1.fc7
The Apache HTTP Server is a powerful, efficient, and extensible web server...
security flaw
Double free vulnerability in the Adobe Acrobat Reader Plugin before 8.0.0, as used in Mozilla Firefox 1.5.0.7, allows remote attackers to execute arbitrary code by causing an error via a javascript: URI call to document.write in the 1 FDF, 2 XML, or 3 XFDF AJAX request parameters...
CVE-2006-5425
XORP (eXtensible Open Router Platform) versions 1.2 and 1.3 are affected by a vulnerability in OSPF handling: processing an Open Shortest Path First LSA with an invalid length field can cause an application crash, leading to a denial of service. The issue is tied to the LSA length validation path...
security flaw
Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via multiple Javascript timed events that load a deeply nested XML file, followed by redirecting the browser to another page, which leads...
DEBIAN-CVE-2006-1046
server.cpp in Monopd 0.9.3 allows remote attackers to cause a denial of service CPU and memory consumption via a string containing a large number of characters that are escaped when Monopd produces XML output...
security flaw
Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to modify HTTP headers of XML HTTP requests via XMLHttpRequest, and possibly use the client to exploit vulnerabilities in servers or proxies, including HTTP request smuggling and HTTP request splitting...
CVE-2004-1459
Cisco Secure Access Control Server ACS 3.2, when configured as a Light Extensible Authentication Protocol LEAP RADIUS proxy, allows remote attackers to cause a denial of service device crash via certain LEAP authentication requests...
libxml2 various overflows
Multiple buffer overflows in libXML 2.6.12 and 2.6.13 libxml2, and possibly other versions, may allow remote attackers to execute arbitrary code via 1 a long FTP URL that is not properly handled by the xmlNanoFTPScanURL function, 2 a long proxy URL containing FTP data that is not properly handled...
Internet Explorer help
None None...