[SECURITY] [DSA 2591-1] mahara security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2591-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 27, 2012 http://www.debian.org/security/faq -...

Ubiquiti AirOS <= 5.5.2 Remote POST-Auth Root Command Execution

Exploit for hardware platform in category remote exploits !/usr/bin/python +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Ubiquiti AirOS 0x90.nl Software link :...

[SECURITY] [DSA 2591-1] mahara security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2591-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 27, 2012 http://www.debian.org/security/faq -...

Debian DSA-2591-1 : mahara - several vulnerabilities

Multiple security issues have been found in Mahara, an electronic portfolio, weblog, and resume builder, which can result in cross-site scripting, clickjacking or arbitrary file execution. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

DSA-2591-1 mahara - several

Bulletin has no description...

mcrypt 2.5.8 Stack Based Overflow

!/usr/bin/perl Title : mcrypt ', $filename; print F $file; close F; sub buildfile magic $file .= "\x00m\x03"; flags $file .= pack'C', 1 6; algorithm $file .= "H@Ck3d\x00"; keysize $file .= pack'S', 0xdead; mode $file .= "h@cK3d\x00"; keymode $file .= "H@CK3D\x00"; sflags $file .= "\xff"; payload...

CVE-2012-5479

The Portfolio plugin in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to upload and execute files via a modified Portfolio API callback...

Design/Logic Flaw

The Portfolio plugin in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to upload and execute files via a modified Portfolio API callback...

Directory traversal

Directory traversal vulnerability in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote attackers to upload and execute files via a 130 /FSF/CMD request with a .. dot dot in a FILE element of an FSFUI record...

CVE-2012-4959

Directory traversal vulnerability in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote attackers to upload and execute files via a 130 /FSF/CMD request with a .. dot dot in a FILE element of an FSFUI record...

Multiple vulnerabilities in Samsung Kies

Advisory ID: HTB23099 Product: Samsung Kies Vendor: Samsung Electronics Vulnerable Versions: 2.3.2.1205420 and probably prior Tested Version: 2.3.2.1205420 Vendor Notification: June 25, 2012 Public Disclosure: October 15, 2012 Vulnerability Type: NULL Pointer Dereference CWE-476, Improper Access...

Samsung Kies 2.3.2.12054_20 - Multiple Vulnerabilities

Samsung Kies 2.3.2.1205420 - Multiple Vulnerabilities Advisory ID: HTB23099 Product: Samsung Kies Vendor: Samsung Electronics Vulnerable Versions: 2.3.2.1205420 and probably prior Tested Version: 2.3.2.1205420 Vendor Notification: June 25, 2012 Public Disclosure: October 15, 2012 Vulnerability...

CVE-2012-5386

CVE-2012-5386 affects phpPaleo 4.8b180 and earlier, caused by a directory traversal in index.php that allows remote attackers to include and execute arbitrary local files via a .. in the phppaleo4_lang cookie (cookie-based/input parameter manipulation). The issue is explicitly described across mu...

CVE-2011-4911

Joomla! before 1.5.12 does not perform a JEXEC check in unspecified files, which allows remote attackers to obtain the installation path via unspecified vectors...

CVE-2012-0987

ImpressCMS vulnerability CVE-2012-0987 is a directory traversal flaw in edituser.php. Affected products: ImpressCMS 1.2.x prior to 1.2.7 Final and 1.3.x prior to 1.3.1 Final. Root cause: icmsConfigPlugins[sanitizer_plugins][] parameter can be manipulated to include arbitrary local files via direc...

CVE-2012-4893

Multiple cross-site request forgery CSRF vulnerabilities in file/show.cgi in Webmin 1.590 and earlier allow remote attackers to hijack the authentication of privileged users for requests that 1 read files or execute 2 tar, 3 zip, or 4 gzip commands, a different issue than CVE-2012-2982...

web@all - Local File Inclusion / Multiple Arbitrary File Upload Vulnerabilities

source: https://www.securityfocus.com/bid/55426/info web@all is prone to a local file-include vulnerability and multiple arbitrary file-upload vulnerabilities. An attacker can exploit these issues to upload arbitrary files onto the web server, execute arbitrary local files within the context of t...

Windows Service Trusted Path Privilege Escalation

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'msf/core/post/common' require...

CentOS Update for ghostscript CESA-2012:0095 centos6

Check for the Version of ghostscript OpenVAS Vulnerability Test CentOS Update for ghostscript CESA-2012:0095 centos6 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...

AVA VoIP - Multiple Vulnerabilities

AVA VoIP - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/54591/info AVA VoIP is prone to multiple security vulnerabilities because the application fails to sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of a...