Tumbleweed SecureTransport 4.6.1 FileTransfer - ActiveX Buffer Overflow

Tumbleweed SecureTransport 4.6.1 FileTransfer - ActiveX Buffer Overflow !-- aushack.com - Vulnerability Advisory ----------------------------------------------- Release Date: 07-Apr-2008 Software: Tumbleweed Communications - SecureTransport FileTransfer http://www.tumbleweed.com/ Description:...

Database system security vulnerability excavations-vulnerability warning-the black bar safety net

Today, in the virus raging, hacking the ubiquitous network environment where software security has become a concern of the topic. Traditional software security main concern is that the permissions and roles of management, such as access control or data confidentiality and integrity, such as...

Low: Red Hat Security Advisory: coolkey security and bug fix update

Updated coolkey packages that fix a security issue and various bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having low security impact by the Red Hat Security Response Team. coolkey contains the driver support for the CoolKey and Common Access Card CAC Smar...

JVN#50495547 Ichitaro series buffer overflow vulnerability

The "Ichitaro" series word processing software, from JustSystems Corporation, contains a buffer overflow vulnerability. If a user opens a specially crafted jtd file or views it on a web browser, an attacker could execute arbitrary code with the privileges of the user. Impact An attacker could...

eGov Content Manager Cross Site Scripting Vulrnability

HSC eGov Content Manager Cross Site Scripting Vulrnability The eGov Manager was designed to simplify the efforts of government staffers who are responsible for posting public documents, news updates, events, managing staff directories and online services. This issue is due to a failure in the...

Unfixed XSS vulnerability at www.ttmersin.telekom.gov.tr

Security researcher BackDoor, has submitted on 23/09/2007 a cross-site-scripting XSS vulnerability affecting www.ttmersin.telekom.gov.tr, which at the time of submission ranked 11286 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 28/09/2007. I...

When Google mode to become the“SafeMod=off”-bug warning-the black bar safety net

Google search has been in control of the search state that limits the user's search scope, but Google specifically for the retention of a parameterthe“SafeMod” In fact when we search SafeMod=on safe mode is turned on if you are in SafeMod=off? Haha something fun to. We use the word do...

ris-xss.txt

Hi folks, Description: RIS is a public accessable web application to search/browse Austrian laws, provided by the Government of Austria. It is vulnerable for XSS via a malformed search query. POC: http://www.ris.bka.gv.at/taweb-cgi/taweb?q=%3Cscript%3Ealert1;%3C/script%3E&x=r&v=lroo&o=&db3=LROO...

Unfixed XSS vulnerability at www.governmentcontractswon.com

Security researcher RubberDuck, has submitted on 21/02/2007 a cross-site-scripting XSS vulnerability affecting www.governmentcontractswon.com, which at the time of submission ranked 297138 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on...

AEP SmartGate 4.3b (GET) Arbitrary File Download Exploit

Exploit for unknown platform in category remote exploits ======================================================== AEP SmartGate 4.3b GET Arbitrary File Download Exploit ======================================================== / prdelka-vs-AEP-smartgate ======================== Smartgate is an...

The Central People's Government portal gov. cn small BUG-vulnerability warning-the black bar safety net

To view the source file. Didn't find the asp. Home like The are htm. Then just find a linkhttp://www. gov. cn/banshi/wjrs/lssf. htm. There is a search, I see the source of the file also didn't find the action words. It seems like there is a jsp linkslater found. And then enterscriptalert"wolf...

[Full-disclosure] NIC Chile CGI Script Zone Transfers

NIC Chile CGI Script Zone Transfers. Autor: Rodrigo Gutierrez rodrigo at intellicomp.cl Affected: All ".cl" domains which use NIC's Chile Secondary NS. Vendor url: http://www.nic.cl Rate: Critical Background. NIC Chile is a part of the University of Chile and is in charge of handling all the...

frame.spoof.txt

Date: Thu, 18 Feb 1999 10:36:49 PST From: Robert Thomas To: [email protected] Subject: Re: Netscape Communicator window spoofing bug -Junk deleted- This was reported back in the November, December time frame by secureexperts.com as a frame spoof bug. MS came up with a lame patch for IE that...