9525 matches found
Code injection
Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote attackers to affect availability, related to Enterprise Infrastructure SEC JDENET...
Code injection
Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect confidentiality, related to Enterprise Infrastructure SEC JDENET, a different vulnerability than CVE-2011-2325, CVE-2011-3509, and CVE-2011-3524...
Design/Logic Flaw
Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect integrity, related to Enterprise Infrastucture SEC JDNET...
Design/Logic Flaw
Unspecified vulnerability in the Virtual Desktop Infrastructure VDI component in Oracle Virtualization 3.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Session. NOTE: this CVE identifier was accidentally used for a Concurrency issue in...
CVE-2011-2324
Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote attackers to affect availability, related to Enterprise Infrastructure SEC JDENET...
CVE-2011-2317
Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect integrity, related to Enterprise Infrastucture SEC JDNET...
CVE-2011-3524
Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect confidentiality, related to Enterprise Infrastructure SEC JDENET, a different vulnerability than CVE-2011-2325, CVE-2011-2326, and CVE-2011-3509...
CVE-2011-2326
Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect confidentiality, related to Enterprise Infrastructure SEC JDENET, a different vulnerability than CVE-2011-2325, CVE-2011-3509, and CVE-2011-3524...
CVE-2011-2324
Vulnerability CVE-2011-2324 affects Oracle JD Edwards EnterpriseOne Tools JDENET (JD Edwards 8.98 SP 24). The vendor/affected component is JDENET within EnterpriseOne Tools; the root cause is a Denial-of-Service condition triggered by processing packets of a specific size, consuming CPU time and ...
CVE-2011-3514
CVE-2011-3514 affects Oracle JD Edwards EnterpriseOne Tools (JD Edwards 8.98 SP 24 / JD Edwards EnterpriseOne Server + Tools 9.0/8.98) via the JDENET SAW kernel. A specially crafted JDENET message can remotely modify the JDE.INI configuration file, enabling remote compromise of the ERP system. Ex...
Cloupia End-to-end FlexPod Management Directory Traversal
Exploit for jsp platform in category web applications Cloupia End-to-end FlexPod Management - Directory Traversal Vulnerability Vulnerability Information Class: Directory Traversal Remotely Exploitable: Yes Locally Exploitable: Yes Software Description Provides end-to-end FlexPod management and...
World Economic Forum Sees Dark Side To Connectivity
The latest edition World Economic Forum’s Global Risks Report takes a dim view of our hyper connected world. At the group’s annual meeting in Davos, Switzerland, members wrestled with the consequences of ubiquitous Internet connectivity, concluding that groups or individuals with few resources ar...
Adobe Acrobat / Reader Image Processing Integer Overflow
No description provided by source. Adobe Acrobat and Reader Image Processing Integer Overflow Vulnerability APSB12-01 Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- "Adobe Acrobat and Reader are the global standards for electronic document sharing. They are used to create,...
Microsoft Readying Real Time Hosted Threat Intelligence Feed
New York City – Microsoft has proven that it can take down huge, global botnets like Kelihos, Rustock and Waldec. Now the company is ready to start making the data it acquires in those busts available to governments, law enforcement and customers as a real time threat intelligence feed...
White House Launches Electric Industry Security Maturity Model Program
The White House has launched a new initiative designed to help companies in the electric power industry measure the maturity of their security programs against a new maturity model. The program is being run in tandem with the Department of Homeland Security and Department of Energy and is meant t...
[SECURITY] Fedora 16 Update: zabbix-1.8.10-1.fc16
ZABBIX is software that monitors numerous parameters of a network and the health and integrity of servers. ZABBIX uses a flexible notification mechanism that allows users to configure e-mail based alerts for virtually any event. This allows a fast reaction to server problems. ZABBIX offers...
[SECURITY] Fedora 15 Update: zabbix-1.8.10-1.fc15
ZABBIX is software that monitors numerous parameters of a network and the health and integrity of servers. ZABBIX uses a flexible notification mechanism that allows users to configure e-mail based alerts for virtually any event. This allows a fast reaction to server problems. ZABBIX offers...
Key infrastructure systems of 3 US cities Under Attack By Hackers
Key infrastructure systems of 3 US cities Under Attack By Hackers BBC News Reported that the Federal Bureau of Investigation FBI announced recently that key infrastructure systems of three US cities had been accessed by hackers. Such systems commonly known as Supervisory Control and Data...
Stuxnet Part II, III and IV
The nation-state sponsored malware arms race is on. Stuxnet may have been the “Shot heard round the world” but we think its likely that 2012 will witness a number of other skirmishes, with malware linked to foreign governments hostile to or allied with U.S. and Western nations infecting and...
Internet Pioneers, Security Experts Send Letter to Congress Blasting SOPA
A group of engineers, networking specialists, security experts and other specialists deeply involved with the Internet’s development and growth have sent a letter to lawmakers criticizing the highly controversial SOPA and PIPA bills and imploring them not to pass the legislation, which they say...