Oracle Siebel CRM (January 2015 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2015 CPU advisory. - Vulnerability in the Oracle Enterprise Asset Management component of Oracle Siebel CRM subcomponent: Siebel Core - Unix/Windows. Supported...

SUSE CVE-2015-0310

Adobe Flash Player before 13.0.0.262 and 14.x through 16.x before 16.0.0.287 on Windows and OS X and before 11.2.202.438 on Linux does not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism on Windows, and have an unspecified impact on...

SUSE CVE-2015-0311

Unspecified vulnerability in Adobe Flash Player through 13.0.0.262 and 14.x, 15.x, and 16.x through 16.0.0.287 on Windows and OS X and through 11.2.202.438 on Linux allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in January 2015...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect Tivoli Storage Productivity Center January 2015 CPU

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition and IBM® Runtime Environment Java™ Technology Edition that is shipped and used by Tivoli Storage Productivity Center. These issues were disclosed as part of the IBM Java SDK updates in January 2015. Vulnerability...

Oracle Java SE 5 < Update 81 / 6 < Update 91 / 7 < Update 75 / 8 < Update 31 Multiple Vulnerabilities (January 2015 CPU) (POODLE)

Binary data 700649.prm...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Virtualization Engine TS7700 - October 2014 & January 2015

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7, IBM SDK Java Technology Edition, Version 6, and IBM SDK Java 2 Technology Edition, Version 5 that are used by IBM Virtualization Engine TS7700. These issues were disclosed as part of the IBM Java SDK updat...

Security Bulletin: Multiple vulnerabilities in current releases of IBM® WebSphere Real Time

Summary Java SE issues disclosed in the Oracle January 2015 Critical Patch Update plus two additional vulnerabilities Vulnerability Details CVE IDs: CVE-2014-6549 CVE-2015-0408 CVE-2015-0412 CVE-2015-0395 CVE-2015-0403 CVE-2015-0406 CVE-2015-0410 CVE-2015-0407 CVE-2015-0400 CVE-2014-6587...

Directory traversal

Directory traversal vulnerability in kml2jsonp.php in Geospatial Information Authority of Japan aka GSI OldGSIMaps before January 2015 on Windows allows remote attackers to read arbitrary files via unspecified vectors...

Source code of Old_GSI_Maps prior to January, 2015 vulnerable to directory traversal

Overview kml2jsonp.php contained in source code of OldGSIMaps prior to January, 2015 provided by the Geospatial Information Authority of Japan GSI contains a directory traversal vulnerability CWE-22. Shoji Baba reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under...

Oracle GlassFish Server 3.0.1 / 3.1.2 Unspecified Vulnerability (January 2015 CPU)

Binary data 9001.prm...

Oracle: Security Advisory (ELSA-2015-1228)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

mysql: unspecified vulnerability related to Server:Replication (CPU Jan 2015)

Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote attackers to affect availability via unknown vectors related to Server : Replication, a different vulnerability than CVE-2015-0381...

Oracle WebCenter Content Server Remote Security Vulnerability (January 2015 CPU)

The version of Oracle WebCenter Content installed on the remote host is potentially affected by an unspecified remote security vulnerability in the Content Server component. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

SOL16136 - OpenSSL vulnerability CVE-2014-8275

Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not list any version...

mysql: unspecified vulnerability related to Server:DDL (CPU Jan 2015)

Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows remote authenticated users to affect availability via vectors related to DDL...

mysql: unspecified vulnerability related to Server:Replication (CPU Jan 2015)

Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote attackers to affect availability via unknown vectors related to Server : Replication, a different vulnerability than CVE-2015-0382...

Oracle Forms and Reports Multiple Unspecified Vulnerabilities (January 2015 CPU)

Binary data oracleformsreportsjan2015cpu.nbin...

flash-plugin: Vulnerability that could be used to circumvent memory randomization mitigations (APSB15-02)

Adobe Flash Player before 13.0.0.262 and 14.x through 16.x before 16.0.0.287 on Windows and OS X and before 11.2.202.438 on Linux does not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism on Windows, and have an unspecified impact on...

flash-plugin: multiple critical vulnerabilities (APSA15-01)(APSB15-03)

Unspecified vulnerability in Adobe Flash Player through 13.0.0.262 and 14.x, 15.x, and 16.x through 16.0.0.287 on Windows and OS X and through 11.2.202.438 on Linux allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in January 2015...

Oracle Access Manager Multiple Vulnerabilities (January 2015 CPU)

The version of Oracle Access Manager installed on the remote host is affected by multiple unspecified vulnerabilities that allow remote attackers to impact integrity and confidentiality. Note that this plugin does not check for additional configuration required to completely mitigate CVE-2015-036...