Oracle Siebel CRM 8.5.x < 16.4 (July 2016 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2016 CPU advisory. - Vulnerability in the Oracle Knowledge component of Oracle Siebel CRM subcomponent: Information Manager Console. The supported version that is...

Oracle Siebel CRM (July 2016 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2016 CPU advisory. - Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: EAI. Supported versions that are affected are 8.1.1, 8.2.2,...

Security Bulletin: Multiple security vulnerabilities have been identified in IBM WebSphere Application Server shipped with IBM Intelligent Operations Center products (Java Technology Edition CPU July 2016 - Includes Oracle July 2016 CPU + CVE-2016-3485)

Summary IBM WebSphere Application Server is shipped as a component of IBM Intelligent Operations Center and related products. Oracle released the July 2016 critical patch updates which contain multiple fixes for security vulnerabilities in the IBM Java Development Kit that is included with IBM...

July 2016 update rollup for Windows Server 2012

July 2016 update rollup for Windows Server 2012 The July 2016 update rollup includes improvements and fixes for the Windows Server 2012 platform. We recommend that you apply this update rollup as part of your regular maintenance routines. Improvements and fixes To learn more about the non-securit...

CVE-2016-1000104

A security Bypass vulnerability exists in the FcgidPassHeader Proxy in modfcgid through 2016-07-07...

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affects IBM Systems Director Storage Control

Summary There are multiple vulnerabilities in IBM®Runtime Environment Java™Technology Edition, Version 6 that is used by IBM Systems Director Storage Control. These issues was disclosed as part of the IBM Java updates for January 2016, July 2016 and October 2016. Vulnerability Details CVEID:...

Security Bulletin: A security vulnerability has been identified in WebSphere Application Server shipped with IBM Service Delivery Manager (CVE-2016-3485)

Summary WebSphere Application Server is shipped as components of IBM Service Delivery Manager. Information about a security vulnerability affecting WebSphere Application Server has been published in a security bulletin. Vulnerability Details CVEID: CVE-2016-3485 DESCRIPTION: An unspecified...

Security Bulletin: Multiple security vulnerabilities have been identified in IBM WebSphere Application Server shipped with IBM Integrated Information Core (Java Technology Edition CPU July 2016 - Includes Oracle July 2016 CPU + CVE-2016-3485)

Summary IBM WebSphere Application Server is shipped as a component of IBM Integrated Information Core. Oracle released the July 2016 critical patch updates which contain multiple fixes for security vulnerabilities in the IBM Java Development Kit that is included with IBM WebSphere Application...

Security Bulletin:Multiple vulnerabilities in IBM Java SDK affect WebSphere Application Server shipped with IBM Tivoli Network Manager IP Edition July 2016 CPU (CVE-2016-3485)

Summary IBM® SDK Java™ Technology Edition integrated within WebSphere Application Server is shipped as a component of IBM Tivoli Network Manager IP Edition. Information about a security vulnerability affecting WebSphere Application Server has been published in a security bulletin. Vulnerability...

Security Bulletin: Multiple vulnerabilities in IBM® Java SDK affects WebSphere Application Server July 2016 CPU (CVE-2016-3485) that is bundled with IBM WebSphere Application Server Patterns and IBM WebSphere Application Server for Cloud.

Summary There are multiple vulnerabiltities in the IBM® SDK Java™ Technology Edition that is shipped with IBM WebSphere Application Server. These issues were disclosed in the IBM Java SDK updates in July 2016. Vulnerability Details If you run your own Java code using the IBM Java Runtime delivere...

Security Bulletin: Multiple vulnerabilities may affect IBM® SDK, Java™ Technology Edition

Summary Java SE issues disclosed in the Oracle July 2016 Critical Patch Update Vulnerability Details CVE IDs: CVE-2016-3610 CVE-2016-3598 CVE-2016-3606 CVE-2016-3587 CVE-2016-3511 CVE-2016-3550 CVE-2016-3485 DESCRIPTION: This bulletin covers all applicable Java SE CVEs published by Oracle as part...

CVE-2016-5055

OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 has XSS in the username field and Wireless Client Mode configuration page...

CVE-2016-5058

OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 allows Zigbee replay...

WordPress Simple Ads Manager 2.9.8.125 PHP Object Injection Vulnerability

Exploit for php platform in category web applications ------------------------------------------------------------------------ Simple Ads Manager WordPress plugin unauthenticated PHP Object injection vulnerability ------------------------------------------------------------------------ Yorick...

Geutebrueck GCore - GCoreServer.exe Buffer Overflow RCE

This module exploits a stack Buffer Overflow in the GCore server GCoreServer.exe. The vulnerable webserver is running on Port 13003 and Port 13004, does not require authentication and affects all versions from 2003 till July 2016 Version 1.4.YYYYY. This module requires Metasploit:...

WordPress InfiniteWP Admin Panel 2.8.0 Command Injection

------------------------------------------------------------------------ Command injection in InfiniteWP Admin Panel ------------------------------------------------------------------------ Sipke Mellema, July 2016 ------------------------------------------------------------------------ Abstract...

Fedora 24 : 1:java-1.8.0-openjdk-aarch32 (2016-c07d18b2a5)

jdk8u102 upstream update, also contains July 2016 security fixes. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

Multiple vulnerabilities in IBM Java SDK affect AIX

IBM SECURITY ADVISORY First Issued: Thu Aug 18 15:35:03 CDT 2016 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/javajuly2016advisory.asc https://aix.software.ibm.com/aix/efixes/security/javajuly2016advisory.asc...

mysql: unspecified vulnerability in subcomponent: Server: Parser (CPU July 2016)

Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows local users to affect confidentiality, integrity, and availability via vectors related to Server: Parser...

shangji.ibicn.com XSS vulnerability

Vulnerable URL: http://shangji.ibicn.com/supply/index.jsp?so=%5B%271%27%5D=%5B%27%27%5D%22onfocus=%22alert1%22%20autofocus=%22%22 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...