The vulnerability of the iOS operating system, which allows a malicious actor to trigger a service failure

The vulnerability in the CoreTelephony component allows a remote attacker to trigger a service failure by sending specially crafted Class 0 SMS messages...

CVE-2016-3628

Buffer overflow in tibemsd in the server in TIBCO Enterprise Message Service EMS before 8.3.0 and EMS Appliance before 2.4.0 allows remote authenticated users to cause a denial of service or possibly execute arbitrary code via crafted inbound data...

CVE-2016-3628

Buffer overflow in tibemsd in the server in TIBCO Enterprise Message Service EMS before 8.3.0 and EMS Appliance before 2.4.0 allows remote authenticated users to cause a denial of service or possibly execute arbitrary code via crafted inbound data...

CVE-2016-3628

CVE-2016-3628 affects TIBCO Enterprise Message Service (EMS) server (tibemsd) and EMS Appliance. A buffer overflow in tibemsd allows remote authenticated users to cause denial of service or potentially execute arbitrary code via crafted inbound data. Affected versions, per sources, are EMS before...

IBM Financial Transaction Manager for Corporate Payment Services Arbitrary Code Execution Vulnerability

IBM Financial Transaction Manager FTM for Corporate Payment Services is a Financial Transaction Manager product from IBM USA, which is used to monitor, track and report on financial payments and transactions. An arbitrary code execution vulnerability exists in IBM FTM for Corporate Payment Servic...

Atlassian Bamboo Arbitrary Code Execution Vulnerability

Atlassian Bamboo is a set of continuous integration build tools from Atlassian Australia. A security vulnerability exists in a resource in Atlassian Bamboo versions prior to 5.9.9 and 5.10.x versions prior to 5.10.0, which can be exploited by remote attackers to execute arbitrary Java code by...

ObjectMessage: unsafe deserialization

It was found that use of a JMS ObjectMessage does not safely handle user supplied data when deserializing objects. A remote attacker could use this flaw to execute arbitrary code with the permissions of the application using a JMS ObjectMessage...

Debian Security Advisory DSA 3524-1 (activemq - security update)

It was discovered that the ActiveMQ Java message broker performs unsafe deserialisation. For additional information, please refer to the upstream advisory at http://activemq.apache.org/security-advisories.data/CVE-2015-5254-announcement.txt . OpenVAS Vulnerability Test $Id: deb3524.nasl 6608...

Code injection

Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that can be serialized in the broker, which allows remote attackers to execute arbitrary code via a crafted serialized Java Message Service JMS ObjectMessage object...

UBUNTU-CVE-2015-5254

Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that can be serialized in the broker, which allows remote attackers to execute arbitrary code via a crafted serialized Java Message Service JMS ObjectMessage object...

DEBIAN-CVE-2015-5254

Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that can be serialized in the broker, which allows remote attackers to execute arbitrary code via a crafted serialized Java Message Service JMS ObjectMessage object...

CVE-2015-5254

Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that can be serialized in the broker, which allows remote attackers to execute arbitrary code via a crafted serialized Java Message Service JMS ObjectMessage object...

CVE-2015-5254

Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that can be serialized in the broker, which allows remote attackers to execute arbitrary code via a crafted serialized Java Message Service JMS ObjectMessage object...

CVE-2015-5254

Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that can be serialized in the broker, which allows remote attackers to execute arbitrary code via a crafted serialized Java Message Service JMS ObjectMessage object...

CVE-2015-5254

Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that can be serialized in the broker, which allows remote attackers to execute arbitrary code via a crafted serialized Java Message Service JMS ObjectMessage object...

Google Android SMS and MMS Message Tampering Vulnerability

Google Android is an open source operating system based on Linux, mainly used in portable devices. A security vulnerability exists in Google Android, which allows malicious applications to exploit the vulnerability to tamper with the sending and receiving status of SMS and MMS messages to carry o...

The vulnerability of the iOS operating system, which allows a hacker to trigger a device service failure.

The vulnerability of the iOS operating system is related to errors in the code. Exploiting this vulnerability allows a malicious actor to cause a device to fail to respond to service requests by sending a specially crafted Unicode text message, which is not properly processed when sent via SMS or...

Drupal SMS Framework Module Cross-Site Scripting Vulnerability

Drupal is a free, open source content management system developed in PHP and maintained by the Drupal community.SMS Framework is one of the modules that enables the SMS protocol. A cross-site scripting vulnerability exists in the Drupal SMS Framework module due to the program's failure to...

Threat Outbreak Alert: Fake New Payment Attachment Email Messages on January 13, 2014

Medium Alert ID: 32411 First Published: 2014 January 14 17:48 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain new payment details attachment for the recipient. The text in the email message attempts to convince the...

Pidgin: Multiple NULL pointer dereference flaws in Yahoo protocol plug-in

libymsg.c in the Yahoo! protocol plugin in libpurple in Pidgin 2.6.0 through 2.7.10 allows 1 remote authenticated users to cause a denial of service NULL pointer dereference and application crash via a malformed YMSG notification packet, and allows 2 remote Yahoo! servers to cause a denial of...