167 matches found
Private Messaging System: Vuvuzela
Vuvuzela is a messaging system that protects the privacy of message contents and message metadata. Users communicating through Vuvuzela do not reveal who they are talking to, even in the presence of powerful nation-state adversaries. Vuvuzela is the first system that provides strong metadata...
[SECURITY] Fedora 19 Update: dbus-1.6.28-1.fc19
D-BUS is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a per-user-login-session messaging facility...
USN-2352-1: DBus vulnerabilities
Simon McVittie discovered that DBus incorrectly handled the file descriptors message limit. A local attacker could use this issue to cause DBus to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only applied to Ubuntu 12.04 LTS and Ubuntu 14.04 LTS...
USN-2275-1: DBus vulnerabilities
Alban Crequy discovered that dbus-daemon incorrectly sent AccessDenied errors to the service instead of the client when enforcing permissions. A local user can use this issue to possibly deny access to the service. CVE-2014-3477 Alban Crequy discovered that dbus-daemon incorrectly handled certain...
Oracle Linux 6 : qpid (ELSA-2012-1269)
The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2012-1269 advisory. python-qpid 0.14-11 - BZs: 825078 - Resolves: rhbz840053 qpid-cpp 0.14-22.0.1.el63 - Update summary and description in specfile to be product neutral 0.14-22 -...
Important: Red Hat Security Advisory: Fuse MQ Enterprise 7.1.0 update
Fuse MQ Enterprise 7.1.0 roll up patch 1, which fixes multiple security issues and various bugs, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores,...
[SECURITY] Fedora 18 Update: dbus-1.6.12-1.fc18
D-BUS is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a per-user-login-session messaging facility...
CVE-2012-6103
CVE-2012-6103 affects Moodle’s messaging system (user/messageselect.php) across Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1. The vulnerability is a set of cross-site request forgery (CSRF) flaws that allow remote attackers to hijack the authentication of arbitrary users ...
Moderate: Red Hat Security Advisory: qpid security, bug fix, and enhancement update
Updated qpid packages that fix one security issue, multiple bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, whic...
Membris 2.0.1 - Multiple Vulnerabilities
Exploit:Membris v 2.0.1 Sql \ XSS & File Disclosure Vulnerabilities Google Dork: Powered by Membris v 2.0.1 Date: Dr.abolalh Author:01/06/2012 E-Mail: [email protected] Software Link: http://scripts.toocharger.com/fiches/scripts/membris/5258.htm Version: Membris v 2.0.1 Exploit-DB Note: Application...
Proman Xpress 5.0.1 SQL Injection / XSS
Title: ====== Proman Xpress v5.0.1 - Multiple Web Vulnerabilities Date: ===== 2012-05-09 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=513 VL-ID: ===== 512 Common Vulnerability Scoring System: ==================================== 7.5 Introduction: ============= Proman...
CVE-2012-1292
Technical details about CVE-2012-1292 are not publicly available in the provided documents. Monitor for updates.
Facebook Flaw Allows Users to Send Executables
A security researcher has discovered a vulnerability in Facebook’s messaging system that could allow an attacker to send executable attachments to anyone on the popular social network. The vulnerability is such that an attacker doesn’t necessarily need to be friends with the person to whom he sen...
[SECURITY] Fedora 14 Update: dbus-1.4.0-3.fc14
D-BUS is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a per-user-login-session messaging facility...
Mandriva Update for hornetq MDVA-2011:016 (hornetq)
Check for the Version of hornetq OpenVAS Vulnerability Test Mandriva Update for hornetq MDVA-2011:016 hornetq Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
Mandriva Update for hornetq MDVA-2011:016 (hornetq)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
[SECURITY] Fedora 13 Update: dbus-1.2.24-2.fc13
D-BUS is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a per-user-login-session messaging facility...
CVE-2010-2639
IBM WebSphere Commerce Enterprise 7.0 before 7.0.0.2 allows remote attackers to read messages intended for other recipients via vectors involving access by the outbound messaging system to the RunTimeProfileCacheCmdImpl class, related to the caching of mutable objects and "concurrency issues."...
CVE-2010-2639
CVE-2010-2639 affects IBM WebSphere Commerce Enterprise 7.0 prior to 7.0.0.2. The issue arises from access by the outbound messaging system to the RunTimeProfileCacheCmdImpl class, tied to caching of mutable objects and concurrency issues, enabling remote attackers to read messages intended for o...
SAP NetWeaver MessagingServer — XSS
Application: SAP NetWeaver Versions Affected: SAP NetWeaver Messaging system from 7.10-7.30 Vendor URL: http://www.sap.com Bugs: Linked XSS and Stored XSS Exploits: YES Reported: 25.01.2010 Vendor response: 25.01.2010 Date of Public Advisory: 12.04.2011 Author: Alexandr Polyakov Description...