RHEL 6 : system-config-firewall (RHSA-2011:0953)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2011:0953 advisory. system-config-firewall is a graphical user interface for basic firewall setup. It was found that system-config-firewall used the Python pickle module...

RHEL 6 : NetworkManager (RHSA-2011:0930)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2011:0930 advisory. - NetworkManager: Did not honour PolicyKit authadmin action element by creation of Ad-Hoc wireless networks CVE-2011-2176 Note that Nessus has not...

AST-2011-011: Possible enumeration of SIP users due to differing authentication responses

Asterisk Project Security Advisory - AST-2011-011 +------------------------------------------------------------------------+ | Product | Asterisk | |--------------------+---------------------------------------------------| | Summary | Possible enumeration of SIP users due to | | | differing...

Joomla Component Calc Builder (id) Blind SQL Injection Vulnerability

Exploit for php platform in category web applications Author : Chip D3 Bi0s Group : LatinHackTeam Email & msn : chipdebiosalt+64gmail.com Date : 19 June 2011 Critical Lvl : Moderate Impact : Exposure of sensitive information Where : From Remote...

RHEL 6 : xerces-j2 (RHSA-2011:0858)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2011:0858 advisory. - xerces-j2, JDK: XML parsing Denial-Of-Service 6845701 CVE-2009-2625 Note that Nessus has not tested for this issue but has instead relied only on t...

Moderate: Red Hat Security Advisory: xerces-j2 security update

Updated xerces-j2 packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

RHEL 6 : openssl (RHSA-2011:0677)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2011:0677 advisory. OpenSSL is a toolkit that implements the Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 protocols, as well as a full-strength,...

RHEL 6 : rdesktop (RHSA-2011:0506)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2011:0506 advisory. rdesktop is a client for the Remote Desktop Server previously, Terminal Server in Microsoft Windows. It uses the Remote Desktop Protocol RDP to...

Symphony CMS 2.1.2 Blind SQL Injection

Exploit for php platform in category web applications Symphony is a web-based content management system CMS that enables users to create and manage websites and web applications of all shapes and sizes?from the simplest of blogs to bustling news sites and feature-packed social networks. Taken fro...

Symphony CMS 2.1.2 - Blind SQL Injection

Symphony CMS 2.1.2 - Blind SQL Injection -------------------------------------------------------------------------------------------- 20110424 - Justanotherhacker.com : Symphony-cms blind sql injection JAHx111 - http://www.justanotherhacker.com/advisories/JAHx111.txt...

CentOS 5 : hplip / hplip3 (CESA-2011:0154)

Updated hplip packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

RHEL 4 / 5 : postfix (RHSA-2011:0422)

The remote Redhat Enterprise Linux 4 / 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:0422 advisory. - postfix improper mailbox permissions CVE-2008-2937 - postfix: SMTP commands injection during plaintext to TLS session switch...

Claroline 1.10 Persistent XSS Vulnerability

Exploit for php platform in category web applications ------------------------------------------------------------------------ Software................Claroline 1.10 Vulnerability...........Persistent Cross-site Scripting Threat Level............Moderate 2/5...

PyroCMS 1.1.0 Cross Site Scripting

------------------------------------------------------------------------ Software................PyroCMS 1.1.0 Vulnerability...........Persistent Cross-site Scripting Threat Level............Moderate 2/5 Download................http://pyrocms.com/ Vendor Contact Date.....3/11/2011 Disclosure...

Newscoop 3.5.1 Cross Site Scripting

------------------------------------------------------------------------ Software................Newscoop 3.5.1 Vulnerability...........Persistent Cross-site Scripting Threat Level............Moderate 2/5 Download................http://www.sourcefabric.org/en/products/newscoopoverview/ Vendor...

b2evolution 4.0.3 Persistent XSS Vulnerability

Exploit for php platform in category web applications ------------------------------------------------------------------------ Software................b2evolution 4.0.3 Vulnerability...........Persistent Cross-site Scripting Threat Level............Moderate 2/5...

WikiWig 5.01 - Multiple Cross-Site Scripting Vulnerabilities

WikiWig 5.01 - Multiple Cross-Site Scripting Vulnerabilities Source: http://packetstormsecurity.org/files/view/99363/wikiwig501-xss.txt ------------------------------------------------------------------------ Software................WikiWig 5.01 Vulnerability...........Persistent/Reflected...

b2evolution 4.0.3 Cross Site Scripting

------------------------------------------------------------------------ Software................b2evolution 4.0.3 Vulnerability...........Persistent Cross-site Scripting Threat Level............Moderate 2/5 Download................http://b2evolution.net/ Vendor Contact Date.....3/15/2011...

WikiWig 5.01 Cross Site Scripting

------------------------------------------------------------------------ Software................WikiWig 5.01 Vulnerability...........Persistent/Reflected Cross-site Scripting Threat Level............Moderate 2/5 Download................http://wikiwig.sourceforge.net/ Disclosure...

Important: Red Hat Security Advisory: kernel-rt security and bug fix update

Updated kernel-rt packages that fix multiple security issues and three bugs are now available for Red Hat Enterprise MRG 1.3. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...