Code injection

The Sharp AQUOS PhotoPlayer HN-PP150 with firmware before 1.04.00.04 allows remote attackers to cause a denial of service networking outage via crafted packet data...

CVE-2013-3655

The Sharp AQUOS PhotoPlayer HN-PP150 with firmware before 1.04.00.04 allows remote attackers to cause a denial of service networking outage via crafted packet data...

Important: java-1.6.0-openjdk

Issue Overview: Multiple flaws were discovered in the ImagingLib and the image attribute, channel, layout and raster processing in the 2D component. An untrusted Java application or applet could possibly use these flaws to trigger Java Virtual Machine memory corruption. CVE-2013-2470,...

Oracle Linux 3 : kernel (ELSA-2007-0436)

From Red Hat Security Advisory 2007:0436 : Updated kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux version 3. This is the ninth regular update. This security advisory has been rated as having important security impact by the Red Hat Securit...

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2011-2015)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-2015 advisory. - sctp: fix to calc the INIT/INIT-ACK chunk length correctly is set CVE-2011-1573 - dccp: fix oops on Reset after close CVE-2011-1093 - bridge:...

Oracle Linux 6 : kdenetwork (ELSA-2011-0465)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2011-0465 advisory. 7:4.3.4-11.1 - CVE-2010-1000, improper sanitization of metalink attribute for downloading files Tenable has extracted the preceding description block directly...

Oracle Linux 5 : kernel (ELSA-2013-0747-1)

From Red Hat Security Advisory 2013:0747 : Updated kernel packages that fix several security issues and three bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVS...

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2012-2022)

Description of changes: Avoid bug caused by corrupted Ext4 filesystem. When mounting an ext4 filesystem, the kernel was not checking for zero length extents. This would cause a BUGON assertion failure in the log. NULL pointer dereference in the SCSI subsystem. A NULL dereference may occur if a SC...

CVE-2013-2784

Triangle Research International aka Tri Nano-10 PLC devices with firmware before r81 use an incorrect algorithm for bounds checking of data in Modbus/TCP packets, which allows remote attackers to cause a denial of service networking outage via a crafted packet to TCP port 502...

Out-of-bounds

Triangle Research International aka Tri Nano-10 PLC devices with firmware before r81 use an incorrect algorithm for bounds checking of data in Modbus/TCP packets, which allows remote attackers to cause a denial of service networking outage via a crafted packet to TCP port 502...

CVE-2013-2784

Triangle Research International aka Tri Nano-10 PLC devices with firmware before r81 use an incorrect algorithm for bounds checking of data in Modbus/TCP packets, which allows remote attackers to cause a denial of service networking outage via a crafted packet to TCP port 502...

CVE-2013-2784

CVE-2013-2784 affects Triangle Research International Nano-10 PLCs with firmware prior to r81. The vulnerability is an improper bounds-check in Modbus/TCP handling, enabling remote attackers to trigger a DoS by sending a crafted packet to TCP port 502, potentially making the device network-inacce...

Kernel: tg3: buffer overflow in VPD firmware parsing

Heap-based buffer overflow in the tg3readvpd function in drivers/net/ethernet/broadcom/tg3.c in the Linux kernel before 3.8.6 allows physically proximate attackers to cause a denial of service system crash or possibly execute arbitrary code via crafted firmware that specifies a long string in the...

kernel security and bug fix update

kernel 2.6.18-348.12.1 - Revert: fs afs: export a couple of core functions for AFS write support Lukas Czerner 960014 692071 - Revert: fs ext4: drop ectype from the ext4extcache structure Lukas Czerner 960014 692071 - Revert: fs ext4: handle NULL pext in ext4extnextallocatedblock Lukas Czerner...

Updated kernel packages fix multiple security vulnerabilities

This kernel update provides the extended stable 3.8.13.4 kernel and fixes the follwing security issues: The pcibackenablemsi function in the PCI backend driver drivers/xen/pciback/confspacecapabilitymsi.c in Xen for the Linux kernel 2.6.18 and 3.8 allows guest OS users with PCI device access to...

RedHat Update for java-1.6.0-openjdk RHSA-2013:1014-01

Check for the Version of java-1.6.0-openjdk OpenVAS Vulnerability Test RedHat Update for java-1.6.0-openjdk RHSA-2013:1014-01 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

Connection forcibly closed by remote host

Challenge While a job is processing, a job may intermittently fail while sending data from the source proxy to the target proxy/repository server with: srv| ERR |Server session thread has failed. srv| |An existing connection was forcibly closed by the remote host Cause This is related to a...

OpenJDK: Prevent revealing the local address (Networking, 8001318)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous...

Want to be the Part of History? Just be a part of E-HACK

E-HACK is an Information Security Workshop, organized by infySEC. The workshop aims at creating awareness about INFORMATION SECURITY by showing in what all ways information or data can be stolen. Meddle in cyber-warfare, battle with our machine master mind who will throw challenges on web...

Want to be the Part of History? Just be a part of E-HACK

E-HACK is an Information Security Workshop, organized by infySEC. The workshop aims at creating awareness about INFORMATION SECURITY by showing in what all ways information or data can be stolen. Meddle in cyber-warfare, battle with our machine master mind who will throw challenges on web...