167 matches found
Orb Networks <= 2.54.18 - Orb Direct Show Filter MP3 File Divide-By-Zero Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/38549/info Orb Networks Orb is prone to a denial-of-service vulnerability when handling malformed '.mp3' files. Successfully exploiting this issue allows remote attackers to deny service to legitimate users...
Oracle GlassFish / Java System Application Server CORBA ORB Subcomponent DoS Vulnerability (Oct 2012)
Oracle GlassFish / Java System Application Server is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
CVE-2012-3155
Unspecified vulnerability in the CORBA ORB component in Sun GlassFish Enterprise Server 2.1.1, Oracle GlassFish Server 3.0.1 and 3.1.2, and Sun Java System Application Server 8.1 and 8.2 allows remote attackers to affect availability, related to CORBA ORB...
Code injection
Unspecified vulnerability in the CORBA ORB component in Sun GlassFish Enterprise Server 2.1.1, Oracle GlassFish Server 3.0.1 and 3.1.2, and Sun Java System Application Server 8.1 and 8.2 allows remote attackers to affect availability, related to CORBA ORB...
CVE-2012-3155
The CVE-2012-3155 entry concerns an unspecified DoS vulnerability in the CORBA ORB subcomponent affecting Sun GlassFish Enterprise Server 2.1.1, Oracle GlassFish Server 3.0.1/3.1.2, and Sun Java System Application Server 8.1/8.2. The flaw targets the CORBA ORB component and is described as allowi...
CVE-2012-3155
Unspecified vulnerability in the CORBA ORB component in Sun GlassFish Enterprise Server 2.1.1, Oracle GlassFish Server 3.0.1 and 3.1.2, and Sun Java System Application Server 8.1 and 8.2 allows remote attackers to affect availability, related to CORBA ORB...
CVE-2012-3155
Removed by vendor...
SAP Crystal Reports crystalras.exe OBUnmarshal Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP Crystal Reports. Authentication is not required to exploit this vulnerability. The flaw exists within the ebus-3-3-2-7.dll component which is used by the crystalras.exe service. This process...
Ubuntu: Security Advisory (USN-1263-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-1263-1: IcedTea-Web, OpenJDK 6 vulnerabilities
Deepak Bhole discovered a flaw in the Same Origin Policy SOP implementation in the IcedTea web browser plugin. This could allow a remote attacker to open connections to certain hosts that should not be permitted. CVE-2011-3377 Juliano Rizzo and Thai Duong discovered that the block-wise AES...
IBM WebSphere Application Server 7.0 < Fix Pack 9
IBM WebSphere Application Server 7.0 before Fix Pack 9 appears to be running on the remote host. As such, it is reportedly affected by multiple vulnerabilities : - An unspecified cross-site scripting vulnerability in the Administration Console. PK97376 - An error when defining a wsadmin scripting...
IBM WebSphere Application Server 6.0 < 6.0.2.41 Multiple Vulnerabilities
IBM WebSphere Application Server 6.0 before Fix Pack 41 for 6.0.2 appears to be running on the remote host. As such, it is reportedly affected by multiple vulnerabilities : - An unspecified cross-site scripting vulnerability in the Administration Console. PK97376 - An error when defining a wsadmi...
IBM WebSphere应用服务器Orb客户端远程拒绝服务漏洞
BUGTRAQ ID: 39056 CVE ID: CVE-2010-0770 IBM Websphere应用服务器以Java和Servlet引擎为基础,支持多种HTTP服务,可帮助用户完成从开发、发布到维护交互式的动态网站的所有工作。 WebSphere应用服务器在处理ORB客户端的SSL握手时存在拒绝服务漏洞,已认证的攻击者可以通过终止SSL握手导致ORB ListenerThread挂起,新的客户端无法连接。 IBM Websphere Application Server 7.0.x IBM Websphere Application Server 6.1.x IBM...
CVE-2010-0770
IBM WebSphere Application Server (WAS) is affected by CVE-2010-0770. A remote authenticated user can cause a denial-of-service by aborting an SSL handshake, leading to an ORB ListenerThread hang. Affected versions are WAS 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9. Remediati...
Orbital Viewer buffer overflow
Added: 03/24/2010 CVE: CVE-2010-0688 BID: 38436 OSVDB: 62580 Background Orbital Viewer is a program for viewing atomic and molecular orbitals. Problem A buffer overflow vulnerability in Orbital Viewer allows command execution when a user opens a specially crafted .orb file. Resolution Do not open...
Orbital Viewer buffer overflow
Added: 03/24/2010 CVE: CVE-2010-0688 BID: 38436 OSVDB: 62580 Background Orbital Viewer is a program for viewing atomic and molecular orbitals. Problem A buffer overflow vulnerability in Orbital Viewer allows command execution when a user opens a specially crafted .orb file. Resolution Do not open...
Orbital Viewer buffer overflow
Added: 03/24/2010 CVE: CVE-2010-0688 BID: 38436 OSVDB: 62580 Background Orbital Viewer is a program for viewing atomic and molecular orbitals. Problem A buffer overflow vulnerability in Orbital Viewer allows command execution when a user opens a specially crafted .orb file. Resolution Do not open...
Orbital Viewer buffer overflow
Added: 03/24/2010 CVE: CVE-2010-0688 BID: 38436 OSVDB: 62580 Background Orbital Viewer is a program for viewing atomic and molecular orbitals. Problem A buffer overflow vulnerability in Orbital Viewer allows command execution when a user opens a specially crafted .orb file. Resolution Do not open...
Orbital Viewer ORB File Parsing Buffer Overflow
$Id: orbitalviewerorb.rb 8757 2010-03-09 05:57:22Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Orb Networks 2.54.18 - Orb Direct Show Filter .MP3 File Divide-by-Zero Denial of Service
Orb Networks 2.54.18 - Orb Direct Show Filter .MP3 File Divide-by-Zero Denial of Service source: https://www.securityfocus.com/bid/38549/info Orb Networks Orb is prone to a denial-of-service vulnerability when handling malformed '.mp3' files. Successfully exploiting this issue allows remote...