38 matches found
Security Bulletin: IBM Integrated Information Core and WebSphere Application Server - Oracle CPU October 2014
Abstract Oracle released the October 2014 critical patch updates which contain multiple fixes for security vulnerabilities in the IBM Java Development Kit that is included with the IBM WebSphere Application Server. Content New IBM WebSphere Application Server updates are available that include an...
October 2014 update rollup for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2
October 2014 update rollup for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 Important When you install this update 2995388 from Windows Update, update 2996799 is included in the installation. The October 2014 Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 update rollup package...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Virtualization Engine TS7700 - October 2014 & January 2015
Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7, IBM SDK Java Technology Edition, Version 6, and IBM SDK Java 2 Technology Edition, Version 5 that are used by IBM Virtualization Engine TS7700. These issues were disclosed as part of the IBM Java SDK updat...
Security Bulletin: Multiple vulnerabilities in current releases of the IBM® SDK, Java™ Technology Edition
Summary Java SE issues disclosed in the Oracle October 2014 Critical Patch Update, plus the POODLE SSLv3 vulnerability and one additional vulnerability Vulnerability Details CVE IDs: CVE-2014-6513 CVE-2014-6456 CVE-2014-6503 CVE-2014-6532 CVE-2014-4288 CVE-2014-6493 CVE-2014-6492 CVE-2014-6458...
Comodo GeekBuddy Local Privilege Escalation
Comodo GeekBuddy Local Privilege Escalation CVE-2014-7872 Jeremy Brown jbrown3264/gmail -Synopsis- Comodo GeekBuddy, which is bundled with Comodo Anti-Virus, Comodo Firewall and Comodo Internet Security, runs a passwordless, background VNC server and listens for incoming connections. This can all...
mysql: unspecified vulnerability related to SERVER:CHARACTER SETS (CPU October 2014)
Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier and 5.6.19 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:CHARACTER SETS...
mysql: unspecified vulnerability related to SERVER:REPLICATION ROW FORMAT BINARY LOG DML (CPU October 2014)
Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier and 5.6.19 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:REPLICATION ROW FORMAT BINARY LOG DML...
mysql: unspecified vulnerability related to SERVER:INNODB DML FOREIGN KEYS (CPU October 2014)
Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:INNODB DML FOREIGN KEYS...
mysql: unspecified vulnerability related to SERVER:DML (CPU October 2014)
Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows remote authenticated users to affect availability via vectors related to SERVER:DML...
mysql: unspecified vulnerability related to SERVER:OPTIMIZER (CPU October 2014)
Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:OPTIMIZER...
Multiple vulnerabilities in current releases of the IBM SDK Java Technology Edition; issues in the Oracle October 2014 Critical Patch Update plus the POODLE SSLv3 vulnerability and
IBM SECURITY ADVISORY First Issued: Fri Nov 14 15:40:48 CST 2014 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/javaoct2014advisory.asc https://aix.software.ibm.com/aix/efixes/security/javaoct2014advisory.asc...
SuSE 11.3 Security Update : Java OpenJDK (SAT Patch Number 9906)
Oracle Critical Patch Update Advisory - October 2014 Description : A Critical Patch Update CPU is a collection of patches for multiple security vulnerabilities. Find more information here: http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.h tml %NASLMINLEVEL 70300 C Tenable...
Oracle JDeveloper ADF Faces goButton XSS (October 2014 CPU)
The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by a cross-site scripting XSS vulnerability in the Application Development Framework ADF Faces subcomponent due to improper encoding of URLs that are specified as a target for the...
Oracle OpenSSO Agent Multiple Vulnerabilities (October 2014 CPU)
The Oracle OpenSSO agent installed on the remote host is missing a vendor-supplied update. It is, therefore, affected by multiple vulnerabilities in the bundled Mozilla Network Security Services, the most serious of which can allow remote code execution. %NASLMINLEVEL 70300 C Tenable Network...
Oracle Enterprise Data Quality Multiple Vulnerabilities (October 2014 CPU)
The version of Oracle Enterprise Data Quality running on the remote host is affected by multiple vulnerabilities : - A flaw in Apache Commons BeanUtils allows a remote attacker to execute arbitrary code by manipulating the ClassLoader. CVE-2014-0114 - A flaw in Apache Tomcat allows a remote...
SUSE-SU-2015:0833-1 Security update for Java OpenJDK
Oracle Critical Patch Update Advisory - October 2014 Description: A Critical Patch Update CPU is a collection of patches for multiple security vulnerabilities. Find more information here: http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html...
Oracle Endeca Information Discovery Studio Multiple Vulnerabilities (October 2014 CPU)
The remote host is running a version of Oracle Endeca Information Discovery Studio that may be missing a vendor-supplied security patch that fixes multiple bugs and OpenSSL related security vulnerabilities. Note that depending on how the remote host is configured, Nessus may not be able to detect...
fiscalsponsordirectory.org XSS vulnerability
Vulnerable URL: http://www.fiscalsponsordirectory.org/searchresults.php Details: Description| Value ---|--- Patched:| Yes, at 21.11.2017 Latest check for patch:| 21.11.2017 19:02 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 2886451 Google Pagerank| 5 VIP...
Oracle E-Business Multiple Vulnerabilities (October 2014 CPU)
The version of Oracle E-Business installed on the remote host is missing the October 2014 Oracle Critical Patch Update CPU. It is, therefore, affected by vulnerabilities in the following components : - Oracle Application Technology Stack - Oracle Applications Framework - Oracle Applications Objec...
Oracle Database Multiple Vulnerabilities (October 2014 CPU)
The remote Oracle database server is missing the October 2014 Critical Patch Update CPU. It is, therefore, affected by security issues in the following components : - Application Express - Core RDBMS - Java VM - JDBC - JPublisher - SQLJ %NASLMINLEVEL 70300 C Tenable Network Security, Inc...