CVE-2012-4363

Multiple unspecified vulnerabilities in Adobe Reader through 10.1.4 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PDF document, related to "sixteen more crashes affecting Windows, OS X, or both systems."...

Email Trojan Targeting Defense, Aerospace and Other Industries

What has the makings of a targeted attack campaign against several high-value industries is using a Trojan that employs rigged PDFs to deliver its payload. Targeting organizations in the defense, chemical, technology, and aerospace industries, the MyAgent trojan is primarily spreading through ema...

Google Chrome Multiple Vulnerabilities(01) - July 12 (Linux)

This host is installed with Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvuln01jul12lin.nasl 5988 2017-04-20 09:02:29Z teissa $ Google Chrome Multiple Vulnerabilities01 - July 12 Linux Authors: Madhuri D Copyright: Copyright c 2012...

Google Chrome Multiple Vulnerabilities - 01 - (Jul 2012) - Linux

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Google Chrome Multiple Vulnerabilities - 01 - (Jul 2012) - Mac OS X

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

t1lib: Off-by-one via crafted Type 1 font

Off-by-one error in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service application crash via a PDF document containing a crafted Type 1 font that triggers an invalid memory read, integer overflow, and invalid...

New Mac Malware Variants Found in Trojaned Apps Are Stealing Data

Researchers have discovered a series of variants of the DevilRobber Mac OS X Trojan that have a menu of different capabilities, depending upon the strain, and can not only mine Bitcoins using the infected machine’s processing power, but also steals files, installs a Web proxy and may steal the...

CVE-2010-4961

SQL injection vulnerability in the Webkit PDFs webkitpdf extension before 1.1.4 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

CVE-2010-4962

Unspecified vulnerability in the Webkit PDFs webkitpdf extension before 1.1.4 for TYPO3 allows remote attackers to execute arbitrary commands via unknown vectors...

CVE-2010-4962

Unspecified vulnerability in the Webkit PDFs webkitpdf extension before 1.1.4 for TYPO3 allows remote attackers to execute arbitrary commands via unknown vectors...

Code injection

Unspecified vulnerability in the Webkit PDFs webkitpdf extension before 1.1.4 for TYPO3 allows remote attackers to execute arbitrary commands via unknown vectors...

CVE-2010-4961

SQL injection vulnerability in the Webkit PDFs webkitpdf extension before 1.1.4 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

Sql injection

SQL injection vulnerability in the Webkit PDFs webkitpdf extension before 1.1.4 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

CVE-2010-4961

SQL injection vulnerability in the Webkit PDFs webkitpdf extension before 1.1.4 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

CVE-2010-4962

CVE-2010-4962 concerns the Webkit PDFs (webkitpdf) extension for TYPO3, affected in versions before 1.1.4. The vulnerability is described as unspecified, allowing remote attackers to execute arbitrary commands via unknown vectors. A fix is available: upgrade the webkitpdf extension to version 1.1...

CVE-2010-4961

CVE-2010-4961 affects the TYPO3 Webkit PDFs (webkitpdf) extension (versions before 1.1.4). The vulnerability is an SQL injection that allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Impact is implied as partial confidentiality, integrity, and availability. The e...

CVE-2010-4962

Unspecified vulnerability in the Webkit PDFs webkitpdf extension before 1.1.4 for TYPO3 allows remote attackers to execute arbitrary commands via unknown vectors...

Anonymous, LulzSec Dump 10 Gigs of Sensitive Law Enforcement Data

Hacker collectives, LulzSec and Anonymous claim to have compromised the servers of the Missouri Sheriff’s Association, posting some 10GB of sensitive data online. According to a statement posted online, the leaked information includes more than 300 email accounts from some 56 law enforcement...

openSUSE Security Update : clamav (openSUSE-SU-2010:1041-1)

Upgrade to version clamav 0.96.5 to fix : - CVE-2010-4260: CVSS v2 Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P: Denial of service bugs while parsing PDFs. - CVE-2010-4261: CVSS v2 Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P: Memory corruption due to an off-by-one error within the iconcb function...

New Generation of Exploit Kits On The Rise

“The marketplace for hacker exploit kits is getting more crowded according to research by Kaspersky Labs, which found that new tools with names like SEOsploit and Crimepack are challenging the dominance of legacy tools like the Phoenix, Eleonore, Neosploit, YESExploit, and Liberty kits. A...