26 matches found
Vulnerability of Microsoft Office Web Apps software, which allows a malicious actor to compromise protected information
There is a vulnerability in Microsoft Office Web Apps that allows for an increase in privileges levels. Exploiting this vulnerability enables a malicious individual to execute cross-site scripts on a vulnerable system and to run scripts within the context of a legitimate user’s security credentia...
UBUNTU-CVE-2014-5247
The UpgradeBeforeConfigurationChange function in lib/client/gntcluster.py in Ganeti 2.10.0 before 2.10.7 and 2.11.0 before 2.11.5 uses world-readable permissions for the configuration backup file, which allows local users to obtain SSL keys, remote API credentials, and other sensitive information...
DSA-2271-1 curl - improper delegation of client credentials
Bulletin has no description...
Fedora Update for myproxy FEDORA-2011-0512
Check for the Version of myproxy OpenVAS Vulnerability Test Fedora Update for myproxy FEDORA-2011-0512 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
freecodesource.txt
Freecodesource.com is a distributor of myspace profile mods and general crapola. They provide an swf file which allows a myspace user to pop an alert box on profile page load, with custom text; the text is extracted from the url of the swf file, then used as a get parameter 'what' to the url...
Sybase EAServer information leak
Security credentials are stored insecurely in connection cache...