4196 matches found
CVE-2011-3955
Removed by vendor...
Postal savings banks the UKEY useless-vulnerability warning-the black bar safety net
Today to the postal Savings Bank postal savings bank of china to go to the opening of the postal green card through the online banking, in order to safeguard the Bank account of the funding security, the requirements for online banking opened UKEY protection, the Bank staff attitude good, and...
Facing Post-Transaction Attacks, Banks Should Reassess Fraud Protection
Banks will have to continue to upgrade their fraud protection controls, especially in the face of new and evolving attacks exclusively designed to evade them, researchers now say. A blog post, penned by Trusteer’s CTO Amit Klein, offers some research on these so-called post-transaction attack...
Transaction was deadlocked
When trying to delete backups in Veeam console, occur error "Transaction Process ID xx was deadlocked on lock."...
CVE-2011-1281
The Client/Server Run-time Subsystem aka CSRSS in the Win32 subsystem in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly restrict the number of console objects for a...
U.S. Playing Catch Up in Security for Contactless Devices
AMHERST, MASS.– The U.S. may boast the world’s largest economy, richest technology companies and a lion’s share of its top research universities. But when it comes to the subject of security of RFID Radio Frequency ID and other contactless technologies, America is still playing catch-up. The U.S....
Tips for Make Mobile Banking Safe And Secure !
As we all know that wireless applications have numbers of vulnerabilities higher then the wired applications and the devices. In India there are not lots of people who do banking through mobile but outside India there are high profile countries in which many people do banking through mobile only....
Mandriva Update for nss_updatedb MDVA-2010:223 (nss_updatedb)
Check for the Version of nssupdatedb OpenVAS Vulnerability Test Mandriva Update for nssupdatedb MDVA-2010:223 nssupdatedb Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...
Mandriva Update for nss_updatedb MDVA-2010:223 (nss_updatedb)
Check for the Version of nssupdatedb OpenVAS Vulnerability Test Mandriva Update for nssupdatedb MDVA-2010:223 nssupdatedb Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...
IBM Informix Dynamic Server oninit.exe EXPLAIN Stack Buffer Overflow (CVE-2010-4053)
Informix is a family of relational database management system RDBMS products by IBM. IBM Informix Dynamic Server is an online transaction processing data server. A stack buffer overflow exists in IBM Informix Dynamic Server Database. The vulnerability is caused by insufficient checks within a...
Firm Finds Gaping Holes in Mobile Payments Applications
eBay’s PayPal online payment division is rushing a software patch to users of its iPhone mobile payments application to plug a hole that leaves users vulnerable to man-in-the-middle and phishing attacks, but the firm that found that hole said transaction security is just one problem facing the...
Multiple Cisco Products Vulnerable to DNS Cache Poisoning Attacks
Multiple Cisco products are vulnerable to DNS cache poisoning attacks due to their use of insufficiently randomized DNS transaction IDs and UDP source ports in the DNS queries that they produce, which may allow an attacker to more easily forge DNS answers that can poison DNS caches. To exploit th...
Microsoft Windows KTM Invalid Free With Reused Transaction GUID
Microsoft Windows KTM Invalid Free with reused transaction GUID ---------------------------------------------------------------------------- CVE-2010-1889 The Kernel Transaction Manager ktm was introduced in Windows Vista and has been included in subsequent versions of Windows. Microsoft describe...
Microsoft Windows - KTM Invalid Free with Reused Transaction GUID (MS10-047)
Microsoft Windows KTM Invalid Free with reused transaction GUID ---------------------------------------------------------------------------- CVE-2010-1889 The Kernel Transaction Manager ktm was introduced in Windows Vista and has been included in subsequent versions of Windows. Microsoft describe...
MS Windows KTM Invalid Free with Reused Transaction GUID (MS10-047)
Exploit for windows platform in category dos / poc =================================================================== MS Windows KTM Invalid Free with Reused Transaction GUID MS10-047 =================================================================== Microsoft Windows KTM Invalid Free with reus...
CVE-2010-1689
The DNS implementation in smtpsvc.dll before 6.0.2600.5949 in Microsoft Windows 2000 SP4 and earlier, Windows XP SP3 and earlier, Windows Server 2003 SP2 and earlier, Windows Server 2008 SP2 and earlier, Windows Server 2008 R2, Exchange Server 2003 SP3 and earlier, Exchange Server 2007 SP2 and...
CVE-2010-1689
The DNS implementation in smtpsvc.dll before 6.0.2600.5949 in Microsoft Windows 2000 SP4 and earlier, Windows XP SP3 and earlier, Windows Server 2003 SP2 and earlier, Windows Server 2008 SP2 and earlier, Windows Server 2008 R2, Exchange Server 2003 SP3 and earlier, Exchange Server 2007 SP2 and...
CVE-2010-1690
The DNS implementation in smtpsvc.dll before 6.0.2600.5949 in Microsoft Windows 2000 SP4 and earlier, Windows XP SP3 and earlier, Windows Server 2003 SP2 and earlier, Windows Server 2008 SP2 and earlier, Windows Server 2008 R2, Exchange Server 2003 SP3 and earlier, Exchange Server 2007 SP2 and...
CVE-2010-1689
The Red Hat and NVD entries confirm concrete details for CVE-2010-1689 and CVE-2010-1690: the DNS handling in smtpsvc.dll on Windows and Exchange product lines prior to specific builds uses predictable DNS transaction IDs (CVE-2010-1689) and does not verify that response IDs match queries (CVE-20...
CVE-2010-0270
The SMB client in Microsoft Windows Server 2008 R2 and Windows 7 does not properly validate fields in SMB transaction responses, which allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code or cause a denial of service memory corruption and reboot via a crafted 1 SMBv...