Microsoft Filter Pack Remote Code Execution Vulnerability (2801261)

This host is missing a critical security update according to Microsoft Bulletin MS13-023. OpenVAS Vulnerability Test $Id: secpodfilterpackms13-023.nasl 5365 2017-02-20 13:46:09Z cfi $ Microsoft Filter Pack Remote Code Execution Vulnerability 2801261 Authors: Antu Sanadi Copyright: Copyright c 201...

Microsoft Visio Viewer Remote Code Execution Vulnerability (2801261)

This host is missing a critical security update according to Microsoft Bulletin MS13-023. OpenVAS Vulnerability Test $Id: secpodvisioviewerms13-023.nasl 6115 2017-05-12 09:03:25Z teissa $ Microsoft Visio Viewer Remote Code Execution Vulnerability 2801261 Authors: Antu Sanadi Copyright: Copyright ...

CVE-2013-0079

CVE-2013-0079 affects Microsoft Visio Viewer 2010 SP1. The vulnerability is described as a memory allocation error in the Visio Tree Object Confusion vulnerability that allows remote code execution when processing a crafted Visio file. Connected sources corroborate, noting this is addressed by Mi...

Perforce P4web 2011/2012 Web Client XSS Vulnerability

Exploit for php platform in category web applications Exploit Title: Perforce P4web 2011/2012 Web Client XSS Vulnerability Date: 21 Jan 2013 Researcher: Christy Philip Mathew Email: email protected Vendor or Software Link: http://filehost.perforce.com/perforce/r11.1/bin.ntx86/p4webinst.exe...

CVE-2013-0828

Removed by vendor...

Microsoft Internet Explorer OnBeforeDeactivate Event Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Microsoft Internet Explorer OnRowsInserted Event Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Scientific Linux Security Update : tzdata enhancement update on SL5.x, SL6.x i386/x86_64 (20121126)

This update adds the following enhancements : - On October 24 2012, the Jordanian Cabinet rescinded a 2012-10-14 instruction to switch from daylight saving time DST to standard time on 2012-10-26. Instead, Jordan will remain on local DST ITC +3 for the 2012-2013 Jordanian winter. - Cuba, which wa...

Scientific Linux Security Update : selinux-policy enhancement update on SL5.x, SL6.x i386/x86_64 (20121119)

This update adds the following enhancements : - An SELinux policy for openshift packages has been added This update has been placed in the security tree to avoid selinux related problems. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux...

FreeBSD : typo3 -- Multiple vulnerabilities in TYPO3 Core (79818ef9-2d10-11e2-9160-00262d5ed8ee)

Typo Security Team reports : TYPO3 Backend History Module - Due to missing encoding of user input, the history module is susceptible to SQL Injection and Cross-Site Scripting. A valid backend login is required to exploit this vulnerability. Credits go to Thomas Worm who discovered and reported th...

CVE-2012-3179

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.50, 8.51, and 8.52 allows remote authenticated users to affect integrity via unknown vectors related to Tree Manager...

Design/Logic Flaw

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.50, 8.51, and 8.52 allows remote authenticated users to affect integrity via unknown vectors related to Tree Manager...

CVE-2012-3179

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.50, 8.51, and 8.52 allows remote authenticated users to affect integrity via unknown vectors related to Tree Manager...

CVE-2012-3179

Technical details about CVE-2012-3179 are not publicly provided in the connected documents. The materials only reiterate an unspecified issue in Oracle PeopleSoft PeopleTools; monitor for updates from vendors for affected versions and remediation.

bind DoS

A problem in RBT algorythm implementation causes hang on specific combination of records...

[SECURITY] Fedora 16 Update: phpldapadmin-1.2.2-3.gitbbedf1.fc16

PhpLDAPadmin is a web-based LDAP client. It provides easy, anywhere-accessible, multi-language administration for your LDAP server. Its hierarchical tree-viewer and advanced search functionality make it intuitive to browse and administer your LDAP director y. Since it is a web application, this...

[SECURITY] Fedora 17 Update: phpldapadmin-1.2.2-3.gitbbedf1.fc17

PhpLDAPadmin is a web-based LDAP client. It provides easy, anywhere-accessible, multi-language administration for your LDAP server. Its hierarchical tree-viewer and advanced search functionality make it intuitive to browse and administer your LDAP director y. Since it is a web application, this...

Scientific Linux Security Update : tzdata enhancement update on SL5.x, SL6.x i386/x86_64 (20121004)

This update adds the following enhancements : - Daylight saving time in Fiji will start at 2:00 a.m. on Sunday, 21st October 2012, and end at 3 am on Sunday, 20th January 2013. - Tokelau was listed in an incorrect time zone for as long as the Zoneinfo project was in existence. The actual zone was...

Google Releases Chrome 22 and Pays Out Nearly $30K in Rewards

Google has released Chrome 22, a major new version of its browser that includes a huge number of security fixes, many of them high-priority vulnerabilities. The company also handed out nearly $30,000 in rewards to security researchers, more than half of it to Sergey Glazunov, who discovered two...

CVE-2012-2881

Google Chrome before 22.0.1229.79 does not properly handle plug-ins, which allows remote attackers to cause a denial of service DOM tree corruption or possibly have unspecified other impact via unknown vectors...