CVE-2011-2021

CVE-2011-2021 covers a session-fixation vulnerability in TIBCO iProcess components (Engine before 11.1.3 and Workspace before 11.3.1). The issue can allow remote attackers to hijack web sessions via unspecified vectors by manipulating inbound HTTP session handling. Affected components include TIB...

Low: Red Hat Security Advisory: eclipse security, bug fix, and enhancement update

Updated eclipse packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which...

TIBCO Security Advisory: May 18, 2011 - TIBCOiProcess

TIBCO iProcess vulnerabilities Original release date: May 18, 2011 Last revised: -- CVE-2011-2020, CVE-2011-2021 Source: TIBCO SoftwareInc. TIBCO iProcess vulnerabilities Original release date: May 18, 2011 Last revised: -- Source: TIBCO Software Inc. Systems Affected TIBCO iProcess Engine below...

Fedora Update for kdebase-workspace FEDORA-2011-5200

Check for the Version of kdebase-workspace OpenVAS Vulnerability Test Fedora Update for kdebase-workspace FEDORA-2011-5200 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

Fedora Update for kdebase-workspace FEDORA-2011-5200

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

[SECURITY] Fedora 14 Update: kdebase-workspace-4.6.2-2.fc14

The KDE Workspace consists of what is the desktop of the KDE Desktop Environment. This package contains: khotkeys a hotkey daemon klipper a cut & paste history utility kmenuedit the menu editor krandrtray resize and rotate X screens krunner a command run interface ksysguard a performance monitor...

[SECURITY] Fedora 15 Update: kdebase-workspace-4.6.2-2.fc15

The KDE Workspace consists of what is the desktop of the KDE Desktop Environment. This package contains: khotkeys a hotkey daemon klipper a cut & paste history utility kmenuedit the menu editor krandrtray resize and rotate X screens krunner a command run interface ksysguard a performance monitor...

CVE-2011-0497

CVE-2011-0497 —Directory traversal vulnerability in Sybase EAServer 6.x before 6.3 ESD#2, used in Appeon, Replication Server Messaging Edition (RSME), and WorkSpace. A crafted request can trigger directory traversal via the sequence "../\" to read arbitrary files. The issue is remote and network-...

Godaddy Workspace XSS vulnerability , Who's your Daddy ?

An interesting submission in from the Exploit Database – a Godaddy workspace XSS vulnerability. Although we did not post it live site, the vulnerability seems real, and definitely worth mentioning. In essence, this vulnerability allows an attacker to send malicious JavaScript to a non suspecting...

Godaddy's Workspace 5.3 Cross Site Scripting

Godaddy´s Workspace 5.3 XSS Explanation: The javascript for special caracter filtering provided in email13.secureserver.net can be use to create a XSS attack, if we edit the content of an email and put this will be filtered and scramble, making the XSS impossible, BUT, if we write we will bypass...

Microsoft Groove Server Installed

Microsoft Groove Server is installed on the remote host. This application is used to centrally manage deployments of Microsoft Office Groove and Microsoft SharePoint Workspace. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid49977; scriptversion"1.12";...

MDVA-2010:112 : kdebase4-workspace

In mandriva 2010.0 /etc/pam.d/kde was not tagged as a config file so was replaced by a new file on each update.This update fixes this issue. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2012/09/06. C Tenable...

MDVA-2009:157 : kdebase4-workspace

krandrtray from KDE4 is known to have some issues. A patch was added that makes krandrtray open its configuration module when the system tray icon is clicked. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on...

MDVA-2009:218 : kdebase4-workspace

In kde 4.3 of mandriva 2010.0 the possibility to lock/unlock widgets from the panel wasn't activated, this rpms handles this issue. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2012/09/06. C Tenable Network...

Symantec AppStream / Workspace Streaming Remote Code Execution (SYM10-008)

The version of Symantec AppStream or Symantec Workspace Streaming running on the remote host has a remote code execution vulnerability. The client does not properly authenticate to the server before downloading available files. A remote attacker could exploit this by setting up a rogue Workspace...

CVE-2008-4389

Symantec AppStream 5.2.x and Symantec Workspace Streaming SWS 6.1.x before 6.1 SP4 do not properly perform authentication, which allows remote Workspace Streaming servers and man-in-the-middle attackers to download arbitrary executable files onto a client system, and execute these files, via...

Authentication flaw

Symantec AppStream 5.2.x and Symantec Workspace Streaming SWS 6.1.x before 6.1 SP4 do not properly perform authentication, which allows remote Workspace Streaming servers and man-in-the-middle attackers to download arbitrary executable files onto a client system, and execute these files, via...

CVE-2008-4389

Symantec AppStream 5.2.x and Symantec Workspace Streaming 6.1.x before 6.1 SP4 have an authentication flaw that allows a remote, rogue Workspace Streaming server to cause clients to download arbitrary executables and execute them, enabling arbitrary code execution on the client. Affected componen...

CVE-2008-4389

Symantec AppStream 5.2.x and Symantec Workspace Streaming SWS 6.1.x before 6.1 SP4 do not properly perform authentication, which allows remote Workspace Streaming servers and man-in-the-middle attackers to download arbitrary executable files onto a client system, and execute these files, via...

Symantec AppStream and Workspace Streaming vulnerable to arbitrary code download and execution

Overview The Symantec AppStream and Workspace Streaming clients fail to properly validate downloads, which can allow a remote, unauthenticated attacker to download and execute arbitrary code on a vulnerable system. Description Symantec Workspace Streaming is a software distribution solution that...