2321 matches found
CVE-2013-7177
config/filter.d/cyrus-imap.conf in the cyrus-imap filter in Fail2ban before 0.8.11 allows remote attackers to trigger the blocking of an arbitrary IP address via a crafted e-mail address that matches an improperly designed regular expression...
Microsoft Word内存破坏漏洞
BUGTRAQ ID: 64726 CVECAN ID: CVE-2014-0258 Microsoft Word 属于办公软件是微软公司的一个文字处理器应用程序。 受影响Microsoft Word 软件解析特制文件时存在远程代码执行漏洞,成功利用这些漏洞后,可导致完全控制受影响系统。 0 Microsoft Word 2013 Microsoft Word 2010 Microsoft Word 2007 Microsoft Word 2003 临时解决方法: 安装配置MOICE为.doc文件的注册处理程序; 用Office文件阻止策略阻止打开.doc和.dot二进制文件;...
Google Blocks Malicious File Downloads Automatically in Chome
Google has fixed five vulnerabilities in its Chrome browser and also has activated a feature that will block malicious file downloads automatically. The change is a major security upgrade for Chrome and will help prevent users from unwittingly downloading harmful files, an attack vector that...
CVE-2013-0281
Pacemaker 1.1.10, when remote Cluster Information Base CIB configuration or resource management is enabled, does not limit the duration of connections to the blocking sockets, which allows remote attackers to cause a denial of service connection blocking...
DEBIAN-CVE-2013-0281
Pacemaker 1.1.10, when remote Cluster Information Base CIB configuration or resource management is enabled, does not limit the duration of connections to the blocking sockets, which allows remote attackers to cause a denial of service connection blocking...
CVE-2013-0281
Pacemaker 1.1.10, when remote Cluster Information Base CIB configuration or resource management is enabled, does not limit the duration of connections to the blocking sockets, which allows remote attackers to cause a denial of service connection blocking...
CVE-2013-0281
Pacemaker 1.1.10, when remote Cluster Information Base CIB configuration or resource management is enabled, does not limit the duration of connections to the blocking sockets, which allows remote attackers to cause a denial of service connection blocking...
UBUNTU-CVE-2013-0281
Pacemaker 1.1.10, when remote Cluster Information Base CIB configuration or resource management is enabled, does not limit the duration of connections to the blocking sockets, which allows remote attackers to cause a denial of service connection blocking...
pacemaker: remote DoS when CIB management is enabled caused by use of blocking sockets
Pacemaker 1.1.10, when remote Cluster Information Base CIB configuration or resource management is enabled, does not limit the duration of connections to the blocking sockets, which allows remote attackers to cause a denial of service connection blocking...
[SECURITY] Fedora 20 Update: nodejs-0.10.21-1.fc20
Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...
Google Chrome adds automatic malware blocking for suspicious downloads
Today Malware is a very real threat, and if you're not careful about what you download and install, you could end up with a serious problem. But now Google will be trying their very best to block malware from installing itself on your computer on your behalf. Google has developed a security featu...
Google Chrome adds automatic malware blocking for suspicious downloads
Today Malware is a very real threat, and if you’re not careful about what you download and install, you could end up with a serious problem. But now Google will be trying their very best to block malware from installing itself on your computer on your behalf. Google has developed a security featu...
Google Chrome to Automatically Block Malicious Downloads
Google is planning to add a new feature to its Chrome browser that will block malicious downloads automatically, helping to prevent drive-by downloads and the kind of malware that rides along with supposedly legitimate software. The new addition to Chrome already is in the development queue,...
Mozilla Fixes 10 Vulnerabilities with Firefox 25
Mozilla released the 25th version of its mobile and desktop Firefox browser yesterday, fixing 10 vulnerabilities, five of them critical. The United States Computer Emergency Readiness Team US-CERT warned yesterday the vulnerabilities could let an attacker execute arbitrary code, bypass access...
[SECURITY] Fedora 18 Update: nodejs-0.10.21-1.fc18
Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...
[SECURITY] Fedora 19 Update: nodejs-0.10.21-1.fc19
Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...
CVE-2013-4393
CVE-2013-4393 concerns the journald component of systemd. The vulnerability occurs when the origin of native messages is set to file, allowing a local attacker to trigger a denial of service (logging service blocking) by using a crafted file descriptor. The impact described in connected sources i...
[Firebind Reflector v0.53] Portable Network Path Scanning Tool
Firebind Reflector is a portable network path scanning tool that can profile firewall and other network device rules for port blocking, such as perform egresss/exfiltration testing. Reflector has a client side and listener server-side like Netcat and Ncat, except Reflector can dynamically be told...
[(D)DoS Deflate] Script designed to block a denial of service attack
DoS+Deflate.gif DDoS Deflate is a lightweight bash shell script designed to assist in the process of blocking a denial of service attack. It utilizes the command below to create a list of IP addresses connected to the server, along with their total number of connections. It is one of the simplest...
CVE-2013-2178
The apache-auth.conf, apache-nohome.conf, apache-noscript.conf, and apache-overflows.conf files in Fail2ban before 0.8.10 do not properly validate log messages, which allows remote attackers to block arbitrary IP addresses via certain messages in a request...