CVE-2011-2739

EMC Documentum eRoom contains a flaw in its file-blocking feature that allows bypassing site-wide controls. In EMC Documentum eRoom 7.3.x and 7.4.x prior to 7.4.3.g, the validation for blocked file types is insufficient, enabling remote authenticated users to upload and open arbitrary files and p...

ESA-2011-032: EMC Documentum eRoom arbitrary file upload vulnerability.

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2011-032: EMC Documentum eRoom arbitrary file upload vulnerability. EMC Identifier: ESA-2011-032 CVE Identifier: CVE-2011-2739 Severity Rating: CVSS v2 Base Score: 8.5 AV:N/AC:M/Au:S/C:C/I:C/A:C Affected products: EMC SW: EMC Documentum eRoom 7.3...

Torsocks 1.2 Released - Socks friendly ssh and irssi with Tor

Torsocks 1.2 Released - Socks friendly ssh and irssi with Tor Torsocks is an application for Linux, BSD and Mac OSX that allows you to use network applications such as ssh and irssi with Tor. Torsocks allows you to use most socks-friendly applications in a safe way with Tor. It ensures that DNS...

Fedora Update for squid FEDORA-2011-11817

Check for the Version of squid OpenVAS Vulnerability Test Fedora Update for squid FEDORA-2011-11817 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

[SECURITY] Fedora 15 Update: squid-3.1.15-1.fc15

Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DN...

Code Widget SpiderTrap-Spider,Robot / Harvester Blocking SQL injection

Exploit for asp platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

Code Widgets SpiderTrap-Spider,Robot and Harvester Blocking SQL Injection

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 inj3ct0r 1337 Day Team 1 0 0...

Ready for your close up: Profile Management

The profile editing section is the brains of the Google+’s privacy, providing a versatile interface that allows you to customize how you share each and every nugget of your information. Those who want to really be open can share personal details and their demographics with billions of Internet...

Ubuntu 10.04 LTS / 10.10 / 11.04 : openjdk-6, openjdk-6b18 vulnerabilities (USN-1154-1)

It was discovered that a heap overflow in the AWT FileDialog.show method could allow an attacker to cause a denial of service through an application crash or possibly execute arbitrary code. CVE-2011-0815 It was dicovered that integer overflows in the JPEGImageReader readImage function and the...

java-1.6.0-openjdk security update

1.6.0.0-1.39.1.9.8 - Resolves: rhbz709375 - Bumped to IcedTea6 1.9.8 - Copy fontconfig files to match names for current and next release - RH706250, S6213702, CVE-2011-0872: so non-blocking sockets with TCP urgent disabled get still selected for read ops win - RH706106, S6618658, CVE-2011-0865:...

Facebook Vulnerability - Beware of A New XSS on Facebook !

Facebook Vulnerability - Beware of A New XSS on Facebook ! Url : https://m.facebook.com/connect/promptfeed.php?display=wap&usermessageprompt=%3Cscript%3Ealert%281 %29%3C/script%3E New Cross-site scripting vulnerability has been detected on Facebook and widely exploited in the mobile API version,...

tomcat: remote DoS via NIO connector

Apache Tomcat 7.0.0 through 7.0.6 and 6.0.0 through 6.0.30 does not enforce the maxHttpHeaderSize limit for requests involving the NIO HTTP connector, which allows remote attackers to cause a denial of service OutOfMemoryError via a crafted request...

Important: Red Hat Security Advisory: tomcat6 security and bug fix update

Updated tomcat6 packages that fix two security issues and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

tomcat: remote DoS via NIO connector

Apache Tomcat 7.0.0 through 7.0.6 and 6.0.0 through 6.0.30 does not enforce the maxHttpHeaderSize limit for requests involving the NIO HTTP connector, which allows remote attackers to cause a denial of service OutOfMemoryError via a crafted request...

Anonymous hackers launch DDoS attack on Egypt !

Hot on the heels of similarly politically-motivated attacks against websites belonging to the governments of Tunisia and Zimbabwe, hackers are bombarding official websites in Egypt with a DDoS attack. The hackers' current target is believed to be the Egyptian Ministry of Communications and...

Phone Creeper v0.98 latest version download !

"Phone Creeper is a phone espionage suite It can be silently installed by just inserting an sd card with the files below on it. The program does not show up under installed programs or running programs and allows for a useful array or features. Phones running this software can be remotely control...

Lessons From the WikiLeaks DDoS Attacks

Denial of Service DoS attacks are a common method used to take down Websites, servers, or even sections of the Internet. These attacks typically come in two forms: Distributed DoS DDos and DoS attacks. DDoS create a flood of traffic to a Website, server, or section of the internet that overwhelms...

Fedora Update for squid FEDORA-2010-14149

Check for the Version of squid OpenVAS Vulnerability Test Fedora Update for squid FEDORA-2010-14149 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

Remotely Access Devices Behind Firewalls, NAT or Mobile Gateways using YALER

Sometimes you got to access devices that are behind a firewall or protected networks. You could do that via VPNs etc. You can also use Yaler, that requires minmal setup! All it takes is a few lines of code make your embedded system or mobile device accessible behind a firewall, a NAT or a mobile...

Microsoft Office艺术绘图记录解析内存破坏漏洞（MS10-087）

BUGTRAQ ID: 44656 CVE ID: CVE-2010-3334 Microsoft Office是非常流行的办公软件套件。 Office在解析艺术绘图记录时没有充分地执行验证，如果msofbtSp记录指定了某些标志就可以触发内存破坏，导致执行任意代码。 Microsoft Office XP SP3 Microsoft Office for Mac 2011 Microsoft Office 2010 Microsoft Office 2008 for Mac Microsoft Office 2004 for Mac Microsoft Office 2003...