bso-a.jp Cross Site Scripting vulnerability OBB-1340188

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

SUSE SLES12 Security Update : samba (SUSE-SU-2017:1396-1) (SambaCry)

This update for samba fixes the following issue : - An unprivileged user with access to the samba server could cause smbd to load a specially crafted shared library, which then had the ability to execute arbitrary code on the server as 'root'. CVE-2017-7494, bso12780, bsc1038231 Note that Tenable...

SUSE SLED12 / SLES12 Security Update : samba (SUSE-SU-2017:1393-1) (SambaCry)

This update for samba fixes the following issue : - An unprivileged user with access to the samba server could cause smbd to load a specially crafted shared library, which then had the ability to execute arbitrary code on the server as 'root'. CVE-2017-7494, bso12780, bsc1038231 Note that Tenable...

SUSE SLED12 / SLES12 Security Update : samba (SUSE-SU-2017:0859-1)

"This update for samba fixes the following issues: Security issues fixed : - CVE-2017-2619: Symlink race permits opening files outside share directory bsc1027147. Bugfixes : - Don't package man pages for VFS modules that aren't built bsc993707. - syncreq: make asyncconnectsend 'reentrant'; bso121...

BSO - Dynamic Code Loading, Exported components, External URLs vulnerabilities

HackApp vulnerability scanner discovered that application BSO published at the 'play' market has multiple vulnerabilities...

SUSE SLED12 / SLES12 Security Update : ldb, samba, talloc, tdb, tevent (SUSE-SU-2015:2304-1)

"This update for ldb, samba, talloc, tdb, tevent fixes the following security issues : - ldb was updated to version 1.1.24. + Fix ldap \00 search expression attack dos; CVE-2015-3223; bso11325 + Fix remote read memory exploit in ldb; CVE-2015-5330; bso11599 + Move ldbunpackdata into ldbmodule.h f...

SuSE 11.3 Security Update : Samba (SAT Patch Number 10321)

Samba has been updated to fix one security issue : - Don't call tallocfree on an uninitialized pointer bnc917376. Additionally, these non-security issues have been fixed :. CVE-2015-0240 - Realign the winbind request structure following requiremembershipof field expansion. bnc913001 - Reuse...

openSUSE Security Update : samba (openSUSE-SU-2014:0857-1)

"samba was updated to fix three security issues and two non-security issues. These security issues were fixed : - Fix segmentation fault in smbdmarshalldirentry's SMBFINDFILEUNIX handler CVE-2014-3493 - Fix nmbd denial of service CVE-2014-0244 - Fix malformed FSCTLSRVENUMERATESNAPSHOTS response...

openSUSE Security Update : samba (openSUSE-SU-2012:0507-1)

" - Add the ldapsmb sources as else patches against them have no chance to apply. - Samba pre-3.6.4 are affected by a vulnerability that allows remote code exe- cution as the 'root' user; PIDL based autogenerated code allows overwriting beyond of allocated array; CVE-2012-1182; bso8815...

[Full-disclosure] CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability

Title: CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability CA Vulnerability ID: 33778 CA Advisory Date: 2006-01-23 Discovered By: Erika Mendoza reported this issue to iDefense. Impact: Remote attacker can execute arbitrary code with SYSTEM privileges. Summary: The CA iGateway...

[Full-disclosure] CAID 33485 - Computer Associates iGateway debug mode HTTP GET request buffer overflow vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Title: Computer Associates iGateway debug mode HTTP GET request buffer overflow vulnerability CA Vulnerability ID: 33485 Discovery Date: 2005-10-06 CA Advisory Date: 2005-10-14 Discovered By: EMendoza Impact: Remote attacker can execute arbitrary code...