Lucene search
+L

144 matches found

The Hacker News
The Hacker News
added 2013/06/18 7:29 a.m.18 views

Google Chrome Inbuilt Flash player allows Webcam Hacking

No longer limited to Hollywood movies about cybercrime, webcam hacking has stealthily and aggressively broken into average households "I've heard a hacker could access my webcam and watch me in front of my computer. Could this really happen?" YES, other than using a Remote administration tools, i...

6.7AI score
Exploits0
CVE
CVE
added 2013/03/12 10:0 p.m.91 views

CVE-2012-5660

Summary: CVE-2012-5660 affects ABRT (Automatic Bug Reporting Tool) components, notably abrt-action-install-debuginfo, in ABRT 2.0.9 and earlier. The vulnerability allows a local attacker to set world-writable permissions on arbitrary files and potentially gain privileges via a symlink attack in t...

6.9CVSS6.1AI score0.00313EPSS
Exploits1References3Affected Software1
OpenVAS
OpenVAS
added 2013/02/04 12:0 a.m.22 views

CentOS Update for libreport CESA-2013:0215 centos6

Check for the Version of libreport OpenVAS Vulnerability Test CentOS Update for libreport CESA-2013:0215 centos6 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

6.9CVSS6.4AI score0.00446EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2013/02/04 12:0 a.m.25 views

RedHat Update for abrt and libreport RHSA-2013:0215-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.9CVSS6.5AI score0.00446EPSS
Exploits2References2
Cent OS
Cent OS
added 2013/02/01 12:54 a.m.57 views

abrt, libreport security update

CentOS Errata and Security Advisory CESA-2013:0215 Updated abrt and libreport packages that fix two security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System...

6.9CVSS5.8AI score0.00446EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2013/02/01 12:0 a.m.26 views

CentOS 6 : abrt / libreport (CESA-2013:0215)

Updated abrt and libreport packages that fix two security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

6.9CVSS5.5AI score0.00446EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2013/01/31 7:14 p.m.2 views

abrt: Arbitrary Python code execution due improper sanitization of the PYTHONPATH environment variable by installing debuginfo packages into cache

Untrusted search path vulnerability in plugins/abrt-action-install-debuginfo-to-abrt-cache.c in Automatic Bug Reporting Tool ABRT 2.0.9 and earlier allows local users to load and execute arbitrary Python modules by modifying the PYTHONPATH environment variable to reference a malicious Python modu...

3.7CVSS6AI score0.00446EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2013/01/31 12:0 a.m.3 views

PT-2013-1146 · Red Hat +1 · Libreport-Plugin-Bugzilla +27

Name of the Vulnerable Software and Affected Versions: abrt versions 2.0.8 and earlier abrt-addon-ccpp versions 2.0.8 and earlier abrt-addon-kerneloops versions 2.0.8 and earlier abrt-addon-python versions 2.0.8 and earlier abrt-addon-vmcore versions 2.0.8 and earlier abrt-cli versions 2.0.8 and...

6.9CVSS6.5AI score0.00446EPSS
Exploits2References61
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.34 views

Scientific Linux Security Update : abrt, libreport, btparser, and python-meh on SL6.x i386/x86_64 (20120620)

ABRT Automatic Bug Reporting Tool is a tool to help users to detect defects in applications and to create a bug report with all the information needed by a maintainer to fix it. It uses a plug-in system to extend its functionality. libreport provides an API for reporting different problems in...

7.5CVSS7.3AI score0.01616EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2012/07/11 12:0 a.m.28 views

CentOS 6 : abrt (CESA-2012:0841)

Updated abrt, libreport, btparser, and python-meh packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores,...

7.5CVSS7.3AI score0.01616EPSS
Exploits1References3
Cent OS
Cent OS
added 2012/07/10 5:16 p.m.72 views

abrt, btparser, libreport security update

CentOS Errata and Security Advisory CESA-2012:0841 Updated abrt, libreport, btparser, and python-meh packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact...

7.5CVSS7AI score0.01616EPSS
Exploits1References7
NVD
NVD
added 2012/06/17 3:41 a.m.19 views

CVE-2012-2691

The mcissuenoteupdate function in the SOAP API in MantisBT before 1.2.11 does not properly check privileges, which allows remote attackers with bug reporting privileges to edit arbitrary bugnotes via a SOAP request...

7.5CVSS6.4AI score0.03829EPSS
Exploits1References15
CVE
CVE
added 2012/06/17 1:0 a.m.53 views

CVE-2012-2691

CVE-2012-2691 affects MantisBT (SOAP API) where the mc_issue_note_update function does not properly enforce privileges. As a result, remote attackers with bug reporting privileges could edit arbitrary bugnotes via SOAP requests. The vulnerability is described as code-level privilege check bypass ...

7.5CVSS6AI score0.03829EPSS
Exploits1References15Affected Software1
The Hacker News
The Hacker News
added 2011/11/10 5:8 p.m.2 views

w3af v.1.1 - Web Application Attack and Audit Framework Released

w3af v.1.1 - Web Application Attack and Audit Framework Released w3af is a Web Application Attack and Audit Framework. The project's goal is to create a framework to find and exploit web application vulnerabilities that is easy to use and extend. To read our short and long term objectives. w3af i...

7.6AI score
Exploits0
The Hacker News
The Hacker News
added 2011/04/27 10:31 a.m.11 views

Mageia 1 Beta 2 released [ Testing Edition ]

Mageia 1 Beta 2 released Testing Edition Three weeks after the first beta arrived, the Mageia development team has announced the release of the second beta for version 1.0 of its Mandriva Linux fork. According to the project roadmap, Mageia 1 Beta 2 will be followed by a release candidate on 17 M...

6.9AI score
Exploits0
rdot
rdot
added 2011/01/19 12:0 a.m.52 views

PPS 4.0 perl-cgi web shell

PPS 4.0 perl-cgi web shell Данная утилита предназначенна для системных администраторов для удаленного управления своим сервером. Любое незаконное использование скрипта преследуется по закону. SIZE: 55.88 KB last update - 12.07.2013 09:45 Авторизация на cookies SystemInfo - информация о сервере Fi...

7.4AI score
Exploits0
ThreatPost
ThreatPost
added 2010/12/14 11:18 p.m.14 views

Mozilla Expands Bug Bounty to Web Apps

Mozilla has decided to follow the lead of Google and expand its bug-bounty program to pay for vulnerabilities found on certain of its Web sites, including the site for Firefox and the main Mozilla site. The group said that bounties for bugs found on the eligible sites will start at $500 and could...

7.5AI score
Exploits0References5
exploitpack
exploitpack
added 2009/10/06 12:0 a.m.16 views

Geany .18 - Local File Overwrite

Geany .18 - Local File Overwrite !/bin/sh redbull.sh AKA Geany 0.18 Local File Overwrite Exploit Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 10.06.2009 I was checking out some IDEs and decided on Geany. Nice interface, good features, but it doesn't defend against...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/02/28 12:0 a.m.34 views

report bug bug reporting application weak permissions

Per-user configuration file is world readable and may contain sensitive information, such as SMTP server password...

0.4AI score
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2004/09/29 12:0 a.m.18 views

Debian DSA-477-1 : xine-ui - insecure temporary file creation

Shaun Colley discovered a problem in xine-ui, the xine video player user interface. A script contained in the package to possibly remedy a problem or report a bug does not create temporary files in a secure fashion. This could allow a local attacker to overwrite files with the privileges of the...

2.1CVSS5.4AI score0.00342EPSS
Exploits0References2
Rows per page
Query Builder