WordPress特制字符串URL重定向限制绕过漏洞

Bugtraq ID:62344 CVE ID:CVE-2013-4339 WordPress是一种使用PHP语言开发的博客平台，用户可以在支持PHP和MySQL数据库的服务器上架设自己的网志 WordPress在处理特制的字符串时存在重定向漏洞，允许远程攻击者利用漏洞构建恶意URI，诱使用户解析，来绕过重定向限制，对目标用户进行网络钓鱼等攻击 0 WordPress 3.6 厂商解决方案 WordPress 3.6.1已经修改该漏洞，建议用户下载更新： http://codex.wordpress.org/Version3.6.1...

Fedora 19 : python-pyrad-2.0-3.fc19 (2013-15891)

Better random number genetator Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

Fedora 18 : python-pyrad-2.0-3.fc18 (2013-15877)

Better random number genetator Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

Mac OS X : Apple Safari < 5.1.10 Memory Corruptions

The version of Apple Safari installed on the remote Mac OS X 10.6 host is earlier than 5.1.10. It is, therefore, potentially affected by two memory corruption vulnerabilities in JavaScriptCore's JSArray::sort method. By tricking a user into visiting a malicious website, an attacker could leverage...

Microsoft Word XML文件处理信息泄露漏洞(CVE-2013-3160)(MS13-072)

BUGTRAQ ID: 62162 CVECAN ID: CVE-2013-3160 Microsoft Word 属于办公软件是微软公司的一个文字处理器应用程序 Microsoft Word 分析包含外部实体的特制 XML 文件的方式中存在一个信息泄露漏洞。处理XML数据时出错，通过发送包含外部实体引用的特制XML数据，攻击者可获取本地文件内容 0 Microsoft Office 2010 Microsoft Office 2007 Microsoft Office 2003 临时解决方法： 安装和配置 MOICE 以 成为 .doc 文件的注册处理程序 使用 Microsoft...

Fedora 19 : glibc-2.17-14.fc19 (2013-15316)

systemd is now required during build so that installing or updating nscd does not result in any warnings. rtkaio bits are now tested correctly. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

PHP SSL Module &quot;subjectAltNames&quot;空字节处理安全绕过漏洞

Bugtraq ID:61776 PHP是一种HTML内嵌式的脚本语言 PHP SSL模块不正确处理服务器SSL证书中"subjectAltNames"通用名中的空字节，允许攻击者利用漏洞进行中间人攻击，获取敏感信息 0 PHP 5.3.27 PHP 5.4.17 PHP 5.5.1 厂商解决方案 用户可参考如下厂商提供的安全补丁以修复该漏洞： http://git.php.net/?p=php-src.git;a=commit;h=dcea4ec698dcae39b7bba6f6aa08933cbfee6755...

Apache OFBiz嵌套表达式任意UEL执行漏洞

Bugtraq ID:61369 CVE ID:CVE-2013-2250 Apache OFBiz是一款开源的ERP系统 Apache OFBiz没有正确校验参数值，如果提供的参数包含JUEL元字符，可导致执行任意统一表达式语言UEL函数 0 Apache OFBiz 10.04.01 - 10.04.05 Apache OFBiz 11.04.01 - 11.04.02 Apache OFBiz 12.04.01 厂商解决方案 Apache OFBiz 10.04.06, 11.04.03或12.04.02已经修复此漏洞，建议用户下载更新： http://ofbiz.apache.o...

ISC BIND 9 SRTT算法授权服务器选择安全漏洞

BUGTRAQ ID: 61774 BIND是一个应用非常广泛的DNS协议的实现。 ISC BIND 9内的SRTT算法实现中存在漏洞，理论上此漏洞可使攻击者手动降低递归服务器与授权服务器相关联的SRTT值，从而影响特定授权服务器从NS资源记录集值内确定要查询的域服务器。SRTT选择不仅影响授权服务器，也影响递归或授权混合服务器。攻击者可利用此漏洞执行DNS相关的攻击，例如DNS缓存投毒。 0 ISC BIND 9.x 厂商补丁： ISC --- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

Microsoft Windows Kernel 本地权限提升漏洞(MS13-063)

BUGTRAQ ID: 61682 CVECAN ID: CVE-2013-3196 Windows是一款由美国微软公司开发的窗口化操作系统。 Windows内核中存在NTVDM子系统内存破坏条件造成的权限提升漏洞。攻击者可利用这些漏洞破坏内存，在内核模式中执行任意代码。 0 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows Server 2003 Web Edition Microsoft Windows Server 2003 Standard...

Fedora 18 : kernel-3.10.9-100.fc18 (2013-15151)

The 3.10.9 stable update contains a number of important fixes across the tree. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

Update: Full Disclosure - WD My Net N600, N750, N900, N900C - Plain Text Disclosure of Admin Credentials

Vulnerable Systems: Western Digital My Net Series Wireless Routers: N600 Firmware 1.03.12 N600 Firmware 1.04.16 N750 Firmware 1.03.12 N750 Firmware 1.04.16 N900 Firmware 1.05.12 N900 Firmware 1.06.18 N900 Firmware 1.06.28 N900C Firmware 1.05.12 N900C Firmware 1.06.18 N900C Firmware 1.06.28 CVE...

WordPress Xhanch - My Twitter插件跨站请求伪造漏洞(CVE-2013-3253)

Bugtraq ID:61629 CVE ID:CVE-2013-3253 WordPress是一种使用PHP语言开发的博客平台，用户可以在支持PHP和MySQL数据库的服务器上架设自己的网志 WordPress Xhanch - My Twitter插件存在一个跨站请求伪造漏洞，允许远程攻击者构建恶意URI，诱使用户解析，可以目标用户上下文执行恶意操作 0 WordPress Xhanch - My Twitter Plugin 2.7.5 厂商解决方案 WordPress Xhanch - My Twitter Plugin 2.7.7已经修复此漏洞，建议用户下载更新：...

Fedora 19 : gnupg-1.4.14-1.fc19 (2013-13975)

Fix for CVE-2013-4242 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

Western Digital My Net Wireless Routers - Password Disclosure

Exploit for hardware platform in category web applications Vulnerable Systems: Western Digital My Net Series Wireless Routers: N600 Firmware 1.03.12 N600 Firmware 1.04.16 N750 Firmware 1.03.12 N750 Firmware 1.04.16 N900 Firmware 1.05.12 N900 Firmware 1.06.18 N900 Firmware 1.06.28 N900C Firmware...

Fedora 18 : libgcrypt-1.5.3-1.fc18 (2013-13671)

Minor update from upstream fixing a moderate impact security issue. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

Linux Kernel 3.7.6 (RedHat x86/x64) - &#039;MSR&#039; Driver Privilege Escalation

// PoC exploit for /dev/cpu//msr, 32bit userland on a 64bit host // can do whatever in the commented area, re-enable module support, etc // requires CONFIGX86MSR and just uid 0 // a small race exists between the time when the MSR is written to the first // time and when we issue our sysenter // w...

Western Digital My Net Wireless Routers - Password Disclosure

Vulnerable Systems: Western Digital My Net Series Wireless Routers: N600 Firmware 1.03.12 N600 Firmware 1.04.16 N750 Firmware 1.03.12 N750 Firmware 1.04.16 N900 Firmware 1.05.12 N900 Firmware 1.06.18 N900 Firmware 1.06.28 N900C Firmware 1.05.12 N900C Firmware 1.06.18 N900C Firmware 1.06.28 CVE...

HP/HPE System Management Homepage (SMH) Multiple Vulnerabilities (HPSBMU02900)

HP/HPE System Management Homepage SMH is prone to multiple vulnerabilities. Copyright C 2013 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...

Citrix Presentation Server 4.5 Code Execution

The version of Citrix Presentation Server installed on the remote Windows host is potentially affected by multiple code execution vulnerabilities. By sending a specially crafted packet to the IMA server process, a remote, unauthenticated attacker could execute arbitrary code subject to the...