Microsoft Internet Explorer虚函数表远程代码执行漏洞

Bugtraq ID:54951 CVE ID:CVE-2012-2522 Microsoft Internet Explorer是一款流行的WEB浏览器。 Microsoft Internet Explorer没有正确处理内存中的对象，允许远程攻击者通过访问已经删除的破坏的虚函数表执行任意代码。攻击者可以构建恶意WEB页，诱使用户解析触发此漏洞。 0 Microsoft Internet Explorer 9 Microsoft Internet Explorer 8 Microsoft Internet Explorer 7 Microsoft Internet Explorer 6...

Dir2web3 Mutiple Vulnerabilities

Title: ====== Dir2web3 Multiple Vulnerabilities Date: ===== 05/08/2012 Author: ======= Daniel Correa http://www.sinfocol.org/ Vulnerable software: ==================== Dir2web v3.0 http://www.dir2web.it/ CVE: ==== CVE-2012-4069 CVE-2012-4070 Details: ======== There are two vulnerabilities...

Linux Kernel NCI多个远程栈缓冲区溢出漏洞

BUGTRAQ ID: 54966 CVE ID: CVE-2012-3364 Linux是最受欢迎的自由电脑操作系统内核。 Linux Kernel在实现上存在多个远程栈缓冲区溢出漏洞，攻击者可利用此漏洞以内核权限执行任意代码，完全控制受影响计算机。 0 Linux kernel 3.3.5 Linux kernel 3.3.4 Linux kernel 3.2.x Linux kernel 2.6.x 厂商补丁： Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.kernel.org/...

Fedora 17 : Django-1.4.1-1.fc17 (2012-11415)

security release https://www.djangoproject.com/weblog/2012/jul/30/security-releases-iss ued/ Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...

Fedora 17 : bugzilla-4.0.7-1.fc17 (2012-11364)

These versions of Bugzilla fix an information leak that allows an unprivileged user to read the description of a private attachment. See https://bugzilla.mozilla.org/showbug.cgi?id=777586 for all the details. Note that Tenable Network Security has extracted the preceding description block directl...

WordPress Quick Post Widget 1.9.1 Cross Site Scripting

Advisory: WordPress Plugin 'Quick Post Widget' 1.9.1 Multiple Cross-site scripting vulnerabilities Advisory ID: SSCHADV2012-016 Author: Stefan Schurtz Affected Software: Successfully tested on Quick Post Widget 1.9.1 Vendor URL: http://qpw.famvanakkeren.nl/ Vendor Status: informed CVE-ID:...

IBM WebSphere Application Server不明细节跨站脚本执行漏洞

BUGTRAQ ID: 54819 IBM WebSphere Application Server WAS是由IBM遵照开放标准开发并发行的一种应用服务器。 IBM WebSphere Application Server 8.0.0.4之前版本管理控制台中的某些输入没有正确过滤即返回给用户，可被利用在受影响站点的用户浏览器中执行任意HTML和脚本代码。 0 IBM Websphere Application Server 8.0.0.4 厂商补丁： IBM --- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.ers.ibm.com/...

Dir2web3 3.0 SQL Injection / Information Disclosure

Title: ====== Dir2web3 Multiple Vulnerabilities Date: ===== 05/08/2012 Author: ======= Daniel Correa http://www.sinfocol.org/ Vulnerable software: ==================== Dir2web v3.0 http://www.dir2web.it/ CVE: ==== CVE-2012-4069 CVE-2012-4070 Details: ======== There are two vulnerabilities...

Fedora 17 : moodle-2.2.4-1.fc17 (2012-11039)

Latest upstreams to address security issues. CVE-2012-3387 CVE-2012-3388 CVE-2012-3389 CVE-2012-3390 CVE-2012-3391 CVE-2012-3392 CVE-2012-3393 CVE-2012-3394 CVE-2012-3395 CVE-2012-3396 CVE-2012-3397 CVE-2012-3398 Note that Tenable Network Security has extracted the preceding description block...

PHP 5.4.x < 5.4.5 _php_stream_scandir Overflow

According to its banner, the version of PHP installed on the remote host is 5.4.x earlier than 5.4.5, and is, therefore, potentially affected by an unspecified overflow vulnerability in the function 'phpstreamscandir' in the file 'main/streams/streams.c'. %NASLMINLEVEL 70300 C Tenable Network...

Asterisk Endpoint Provisional Response Parsing RTP Port Consumption Remote DoS (AST-2012-010)

According to the version in its SIP banner, the version of Asterisk running on the remote host is potentially affected by a vulnerability that could allow a remote, authenticated attacker to exhaust the server of resources. If an endpoint sends a provisional response to the server's re-INVITE...

Linux Kernel IPv6 'nf_ct_frag6_reasm()'远程拒绝服务漏洞

Bugtraq ID:54367 CVE ID: CVE-2012-2744 Linux是一款开源的操作系统。 Linux内核netfilter IPv6连接跟踪实现中的nfctfrag6reasm函数存在空指针引用缺陷，远程攻击者利用利用此缺陷向使用Ipv6的，并加载了nfconntrackipv6内核模块的目标系统发送特制报文，可导致系统崩溃。 0 Linux kernel 2.6.x 厂商解决方案 用户可参考如下供应商提供的安全公告获得补丁信息： https://rhn.redhat.com/errata/RHSA-2012-1064.html...

Google Chrome Multiple Vulnerabilities - July 12 (Windows)

This host is installed with Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnjul12win.nasl 5988 2017-04-20 09:02:29Z teissa $ Google Chrome Multiple Vulnerabilities - July 12 Windows Authors: Rachana Shetty Copyright: Copyright c 2012...

Fedora 17 : rubygem-activerecord-3.0.11-3.fc17 (2012-9635)

Fix for CVE-2012-2695. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

Debian DSA-2503-1 : bcfg2 - shell command injection

It was discovered that malicious clients can trick the server component of the Bcfg2 configuration management system to execute commands with root privileges. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian...

SAP Netweaver ABAP 'msg_server.exe'远程代码执行漏洞

Bugtraq ID: 54214 SAP NetWeaver是一款SAP业务套件解决方案、SAP xApps组合应用、合作伙伴解决方案以及客户定制应用的技术基础。 SAP NetWeaver处理操作码为0x43的报文存在缺陷。如果sub opcode为0x4的报文包含超长参数值字符串，NetWeaver最后会把\x00字节写入到栈中标记字符串的结尾，而NULL字节的位置以来用户提供的输入，提供超长数值可导致栈破坏，可以以进程上下文执行任意代码。 0 SAP NetWeaver ABAP 厂商解决方案 用户可参考如下供应商提供的安全公告获得补丁信息：...

Asterisk Remote Crash Vulnerability in IAX2 Channel Driver (AST-2012-007)

According to the version in its SIP banner, the version of Asterisk running on the remote host is potentially affected by a vulnerability that could allow a remote attacker to crash the server. This issue could be exploited when a call is put on hold and the entity placing the call on hold contai...

Fedora 15 : pidgin-2.10.4-1.fc15 (2012-8669)

Fix for CVE-2012-2214 and CVE-2012-2318. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

PostgreSQL 'SECURITY DEFINER'和'SET'属性远程拒绝服务漏洞

BUGTRAQ ID: 53812 CVE ID: CVE-2012-2655 PostgreSQL是一款高级对象－关系型数据库管理系统，支持扩展的SQL标准子集。 PostgreSQL在ALTER FUNCTION RENAME的实现上存在远程拒绝服务漏洞，利用此漏洞可允许攻击者使应用崩溃。 0 PostgreSQL 9.x PostgreSQL 8.x 厂商补丁： PostgreSQL ---------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.postgresql.org...

Linux kernel 2.6.x iptables '--syn'规则安全绕过漏洞

Bugtraq ID: 53733 CVE ID：CVE-2012-2663 Linux是一款开源的操作系统。 Linux Kernel iptables在某些情况下不正确处理SYN+FIN，攻击者可以发送SYN/FIN绕过所有包含--syn的访问规则，未授权创建连接。 0 Linux kernel 2.6.x 厂商解决方案 Linux ----- 用户可参考如下供应商提供的安全公告获得补丁信息：...