2156 matches found
SA-CONTRIB-2012-046 - Bundle Copy - Arbitrary Code execution
CVE: CVE-2012-2073 Bundle copy is a replacement for the Content copy module which lives in the CCK project for Drupal 6. Besides the ability to import and export content types, taxonomy and user entities are also supported. Field groups can be exported easily as well. The module doesn't...
Tor Browser Bundle for Linux (2.2.35-8) "EVIL bug"
"There is an EVIL bug in at least the Linux 2.2.35-8 Tor Browser Bundle start-tor-browser script. It will log things like domain names to a file in the root of the browser bundle." https://trac.torproject.org/projects/tor/ticket/5417 Ticket 5417 new defect RelativeLink.sh in Tor browser bundle ha...
ca_root_nss -- extraction of explicitly-untrusted certificates into trust bundle
Matthias Andree reports that the ca-bundle.pl used in older versions of the carootnss FreeBSD port before 3.12.11 did not take the Mozilla/NSS/CKBI untrusted markers into account and would add certificates to the trust bundle that were marked unsafe by Mozilla...
DSA-2299-1 ca-certificates - untrusted root CA
Bulletin has no description...
Design/Logic Flaw
Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Products 9.0 Bundle 17 allows remote authenticated users to affect confidentiality via unknown vectors related to ePerformance...
CVE-2011-0858
Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS 9.0 Bundle 15 and 9.1 Bundle 5 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Talent Acquisition Manager...
CVE-2011-0850
Unspecified vulnerability in Oracle PeopleSoft Enterprise CRM 8.9 Bundle 41 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Order Capture...
CVE-2011-0828
Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.8 Bundle 13 allows remote attackers to affect integrity via unknown vectors related to Application Portal...
Design/Logic Flaw
Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS 9.0 Bundle 15 and 9.1 Bundle 5 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Pension Administration...
Design/Logic Flaw
Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.8 Bundle 13 allows remote attackers to affect integrity via unknown vectors related to Application Portal...
Design/Logic Flaw
Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS 9.1 Bundle 5 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to ePerformance...
CVE-2011-0857
Technical details about CVE-2011-0857 are not publicly provided in the supplied documents; information on affected components, exploit vectors, and fixes is not available here. Monitor for updates.
CVE-2011-0828
CVE-2011-0828 affects Oracle PeopleSoft Enterprise 8.8 Bundle #13. The description states an unspecified vulnerability allowing remote attackers to affect integrity via unknown vectors related to the Application Portal. CVSSv2 base score 4.3 (AV:N/AC:M/Au:N/C:P/I:P/A:N). No exploitation details, ...
Mandriva Linux Security Advisory : kdelibs4 (MDVSA-2011:071)
A vulnerability has been found and corrected in kdelibs4 : kio/kio/tcpslavebase.cpp in KDE KSSL in kdelibs before 4.6.1 does not properly verify that the server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL...
Design/Logic Flaw
Unspecified vulnerability in the PeopleSoft Enterprise CRM component in Oracle PeopleSoft and JDEdwards Suite 9.0 Bundle 31 and 9.1 Bundle 6 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Order Capture...
Code injection
Unspecified vulnerability in the PeopleSoft Enterprise FMS - GL component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle 38, 9.0 Bundle 31, and 9.1 Bundle 6 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than...
CVE-2010-3528
Unspecified vulnerability in the PeopleSoft Enterprise CRM - Common Components component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle 41, 9.0 Bundle 28, and 9.1 Bundle 4 allows remote authenticated users to affect confidentiality via unknown vectors...
Code injection
Unspecified vulnerability in the PeopleSoft Enterprise HCM GP - Japan component in Oracle PeopleSoft and JDEdwards Suite 8.81 SP1 Bundle 13, 8.9 GP Update 2010-E, 9.0 GP Update 2010-E, and 9.1 GP Update 2010-E allows remote authenticated users to affect confidentiality and integrity via unknown...
CVE-2010-2403
Unspecified vulnerability in the PeopleSoft Enterprise Campus Solutions component in Oracle PeopleSoft and JDEdwards Suite Campus Solutions 9.0 Bundle 17 allows remote authenticated users to affect confidentiality via unknown vectors...
Code injection
Unspecified vulnerability in the PeopleSoft Enterprise HCM - eProfile Mgr component in Oracle PeopleSoft and JDEdwards Suite HCM 9.0 Bundle 9 allows remote authenticated users to affect confidentiality and integrity via unknown vectors...