Ubuntu Update for linux USN-1406-1

Ubuntu Update for Linux kernel vulnerabilities USN-1406-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN14061.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for linux USN-1406-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...

Memory corruption

An unspecified ActiveX control in Adobe Flash Player before 10.3.183.18 and 11.x before 11.2.202.228, and AIR before 3.2.0.2070, on Windows does not properly perform URL security domain checking, which allow attackers to execute arbitrary code or cause a denial of service memory corruption via...

CVE-2012-0772

An unspecified ActiveX control in Adobe Flash Player before 10.3.183.18 and 11.x before 11.2.202.228, and AIR before 3.2.0.2070, on Windows does not properly perform URL security domain checking, which allow attackers to execute arbitrary code or cause a denial of service memory corruption via...

HP OpenView Network Node Manager Multiple Code Execution Vulnerabilities (HPSBMU02712 SSRT100649)

The installed version of HP Network Node Manager is affected by the following vulnerabilities : - A remote code execution vulnerability exists because the 'nnmRptConfig.exe' CGI application does not adequately validate user-supplied input. CVE-2011-3165 - A remote code execution vulnerability...

Spotify 0.8.2.610 Memory Exhaustion

!/usr/local/bin/perl Spotify 0.8.2.610 search func Memory Exhaustion Exploit Vendor: Spotify Ltd Product web page: http://www.spotify.com Affected version: 0.8.2.610.g090a06f8 Summary: Think of Spotify as your new music collection. Your library. Only this time your collection is vast: millions of...

Spotify 0.8.2.610 - search func Memory Exhaustion

Spotify 0.8.2.610 - search func Memory Exhaustion !/usr/local/bin/perl Spotify 0.8.2.610 search func Memory Exhaustion Exploit Vendor: Spotify Ltd Product web page: http://www.spotify.com Affected version: 0.8.2.610.g090a06f8 Summary: Think of Spotify as your new music collection. Your library...

Spotify 0.8.2.610 - search func Memory Exhaustion

!/usr/local/bin/perl Spotify 0.8.2.610 search func Memory Exhaustion Exploit Vendor: Spotify Ltd Product web page: http://www.spotify.com Affected version: 0.8.2.610.g090a06f8 Summary: Think of Spotify as your new music collection. Your library. Only this time your collection is vast: millions of...

Design/Logic Flaw

IBM DB2 9.5 before FP9, 9.7 through FP5, and 9.8 through FP4 does not properly check variables, which allows remote authenticated users to bypass intended restrictions on viewing table data by leveraging the CREATEIN privilege to execute crafted SQL CREATE VARIABLE statements...

Liferay Portal 6.1 - 6.0.x Privilege Escalation

Exploit for java platform in category web applications Liferay users can assign themselves to organizations, leading to possible privilege escalation Description: Liferay Portal is an enterprise portal written in Java Due to insufficient permission checking in the updateOrganizations method of...

Ubuntu Update for linux USN-1389-1

Ubuntu Update for Linux kernel vulnerabilities USN-1389-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN13891.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for linux USN-1389-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...

Drupal CMS version 7.12 suffers from multiple cross site request forgery vulnerabilities

No description provided by source. Exploit Title : Drupal CMS 7.12 latest stable release Multiple Vulnerabilities Date : 02-03-2012 Author : Ivano Binetti http://ivanobinetti.com Software link : http://drupal.org/download Vendor site : http://drupal.org Version : 7.12 and lower Tested on : Debian...

Drupal CMS 7.12 (latest stable release) Multiple Vulnerabilities

Exploit for php platform in category web applications +---------------------------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Drupal CMS 7.12 latest stable release Multiple Vulnerabilities Date :...

Drupal CMS 7.12 Cross Site Request Forgery

+---------------------------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Drupal CMS 7.12 latest stable release Multiple Vulnerabilities Date : 02-03-2012 Author : Ivano Binetti http://ivanobinetti.com...

Drupal 7.12 - Multiple Vulnerabilities

+---------------------------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Drupal CMS 7.12 latest stable release Multiple Vulnerabilities Date : 02-03-2012 Author : Ivano Binetti http://ivanobinetti.com...

Drupal 7.12 - Multiple Vulnerabilities

Drupal 7.12 - Multiple Vulnerabilities +---------------------------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Drupal CMS 7.12 latest stable release Multiple Vulnerabilities Date : 02-03-2012 Author :...

DJ Studio Pro 5.1 .pls Stack Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'DJ Studio Pro 5.1...

IBM Personal Communications I-Series Access WorkStation 5.9 Profile

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

SuSE 11.1 Security Update : Java 1.6.0 (SAT Patch Number 5845)

java-160-openjdk was updated to the IcedTea 1.11.1 b24 release, fixing multiple security issues : - S7082299, CVE-2011-3571: Fix inAtomicReferenceArray - S7088367, CVE-2011-3563: Fix issues in java sound - S7110683, CVE-2012-0502: Issues with some KeyboardFocusManager method - S7110687,...

kexec-tools: Multiple security flaws by management of kdump core files and ramdisk images

The SSH configuration in the Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, disables the StrictHostKeyChecking option, which allows man-in-the-middle attackers to spoof kdump servers...

Low: Red Hat Security Advisory: sudo security and bug fix update

An updated sudo package that fixes one security issue and various bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...