HP OpenView Storage Data Protector EXEC_CMD Buffer Overflow (CVE-2011-1866)

A remote code execution vulnerability has been reported in HP OpenView Storage Data Protector. The vulnerability is due to insufficient boundary checking while handling EXECCMD messages. A remote attacker may exploit this vulnerability by sending a specially crafted EXECCMD to an affected service...

Moderate: Red Hat Security Advisory: openssl security update

Updated openssl packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Oracle Java IIOP Deserialization Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Java handles...

ACD Systems Fotoslate PLP File ID Parameter Buffer Overflow

Added: 10/24/2011 CVE: CVE-2011-2595 BID: 49558 OSVDB: 75425 Background ACD Systems FotoSlate 4 Photo Print Studio allows users to create contact sheets or wallet sized prints, choose themed frames, and create custom calendars. Problem Fotoslate 4.0 Build 146 is vulnerable to remote code executio...

ACD Systems Fotoslate PLP File ID Parameter Buffer Overflow

Added: 10/24/2011 CVE: CVE-2011-2595 BID: 49558 OSVDB: 75425 Background ACD Systems FotoSlate 4 Photo Print Studio allows users to create contact sheets or wallet sized prints, choose themed frames, and create custom calendars. Problem Fotoslate 4.0 Build 146 is vulnerable to remote code executio...

ZDI-11-288 : Microsoft Internet Explorer Select Element Insufficient,Type Checking Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-11-288 : Microsoft Internet Explorer Select Element Insufficient Type Checking Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-288 October 15, 2011 - - -- CVE ID: CVE-2011-1999 - - -- CVSS: 7.5,...

Object reference not set to an instance of an object exception on Checking free space on source datastore

Job fails right away with error "Checking free space on source datastore. Object reference not set to an instance of an object."...

Medium: openssl

Issue Overview: An uninitialized variable use flaw was found in OpenSSL. This flaw could cause an application using the OpenSSL Certificate Revocation List CRL checking functionality to incorrectly accept a CRL that has a nextUpdate date in the past. All OpenSSL users should upgrade to these...

http-wordpress-enum NSE Script

Enumerates themes and plugins of Wordpress installations. The script can also detect outdated plugins by comparing version numbers with information pulled from api.wordpress.org. The script works with two separate databases for themes wp-themes.lst and plugins wp-plugins.lst. The databases are...

e107 Multiple PHP Files Information Disclosure Vulnerability

e107 is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:e107:e107"; ifdescripti...

Adobe ColdFusion Multiple Full Path Disclosure Vulnerabilities

The host is running Adobe ColdFusion and is prone to multiple full path disclosure vulnerabilities. OpenVAS Vulnerability Test $Id: secpodadobecoldfusionmultiplefpdvuln.nasl 7024 2017-08-30 11:51:43Z teissa $ Adobe ColdFusion Multiple Full Path Disclosure Vulnerabilities Authors: Sooraj KS...

Drupal Information Disclosure Vulnerability

The host is running Drupal and is prone to information disclosure vulnerability. OpenVAS Vulnerability Test $Id: secpoddrupalinfodiscvuln.nasl 7015 2017-08-28 11:51:24Z teissa $ Drupal Information Disclosure Vulnerability Authors: Sooraj KS Copyright: Copyright c 2011 SecPod, http://www.secpod.co...

Oracle Outside In CorelDRAW File Parser Stack Buffer Overflow (CVE-2011-2264)

A code execution vulnerability has been reported in Oracle Outside-In. The vulnerability is due to improper bounds checking of certain values while parsing malicious CorelDRAW cdr files. A remote attacker may exploit this vulnerability by sending a malicious .cdr file to a target user. Successful...

[20110903] - Core - Information Disclosure

Inadequate error checking causes information disclosure...

Adobe PDF File TIFF Buffer Overflow (APSB11-24; CVE-2011-2432)

A remote code execution vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to insufficient bounds checking while parsing certain structures in a TIFF image. A remote attacker may exploit this vulnerability by enticing an unsuspecting user to open a malicious PDF...

KMPlayer '.kpl' File 'Title' Field Remote Buffer Overflow Vulnerability

KMPlayer is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

KMPlayer '.kpl' File 'Title' Field Remote Buffer Overflow Vulnerability

This host is installed with KMPlayer and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbkmplayerkplfilebofvuln.nasl 5367 2017-02-20 14:16:52Z cfi $ KMPlayer '.kpl' File 'Title' Field Remote Buffer Overflow Vulnerability Authors: Madhuri D Copyright: Copyright c 2011...

Vulnerability in OpenSSL CVE-2011-3207

Under certain circumstances OpenSSL’s internal certificate verification routines can incorrectly accept a CRL whose nextUpdate field is in the past. Applications are only affected by the CRL checking vulnerability if they enable OpenSSL’s internal CRL checking which is off by default. Application...

Hacking a Facebook Account using Facebook

Hacking a Facebook Account using Facebook Many of us know that phishing is also a trick to hack a facebook and session hijicking but hacker can do both at a same time. This vulnerability was happened on Facebook static FBML .Example here . Here you can get that Facebook FBML script : What user wi...

CentOS Update for fetchmail CESA-2009:1427 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...