CVE-2011-0046

Multiple cross-site request forgery CSRF vulnerabilities in Bugzilla before 3.2.10, 3.4.x before 3.4.10, 3.6.x before 3.6.4, and 4.0.x before 4.0rc2 allow remote attackers to hijack the authentication of arbitrary users for requests related to 1 adding a saved search in buglist.cgi, 2 voting in...

PRTG V8.1.2.1809 XSS Bugs in login.htm and error.htm

XSS Reflected Bugs in login.htm and error.htm ================================================================ PRTG V8.1.2.1809 All OS Versions: http://www.paessler.com/ I have discovered two XSS bugs within PRTG version 8.1.2.1809. These bugs are in the login.htm and error.htm documents. These...

PRTG 8.1.2.1809 Cross Site Scripting

XSS Reflected Bugs in login.htm and error.htm ================================================================ PRTG V8.1.2.1809 All OS Versions: http://www.paessler.com/ I have discovered two XSS bugs within PRTG version 8.1.2.1809. These bugs are in the login.htm and error.htm documents. These...

SuSE 11.1 Security Update : glibc (SAT Patch Number 2700)

This update of glibc fixes the following bugs and security issues : - The implementation of initgroups of the nsscompat module omits all NIS groups at the second invocation within the same process, and also uses a needlessly inefficient method to determine the NIS groups. - An integer overflow th...

Toolza 1.0

=== Toolza1.0 === Nix/Windows/Mac - UTF-8 perlscript download last version at the end of this post /последнюю версию скачать можно снизу этого поста Данная утилита предназначена для тестирования своего веб-ресурса на уязвимости. Любое другое использование скрипта преследуется по закону Last updat...

sudo -- local privilege escalation

Todd Miller reports: Beginning with sudo version 1.7.0 it has been possible to grant permission to run a command using a specified group via sudo's -g option run as group, if allowed by the sudoers file. A flaw exists in sudo's password checking logic that allows a user to run a command with only...

Mac App Store Safeguards Bypassed, Opening Up Pirated Apps

Just a day after Apple introduced its Mac App Store, some users already have found a way around the DRM system designed to ensure that they have paid for the apps that they’re using. The technique seems to work only on apps that don’t correctly implement the method for checking the App Store...

Aesop GIF Creator 2.1 Buffer Overflow

!/usr/bin/python Exploit Title: Aesop GIF Creator = v2.1 .aep Buffer Overflow Exploit Date: 12/15/2010 Author: xsploitedsec URL: http://www.x-sploited.com/ Contact: xsploitedsec at x-sploited.com Software Link: http://www.yukudr.com/h84561/aesopsetup.exe Vulnerable version: = v2.1 Tested on:...

SAP NetWeaver Business Client SapThemeRepository ActiveX Control Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP NetWeaver Business Client. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

Freefloat FTP Server Buffer Overflow Vulnerability

This host is running Freefloat FTP Server and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbfreefloatftpserverbofvuln.nasl 5306 2017-02-16 09:00:16Z teissa $ Freefloat FTP Server Buffer Overflow Vulnerability Authors: Sooraj KS Copyright: Copyright c 2010 Greenbone...

Freefloat FTP Server <= 1.00 Buffer Overflow Vulnerability - Active Check

Freefloat FTP Server is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SuSE 11 / 11.1 Security Update : freetype2 (SAT Patch Numbers 2914 / 2919)

This update of freetype2 fixes several vulnerabilities that could lead to remote system compromise by executing arbitrary code with user privileges : - stack-based buffer overflow while processing CFF opcodes. CVE-2010-1797 - integer underflow. CVE-2010-2497 - invalid free. CVE-2010-2498 - buffer...

SuSE 11 / 11.1 Security Update : popt (SAT Patch Numbers 2647 / 2648)

This update fixes a security problem where RPM misses to clear the SUID/SGID bit of old files during package updates. CVE-2010-2059 Also the following bugs were fixed : - make 'rpmconfigcheck status' exit with 4 bnc592269 - do not use glibc for passwd/group lookups when --root is used bnc536256 -...

Siberia Exploit Kit Offers Service to Evade Anti-Malware Software

Attackers have been using legitimate online services such as VirusTotal and others to check their new pieces of malware against various security suites for some time now, but that’s become less and less effective recently. Now, the creators of some exploit kits are beginning to include less...

Preemptive Protection against Novell GroupWise Agents HTTP Request Remote Code Execution

A code execution vulnerability exists in the GroupWise agents HTTP interfaces. The vulnerability is due to insufficient bounds checking while parsing the Host header from an HTTP GET request. A remote attacker could exploit this vulnerability by sending a crafted HTTP request to the server...

Ubuntu: Security Advisory (USN-1015-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mandriva Update for mysql MDVSA-2010:155-1 (mysql)

Check for the Version of mysql OpenVAS Vulnerability Test Mandriva Update for mysql MDVSA-2010:155-1 mysql Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

Ubuntu 10.10 : libvpx vulnerability (USN-1015-1)

Christoph Diehl discovered that libvpx did not properly perform bounds checking. If an application using libvpx opened a specially crafted WebM file, an attacker could cause a denial of service or possibly execute code as the user invoking the program. Note that Tenable Network Security has...

Critical: Red Hat Security Advisory: samba security update

Updated samba packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having critical security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

USN-1015-1: libvpx vulnerability

Christoph Diehl discovered that libvpx did not properly perform bounds checking. If an application using libvpx opened a specially crafted WebM file, an attacker could cause a denial of service or possibly execute code as the user invoking the program...