90 matches found
LibreSSL Portable Fork Of OpenSSL Released
After months of code cleanup and rewriting, the OpenBSD Foundation this weekend sent LibreSSL out the door. The slimmed down OpenSSL fork works on a number of platforms beyond OpenBSD, including several Linux flavors, Solaris, Mac OS X and Free BSD. “I firmly believe that LibreSSL is in a better...
Nucleus CMS 3.0,Blog:CMS 3,PunBB 1.x Common.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10760/info Nucleus CMS, Blog:CMS, and PunBB are vulnerable to a remote file include vulnerability that may allow an attacker to include malicious files containing arbitrary code to be executed on a vulnerable computer...
WhiteHat Releases Aviator Browser for Windows
The privacy and anonymity of users’ online communications has been at the forefront of many discussions in the tech community and the general public in the last year as more and more information has leaked out about the NSA’s methods and how the agency collects vast amounts of user data. Keeping...
Debian Security Advisory DSA 2748-1 (exactimage - denial of service)
Several denial-of-service vulnerabilities were discovered in the dcraw code base, a program for procesing raw format images from digital cameras. This update corrects them in the copy that is embedded in the exactimage package. OpenVAS Vulnerability Test $Id: deb2748.nasl 6611 2017-07-07 12:07:20...
Fedora Update for php-ZendFramework FEDORA-2012-9979
Check for the Version of php-ZendFramework OpenVAS Vulnerability Test Fedora Update for php-ZendFramework FEDORA-2012-9979 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...
Google Sweetens Bug Bounty Pot
Google officials say that they will be handing out bonuses on top of existing rewards to security researchers who report especially troublesome flaws as part of their bug bounty program. Formally known as the Chromium Vulnerability Rewards Program, Google wrote on the Chromium Blog that a number ...
Orbis CMS 1.0.2 - Arbitrary File Upload
'Orbis CMS' Arbitrary Script Execution Vulnerability CVE-2010-4313 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in the 'Orbis CMS' filemanfileupload.php script that allows any authenticated user to upload a PHP script and...
IP3 NetAccess 4.1.9.6 - Arbitrary File Disclosure
IP3 NetAccess 4.1.9.6 - Arbitrary File Disclosure I - TITLE Security advisory: Arbitrary file disclosure vulnerability in IP3 NetAccess leads to full system compromise II - SUMMARY Description: Arbitrary file disclosure vulnerability in IP3 NetAccess leads to full system compromise Author:...
Mandrake Linux Security Advisory : tetex (MDKSA-2006:011)
Multiple heap-based buffer overflows in the DCTStream::readProgressiveSOF and DCTStream::readBaselineSOF functions in the DCT stream parsing code Stream.cc in xpdf 3.01 and earlier, allow user-complicit attackers to cause a denial of service heap corruption and possibly execute arbitrary code via...
xpdf -- integer overflow vulnerabilities
Chris Evans discovered several integer arithmetic overflows in the xpdf 2 and xpdf 3 code bases. The flaws have impacts ranging from denial-of-service to arbitrary code execution...