66 matches found
W-Agora 4.1.6 EditForm.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6464/info W-Agora is a freely available, open source PHP forum software package. It is available for Unix and Linux systems. A problem with W-Agora may make cross-site scripting attacks possible. It has been reported that...
VMware Fixes Privilege Escalation Vulnerability
Virtualization software maker VMware issued an update last Thursday resolving a virtual machine communication interface VMCI vulnerability in its ESX Server, Workstation, Fusion and View products that could lead to a privilege escalation if unpatched. According to the VMware security advisory, a...
Microsoft Internet Explorer 'location.hash' DOS Vulnerability
This host is installed with Internet Explorer and is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: secpodmsielocationhashdosvuln.nasl 6527 2017-07-05 05:56:34Z cfischer $ Microsoft Internet Explorer 'location.hash' DOS Vulnerability Authors: Sharath S Copyright:...
NetBSD PPPoE发现脚本远程拒绝服务漏洞
BUGTRAQ ID:30838 CNCAN ID:CNCAN-2008082706 NetBSD是一款基于BSD的操作系统。 NetBSD包含的pppoe4代码处理恶意报文存在问题,远程攻击者可以利用漏洞触发内核访问越界内容而导致内核崩溃,造成拒绝服务攻击。 在客户端和访问集中器之间的会话连接之前,处理PPPoE连接的早期状态的关键代码存在问题。在"discovery"阶段的报文由多个可变长度"tags"装载同一个PPPoE报文中,每个标签将被检查,而且针对全部报文大小的长度进行了验证。不过在长度检查过程中存在一个缺陷,允许把下一个TAG的指针越界移动到报文后最多4字节的位置。...
Fedora Core 5 : libtiff-3.7.4-6 (2006-592)
The tiffsplit command contained code that handled fixed-size buffers insecurely, possibly leading to stack overflows. This problem is fixed in the updated package. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable...
W-Agora 4.1.6 - 'EditForm.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/6464/info W-Agora is a freely available, open source PHP forum software package. It is available for Unix and Linux systems. A problem with W-Agora may make cross-site scripting attacks possible. It has been reported that W-Agora has a vulnerability in th...