55 matches found
Legal Robot: Coding error !
here this is my mail id : [email protected] and pass : [email protected] i am able to set password as same as gmail address , but cant able to login , this was the issue here...
MyFitnessPal App Patches Privacy Vulnerability
The details of a patched vulnerability in a popular mobile fitness application have been disclosed three months after a fixed was released. The flaw could have allowed a user to fetch the personal profile of another registered app user. MyFitnessPal deployed a fix on June 26 for a privacy flaw in...
Rockwell Automation Connected Components Workbench ActiveX Component Vulnerabilities
OVERVIEW This advisory was originally posted to the US-CERT secure Portal library on November 6, 2014, and is being released to the NCCIC/ICS-CERT web site. Independent researcher Andrea Micalizzi working through ZDI has identified two custom ActiveX Component vulnerabilities in Rockwell...
Android Exploited to Make, End Phone Calls; Send USSD Codes
A pair of vulnerabilities in all but the newest KitKat iteration of Google’s Android operating system could let a malicious or rogue application exceed its permission level in order to make phone calls, hang up phone calls, or send USSD or MMI codes. Marco Lux and Pedro Umbelino of Curesec claim...
Cisco TelePresence VX Clinical Assistant Administrative Password Reset Vulnerability
A vulnerability in the WIL-A module of Cisco TelePresence VX Clinical Assistant could allow an unauthenticated, remote attacker to log in as the admin user of the device using a blank password. The vulnerability is due to a coding error that resets the password for the admin user to a blank...
Joomla! 2.5.x < 2.5.9 / 3.0.x < 3.0.3 Multiple Vulnerabilities
According to its self-reported version number, the Joomla! installation running on the remote web server is 2.5.x prior to 2.5.9 or 3.0.x prior to 3.0.3. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in the highlight.php script, within the...
CVE-2013-1454
CVE-2013-1454 affects Joomla! 3.0.x through 3.0.2, with an information-disclosure issue described as caused by coding errors. The connected sources corroborate an unspecified information-disclosure vulnerability in Joomla! 3.0.x (and mention 3.0.2 as affected). No concrete exploit vectors, root c...
Mandriva Update for tomcat5 MDVSA-2011:030 (tomcat5)
Check for the Version of tomcat5 OpenVAS Vulnerability Test Mandriva Update for tomcat5 MDVSA-2011:030 tomcat5 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
SugarCRM 5.2.0e Remote Code Execution
SugarCRM 5.2.0e Remote Code Execution Name Remote Code Execution in SugarCRM Systems Affected Sugar CRM 5.2.0e and possibly earlier versions Severity High Impact CVSSv2 High 8/10, vector: AV:N/AC:L/Au:S/C:P/I:C/A:P Vendor http://www.sugarcrm.com Advisory...
Debian DSA-1653-1 : linux-2.6 - denial of service/privilege escalation
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-6716 Joe Jin reported a local denial of service vulnerability that allows...
Debian DSA-1636-1 : linux-2.6.24 - denial of service/information leak
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or leak sensitive data. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-3272 Tobias Klein reported a locally exploitable data leak in the...
IkonBoard v3.1.1: arbitrary command execution
============================================================================ Vulnerable: IkonBoard 3.1.1 and probably earlier Category: Perl/CGI coding errors Impact: Arbitrary command execution Date: 1st April 2003 Vendor: The Jarvis Group Homepage: http://www.ikonboard.com/ Vendor Status: First...
Privilege Escalation Vulnerability In phpBB 2.0.0
Privilege Escalation Vulnerability In phpBB 2.0.0 ------------------------------------------------- Rootsecure.net recently found a privilege escalation vulnerability in "phpBB 2.0.0" which allows any person with a "user" level account to escalate their privileges to that of "administrator" level...
remote_bof_cfingerd.txt
Subject: cfingerd 1.3.2 To: [email protected] Hi, there is a remote buffer over flow in cfingerd 1.3.2 in searchfake: int searchfakechar username char parsed80; bzeroparsed, 80; sscanfusername, "%^..%^\r\n\r\n", parsed; ... called from processusername, that is called from main: int mainint arg...
BSD 2 CND 1 Sendmail 8.x FreeBSD 2.1.x HP-UX 10.x AIX 4 RedHat 4 - Sendmail Daemon
BSD 2 CND 1 Sendmail 8.x FreeBSD 2.1.x HP-UX 10.x AIX 4 RedHat 4 - Sendmail Daemon BSD/OS 2.1,Caldera Network Desktop 1.0,Eric Allman Sendmail = 8.8.2,FreeBSD 2.1.5/2.1.6,HP-UX = 10.20,AIX 4.2,RedHat 4.0 Sendmail Daemon Mode Vulnerability source: https://www.securityfocus.com/bid/716/info Sendmai...