840 matches found
Buffer overflow
Buffer overflow in util.c in libpurple in Pidgin before 2.10.8 allows remote HTTP servers to cause a denial of service application crash or possibly have unspecified other impact via an invalid chunk-size field in chunked transfer-coding data...
CVE-2013-6485
Buffer overflow in util.c in libpurple in Pidgin before 2.10.8 allows remote HTTP servers to cause a denial of service application crash or possibly have unspecified other impact via an invalid chunk-size field in chunked transfer-coding data...
CVE-2013-6485
Buffer overflow in util.c in libpurple in Pidgin before 2.10.8 allows remote HTTP servers to cause a denial of service application crash or possibly have unspecified other impact via an invalid chunk-size field in chunked transfer-coding data...
Open source, light weight Forum StartBBS front Desk getshell-a vulnerability warning-the black bar safety net
Whim read code. StartBBS interface is quite refreshing, the volume is small. Download down the installation. After installation find the root directory of an install. lock, generally the cms in order to prevent re-installation will be in the directory to generate a similar file, the next time...
CVE-2013-0858
The atrac3decodeinit function in libavcodec/atrac3.c in FFmpeg before 1.0.4 allows remote attackers to have an unspecified impact via ATRAC3 data with the joint stereo coding mode set and fewer than two channels...
Design/Logic Flaw
The atrac3decodeinit function in libavcodec/atrac3.c in FFmpeg before 1.0.4 allows remote attackers to have an unspecified impact via ATRAC3 data with the joint stereo coding mode set and fewer than two channels...
CVE-2013-0858
The atrac3decodeinit function in libavcodec/atrac3.c in FFmpeg before 1.0.4 allows remote attackers to have an unspecified impact via ATRAC3 data with the joint stereo coding mode set and fewer than two channels...
CVE-2013-0858
The atrac3decodeinit function in libavcodec/atrac3.c in FFmpeg before 1.0.4 allows remote attackers to have an unspecified impact via ATRAC3 data with the joint stereo coding mode set and fewer than two channels...
CVE-2013-0858
The atrac3decodeinit function in libavcodec/atrac3.c in FFmpeg before 1.0.4 allows remote attackers to have an unspecified impact via ATRAC3 data with the joint stereo coding mode set and fewer than two channels...
Cisco TelePresence VX Clinical Assistant Administrative Password Reset Vulnerability
A vulnerability in the WIL-A module of Cisco TelePresence VX Clinical Assistant could allow an unauthenticated, remote attacker to log in as the admin user of the device using a blank password. The vulnerability is due to a coding error that resets the password for the admin user to a blank...
What Does PCI 3.0 Mean to Security Practitioners?
Cybercrime, identity theft, and frauds are on the rise; and in most cases, the data breaches are associated with credit cards and cardholder data. The impact of data breach not only affects your organization, but also your customers. A common observation cites that organizations that are PCI...
bluecms the latest version of the double-byte universal password into the background-bug warning-the black bar safety net
Brief description: bluecms the latest version i.e., v1. 6sp1,processing of login authentication when the variables are single quotes escaped, but can be used gbk double-byte coding the closing single quote and then comment to enter the background Detailed description: bluecms verify the login cod...
Rain Nan travel network service management system v2013. 6. 1 1 The newest vulnerabilities 0day-vulnerability warning-the black bar safety net
Vulnerability-1 Vulnerability type: the storage typexss Code file: LstBook. Asp Detail code: ------------------------------------------------ If action="addbook" Then If TrimRequest"xm"="" Then Call alert"name cannot be empty","-1" End If If TrimRequest"sj"="" Then Call alert"phone can not be...
[OWASP Bricks] Modular Deliberately Vulnerable Web Application
Bricks is a deliberately vulnerable web application built on PHP and MySQL. The project focuses on variations of commonly seen application security vulnerabilities and exploits. Each 'brick' has some sort of vulnerability which can be exploited using tools Mantra and ZAP. The mission is to 'break...
CVE-2012-3544
Apache Tomcat 6.x before 6.0.37 and 7.x before 7.0.30 does not properly handle chunk extensions in chunked transfer coding, which allows remote attackers to cause a denial of service by streaming data...
CVE-2012-3544
CVE-2012-3544 detail (Tomcat): Apache Tomcat 6.x before 6.0.37 and 7.x before 7.0.30 fails to properly handle chunk extensions in chunked transfer coding, allowing remote attackers to trigger a denial-of-service by streaming data. Affected: Tomcat 6.x up to 6.0.36, Tomcat 7.x up to 7.0.29. Impact...
automake security update
CentOS Errata and Security Advisory CESA-2013:0526 An updated automake package that fixes one security issue is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base...
Privacy of Millions of HTC devices at risk
More than 18 million smartphones and other mobile devices made by HTC are at risk vulnerable to many security and privacy issue. The Federal Trade Commission charged HTC with customizing the software on its Android- and Windows based phones in ways that let third-party applications install softwa...
RedHat Update for automake RHSA-2013:0526-02
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Low: Red Hat Security Advisory: automake security update
An updated automake package that fixes one security issue is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...