152 matches found
[SECURITY] [DSA 3562-1] tardiff security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3562-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 01, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3562-1] tardiff security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3562-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 01, 2016 https://www.debian.org/security/faq -...
Debian Security Advisory DSA 3562-1 (tardiff - security update)
Several vulnerabilities were discovered in tardiff, a tarball comparison tool. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2015-0857 Rainer Mueller and Florian Weimer discovered that tardiff is prone to shell command injections via shell meta-characters...
Debian: Security Advisory (DSA-3562-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
ZyXEL NBG-418N, PMG5318-B20A and P-660HW-T1 routers contain multiple vulnerabilities
Overview Several models of ZyXEL routers are vulnerable to multiple issues, including weak default passwords, command injections due to improper input validation, and cross-site scripting. Description CWE-255: Credentials Management - CVE-2015-6016According to the reporter, the following models...
Cisco ASA multiple security vulnerabilities
Multiple DoS conditions, commads injections, information disclosure, certificate validation bypass...
Security Advisory-Bash Code Injection Vulnerability
This security advisory SA describes the impact of 6 Bash vulnerabilities discovered in third-party software Vulnerability ID: HWPSIRT-2014-0951. 1.OS Command Injections vulnerability CVE-2014-6271. GNU Bash through 4.3 processes trailing strings after function definitions in the values of...
Sitecom MD-25x Multiple Vulnerabilities Reverse Root Shell Exploit
No description provided by source. !/usr/bin/python Exploit Title: Sitecom MD-253 and MD-254 Network Storage Reverse Shell Exploit Date: 09/11/12 Exploit Author: Mattijs van Ommeren mattijs at alcyon dot nl Vendor Homepage: http://www.sitecom.com Software Link:...
Palo Alto Networks PAN-OS 3.1.10 / 4.x < 4.0.5 Multiple Command Injections
The remote host is running a version of Palo Alto Networks PAN-OS prior to 3.1.10 / 4.0.5. It is, therefore, affected by multiple command injection vulnerabilities : - A vulnerability exists that allows an authenticated user to inject arbitrary shell commands via the CLI. CVE-2012-6591 /...
Palo Alto Networks PAN-OS < 3.1.10 / 4.x < 4.0.4 Multiple Command Injections
The remote host is running a version of Palo Alto Networks PAN-OS prior to 3.1.10 / 4.0.4. It is, therefore, affected by multiple command injection vulnerabilities : - A vulnerability exists that allows an unauthenticated user to inject commands as root on the device. CVE-2012-6593 /...
Sophos Web Protection Appliance code execution
Few command injections...
IBM Report: Mobile Attacks, Phishing Attacks Mount in 2011
Spam volume is down, there are fewer unpatched software holes and oftware application developers did a better job of writing secure code over the last year. But IBM’s X-Force Trend and Risk Report still found plenty to worry about in 2011, according to a copy of the report released this week...