[SECURITY] Fedora 18 Update: php-symfony2-HttpKernel-2.2.10-1.fc18

HttpKernel provides the building blocks to create flexible and fast HTTP-based frameworks. It takes a Request as an input and should return a Response as an output. Using this interface makes your code compatible with all frameworks using the Symfony2 components. And this will give you many cool...

VULNERABLE (3rd party) components in Adobe Reader 11.0.03, and dangling reference to Acrobat.exe

Hi @ll, the current Adobe Reader 11.0.03 installs the following VULNERABLE 3rd party components: 1. Adobe Flash Player Plugin 11.5.502.110 | X:filever.exe /S "ProgramFilesAdobenpswf.dll" | x:program filesadobereader 11.0readernpswf.dll | --a-- W32i DLL ENU 11.5.502.110 shp 14,588,632 05-11-2013...

Ubuntu Update for libxp USN-1861-1

Check for the Version of libxp OpenVAS Vulnerability Test $Id: gbubuntuUSN18611.nasl 8466 2018-01-19 06:58:30Z teissa $ Ubuntu Update for libxp USN-1861-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; y...

Ubuntu: Security Advisory (USN-1865-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-1868-1: libxvmc vulnerabilities

Ilja van Sprundel discovered multiple security issues in various X.org libraries and components. An attacker could use these issues to cause applications to crash, resulting in a denial of service, or possibly execute arbitrary code...

USN-1866-1: libxtst vulnerability

Ilja van Sprundel discovered multiple security issues in various X.org libraries and components. An attacker could use these issues to cause applications to crash, resulting in a denial of service, or possibly execute arbitrary code...

USN-1852-1: libdmx vulnerability

Ilja van Sprundel discovered multiple security issues in various X.org libraries and components. An attacker could use these issues to cause applications to crash, resulting in a denial of service, or possibly execute arbitrary code...

Oracle Java SE Multiple Vulnerabilities (April 2013 CPU)

The version of Oracle formerly Sun Java SE or Java for Business installed on the remote host is earlier than or equal to 7 Update 17, 6 Update 43 or 5 Update 41. It is, therefore, potentially affected by security issues in the following components : - 2D - AWT - Beans - Deployment - HotSpot -...

[SECURITY] Fedora 18 Update: cumin-0.1.5522-4.fc18

Cumin is the MRG management web console. It provides a unified management interface for the Messaging, Realtime and Grid components of MRG...

[SECURITY] Fedora 18 Update: php-symfony2-HttpKernel-2.1.6-1.fc18

HttpKernel provides the building blocks to create flexible and fast HTTP-based frameworks. It takes a Request as an input and should return a Response as an output. Using this interface makes your code compatible with all frameworks using the Symfony2 components. And this will give you many cool...

Joomla Component com_garyscookbook file upload Vulnerability

Exploit for php platform in category web applications Exploit Title: joomla comgaryscookbook file upload Author: Over-X email: email protected Vendor or Software Link: www.joomla.it Version: 242 Google dork: "inurl:comgaryscookbook" Tested on: win Xp...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Joomla! before 1.5.12 allow remote attackers to inject arbitrary web script or HTML via the HTTPREFERER header to 1 components/comcontent/views/article/tmpl/form.php, 2 components/comuser/controller.php, 3 plugins/system/legacy/html.php, or 4...

CVE-2011-4909

Multiple cross-site scripting XSS vulnerabilities in Joomla! before 1.5.12 allow remote attackers to inject arbitrary web script or HTML via the HTTPREFERER header to 1 components/comcontent/views/article/tmpl/form.php, 2 components/comuser/controller.php, 3 plugins/system/legacy/html.php, or 4...

Apple iOS multiple security vulnerabilities

Large number of vulnerabilities in different components...

CVE-2012-2494

CVE-2012-2494 affects Cisco AnyConnect Secure Mobility Client: the VPN WebLaunch downloader does not compare the timestamp of the offered vpndownloader.exe with the installed version, enabling a downgrade to older releases. Affected product/version ranges include Cisco AnyConnect Secure Mobility ...

Fedora Update for unbound FEDORA-2011-17282

Check for the Version of unbound OpenVAS Vulnerability Test Fedora Update for unbound FEDORA-2011-17282 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

ABB Multiple Components Buffer Overflow

Overview Independent researchers Terry McCorkle and Billy Rios identified a buffer overflow vulnerability in multiple components of the ABB WebWare Server application. These components have been found to contain vulnerabilities in the COM and scripting interfaces. Follow-up investigation by ABB...

Oracle Database Server Multiple Unspecified Vulnerabilities

Oracle database is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Oracle Database Server Multiple Unspecified Vulnerabilities

Oracle database is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Security Release: Symfony 2.0.6

Symfony 2.0.6 has just been released. It addresses a security vulnerability in the EntityUserProvider as provided in the Doctrine bridge. If you let your users update their login/username from a form, and if you are using Doctrine as a user provider, then you are vulnerable and you should upgrade...