Gentoo Security Advisory GLSA 201110-03 (bugzilla)

The remote host is missing updates announced in advisory GLSA 201110-03. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Cross site scripting

Cross-site scripting XSS vulnerability in the addItem method in the Menu widget in YUI before 2.9.0 allows remote attackers to inject arbitrary web script or HTML via a field that is added to a menu, related to documentation that specifies this field as a text field rather than an HTML field, a...

CVE-2010-4570

CVE-2010-4570 is an XSS vulnerability in Bugzilla’s duplicate-detection feature (Bugzilla 3.7.1/3.7.2/3.7.3/4.0rc1) where the summary field can be exploited via the DataTable widget in YUI to inject arbitrary script/HTML. Connected documents confirm the CVE is referenced among Bugzilla-related ad...

Rocket Software UniData/UniVerse unirpc32.dll Uni RPC Service Packet Header Remote Overflow

According to its reported version, the Rocket Software UniVerse or UniData install on the remote Windows host is affected by a buffer overflow vulnerability. The application fails to properly validate a size value in a RPC packet header before using it to determine the number of bytes to receive...