Encrypt Database Password in dbconfig.xml or use integrated authentication

panel:title=Atlassian Update – 5 January 2016|borderStyle=solid|borderColor=ebf2f9 | titleBGColor=ebf2f9 | bgColor=ffffff Hi everyone, Thanks for voting and commenting on this issue. While we understand the importance of this issue for our customers with strict password encryption requirements, w...

Design/Logic Flaw

The datasource definition editor in IBM InfoSphere Guardium 8.2 and earlier, when the save-password setting is enabled, transmits cleartext database credentials, which allows remote attackers to obtain sensitive information by sniffing the network...

Microsoft Office Web Components DataSource Code Execution (MS08-017; CVE-2007-1201)

A remote code execution vulnerability has been reported in Microsoft Office Web Components. The vulnerability is due to insufficient verification of the control's DataSource path. A remote attacker may exploit this vulnerability by enticing an unsuspecting user to open a specially crafted web-pag...

tomcat6 Information disclosure in authentication classes

Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, and 6.0.0 through 6.0.18, when FORM authentication is used, allows remote attackers to enumerate valid usernames via requests to /jsecuritycheck with malformed URL encoding of passwords, related to improper error checking in the 1...

tomcat6 Information disclosure in authentication classes

Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, and 6.0.0 through 6.0.18, when FORM authentication is used, allows remote attackers to enumerate valid usernames via requests to /jsecuritycheck with malformed URL encoding of passwords, related to improper error checking in the 1...

Fedora Update for php-pear-Structures-DataGrid-DataSource-MDB2 FEDORA-2007-0847

Check for the Version of php-pear-Structures-DataGrid-DataSource-MDB2 OpenVAS Vulnerability Test Fedora Update for php-pear-Structures-DataGrid-DataSource-MDB2 FEDORA-2007-0847 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This progr...

Fedora Update for php-pear-Structures-DataGrid-DataSource-MDB2 FEDORA-2007-0847

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Memory corruption

Unspecified vulnerability in certain COM objects in Microsoft Office Web Components 2000 allows user-assisted remote attackers to execute arbitrary code via vectors related to DataSource that trigger memory corruption, aka "Office Web Components DataSource Vulnerability."...

CVE-2007-1201

Unspecified vulnerability in certain COM objects in Microsoft Office Web Components 2000 allows user-assisted remote attackers to execute arbitrary code via vectors related to DataSource that trigger memory corruption, aka "Office Web Components DataSource Vulnerability."...

CVE-2007-1201

Unspecified vulnerability in certain COM objects in Microsoft Office Web Components 2000 allows user-assisted remote attackers to execute arbitrary code via vectors related to DataSource that trigger memory corruption, aka "Office Web Components DataSource Vulnerability."...

Fedora 7 : php-pear-Structures-DataGrid-DataSource-MDB2-0.1.10-1.fc7 (2007-0847)

Security fix: users could manipulate the generated sorting queries Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

Design/Logic Flaw

Unspecified vulnerability in the fetch function in MDB2.php in PEAR Structures-DataGrid-DataSource-MDB2 0.1.9 and earlier allows attackers to "manipulate the generated sorting queries."...

CVE-2007-3628

Unspecified vulnerability in the fetch function in MDB2.php in PEAR Structures-DataGrid-DataSource-MDB2 0.1.9 and earlier allows attackers to "manipulate the generated sorting queries."...

CVE-2007-3628

Unspecified vulnerability in the fetch function in MDB2.php in PEAR Structures-DataGrid-DataSource-MDB2 0.1.9 and earlier allows attackers to "manipulate the generated sorting queries."...

CVE-2007-3628

CVE-2007-3628 affects PEAR Structures-DataGrid-DataSource-MDB2 up to version 0.1.9, specifically the fetch function in MDB2.php. The vulnerability allows attackers to manipulate generated sorting queries. The connected documents confirm the affected component and the general impact, but do not pr...

[SECURITY] Fedora 7 Update: php-pear-Structures-DataGrid-DataSource-MDB2-0.1.10-1.fc7

This is a DataSource driver for StructuresDataGrid using PEAR::MDB2 and an SQL query...

CVE-2002-0976

Internet Explorer 4.0 and later allows remote attackers to read arbitrary files via a web page that accesses a legacy XML Datasource applet com.ms.xml.dso.XMLDSO.class and modifies the base URL to point to the local system, which is trusted by the applet...

CVE-2002-0976

Internet Explorer 4.0 and later is affected. The issue lets remote attackers read arbitrary files via a web page that uses the legacy XML Datasource applet (com.ms.xml.dso.XMLDSO.class) and manipulates the base URL to point to the local system, which is trusted by the applet. Impact is partial co...

CVE-2002-0976

Internet Explorer 4.0 and later allows remote attackers to read arbitrary files via a web page that accesses a legacy XML Datasource applet com.ms.xml.dso.XMLDSO.class and modifies the base URL to point to the local system, which is trusted by the applet...

Microsoft Internet Explorer 456 - XML Datasource Applet File Disclosure

Microsoft Internet Explorer 456 - XML Datasource Applet File Disclosure source: https://www.securityfocus.com/bid/5490/info A problem in Microsoft Internet Explorer could lead to the disclosure of sensitive information. Due to the design of the datasource applet, it may be possible for a user to...