9 matches found
EUVD-2019-4502
Malware in sbrugna...
Ubuntu: Security Advisory (USN-4615-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2020:14444-1 Security update for xen
This update for xen fixes the following issues: - bsc1174543 - secure boot related fixes - bsc1163019 - CVE-2020-8608: potential OOB access due to unsafe snprintf usages - bsc1169392 - CVE-2020-11742: Bad continuation handling in GNTTABOPcopy - bsc1168140 - CVE-2020-11740, CVE-2020-11741: multipl...
Tencent Ups Top Bug-Bounty Award to $15K
The Tencent Security Response Center TSRC is launching an expanded bug-bounty program, via the HackerOne white-hat platform – and the company has increased its top reward to $15,000. Tencent, a China-based global internet service provider, is opening up its existing bug-bounty program to...
phpCommunity2 Multiple Remote Input Validation Vulnerabilities
phpCommunity2 is prone to multiple input-validation vulnerabilities, including multiple directory-traversal issues and SQL-injection issues, and a cross-site scripting issue. Exploiting these issues could allow an attacker to view arbitrary local files within the context of the webserver, steal...
phpCommunity2 Multiple Vulnerabilities (Mar 2009) - Active Check
phpCommunity2 is prone to multiple input validation vulnerabilities, including multiple directory traversal issues and SQL-injection issues, and a cross-site scripting issue. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...
yamt -- buffer overflow and directory traversal issues
Stanislav Brabec discovered errors in yamt's path name handling that lead to buffer overflows and directory traversal issues. When processing a file with a maliciously crafted ID3 tag, yamt might overwrite arbitrary files or possibly execute arbitrary code. The SuSE package ChangeLog contains:...
Pegasi Web Server 0.2.2 - Arbitrary File Access
Pegasi Web Server 0.2.2 - Arbitrary File Access source: https://www.securityfocus.com/bid/9847/info Multiple vulnerabilities have been identified in the application that may allow a remote attacker to carry out directory traversal and cross-site scripting attacks. A successful cross-site scriptin...
Essentia multiple bugs
Buffer overflow, directory traversal...