GeoClassifieds Lite Multiple Vulnerabilities (Sep 2011) - Active Check

GeoClassifieds Lite is prone to multiple SQL injection SQLi and cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

[security bulletin] HPSBUX02556 SSRT100014 rev.1 - HP-UX Running rpc.ttdbserver, Remote Execution of Arbitrary Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02288473 Version: 1 HPSBUX02556 SSRT100014 rev.1 - HP-UX Running rpc.ttdbserver, Remote Execution of Arbitrary Code NOTICE: The information in this Security Bulletin should be acted upon as soon ...

TELUS Security Labs VR - iSCSI target Multiple Implementations iSNS Stack Buffer Overflow

iSCSI target Multiple Implementations iSNS Stack Buffer Overflow TSL ID: FSC20100701-01 1. Affected Software iSCSI Enterprise Project iscsitarget 1.4.20.1 and prior SCST project iscsi-scst 1.0.1.1 and prior tgt project tgt 1.0.5 and prior References: http://iscsitarget.sourceforge.net/...

Configuring JavaScript Settings

Once you click the Advanced button, a second window opens to allow you to disable specific JavaScript features. We recommend disabling all of the options displayed in this dialog...

Mereo <= 1.9.1 Directory Traversal Vulnerability - Active Check

Mereo is prone to a directory traversal vulnerability because it fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Apple Safari window object invalid pointer vulnerability

Overview Apple Safari contains a vulnerability in the handling of window objects, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Apple Safari fails to properly handle references to window objects. Safari can allow a window object t...

Sahana 0.6.2.2 Authentication Bypass

Ability to completely disable authentication via stream.php and commented out module authentication code within it. http://victim//index.php?mod=admin&act=aclenableacl Authenticates correctly. http://victim//stream.php?mod=admin&act=aclenableacl Does not...

Lotus Domino Web Access ActiveX control InstallBrowserHelperDll buffer overflow

Added: 03/05/2010 BID: 38457 OSVDB: 62612 Background Lotus Domino Web Access provides capabilities similar to those of the Lotus Notes client, delivered through a web browser. It includes an ActiveX control implemented in inotes6w.dll, dwa7w.dll, dwa8w.dll, and dwa85w.dll. Problem A buffer overfl...

Avant Browser Address Bar Spoofing Vulnerability

This host is installed with Avant Browser and is prone to Address Bar Spoofing vulnerability. OpenVAS Vulnerability Test $Id: gbavantbrowseraddrbarspoofingvuln.nasl 4865 2016-12-28 16:16:43Z teissa $ Avant Browser Address Bar Spoofing Vulnerability Authors: Sharath S Copyright: Copyright c 2009...

Multiple Vulnerabilities in PHP iCalendar

This host is running PHP iCalendar and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodphpicalendarmultvuln.nasl 5122 2017-01-27 12:16:00Z teissa $ Multiple Vulnerabilities in PHP iCalendar Authors: Sharath S Copyright: Copyright c 2009 SecPod, http://www.secpod.com Th...

Disable Firewall

Added: 11/25/2008 Background This tool attempts to disable the firewall on the target. Limitations A connection to the target is required to run this tool. The connection requires root privileges on Unix and Linux targets. Platforms Windows / Linux / Unix...

SOL8938 - BIND DNS cache poisoning vulnerability - CVE-2008-1447 - VU#800113

This security advisory describes a BIND 8 and BIND 9 vulnerability which allows remote attackers to spoof DNS traffic using cache poisoning techniques against recursive resolvers. With the exception of FirePass, the F5 products listed as affected in this security advisory run a version of BIND th...

BackWeb Lite Install Runner ActiveX stack buffer overflows

Overview The BackWeb Lite Install Runner ActiveX control contains multiple stack buffer overflows, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description BackWeb Lite Install Runner is an ActiveX control that is used to install software on...

IBM Lotus Domino Web Access ActiveX control stack buffer overflows

Overview The IBM Lotus Domino Web Access ActiveX control contains multiple stack buffer overflow vulnerabilities, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description IBM Lotus Domino includes an ActiveX control called Domino Web Access,...

GLSA-200711-24 : Mozilla Thunderbird: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200711-24 Mozilla Thunderbird: Multiple vulnerabilities Multiple vulnerabilities have been reported in Mozilla Thunderbird's HTML browser engine CVE-2007-5339 and JavaScript engine CVE-2007-5340 that can be exploited to cause a...

GLSA-200703-01 : Snort: Remote execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200703-01 Snort: Remote execution of arbitrary code The Snort DCE/RPC preprocessor does not properly reassemble certain types of fragmented SMB and DCE/RPC packets. Impact : A remote attacker could send specially crafted fragmente...

Mozilla Firefox: Multiple vulnerabilities

Background Mozilla Firefox is a popular open-source web browser from the Mozilla Project. Description Tom Ferris reported a heap-based buffer overflow involving wide SVG stroke widths that affects Mozilla Firefox 2 only. Various researchers reported some errors in the JavaScript engine potentiall...

HPSBUX02191 SSRT071302 rev.1 - HP-UX Running SLSd, Remote Unauthorized Arbitrary File Creation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c00862809 Version: 1 HPSBUX02191 SSRT071302 rev.1 - HP-UX Running SLSd, Remote Unauthorized Arbitrary File Creation NOTICE: The information in this Security Bulletin should be acted upon as soon a...

Several home malicious code-vulnerability warning-the black bar safety net

Here to say a few page malicious code:"not is to let everybody put these code into your homepage! Just want everyone to be able to understand the malicious code, play a better protective effect!" A, The Loop code: "Put the following code added to the page, you can achieve the above effects" img...

Tips copied page of the copy-prohibited word-vulnerability and early warning-the black bar safety net

We when the Internet to see like the text and pictures you want to copy is saved to the local hard drive slowly appreciate, but some sites in order to protect their content on the use of some technical means so that we can not copy. In some web pages, use the mouse drag method, can not select the...