4421 matches found
Collabtive 0.65 - Multiple Vulnerabilities
No description provided by source. ANATOLIA SECURITY ADVISORY ------------------------------------ ADVISORY INFO + Title: Collabtive Multiple Vulnerabilities + Advisory URL: http://www.anatoliasecurity.com/adv/as-adv-2010-003.txt + Advisory ID: 2010-003 + Version: 0.65 + Date: 12/10/2010 + Impact...
mailwatch <= 1.0.4 (docs.php doc) Local File Inclusion Vulnerability
No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP YmmMMMM MMM YM Discovered by dun \ dunatstrcpy.pl mailwatch = 1.0.4 Local File Inclusion Vulnerability Script site:...
Nokia Electronic Documentation 5.0 Connection Redirection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8625/info A vulnerability has been discovered in Nokia Electronic Documentation NED that may allow an attacker to redirect connections to a third party system. The problem likely occurs due to the NED server failing to...
Sony Network Camera SNC-P5 1.0 - ActiveX viewer Heap Overflow PoC
No description provided by source. !-- Sony Network Camera SNC-P5 v1.0 ActiveX viewer Heap Overflow PoC Camera info http://bssc.sel.sony.com/BroadcastandBusiness/DisplayModel?id=79540 SNC-P5 External API documentation...
Nokia Electronic Documentation 5.0 Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8626/info Nokia Electronic Documentation NED has been reported prone to a cross-site scripting vulnerability. The issue has been conjectured to present itself due to a lack of sufficient sanitization performed on user...
Nokia Electronic Documentation 5.0 Directory Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8624/info Nokia Electronic Documentation NED is prone to a vulnerability that may enable remote attackers to list directory contents. This issue may be exploited by appending a dot . to a request for a NED page...
Microsoft Windows Help program (WinHlp32.exe) Crash PoC
No description provided by source. !/usr/bin/perl Title : Microsoft Windows Help programWinHlp32.exememory corruption Version : 5.1.2600 Date : 2012-10-24 Vendor : http://www.microsoft.com Crash : http://img69.imageshack.us/img69/7652/helpview.jpg Impact : Med/High Contact : coolkaveh at...
CVE-2014-3868
creationtimestamp| type| source ---|---|--- 2014-06-24 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39223...
YASAT - Yet Another Stupid Audit Tool
YASAT Yet Another Stupid Audit Tool is a simple stupid audit tool. Its goal is to be as simple as possible with minimum binary dependencies only sed, grep and cut Second goal is to document each test with maximum information and links to official documentation. It do many tests for checking...
openSUSE Security Update : apache2-mod_security2 (openSUSE-SU-2013:1331-1)
complete overhaul of this package, with update to 2.7.5. - ruleset update to 2.2.8-0-g0f07cbb. - new configuration framework private to modsecurity2: /etc/apache2/conf.d/modsecurity2.conf loads /usr/share/apache2-modsecurity2/rules/modsecuritycrs1 0setup.conf, then...
openSUSE Security Update : icinga (openSUSE-SU-2014:0069-1)
imported upstream version 1.10.2 - includes fix for possible denial of service in CGI executables: CVE-2013-7108 bnc856837 - core: Add an Icinga syntax plugin for Vim 4150 - LE/MF - core: Document dropped options logexternalcommandsuser and eventprofilingenabled 4957 - BA - core: type in spec...
openSUSE Security Update : puppet (openSUSE-SU-2011:1288-1)
Puppet's certificate authority issued Puppet agent certificates capable of impersonating the Puppet master. Compromised or rogue puppet agents could therefore use their certificates for MITM attacks CVE-2011-3872. Note: If you've set the 'certdnsnames' option in your master's puppet.conf file...
openSUSE Security Update : colord (openSUSE-2011-57)
Update to version 0.1.15 : + This release fixes an important security bug: CVE-2011-4349. + New Features : - Add a native driver for the Hughski ColorHug hardware - Export cd-math as three projects are now using it + Bugfixes : - Documentation fixes and improvements - Do not crash the daemon if...
openSUSE Security Update : apache2-mod_security2 (openSUSE-SU-2013:1336-1)
complete overhaul of this package, with update to 2.7.5. - ruleset update to 2.2.8-0-g0f07cbb. - new configuration framework private to modsecurity2: /etc/apache2/conf.d/modsecurity2.conf loads /usr/share/apache2-modsecurity2/rules/modsecuritycrs1 0setup.conf, then...
openSUSE Security Update : puppet (openSUSE-SU-2011:1288-1)
Puppet's certificate authority issued Puppet agent certificates capable of impersonating the Puppet master. Compromised or rogue puppet agents could therefore use their certificates for MITM attacks CVE-2011-3872. Note: If you've set the 'certdnsnames' option in your master's puppet.conf file...
Moderate: Red Hat Security Advisory: openstack-neutron security, bug fix, and enhancement update
Updated openstack-neutron packages that fix two security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux OpenStack Platform 4.0. The Red Hat Security Response Team has rated this update as having Moderate security impact. Common Vulnerability...
optee_os
OP-TEE Trusted OS This git contains sou...
w3af - Open Source Web Application Security Scanner
w3af , is a Web Application Attack and Audit Framework. The w3af core and it’s plugins are fully written in python, it identifies more than 200 vulnerabilities and reduce your site’s overall risk exposure. Identify vulnerabilities like SQL Injection, Cross-Site Scripting, Guessable credentials,...
ESA-2014-027: RSA® NetWitness and RSA® Security Analytics Authentication Bypass Vulnerability
ESA-2014-027.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2014-027: RSA® NetWitness and RSA® Security Analytics Authentication Bypass Vulnerability EMC Identifier: ESA-2014-027 CVE Identifier: CVE-2014-0643 Severity Rating: CVSS v2 Base Score: 7.6 AV:N/AC:H/Au:N/C:C/I:C/A:C Affected...
CVE-2014-0782
creationtimestamp| type| source ---|---|--- 2014-05-12 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/33331 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/scada/yokogawabkesimmgrbof.rb 2025-02-06 03:13:41+00:00|...