[SECURITY] Fedora 7 Update: tetex-3.0-40.1.fc7

TeTeX is an implementation of TeX for Linux or UNIX systems. TeX takes a text file and a set of formatting commands as input and creates a typesetter-independent .dvi DeVice Independent file as output. Usually, TeX is used in conjunction with a higher level formatting package like LaTeX or...

HTML files generated with Javadoc are vulnerable to a XSS

The Javadoc tool in Sun JDK 6 and JDK 5.0 Update 11 can generate HTML documentation pages that contain cross-site scripting XSS vulnerabilities, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

HTML files generated with Javadoc are vulnerable to a XSS

The Javadoc tool in Sun JDK 6 and JDK 5.0 Update 11 can generate HTML documentation pages that contain cross-site scripting XSS vulnerabilities, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

qt security update

CentOS Errata and Security Advisory CESA-2007:0721 Updated qt packages that correct an integer overflow flaw are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Qt is a software toolkit that simplifies the task of writing and...

[SECURITY] Fedora 7 Update: yelp-2.18.1-5.fc7

Yelp is the Gnome 2 help/documentation browser. It is designed to help you browse all the documentation on your system in one central tool...

[SECURITY] Fedora 7 Update: wireshark-0.99.6-1.fc7

Wireshark is a network traffic analyzer for Unix-ish operating systems. This package lays base for libpcap, a packet capture and filtering library, contains command-line utilities, contains plugins and documentation for wireshark. A graphical user interface is packaged separately to GTK+ package...

[SECURITY] Fedora Core 6 Update: wireshark-0.99.6-1.fc6

Wireshark is a network traffic analyzer for Unix-ish operating systems. This package lays base for libpcap, a packet capture and filtering library, contains command-line utilities, contains plugins and documentation for wireshark. A graphical user interface is packaged separately to GTK+ package...

CVE-2007-3503

The Javadoc tool in Sun JDK 6 and JDK 5.0 Update 11 can generate HTML documentation pages that contain cross-site scripting XSS vulnerabilities, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2007-3503

The CVE-2007-3503 issue affects Sun JDK 6 and JDK 5.0 Update 11 where the Javadoc tool can generate HTML documentation pages containing cross-site scripting (XSS). A remote attacker could inject arbitrary web script or HTML via unspecified vectors. Supported documents note this as part of broader...

Sony Network Camera SNC-P5 v1.0 ActiveX viewer Heap Overflow PoC

No description provided by source. !-- Sony Network Camera SNC-P5 v1.0 ActiveX viewer Heap Overflow PoC Camera info http://bssc.sel.sony.com/BroadcastandBusiness/DisplayModel?id=79540 SNC-P5 External API documentation...

sony-heap.txt

Sub tryMe buff = String15000, "A" viewer.PrmSetNetworkParam buff, 1 End Sub...

Sony Network Camera SNC-P5 1.0 - ActiveX viewer Heap Overflow (PoC)

Sub tryMe buff = String15000, "A" viewer.PrmSetNetworkParam buff, 1 End Sub milw0rm.com 2007-06-27...

Sony Network Camera SNC-P5 1.0 - ActiveX viewer Heap Overflow (PoC)

Sony Network Camera SNC-P5 1.0 - ActiveX viewer Heap Overflow PoC Sub tryMe buff = String15000, "A" viewer.PrmSetNetworkParam buff, 1 End Sub milw0rm.com 2007-06-27...

[SECURITY] Fedora 7 Update: yelp-2.18.1-4.fc7

Yelp is the Gnome 2 help/documentation browser. It is designed to help you browse all the documentation on your system in one central tool...

[SECURITY] Fedora Core 5 Update: yelp-2.14.3-5.fc5

Yelp is the Gnome 2 help/documentation browser. It is designed to help you browse all the documentation on your system in one central tool...

[SECURITY] Fedora Core 6 Update: yelp-2.16.0-13.fc6

Yelp is the Gnome 2 help/documentation browser. It is designed to help you browse all the documentation on your system in one central tool...

Apache Tomcat 6.0.10 - Documentation Sample Application Multiple Cross-Site Scripting Vulnerabilities

Apache Tomcat 6.0.10 - Documentation Sample Application Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/24058/info Apache Tomcat's documentation web application includes a sample application that is prone to multiple cross-site scripting vulnerabilities...

[CVE-2007-1355] Tomcat documentation XSS vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2007-1355: Tomcat documentation XSS vulnerabilities Severity: Moderate Cross-site scripting Vendor: The Apache Software Foundation Versions Affected: Tomcat 4.0.0 to 4.0.6 Tomcat 4.1.0 to 4.1.36 Tomcat 5.0.0 to 5.0.30 Tomcat 5.5.0 to 5.5.23 Tomcat...

PostgreSQL: Privilege escalation

Background PostgreSQL is an open source object-relational database management system. Description An error involving insecure searchpath settings in the SECURITY DEFINER functions has been reported in PostgreSQL. Impact If allowed to call a SECURITY DEFINER function, an attacker could gain the SQ...

ShoutPro <= 1.5.2 (shout.php) Remote Code Injection Exploit

Exploit for unknown platform in category web applications =========================================================== ShoutPro ?php echo "...