1693 matches found
[SECURITY] [DSA 1924-1] New mahara packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1924-1 [email protected] http://www.debian.org/security/ Steffen Joeris October 31, 2009 http://www.debian.org/security/faq -...
DSA-1924-1 mahara - several vulnerabilities
Bulletin has no description...
Electronic Arts SnoopyCtrl ActiveX Control Buffer Overflow
This module exploits a stack buffer overflow in Electronic Arts SnoopyCtrl ActiveX Control NPSnpy.dll 1.1.0.36. When sending an overly long string to the CheckRequirements method, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download...
Novell NetMail IMAP Buffer Overflow (CVE-2005-3314)
The Internet Message Access Protocol IMAP allows the access and manipulation of electronic mail. Novell Netmail is a mail server product that relies on Novell eDirectory and Novell Nsure Audit products. It supports the IMAP protocol as well as other well known internet mail protocols. There exist...
CVE-2008-7206
Unspecified vulnerability in Electronic Logbook ELOG before 2.7.2 has unknown impact and attack vectors when the "logbook contains HTML code," probably cross-site scripting XSS...
Cross site scripting
Unspecified vulnerability in Electronic Logbook ELOG before 2.7.2 has unknown impact and attack vectors when the "logbook contains HTML code," probably cross-site scripting XSS...
CVE-2008-7206
ELOG (Electronic Logbook)
CVE-2008-7206
Unspecified vulnerability in Electronic Logbook ELOG before 2.7.2 has unknown impact and attack vectors when the "logbook contains HTML code," probably cross-site scripting XSS...
CVE-2008-7004
Buffer overflow in Electronic Logbook ELOG before 2.7.1 has unknown impact and attack vectors, possibly related to elog.c...
Buffer overflow
Buffer overflow in Electronic Logbook ELOG before 2.7.1 has unknown impact and attack vectors, possibly related to elog.c...
CVE-2008-7004
ELOG before 2.7.1 is affected by multiple vulnerabilities, including a remote buffer overflow (likely in elog.c) with CVSS-like indication of high impact. Affected product: Electronic Logbook (ELOG); vulnerable component/file: elog.c; version prior to 2.7.1. OpenVAS confirms multiple issues and l...
CVE-2008-7004
Buffer overflow in Electronic Logbook ELOG before 2.7.1 has unknown impact and attack vectors, possibly related to elog.c...
efm-rfi.txt
Application Name : Electronic File Management 1.5.01 Vulnerable Type : Remote File Inclusion Vulnerability Infection : Remote File Control, Editing... Bug Fix Advice : variable to define Author : Septemb0x Script Down.& WebSite : http://electronicfilemanagement.net/TrialDownload/EFM1.5.01.rar...
[SECURITY] [DSA 1822-1] New mahara packages fix cross-site scripting
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-1822-1 [email protected] http://www.debian.org/security/ Nico Golde June 23rd, 2009 http://www.debian.org/security/faq -...
DSA-1822-1 mahara - cross-site scripting
Bulletin has no description...
[SECURITY] Fedora 11 Update: opensc-0.11.8-1.fc11
OpenSC is a package for for accessing smart card devices. Basic functionality e.g. SELECT FILE, READ BINARY should work on any ISO 7816-4 compatible smart card. Encryption and decryption using private keys on the smart card is possible with PKCS 15 compatible cards, such as the FINEID Finnish...
Canadian Parliament considers anti-malware law
From Stop Badware Maxim Weinstein The Canadian House of Commons is considering bill C-27 gc.ca, the Electronic Commerce Protection Act. In addition to providing civil penalties for unsolicited commercial e-mail spam and the unauthorized interception of e-mail man in the middle attacks, it provide...
Clarity needed on cyberwar plans, study says
From The New York Times John Markoff and John Shanker A study conducted by the National Academy of Sciences found that the United States military needs to create an open, public dalogue to clarify its plans around using offensive weapons in cyberspace. The study also recommends that the military...
Siqma Electronic Shop SQL Injection
Securitylab.ir Application Info: Name: Siqma Electronic Shop SES Website: http://www.siqma.com Discoverd By: Securitylab.ir Website: http://securitylab.ir Contacts: adminatsecuritylab.ir & info@securitylabdotir Vulnerability Info: Type: Sql Injection Risk: High...
Hathaway, Obama administration swing and miss at RSA
Much of the talk at the RSA Conference last week centered on the lack of the unifying theme or big-time story that usually emerges to take over the show by mid-week. But there was, in fact, a major story, and it was the abject failure of the Obama administration, in the person of Melissa Hathaway...