CVE-2009-5032

CVE-2009-5032 affects IBM Lotus Notes Traveler

PGP Desktop Signed Data Spoofing Vulnerability

This host is running PGP Desktop and is prone to signed data spoofing Vulnerability OpenVAS Vulnerability Test $Id: gbpgpdesktopdataspoofingvuln.nasl 4919 2017-01-02 15:22:45Z cfi $ PGP Desktop Signed Data Spoofing Vulnerability Authors: Antu Sanadi Copyright c 2010 Greenbone Networks GmbH,...

Fedora Update for pam_mount FEDORA-2010-12950

Check for the Version of pammount OpenVAS Vulnerability Test Fedora Update for pammount FEDORA-2010-12950 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Savannah GNU Site Compromised

A site belonging to the Savannah GNU free software archive was attacked recently, leading to a compromise of encrypted passwords and enabling the attackers to access restricted project material. The compromise was the result of a SQL injection attack against the savannah.gnu.org site within the...

CVE-2010-4303

Cisco Unified Videoconferencing UVC System 5110 and 5115, when the Linux operating system is used, uses world-readable permissions for the /etc/shadow file, which allows local users to discover encrypted passwords by reading this file, aka Bug ID CSCti54043...

Code injection

Cisco Unified Videoconferencing UVC System 5110 and 5115, when the Linux operating system is used, uses world-readable permissions for the /etc/shadow file, which allows local users to discover encrypted passwords by reading this file, aka Bug ID CSCti54043...

web-magik CMS SQL Injection Vulnerability

Exploit for php platform in category web applications ========================================= web-magik CMS SQL Injection Vulnerability ========================================= Vendor : http://web-magik.com/ prices : Not Yet:P Discovered by : cyberlog Site : Sekuritionline.net Channel :...

[SECURITY] Fedora 14 Update: pam_mount-2.5-1.fc14

This module is aimed at environments with central file servers that a user wishes to mount on login and unmount on logout, such as semi-diskless stations where many users can logon. The module also supports mounting local filesystems of any kind the normal mount utility supports, with extra code ...

CVE-2010-4007

Oracle Mojarra uses an encrypted View State without a Message Authentication Code MAC, which makes it easier for remote attackers to perform successful modifications of the View State via a padding oracle attack, a related issue to CVE-2010-2057...

Sql injection

Oracle Mojarra uses an encrypted View State without a Message Authentication Code MAC, which makes it easier for remote attackers to perform successful modifications of the View State via a padding oracle attack, a related issue to CVE-2010-2057...

CVE-2010-4007

Oracle Mojarra is affected by CVE-2010-4007 due to an encrypted View State without a Message Authentication Code (MAC), enabling a padding oracle attack to modify the View State remotely. This weakness is reiterated across multiple sources (NVD, Red Hat advisory, and other feeds) and is tied to M...

CVE-2010-4007

Oracle Mojarra uses an encrypted View State without a Message Authentication Code MAC, which makes it easier for remote attackers to perform successful modifications of the View State via a padding oracle attack, a related issue to CVE-2010-2057...

Buffer overflow

Microsoft .NET Framework 1.1 SP1, 2.0 SP1 and SP2, 3.5, 3.5 SP1, 3.5.1, and 4.0, as used for ASP.NET in Microsoft Internet Information Services IIS, provides detailed error codes during decryption attempts, which allows remote attackers to decrypt and modify encrypted View State aka VIEWSTATE for...

Fedora Update for fuse-encfs FEDORA-2010-14254

Check for the Version of fuse-encfs OpenVAS Vulnerability Test Fedora Update for fuse-encfs FEDORA-2010-14254 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

Krojac CMS SQL Injection

Exploit Title: Krojach CMS SQL Injection Vulnerabilities Date found: 6.2010 Author: MikiSoft Email: [email protected] CMS Software Site/Link: http://www.krojac.com Versions affected: All Edit: In latest version this is fixed now... Google dorks: intext:"Skrojio i sašio Krojač" ; intext:"Made...

RarCrack 0.2 - 'Filename init() .bss' (PoC)

The software can be downloaded here: http://rarcrack.sourceforge.net/ Author: stoke Date: 2010-09-20 Download: http://rarcrack.sourceforge.net/ Tested on: Backtrack 4 Site: http://devilcode.it | http://hack2web.altervista.org Special greetz to: nex, for reassure me when i sayed "WHY EIP IT'S NOT...

CVE-2010-3074

SSLCipher.cpp in EncFS before 1.7.0 uses an improper combination of an AES cipher and a CBC cipher mode for encrypted filesystems, which allows local users to obtain sensitive information via a watermark attack...

DEBIAN-CVE-2010-3074

SSLCipher.cpp in EncFS before 1.7.0 uses an improper combination of an AES cipher and a CBC cipher mode for encrypted filesystems, which allows local users to obtain sensitive information via a watermark attack...

Input validation

SSLCipher.cpp in EncFS before 1.7.0 uses an improper combination of an AES cipher and a CBC cipher mode for encrypted filesystems, which allows local users to obtain sensitive information via a watermark attack...

UBUNTU-CVE-2010-3074

SSLCipher.cpp in EncFS before 1.7.0 uses an improper combination of an AES cipher and a CBC cipher mode for encrypted filesystems, which allows local users to obtain sensitive information via a watermark attack...