AIX 5.3 TL 11 : bos.net.tcp.client (U838020)

The remote host is missing AIX PTF U838020, which is related to the security of the package bos.net.tcp.client. There is a buffer overflow vulnerability in the ftp server. By issuing an overly long NLST command, an attacker may cause a buffer overflow. The successful exploitation of this...

AIX 5.3 TL 12 : bos.net.tcp.client (U838600)

The remote host is missing AIX PTF U838600, which is related to the security of the package bos.net.tcp.client. There is a buffer overflow vulnerability in the ftp server. By issuing an overly long NLST command, an attacker may cause a buffer overflow. The successful exploitation of this...

CVE-2011-1068

Microsoft Windows Azure Software Development Kit SDK 1.3.x before 1.3.20121.1237, when Full IIS and a Web Role are used with an ASP.NET application, does not properly support the use of cookies for maintaining state, which allows remote attackers to obtain potentially sensitive information by...

Nokia under scanner of Indian Intelligence Agency for its Push Email service and SMS !

Department of Telecommunication DOT has been asked by The Intelligence Bureau IB0 to stop the messaging services of Nokia in India until they can be monitored. Once again security concerns have clouded Intelligence department's mind and the incident is not first of its kind. Earlier too similar...

PandaLabs Predicts Major Cybersecurity Trends for 2011

PandaLabs, the antimalware laboratory of Panda Security, has predicted several major cybersecurity threats for 2011. These include hacktivism, cyber warfare, profit-driven malware, social engineering, and adaptive malicious codes. Additionally, there will be increased threats to Mac users, new...

New Intel Chips Support SMS Kill Switch

HED: New Intel Chips Support SMS Kill Switch DEK: Anti Theft 3 Chips Can be disabled via 3G Networks New computer processors from Intel Corp, due out in 2011, can be disabled using an SMS “poison pill” message sent over any 3G cellular network, according to Intel documentation. The new anti-theft...

CVE-2009-5032

CVE-2009-5032 affects IBM Lotus Notes Traveler

PGP Desktop Signed Data Spoofing Vulnerability

This host is running PGP Desktop and is prone to signed data spoofing Vulnerability OpenVAS Vulnerability Test $Id: gbpgpdesktopdataspoofingvuln.nasl 4919 2017-01-02 15:22:45Z cfi $ PGP Desktop Signed Data Spoofing Vulnerability Authors: Antu Sanadi Copyright c 2010 Greenbone Networks GmbH,...

Fedora Update for pam_mount FEDORA-2010-12950

Check for the Version of pammount OpenVAS Vulnerability Test Fedora Update for pammount FEDORA-2010-12950 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Savannah GNU Site Compromised

A site belonging to the Savannah GNU free software archive was attacked recently, leading to a compromise of encrypted passwords and enabling the attackers to access restricted project material. The compromise was the result of a SQL injection attack against the savannah.gnu.org site within the...

CVE-2010-4303

Cisco Unified Videoconferencing UVC System 5110 and 5115, when the Linux operating system is used, uses world-readable permissions for the /etc/shadow file, which allows local users to discover encrypted passwords by reading this file, aka Bug ID CSCti54043...

Code injection

Cisco Unified Videoconferencing UVC System 5110 and 5115, when the Linux operating system is used, uses world-readable permissions for the /etc/shadow file, which allows local users to discover encrypted passwords by reading this file, aka Bug ID CSCti54043...

web-magik CMS SQL Injection Vulnerability

Exploit for php platform in category web applications ========================================= web-magik CMS SQL Injection Vulnerability ========================================= Vendor : http://web-magik.com/ prices : Not Yet:P Discovered by : cyberlog Site : Sekuritionline.net Channel :...

[SECURITY] Fedora 14 Update: pam_mount-2.5-1.fc14

This module is aimed at environments with central file servers that a user wishes to mount on login and unmount on logout, such as semi-diskless stations where many users can logon. The module also supports mounting local filesystems of any kind the normal mount utility supports, with extra code ...

CVE-2010-4007

Oracle Mojarra uses an encrypted View State without a Message Authentication Code MAC, which makes it easier for remote attackers to perform successful modifications of the View State via a padding oracle attack, a related issue to CVE-2010-2057...

Sql injection

Oracle Mojarra uses an encrypted View State without a Message Authentication Code MAC, which makes it easier for remote attackers to perform successful modifications of the View State via a padding oracle attack, a related issue to CVE-2010-2057...

CVE-2010-4007

Oracle Mojarra uses an encrypted View State without a Message Authentication Code MAC, which makes it easier for remote attackers to perform successful modifications of the View State via a padding oracle attack, a related issue to CVE-2010-2057...

CVE-2010-4007

Oracle Mojarra is affected by CVE-2010-4007 due to an encrypted View State without a Message Authentication Code (MAC), enabling a padding oracle attack to modify the View State remotely. This weakness is reiterated across multiple sources (NVD, Red Hat advisory, and other feeds) and is tied to M...

Buffer overflow

Microsoft .NET Framework 1.1 SP1, 2.0 SP1 and SP2, 3.5, 3.5 SP1, 3.5.1, and 4.0, as used for ASP.NET in Microsoft Internet Information Services IIS, provides detailed error codes during decryption attempts, which allows remote attackers to decrypt and modify encrypted View State aka VIEWSTATE for...

Fedora Update for fuse-encfs FEDORA-2010-14254

Check for the Version of fuse-encfs OpenVAS Vulnerability Test Fedora Update for fuse-encfs FEDORA-2010-14254 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...