EUVD-2015-7513

Malware in sbrugna...

EUVD-2009-2197

Malware in sbrugna...

CVE-2015-7609

Synacor Zimbra Mail Client 8.6 before 8.6.0 Patch 5 has XSS via the error/warning dialog and email body content in Zimbra...

Devolutions Remote Desktop Manager 安全漏洞

Devolutions Remote Desktop Manager is an application from Devolutions Canada. It provides remote desktop management functionality. A security vulnerability exists in Devolutions Remote Desktop Manager 2023.1.9 and earlier, which stems from an information disclosure vulnerability that could allow ...

libreoffice security, bug fix, and enhancement update

libcmis 0.5.2-1 - Related: rhbz1796893 update to 0.5.2 liborcus 0.14.1-1 - Related: rhbz1796893 update to 0.14.1 libreoffice 6.3.6.2-3.0.1 - Replace colors with Oracle colors Orabug: 32120093 - Build with --with-vendor='Oracle America, Inc.' - Added the --with-hamcrest option to configure...

Code injection

Synacor Zimbra Mail Client 8.6 before 8.6.0 Patch 5 has XSS via the error/warning dialog and email body content in Zimbra...

U.S. Dept Of Defense: XSS on www.██████ alerts and a number of other pages

Summary: If an action on ███████ results in an error, an error dialog is shown. This dialog, in certain scenarios, is vulnerable to stored XSS due to a lack of sanitization. Description: In this specific example, I'll be using a GET endpoint that attempts to delete alerts based on an ID supplied...

CVE-2006-6105

Format string vulnerability in the host chooser window gdmchooser in GNOME Foundation Display Manager gdm allows local users to execute arbitrary code via format string specifiers in a hostname, which are used in an error dialog...

CVE-2015-1979

CVE-2015-1979 details (IBM Case Manager) : Affected product is IBM Case Manager 5.2.1, vulnerable before 5.2.1.2. The issue resides in the Error dialog where remote authenticated users can inject arbitrary web script or HTML via crafted input to the (1) addressability or (2) comments component, i...

MySQL User Defined Function Detected

Binary data 8218.prm...

CVE-2009-2201

The screensharing feature in the Admin application in Apple Xsan before 2.2 places a cleartext username and password in a URL within an error dialog, which allows physically proximate attackers to obtain credentials by reading this dialog...

Design/Logic Flaw

The screensharing feature in the Admin application in Apple Xsan before 2.2 places a cleartext username and password in a URL within an error dialog, which allows physically proximate attackers to obtain credentials by reading this dialog...

CVE-2009-2201

The screensharing feature in the Admin application in Apple Xsan before 2.2 places a cleartext username and password in a URL within an error dialog, which allows physically proximate attackers to obtain credentials by reading this dialog...

CVE-2006-6105

Format string vulnerability in the host chooser window gdmchooser in GNOME Foundation Display Manager gdm allows local users to execute arbitrary code via format string specifiers in a hostname, which are used in an error dialog...

CVE-2006-6105

Format string vulnerability in the host chooser window gdmchooser in GNOME Foundation Display Manager gdm allows local users to execute arbitrary code via format string specifiers in a hostname, which are used in an error dialog...

woolchat.txt

Hi, I found a bug about WoolChat japanese popular irc client http://www.vector.co.jp/soft/win95/net/se091872.html which allow anyone to kill victim's WoolChat. It has a problem to handle DCC SEND query so if 260 or more bytes file name is specified, it exits immediately with error dialog. DoS...