Microsoft SharePoint Server Remote Code Execution Vulnerability (2904244)

This host is missing an important security update according to Microsoft Bulletin MS13-100. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...

Debian Security Advisory DSA 2839-1 (spice - denial of service)

Multiple vulnerabilities have been found in spice, a SPICE protocol client and server library. The Common Vulnerabilities and Exposures project identifies the following issues: CVE-2013-4130 David Gibson of Red Hat discovered that SPICE incorrectly handled certain network errors. A remote user ab...

Debian: Security Advisory (DSA-2839-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

TYPO3 Multiple Vulnerabilities (Nov 2012)

TYPO3 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:typo3:typo3"; ifdescription...

TYPO3 Multiple Vulnerabilities (Jan 2009)

TYPO3 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:typo3:typo3"; ifdescription...

CVE-2013-4550

Bip before 0.8.9, when running as a daemon, writes SSL handshake errors to an unexpected file descriptor that was previously associated with stderr before stderr has been closed, which allows remote attackers to write to other sockets and have an unspecified impact via a failed SSL handshake, a...

Scientific Linux Security Update : tzdata enhancement update on SL5.x, SL6.x i386/x86_64 (20131223)

This update adds the following enhancement : The Jordanian government has reversed its decision to observe daylight saving time DST all year and in the year 2014, Jordan is going to resume to the transition schedule from the years 2006 - 2011. This year, Jordan will switch back to Arabia Standard...

Adobe Flash Player Multiple Vulnerabilities-01 (Dec 2013) - Windows

Adobe Flash Player is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:flashplayer";...

New IETF Group to Tackle TLS Implementation in Applications

The NSA surveillance scandal has created ripples all across the Internet, and the latest one is a new effort from the IETF to change the way that encryption is used in a variety of critical application protocols, including HTTP and SMTP. The new TLS application working group was formed to help...

StartBBS V1.1.3多处数据库报错显路径

简要描述： StartBBS V1.1.3多处数据库报错显路径 详细说明： 第一处：http://127.0.0.1/startbbs/index.php/user/login POST数据username=1 第二处：http://127.0.0.1/startbbs/index.php/home/getmore/w.jsp 随意构造一个.jsp爆出数据库查询语句 漏洞证明：...

CVE-2011-4971

Multiple integer signedness errors in the 1 processbinsaslauth, 2 processbincompletesaslauth, 3 processbinupdate, and 4 processbinappendprepend functions in Memcached 1.4.5 and earlier allow remote attackers to cause a denial of service crash via a large body length value in a packet...

DEBIAN-CVE-2011-4971

Multiple integer signedness errors in the 1 processbinsaslauth, 2 processbincompletesaslauth, 3 processbinupdate, and 4 processbinappendprepend functions in Memcached 1.4.5 and earlier allow remote attackers to cause a denial of service crash via a large body length value in a packet...

CVE-2011-4971

Multiple integer signedness errors in the 1 processbinsaslauth, 2 processbincompletesaslauth, 3 processbinupdate, and 4 processbinappendprepend functions in Memcached 1.4.5 and earlier allow remote attackers to cause a denial of service crash via a large body length value in a packet...

CVE-2013-1447

OpenJPEG 1.3 and earlier allows remote attackers to cause a denial of service memory consumption or crash via unspecified vectors related to NULL pointer dereferences, division-by-zero, and other errors...

CVE-2011-4971

Multiple integer signedness errors in the 1 processbinsaslauth, 2 processbincompletesaslauth, 3 processbinupdate, and 4 processbinappendprepend functions in Memcached 1.4.5 and earlier allow remote attackers to cause a denial of service crash via a large body length value in a packet...

CVE-2011-4971

Multiple integer signedness errors in the 1 processbinsaslauth, 2 processbincompletesaslauth, 3 processbinupdate, and 4 processbinappendprepend functions in Memcached 1.4.5 and earlier allow remote attackers to cause a denial of service crash via a large body length value in a packet...

CVE-2011-4971

CVE-2011-4971 affects memcached 1.4.5 and earlier, caused by multiple integer signedness errors in SASL/auth and packet processing (process_bin_sasl_auth, process_bin_complete_sasl_auth, process_bin_update, process_bin_append_prepend) that allow remote Denial of Service (crash) via a large body l...

Threat Outbreak Alert: Fake Product Quotation Request Email Messages on December 10, 2013

Medium Alert ID: 32109 First Published: 2013 December 11 15:34 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product quotation request for the recipient. The text in the email message attempts to convince the recipie...

CVE-2013-7010

Multiple integer signedness errors in libavcodec/dsputil.c in FFmpeg before 2.1 allow remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via crafted data...

CVE-2013-7010

Multiple integer signedness errors in libavcodec/dsputil.c in FFmpeg before 2.1 allow remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via crafted data...