Threat Outbreak Alert: Email Messages with Malicious Images on March 12, 2014

Medium Alert ID: 33305 First Published: 2014 March 12 17:14 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an image for the recipient. The text in the email message attempts to convince the recipient to open the...

Debian DSA-2873-1 : file - several vulnerabilities

Several vulnerabilities have been found in file, a file type classification tool. Aaron Reffett reported a flaw in the way the file utility determined the type of Portable Executable PE format files, the executable format used on Windows. When processing a defective or intentionally prepared PE...

[ImageCacheViewer] View images in the cache of your Web browser

ImageCacheViewer is a simple tool that scans the cache of your Web browser Internet Explorer, Firefox, or Chrome, and lists the images displayed in the Web sites that you recently visited. For every cached image file, the following information is displayed: URL of the image, Web browser that was...

Debian: Security Advisory (DSA-2873-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MGASA-2014-0123 Updated file packages fix CVE-2014-2270

Updated file packages fix security vulnerability: A flaw was found in the way the file utility determined the type of Portable Executable PE format files, the executable format used on Windows. A malicious PE file could cause the file utility to crash or, potentially, execute arbitrary code...

Updated file packages fix CVE-2014-2270

Updated file packages fix security vulnerability: A flaw was found in the way the file utility determined the type of Portable Executable PE format files, the executable format used on Windows. A malicious PE file could cause the file utility to crash or, potentially, execute arbitrary code...

PHP 5.4.x < 5.4.26 Multiple Vulnerabilities

According to its banner, the version of PHP 5.4.x installed on the remote host is a version prior to 5.4.26. It is, therefore, potentially affected by the following vulnerabilities : - An error exists related to the Fileinfo extension and the bundled libmagic library that could allow denial of...

Threat Outbreak Alert: Fake Product Invoice Email Messages on March 4, 2014.

Medium Alert ID: 33173 First Published: 2014 March 5 14:05 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product invoice for the recipient. The text in the email message attempts to convince the recipient to open the...

Threat Outbreak Alert: Fake Product Quote Request Email Messages on March 2, 2014

Medium Alert ID: 33153 First Published: 2014 March 4 15:22 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product quotation request for the recipient. The text in the email message attempts to convince the recipient t...

HP LoadRunner Virtual User Generator EmulationAdmin Directory Traversal (CVE-2013-4837)

Multiple directory traversal vulnerabilities exist in HP LoadRunner. These vulnerabilities are due to a lack of input validation on SOAP requests, specifically, the copyFileToServer and the getFileContentAsLines operations of the EmulationAdmin web service. Unauthenticated remote attackers could...

Threat Outbreak Alert: Fake Bill Payment Notification Email Messages on April 22, 2014

Medium Alert ID: 33025 First Published: 2014 February 25 20:37 GMT Last Updated: 2014 April 24 13:31 GMT Version: 2 Summary Cisco Security has detected significant activity related to German-language spam email messages that claim to contain bill payment notification for the recipient. The text i...

Threat Outbreak Alert: Fake Payment Transaction Notice Email Messages on February 21, 2014

Medium Alert ID: 32966 First Published: 2014 February 21 17:19 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a payment transaction notice for the recipient. The text in the email message attempts to convince the...

Threat Outbreak Alert: Fake Relationship Request Email Messages on February 20, 2014

Medium Alert ID: 32946 First Published: 2014 February 20 20:55 GMT Version: 1 Summary Cisco Security has detected significant activity related to Norwegian-language spam email messages that claim to contain a relationship request for the recipient. The text in the email message attempts to convin...

CVE-2014-1253

AppleMNT.sys in Apple Boot Camp 5 before 5.1 allows local users to cause a denial of service kernel memory corruption or possibly have unspecified other impact via a malformed header in a Portable Executable PE file...

Memory corruption

AppleMNT.sys in Apple Boot Camp 5 before 5.1 allows local users to cause a denial of service kernel memory corruption or possibly have unspecified other impact via a malformed header in a Portable Executable PE file...

CVE-2014-1253

AppleMNT.sys in Apple Boot Camp 5 before 5.1 allows local users to cause a denial of service kernel memory corruption or possibly have unspecified other impact via a malformed header in a Portable Executable PE file...

Threat Outbreak Alert: Fake Invoice Email Messages on February 13, 2014

Medium Alert ID: 32862 First Published: 2014 February 13 20:36 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an invoice for the recipient. The text in the email message attempts to convince the recipient to open the...

Pidgin < 2.10.8 Multiple Vulnerabilities

The version of Pidgin installed on the remote host is a version prior to 2.10.8. It is, therefore, potentially affected by the following vulnerabilities : - The bundled version of Pango has an error that can lead to an application crash when rendering fonts and attempting to display certain Unico...

Unrestricted file upload

Unrestricted file upload vulnerability in the user profile page feature in the Timeline Plugin 4.2.5p9 for SocialEngine allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in...

CVE-2013-4898

Unrestricted file upload vulnerability in the user profile page feature in the Timeline Plugin 4.2.5p9 for SocialEngine allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in...