9461 matches found
Team SHATTER Security Advisory: Oracle Database SQL Injection in SYS.DBMS_CDC_PUBLISH.ALTER_AUTOLOG_CHANGE_SOURCE
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory Oracle Database SQL Injection in SYS.DBMSCDCPUBLISH.ALTERAUTOLOGCHANGESOURCE November 12, 2008 Risk Level: Medium Affected versions: Oracle Database Server versions 10gR1, 10gR2 and 11gR1 Remote exploitable: Yes...
Team SHATTER Security Advisory: Oracle Database Multiple SQL Injection vulnerabilities in LTADM
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory Oracle Database Multiple SQL Injection vulnerabilities in LTADM November 12, 2008 Risk Level: Medium Affected versions: Oracle Database Server versions 9iR2, 10gR1, 10gR2 and 11gR1 Remote exploitable: Yes Authentication...
Team SHATTER Security Advisory: Oracle Database SQL Injection in SYS.DBMS_CDC_IPUBLISH.ALTER_HOTLOG_INTERNAL_CSOURCE
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory Oracle Database SQL Injection in SYS.DBMSCDCIPUBLISH.ALTERHOTLOGINTERNALCSOURCE November 12, 2008 Risk Level: Medium Affected versions: Oracle Database Server versions 10gR1, 10gR2 and 11gR1 Remote exploitable: Yes...
Team SHATTER Security Advisory: Oracle Database multiple SQL Injection vulnerabilities in Workspace Manager
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory Oracle Database multiple SQL Injection vulnerabilities in Workspace Manager November 12, 2008 Risk Level: High Affected versions: Oracle Database Server versions 9iR2, 10gR1, 10gR2 and 11gR1 Remote exploitable: Yes...
AKADV2008-001-v1.0.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Advisory: Openfire Server Multiple Vulnerabilities Advisory ID: AKADV2008-001 Release Date: 2008/11/07 Revision: 1.0 Last Modified: 2008/11/07 Date Reported: 2008/05/17 Author: Andreas Kurtz mail at andreas-kurtz.de Affected Software: Openfire Serve...
CVE-2008-4996
init in initramfs-tools 0.92f allows local users to overwrite arbitrary files via a symlink attack on the /tmp/initramfs.debug temporary file. NOTE: the vendor disputes this vulnerability, stating that "init is used in a single-user context; there's no possibility that this is exploitable...
[TKADV2008-010] VLC media player TiVo ty Processing Stack Overflow Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: VLC media player TiVo ty Processing Stack Overflow Vulnerability Advisory ID: TKADV2008-010 Revision: 1.0 Release Date: 2008/10/20 Last Modified: 2008/10/20 Date Reported: 2008/10/18 Author: Tobias Klein tk at trapkit.de Affected Software: V...
VLC 0.9.2 Media Player XSPF Memory Corruption Vulnerability
No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ VLC media player XSPF Memory Corruption 1. Advisory Information Title: VLC media player XSPF Memory Corruption Advisory ID:...
VideoLAN VLC Media Player 0.9.2 Media Player - XSPF Memory Corruption
VideoLAN VLC Media Player 0.9.2 Media Player - XSPF Memory Corruption -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ VLC media player XSPF Memory Corruption 1. Advisory Information Title: VLC media player XSPF...
OpenNMS < 1.5.96 Multiple Remote Vulnerabilities
No description provided by source. OpenNMS Multiple Vulnerabilities -------------------------------- BugSec | Security Advisory Moshe Ben-Abu | Security Expert Advisory URL PDF: http://www.bugsec.com/upfiles/OpenNMSMultipleVulnerabilities.pdf Vendor ------ OpenNMS Group – http://www.opennms.com...
OpenNMS < 1.5.96 Multiple Remote Vulnerabilities
Exploit for unknown platform in category web applications ================================================ OpenNMS 1.5.96 Multiple Remote Vulnerabilities ================================================ Vendor ------ OpenNMS Group http://www.opennms.com OpenNMS Project http://www.opennms.org...
OpenNMS 1.5.96 - Multiple Vulnerabilities
OpenNMS 1.5.96 - Multiple Vulnerabilities OpenNMS Multiple Vulnerabilities -------------------------------- BugSec | Security Advisory Moshe Ben-Abu | Security Expert Advisory URL PDF: http://www.bugsec.com/upfiles/OpenNMSMultipleVulnerabilities.pdf Vendor ------ OpenNMS Group –...
Remote code execution
NuMedia Soft NMS DVD Burning SDK Activex NMSDVDX.DVDEngineX.1 ActiveX control NMSDVDX.dll 1.013C and earlier, as used in CDBurnerXP 4.2.1.976, BurnAware 2.1.3, Blaze Media Pro 8.02 Special Edition, and possibly other products, allows remote attackers to overwrite and create arbitrary files via...
Gentoo Security Advisory GLSA 200405-24 (mplayer)
The remote host is missing updates announced in advisory GLSA 200405-24. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200505-02 (oops)
The remote host is missing updates announced in advisory GLSA 200505-02. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Team SHATTER Security Advisory: IBM DB2 UDB - Buffer overrun in XMLQUERY and XMLEXISTS
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory Buffer overrun in XMLQUERY and XMLEXISTS September 15th 2008 Risk Level: High Affected versions: IBM DB2 Database Server v9.1 and 9.5 on Windows platform. Remote exploitable: Yes Authentication to Database Server is need...
drupal-xss.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Date: Sept 12, 2008 Security risk: medium Exploitable from: Remote Vulnerability: Cross site scripting Description Drupal is a robust content management system CMS that provides extensibility through hundreds of third party modules. While the security...
iPhone Safari JavaScript alert Denial of Service
Advisory ID Internal CORE-2008-0603 1. Advisory Information Title: iPhone Safari JavaScript alert Denial of Service Advisory ID: CORE-2008-0603 Date published: 2008-09-12 Date of last update: 2008-09-11 Vendors contacted: Apple Security Release mode: Coordinated release 2. Vulnerability...
Microsoft Windows GDI+ BMP Parsing Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows XP, Server and Vista. User interaction is required in that a user must open a malicious image file. The specific flaws exist in the GDI+ subsystem when parsing maliciously crafted...
Simple PHP Blog (SPHPBlog) 0.5.1 - Code Execution
Simple PHP Blog SPHPBlog 0.5.1 - Code Execution 3 curlsetopt $ch, CURLOPTCOOKIE, "$cook"; $res = curlexec $ch;$err=curlerror $ch ;if $err print "$err"; curlclose$ch; return $res; function error$msg print "$msg\nNot Exploitable";exit; extract$POST;extract$GET; print "URL:"; if strlen$eval3...