PT-2014-6312 · Sap · Sap Hana Extended Application Services

Name of the Vulnerable Software and Affected Versions: SAP HANA Extend Application Services XS affected versions not specified Description: The issue allows remote attackers to bypass access restrictions via a request to a private IU5 SDK application that was once public. There is no information...

Oracle Linux 5 : Important: / kernel (ELSA-2007-0936)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2007-0936 advisory. 2.6.18-8.1.14.0.2.el5 - Fix bonding primary=ethX Bert Barbe IT 101532 ORA 5136660 - Add entropy module option to e1000/bnx2 John Sobecki ORA 6045759...

DEBIAN-CVE-2013-0242

Buffer overflow in the extendbuffers function in the regular expression matcher posix/regexec.c in glibc, possibly 2.17 and earlier, allows context-dependent attackers to cause a denial of service memory corruption and crash via crafted multibyte characters...

Wordpress Plugins - Piecemaker Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications Description : Wordpress Plugins - Piecemaker Arbitrary File Upload Vulnerability Version : 1.1 Link : http://wordpress.org/extend/plugins/the-piecemaker/ Plugins : http://downloads.wordpress.org/plugin/the-piecemaker.1.1.zip Date : 30-06-2012...

nfs-ls NSE Script

Attempts to get useful information about files from NFS exports. The output is intended to resemble the output of ls. The script starts by enumerating and mounting the remote NFS exports. After that it performs an NFS GETATTR procedure call for each mounted point in order to get its ACLs. For eac...

Design/Logic Flaw

gnome-screensaver 2.14.3, 2.22.2, 2.27.x, 2.28.0, and 2.28.3, when the X configuration enables the extend screen option, allows physically proximate attackers to bypass screen locking, access an unattended workstation, and view half of the GNOME desktop by attaching an external monitor...

DEBIAN-CVE-2010-0285

gnome-screensaver 2.14.3, 2.22.2, 2.27.x, 2.28.0, and 2.28.3, when the X configuration enables the extend screen option, allows physically proximate attackers to bypass screen locking, access an unattended workstation, and view half of the GNOME desktop by attaching an external monitor...

CVE-2010-0285

gnome-screensaver 2.14.3, 2.22.2, 2.27.x, 2.28.0, and 2.28.3, when the X configuration enables the extend screen option, allows physically proximate attackers to bypass screen locking, access an unattended workstation, and view half of the GNOME desktop by attaching an external monitor...

CVE-2010-0285

gnome-screensaver 2.14.3, 2.22.2, 2.27.x, 2.28.0, and 2.28.3, when the X configuration enables the extend screen option, allows physically proximate attackers to bypass screen locking, access an unattended workstation, and view half of the GNOME desktop by attaching an external monitor...

kernel security and bug fix update

2.6.18-128.4.1.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki,Guru Anbalagane orabug 6045759 - MM shrink zone patch John Sobecki,Chris Mason orabug 6086839 - NET Add xen pv/bonding netconsole support Tina yang orabug 6993043 bz 7258 - nfs convert ENETUNREACH to ENOTCONN Guru...

Important: kernel security update

2.6.18-8.1.14.0.2.el5 - Fix bonding primary=ethX Bert Barbe IT 101532 ORA 5136660 - Add entropy module option to e1000/bnx2 John Sobecki ORA 6045759 2.6.18-8.1.14.el5 - Revert changes back to 2.6.18-8.1.10. - x8664 Zero extend all registers after ptrace in 32bit entry path Anton Arapov 297871...

CVE-2007-2923

The launch method in the LocalExec ActiveX control LocalExec.ocx in Novell exteNd Director 4.1 and Portal Services allows remote attackers to execute arbitrary commands...

Command injection

The launch method in the LocalExec ActiveX control LocalExec.ocx in Novell exteNd Director 4.1 and Portal Services allows remote attackers to execute arbitrary commands...

CVE-2007-2923

The launch method in the LocalExec ActiveX control LocalExec.ocx in Novell exteNd Director 4.1 and Portal Services allows remote attackers to execute arbitrary commands...

CVE-2007-2923

The CVE-2007-2923 issue concerns the LocalExec ActiveX control (LocalExec.ocx) in Novell exteNd Director 4.1 and Portal Services. The launch() method can be abused to execute arbitrary commands on the affected host. A remote attacker could exploit this by enticing a user to visit a crafted page, ...

Novell exteNd Director LocalExec ActiveX (LocalExec.ocx) launch() Method Arbitrary Command Execution

The remote host contains the LocalExec ActiveX control from Novell exteND Director, a set of development tools for creating enterprise web applications. The version of this control on the remote host reportedly contains a method named 'launch' that can be used to execute arbitrary commands. If an...

Novell exteNd Director 4.1 LocalExec ActiveX control fails to restrict access to dangerous methods

Overview The Novell exteNd Director 4.1 LocalExec ActiveX control fails to restrict access to dangerous methods, which can allow a remote, unauthenticated attacker to execute arbitrary commands on a vulnerable system. Description Novell exteNd Director is a set of software development tools and...