Debian Security Advisory DSA 2797-1 (icedove - several vulnerabilities)

Multiple security issues have been found in Icedove, Debian OpenVAS Vulnerability Test $Id: deb2797.nasl 14276 2019-03-18 14:43:56Z cfischer $ Auto-generated from advisory DSA 2797-1 using nvtgen 1.0 Script version: 1.0 Author: Greenbone Networks Copyright: Copyright c 2013 Greenbone Networks Gmb...

Debian DSA-2735-1 : iceweasel - several vulnerabilities

Multiple security issues have been found in Iceweasel, Debian's version of the Mozilla Firefox web browser: multiple memory safety errors, missing permission checks and other implementation errors may lead to the execution of arbitrary code, cross-site scripting, privilege escalation, bypass of t...

Cisco Nexus 1000V VSM/VEM Communication Encryption Bypass Vulnerability

Cryptographic issues in the Cisco Nexus 1000v could allow an unauthenticated, remote attacker to to inject traffic or eavesdrop on the communications between a Virtual Supervisor Module VSM and a Virtual Ethernet Module VEM. The issues are due to errors in the implementation of the cryptography...

Content Security Policy 1.0 implementation errors cause data leakage — Mozilla

Security researcher Karthikeyan Bhargavan of Prosecco at INRIA reported Content Security Policy CSP 1.0 implementation errors. CSP violation reports generated by Firefox and sent to the "report-uri" location include sensitive data within the "blocked-uri" parameter. These include fragment...

What You Need to Know About the RSA Key Research

It’s always slightly disorienting and confusing when a story about something as esoteric as weak encryption keys produced by poor random number generators makes its way into the real world and begins scaring the citizens. This can lead to confusion and worry about whether everyone’s online bankin...

Apache Tomcat digest authentication vulnerabilities

Multiple implementation errors make authentication vulnerable to different attacks...

Mozilla Products Information Disclosure and Security Bypass Vulnerabilities (Windows)

The host is installed with Mozilla firefox/seamonkey and is prone to information disclosure and security bypass vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillaprdtssecbypassninfodiscvulnwin.nasl 7029 2017-08-31 11:51:40Z teissa $ Mozilla Products Information Disclosure and Security...

Debian DSA-2239-1 : libmojolicious-perl - several vulnerabilities

Several vulnerabilities have been discovered in Mojolicious, a Perl Web Application Framework. The linkto helper was affected by cross-site scripting and implementation errors in the MD5 HMAC and CGI environment handling have been corrected. The oldstable distribution lenny doesn't include...

DSA-2239-1 libmojolicious-perl - several

Bulletin has no description...

Debian DSA-2106-1 : xulrunner - several vulnerabilities

Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2010-2760, CVE-2010-3167, CVE-2010-3168 Implementation errors in XUL processing allow the...

Apple Safari Multiple Vulnerabilities (June-10)

This host is installed with Apple Safari Web Browser and is prone to to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbapplesafarimultvulnjun10.nasl 5263 2017-02-10 13:45:51Z teissa $ Apple Safari Multiple Vulnerabilities June-10 Authors: Antu Sanadi Copyright: Copyright c 2010...

Утечка информации в mIRC (information leakage)

Ошибки реализации протокола DDC позволяют получить сведения о конфигурации пользователя...