CVE-2013-1688

The Profiler implementation in Mozilla Firefox before 22.0 parses untrusted data during UI rendering, which allows user-assisted remote attackers to execute arbitrary JavaScript code via a crafted web site...

CVE-2013-3035

CVE-2013-3035 affects IBM AIX IPv6 handling in the inet subsystem on AIX 6.1 and 7.1 and VIOS 2.2.2.2-FP-26 SP-02. A crafted IPv6 packet to an IPv6-enabled interface can cause a remote denial of service (system hang). The issue is tied to the INET IPv6 implementation, with Nessus and vendor advis...

Design/Logic Flaw

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from...

Updated dbus packages fix security vulnerability

Alexandru Cornea discovered a vulnerability in libdbus caused by an implementation bug in dbusprintfstringupperbound. This vulnerability can be exploited by a local user to crash system services that use libdbus, causing denial of service. Depending on the dbus services running, it could lead to...

DSA-2710-1 xml-security-c - several

Bulletin has no description...

Hardcoded credentials

The login implementation in the Web Navigator in Siemens WinCC before 7.2 Update 1, as used in SIMATIC PCS7 8.0 SP1 and earlier and other products, has a hardcoded account, which makes it easier for remote attackers to obtain access via an unspecified request...

CVE-2013-3958

CVE-2013-3958 affects Siemens WinCC Web Navigator (7.2 and earlier, used with SIMATIC PCS7 8.0 SP1 and related products). The root cause is hard-coded credentials in the Web Navigator login system, enabling remote attackers with network access to log in as an authenticated user and potentially ex...

[SECURITY] [DSA 2707-1] dbus security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2707-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez June 13, 2013 http://www.debian.org/security/faq -...

DSA-2707-1 dbus - denial of service

Bulletin has no description...

dbus -- local dos

Simon McVittie reports: Alexandru Cornea discovered a vulnerability in libdbus caused by an implementation bug in dbusprintfstringupperbound. This vulnerability can be exploited by a local user to crash system services that use libdbus, causing denial of service. It is platform-specific: x86-64...

Syslog Server 1.2.3 - Crash PoC

Exploit for windows platform in category dos / poc This software suffers validation errors throughout the basic protocol implementation making it possible to cause overflows, type mismatches and so on. Here is a type mismatch crash: echo "pwn"|nc -u 192.168.200.20 514 0day.today 2018-04-05...

Syslog Server 1.2.3 - Crash (PoC)

Syslog Server 1.2.3 - Crash PoC !/usr/bin/python Exploit Title: Syslog Server 1.2.3 Date: 12th June 2013 Exploit Author: npn Exploit Author Homepage: http://www.iodigitalsec.com/ Vendor Homepage: http://sourceforge.net/users/ghuysmans Software Link:...

Syslog Server 1.2.3 Denial Of Service

!/usr/bin/python Exploit Title: Syslog Server 1.2.3 Date: 12th June 2013 Exploit Author: npn Exploit Author Homepage: http://www.iodigitalsec.com/ Vendor Homepage: http://sourceforge.net/users/ghuysmans Software Link: http://download.cnet.com/Syslog-Server/3000-20854-75868875.html Version: 1.2.3...

Syslog Server 1.2.3 - Crash (PoC)

!/usr/bin/python Exploit Title: Syslog Server 1.2.3 Date: 12th June 2013 Exploit Author: npn Exploit Author Homepage: http://www.iodigitalsec.com/ Vendor Homepage: http://sourceforge.net/users/ghuysmans Software Link: http://download.cnet.com/Syslog-Server/3000-20854-75868875.html Version: 1.2.3...

Debian DSA-2706-1 : chromium-browser - several vulnerabilities

Several vulnerabilities have been discovered in the Chromium web browser. - CVE-2013-2855 The Developer Tools API in Chromium before 27.0.1453.110 allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via unknown vectors. - CVE-2013-2856...

Debian Security Advisory DSA 2706-1 (chromium-browser - several vulnerabilities)

Several vulnerabilities have been discovered in the Chromium web browser. CVE-2013-2855 The Developer Tools API in Chromium before 27.0.1453.110 allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via unknown vectors. CVE-2013-2856...

DSA-2706-1 chromium-browser - several

Bulletin has no description...

CVE-2011-3347

A certain Red Hat patch to the be2net implementation in the kernel package before 2.6.32-218.el6 on Red Hat Enterprise Linux RHEL 6, when promiscuous mode is enabled, allows remote attackers to cause a denial of service system crash via non-member VLAN packets...

Design/Logic Flaw

The fallocate implementation in the GFS2 filesystem in the Linux kernel before 3.2 relies on the page cache, which might allow local users to cause a denial of service by preallocating blocks in certain situations involving insufficient memory...

Code injection

A certain Red Hat patch to the be2net implementation in the kernel package before 2.6.32-218.el6 on Red Hat Enterprise Linux RHEL 6, when promiscuous mode is enabled, allows remote attackers to cause a denial of service system crash via non-member VLAN packets...