508 matches found
CVE-2013-0921
The Isolated Sites feature in Google Chrome before 26.0.1410.43 does not properly enforce the use of separate processes, which makes it easier for remote attackers to bypass intended access restrictions via a crafted web site...
CVE-2013-0921
Removed by vendor...
VMSA-2013-0003 : VMware vCenter Server, ESXi and ESX address an NFC Protocol memory corruption and third-party library security issues.
a. VMware vCenter, ESXi and ESX NFC protocol memory corruption vulnerability VMware vCenter Server, ESXi and ESX contain a vulnerability in the handling of the Network File Copy NFC protocol. To exploit this vulnerability, an attacker must intercept and modify the NFC traffic between vCenter Serv...
Command Injection Vulnerability
A vulnerability exists whereby an unauthenticated user can inject commands as root on the device. Ref 30088 This vulnerability can result in arbitrary command execution, and can result in total compromise of the device. This issue affects PAN-OS 4.0.3 and earlier; PAN-OS 3.1.9 and earlier. Work...
Command Injection Vulnerability
A vulnerability exists whereby an unauthenticated user can inject commands as root on the device. Ref 31091 This vulnerability can result in arbitrary command execution, and can result in total compromise of the device. This issue affects PAN-OS 4.0.4 and earlier; PAN-OS 3.1.9 and earlier. Work...
Fedora Update for python-virtualenv FEDORA-2011-17289
Check for the Version of python-virtualenv OpenVAS Vulnerability Test Fedora Update for python-virtualenv FEDORA-2011-17289 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...
Fedora Update for python-virtualenv FEDORA-2011-17341
Check for the Version of python-virtualenv OpenVAS Vulnerability Test Fedora Update for python-virtualenv FEDORA-2011-17341 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...
[SECURITY] Fedora 15 Update: python-virtualenv-1.7-1.fc15
virtualenv is a tool to create isolated Python environments. virtualenv is a successor to workingenv, and an extension of virtual-python. It is written by Ian Bicking, and sponsored by the Open Planning Project. It is licensed under an MIT-style permissive license...
[SECURITY] Fedora 16 Update: python-virtualenv-1.7-1.fc16
virtualenv is a tool to create isolated Python environments. virtualenv is a successor to workingenv, and an extension of virtual-python. It is written by Ian Bicking, and sponsored by the Open Planning Project. It is licensed under an MIT-style permissive license...
REMnux: A Linux Distribution for Reverse-Engineering Malware
REMnux: A Linux Distribution for Reverse-Engineering Malware REMnux is a lightweight Linux distribution for assisting malware analysts in reverse-engineering malicious software. The distribution is based on Ubuntu and is maintained by Lenny Zeltser. REMnux is designed for running services that ar...
REMnux: A Linux Distribution for Reverse-Engineering Malware
REMnux: A Linux Distribution for Reverse-Engineering Malware REMnux is a lightweight Linux distribution for assisting malware analysts in reverse-engineering malicious software. The distribution is based on Ubuntu and is maintained by Lenny Zeltser. REMnux is designed for running services that ar...
How to perform SureBackup recovery verification manually in Standard edition
Solution To start, use the Instant VM Recovery feature. For a boot up test, go through the Instant Recovery wizard and power on the VM, but do not select a checkbox to connect the VM to a network. Please note that since there is no network connectivity, some applications will not start since they...
SureBackup for a Virtual Machine with excluded disks
Challenge How to run a VM directly from a backup file if some of its disks are excluded from backup. Solution To run a VM directly from a backup file, make sure you select 'Remove excluded disks from VM configuration' option when excluding your disks from the backup: More Information If the 'Remo...
Debian DSA-2269-1 : iceape - several vulnerabilities
Several vulnerabilities have been found in the Iceape internet suite, an unbranded version of SeaMonkey : - CVE-2011-0083 / CVE-2011-2363 'regenrecht' discovered two use-after-frees in SVG processing, which could lead to the execution of arbitrary code. - CVE-2011-0085 'regenrecht' discovered a...
7T Interactive Graphical SCADA System dc.exe Directory Traversal
Added: 06/03/2011 CVE: CVE-2011-1566 BID: 46936 OSVDB: 72349 Background 7-Technologies Interactive Graphical SCADA System IGSS is a Supervisory Control and Data Acquisition SCADA solution used mainly in Denmark and the US. Problem An input validation error in the Data Collector service dc.exe whe...
AzeoTech DAQFactory Networking Vulnerabilities
Overview ICS-CERT Advisory ICSA-11-122-01 was originally released to the US-CERT Portal on May 24, 2011. This web site release was delayed to allow users sufficient time to download and install the upgrade. ICS-CERT received a report from the nSense Vulnerability Coordination Team concerning...
As Many as 3,000 Vodafone Memory Cards Infected by Malware
The malware that was found on a pair of Vodafone memory cards installed in HTC Magic handsets recently has in fact affected an entire batch of 3,000 memory cards, the company said. Vodafone Spain said that the company’s investigation into the incident found that a much larger number of cards was...
Vodafone-Distributed Handset Found Pre-installed With Mariposa Bot
Security researchers have found the Mariposa bot client pre-installed on a mobile phone handset distributed in Europe, and say that the malware looks to have been installed on the phone’s memory card. The phone, the HTC Magic, runs the Google Android mobile operating system, and is a low-priced...
NuPoint Messenger server transmits authentication credentials in plain text
Overview NuPoint Messenger is a unified communications product that connects to a Microsoft Exchange server. When communicating with the mail server, the NuPoint Messenger server transmits Exchange usernames and passwords in cleartext. Description The NuPoint Messenger server can connect to a...
Trojan exploiting Excel zero-day flaw
Reports have been circulating in the last couple of days about an unpatched vulnerability in Microsoft Excel, and the software giant has now confirmed the problem. The flaw allows attackers to run code on remote machines if they can entice a user into opening a malicious Excel file. Some security...