14 matches found
RHEL 8 : mysql:8.0 (RHSA-2019:2511)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:2511 advisory. MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs. The...
CVE-2019-6740
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Samsung Galaxy S9 prior to January 2019 Security Update SMR-JAN-2019 - SVE-2018-13467. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or...
CVE-2019-6741
CVE-2019-6741 affects Samsung Galaxy S9 devices. The vulnerability exists in the captive portal and can be triggered when a user connects to a wireless network. By manipulating HTML in the portal, an attacker can force a page redirection, allowing remote code execution in the context of the targe...
Oracle MySQL Connectors Unspecified Vulnerability (Jan 2019 CPU)
The version of Oracle MySQL Connectors installed on the remote host is 2.1.x = 2.1.8 or 8.x = 8.0.13. It is, therefore, affected by unspecified vulnerability in Connector/Python subcomponent. The vulnerability allows unauthenticated attacker with network access via TLS to compromise MySQL...
Security Bulletin: IBM SDK, Java Technology Edition Quarterly CPU - Jan 2019 - Includes Oracle Jan 2019 CPU affects IBM Tivoli Composite Application Manager for Transactions-Robotic Response Time
Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7 ,version 8, that is used by IBM Tivoli Composite Application Manager for Transactions - Robotic Response Time. These issues were disclosed as part of the IBM Java SDK updates in Jan 2019. Vulnerability...
Multiple vulnerabilities in IBM Java SDK affect AIX
IBM SECURITY ADVISORY First Issued: Tue Apr 16 10:52:12 CDT 2019 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/javajan2019advisory.asc https://aix.software.ibm.com/aix/efixes/security/javajan2019advisory.asc...
Oracle Fusion Middleware Oracle HTTP Server Multiple Vulnerabilities (January 2019 CPU)
The version of Oracle HTTP Server installed on the remote host is affected by vulnerabilities as noted in the January 2019 CPU advisory: - This vulnerability is in the Oracle HTTP server component of Oracle Fusion Middleware subcomponent: Web Listener. The affected version is 12.1.2.3. This is an...
Oracle WebCenter Portal Multiple Vulnerabilities (Jan 2019 CPU)
Binary data oraclewebcenterportalcpujan2019.nbin...
Oracle Application Testing Suite Multiple Vulnerabilities (Jan 2019 CPU)
The version of Oracle Application Testing Suite installed on the remote host is affected by multiple vulnerabilities : - Enterprise Manager Base Platform Agent Next Gen Jython component of Oracle Enterprise Manager Products Suite is easily exploited and can allow an unauthenticated attacker the...
Linux/x86 TCP/4444 Bindshell Shellcode (100 bytes)
; Title : Linux/x86 - Bind 4444/TCP Shell /bin/bash Shellcode 100 bytes ; Date : Jan, 2019 ; Author : Joao Batista ; Website : overflw.wordpress.com ; Twitter : @x42x42x42x42 ; SLAE-ID : 1420 ; Tested on : i686 GNU/Linux global start section .text start: xor eax,eax xor ebx,ebx ; socket push ebx...
Security Updates for Microsoft Visual Studio Products (January 2019)
The Microsoft Visual Studio Products are missing a security update. It is, therefore, affected by the following vulnerability : - An information disclosure vulnerability exists when Visual Studio improperly discloses arbitrary file contents if the victim opens a malicious .vscontent file. An...
Microsoft Patch Tuesday — January 2019: Vulnerability disclosures and Snort coverage
Microsoft released its monthly security update today, disclosing a variety of vulnerabilities in several of its products. The latest Patch Tuesday covers 49 vulnerabilities, seven of which are rated “critical,” 40 that are considered “important” and one that is “moderate.” This release also...
cobonaat.com XSS vulnerability
Open Bug Bounty ID: OBB-718993 Description| Value ---|--- Affected Website:| cobonaat.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden unt...
cnypai.com XSS vulnerability
Open Bug Bounty ID: OBB-686261 Description| Value ---|--- Affected Website:| cnypai.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden until...