7501 matches found
PHP-Nuke 8.0 -Web_Links Module - Blind SQL Injection
PHP-Nuke new; my $average = 0; print "+ Calculating average load time it may take a while ...\n"; for my $i = 0; $i get$hosto; my $time = time; $average += int$time-$bef; return $average/5; sub Nuke::Usage print "+ Usage: perl nuke.pl \n"; print "+ the host must be the complete path to...
Fedora 12 : krb5-1.7-18.fc12 (2010-0503)
This update incorporates fixes from upstream which correct integer underflow problems in the AES and RC4 decryption routines CVE-2009-4212. It also corrects a failure in 'kdb5util load' which could occur when the database files being created did not previously exist. Note that Tenable Network...
mozilla: XMLDocument:: load() doesn't check nsIContentPolicy (MFSA 2010-24)
The XMLDocument::load function in Mozilla Firefox before 3.5.9 and 3.6.x before 3.6.2, Thunderbird before 3.0.4, and SeaMonkey before 2.0.4 does not perform the expected nsIContentPolicy checks during loading of content by XML documents, which allows attackers to bypass intended access restrictio...
CVE-2010-1942
Unspecified vulnerability in the Servlet service in Fujitsu Limited Interstage Application Server 3.0 through 7.0, as used in Interstage Application Framework Suite, Interstage Business Application Server, and Interstage List Manager, allows attackers to obtain sensitive information or force...
Code injection
Unspecified vulnerability in the Servlet service in Fujitsu Limited Interstage Application Server 3.0 through 7.0, as used in Interstage Application Framework Suite, Interstage Business Application Server, and Interstage List Manager, allows attackers to obtain sensitive information or force...
CVE-2010-1942
Unspecified vulnerability in the Servlet service in Fujitsu Limited Interstage Application Server 3.0 through 7.0, as used in Interstage Application Framework Suite, Interstage Business Application Server, and Interstage List Manager, allows attackers to obtain sensitive information or force...
Interstage Application Server vulnerable in request processing
Overview The Servlet service provided by the Interstage Application Server from Fujitsu Limited, contains a vulnerability where certain requests are not processed properly. The Servlet service provided by the Interstage Application Server from Fujitsu Limited, contains a vulnerability where certa...
JVN#90248889: Interstage Application Server vulnerable in request processing
The Servlet service provided by the Interstage Application Server from Fujitsu Limited, contains a vulnerability where certain requests may be handled improperly depending on the settings at the load balancing device. Impact Invalid requests may be processed or user information may be leaked...
HP Performance Center Agent / HP Load Runner Agent code execution
Code execution via TCP/54345 service...
DEBIAN-CVE-2010-1620
Integer overflow in the loadiface function in Tools/gdomap.c in gdomap in GNUstep Base before 1.20.0 might allow context-dependent attackers to execute arbitrary code via a 1 file or 2 socket that provides configuration data with many entries, leading to a heap-based buffer overflow...
UBUNTU-CVE-2010-1620
Integer overflow in the loadiface function in Tools/gdomap.c in gdomap in GNUstep Base before 1.20.0 might allow context-dependent attackers to execute arbitrary code via a 1 file or 2 socket that provides configuration data with many entries, leading to a heap-based buffer overflow...
[CAL-20100204-1]Adobe Shockwave Player Director File Parsing ATOM size infinite loop vulnerability
CAL-20100204-1Adobe Shockwave Player Director File Parsing ATOM size infinite loop vulnerability Affected Products ================= 11.5.2.602 ,11.5.6.606 and prior CVE ID: CVE-2010-1282 CAL ID: CAL-20100204-1 Vulnerability Details ===================== Code Audit Labs http://www.vulnhunt.com ha...
Pargoon CMS - Denial of Service
Pargoon CMS - Denial of Service Securitylab.ir Application Info: Name: Pargoon Vendor: http://www.vestasoft.ir Vulnerability Info: Type: DOS Risk: Medium 2010-01-17 - Found Vulnerability 2010-01-19 - Vendor notified 2010-05-08 - Public disclosure Vulnerability:...
Pargoon CMS - Denial of Service
Securitylab.ir Application Info: Name: Pargoon Vendor: http://www.vestasoft.ir Vulnerability Info: Type: DOS Risk: Medium 2010-01-17 - Found Vulnerability 2010-01-19 - Vendor notified 2010-05-08 - Public disclosure Vulnerability:...
Pargoon CMS all version DoS Vulnerability
Exploit for multiple platform in category dos / poc ========================================= Pargoon CMS all version DoS Vulnerability ========================================= Application Info: Name: Pargoon Vendor: http://www.vestasoft.ir Vulnerability Info: Type: DOS Risk: Medium 2010-01-17 -...
Pargoon Denial Of Service
Securitylab.ir Application Info: Name: Pargoon Vendor: http://www.vestasoft.ir Vulnerability Info: Type: DOS Risk: Medium 2010-01-17 - Found Vulnerability 2010-01-19 - Vendor notified 2010-05-08 - Public disclosure Vulnerability:...
CVE-2010-1451
The TSB I-TLB load implementation in arch/sparc/kernel/tsb.S in the Linux kernel before 2.6.33 on the SPARC platform does not properly obtain the value of a certain PAGEEXEC4U bit and consequently does not properly implement a non-executable stack, which makes it easier for context-dependent...
Moderate: Red Hat Security Advisory: httpd and httpd22 security and enhancement update
Updated httpd and httpd22 packages that fix two security issues and add one enhancement are now available for JBoss Enterprise Web Server 1.0.1 for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability...
CVE-2010-0182
The XMLDocument::load function in Mozilla Firefox before 3.5.9 and 3.6.x before 3.6.2, Thunderbird before 3.0.4, and SeaMonkey before 2.0.4 does not perform the expected nsIContentPolicy checks during loading of content by XML documents, which allows attackers to bypass intended access restrictio...
CVE-2010-0182
The XMLDocument::load function in Mozilla Firefox before 3.5.9 and 3.6.x before 3.6.2, Thunderbird before 3.0.4, and SeaMonkey before 2.0.4 does not perform the expected nsIContentPolicy checks during loading of content by XML documents, which allows attackers to bypass intended access restrictio...