1409 matches found
Information disclosure
The Numbers & Addition! Math games aka air.com.tribalnova.ilearnwith.ipad.App2En application 1.4.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5552
The Numbers & Addition! Math games aka air.com.tribalnova.ilearnwith.ipad.App2En application 1.4.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
UBUNTU-CVE-2014-2972
expand.c in Exim before 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted lookup value...
Updated glibc packages fix security issues
Stephane Chazelas discovered that directory traversal issue in locale handling in glibc. glibc accepts relative paths with ".." components in the LC and LANG variables. Together with typical OpenSSH configurations with suitable AcceptEnv settings in sshdconfig, this could conceivably be used to...
Windisc 1.3 - Stack BOF exploit
No description provided by source. |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | |...
ASPPortal <= 3.1.1 (downloadid) Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl Method found & Exploit scripted by nukedx Contacts ICQ: 10072 MSN/Main: [email protected] web: www.nukedx.com Original advisory: http://www.nukedx.com/?viewdoc=21 Usage: aspp.pl host path user use IO::Socket; use Math::BigInt; if@ARGV != 3 usage;...
Updated mediawiki packages fix security vulnerabilities
MediaWiki user Michael M reported that the fix for CVE-2013-4568 allowed insertion of escaped CSS values which could pass the CSS validation checks, resulting in XSS CVE-2013-6451. Chris from RationalWiki reported that SVG files could be uploaded that include external stylesheets, which could lea...
glibc, nscd security update
CentOS Errata and Security Advisory CESA-2013:1605 Updated glibc packages that fix three security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Commo...
Mandriva Linux Security Advisory : mediawiki (MDVSA-2013:235)
Multiple vulnerabilities has been discovered and corrected in mediawiki : Full path disclosure in MediaWiki before 1.20.7, when an invalid language is specified in ResourceLoader CVE-2013-4301. Several API modules in MediaWiki before 1.20.7 allowed anti-CSRF tokens to be accessed via JSONP...
MGASA-2013-0226 Updated mediawiki packages fix security vulnerabilities
This update provides MediaWiki 1.20.6, fixing several unspecified security issues. This replaces the MediaWiki 1.16.5 version, which has been EOL upstream for quite some time now, that was shipped with Mageia 2. MediaWiki removed the Math extension for the 1.18 release, but it is now available...
Updated mediawiki packages fix security vulnerabilities
This update provides MediaWiki 1.20.6, fixing several unspecified security issues. This replaces the MediaWiki 1.16.5 version, which has been EOL upstream for quite some time now, that was shipped with Mageia 2. MediaWiki removed the Math extension for the 1.18 release, but it is now available...
Oracle Linux 5 : xorg-x11-server (ELSA-2012-0303)
The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2012-0303 advisory. 1.1.1-48.90.0.1.el5 - Added oracle-enterprise-detect.patch - Replaced 'Red Hat' in spec file 1.1.1-48.90 - cve-2011-4028.patch: File existence disclosure...
RedHat Update for glibc RHSA-2013:0769-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
glibc, nscd security update
CentOS Errata and Security Advisory CESA-2013:0769 Updated glibc packages that fix two security issues and two bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS ba...
Fedora Update for mimetex FEDORA-2013-3902
Check for the Version of mimetex OpenVAS Vulnerability Test Fedora Update for mimetex FEDORA-2013-3902 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for mimetex FEDORA-2013-3910
Check for the Version of mimetex OpenVAS Vulnerability Test Fedora Update for mimetex FEDORA-2013-3910 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
[SECURITY] Fedora 17 Update: mimetex-1.74-1.fc17
MimeTeX lets you easily embed LaTeX math in your html pages. It parses a La TeX math expression and immediately emits the corresponding gif image, rather t han the usual TeX dvi. And mimeTeX is an entirely separate little program that doesn't use TeX or its fonts in any way...
[SECURITY] Fedora 18 Update: mimetex-1.74-1.fc18
MimeTeX lets you easily embed LaTeX math in your html pages. It parses a La TeX math expression and immediately emits the corresponding gif image, rather t han the usual TeX dvi. And mimeTeX is an entirely separate little program that doesn't use TeX or its fonts in any way...
Fedora Update for glibc FEDORA-2012-11927
Check for the Version of glibc OpenVAS Vulnerability Test Fedora Update for glibc FEDORA-2012-11927 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...
CentOS Update for glibc CESA-2012:1207 centos5
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...