9 matches found
WALinuxAgent bug fix update
An update is available for WALinuxAgent. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Windows Azure Linux Agent supports provisioning and running Linux...
WALinuxAgent bug fix update
An update for WALinuxAgent is now available for Rocky Linux 8. The Windows Azure Linux Agent supports provisioning and running Linux virtual machines in the Microsoft Windows Azure cloud. Bug fix: Users of Windows Azure Linux Agent are advised to upgrade to this updated package. The package shoul...
Oracle Linux 8 : WALinuxAgent (ELSA-2019-1527)
The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2019-1527 advisory. 2.2.32-1.0.1.el80.1 - Add oracle support to fix waagent.service build issue 2.2.32-1.el80.1 - wla-Add-fixes-for-handling-swap-file-and-other-nit-fixes.patch...
Moderate: Red Hat Security Advisory: WALinuxAgent security update
An update for WALinuxAgent is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...
Microsoft Windows Azure Pack CVE-2018-8652 Cross Site Scripting Vulnerability
Description Microsoft Windows Azure Pack is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. Thi...
CVE-2011-1068
Microsoft Windows Azure Software Development Kit SDK 1.3.x before 1.3.20121.1237, when Full IIS and a Web Role are used with an ASP.NET application, does not properly support the use of cookies for maintaining state, which allows remote attackers to obtain potentially sensitive information by...
Code injection
Microsoft Windows Azure Software Development Kit SDK 1.3.x before 1.3.20121.1237, when Full IIS and a Web Role are used with an ASP.NET application, does not properly support the use of cookies for maintaining state, which allows remote attackers to obtain potentially sensitive information by...
CVE-2011-1068
CVE-2011-1068 affects the Microsoft Windows Azure SDK (1.3.x) prior to 1.3.20121.1237 when using Full IIS and a Web Role with an ASP.NET application. The vulnerability arises from improper support for cookie-based state maintenance, enabling a remote attacker to read an encrypted cookie and poten...
Microsoft Windows Azure Web Role远程信息泄露漏洞
BUGTRAQ ID: 46162 Microsoft Windows Azure是微软于2008年微软开发者大会上发布的全新的云计算平台,基于微软数据中心PaaS平台,主要向开发人员提供了一个在线的基于Windows系列产品的开发、储存和服务代管等服务的环境。 Microsoft Windows Azure在实现上存在信息泄露漏洞,远程攻击者可利用此漏洞获取敏感信息。 Web Role是外部客户的单个HTTP端点和单个HTTPS端点。此漏洞影响使用Cookie保留会话中或会话直接状态信息的网络站点和服务。 Microsoft Windows Azure 1.3 厂商补丁:...