Mandriva Update for tomboy MDVA-2010:222 (tomboy)

Check for the Version of tomboy OpenVAS Vulnerability Test Mandriva Update for tomboy MDVA-2010:222 tomboy Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

Joomla User 1.5 Local File Inclusion

========================================================= Joomla Component comuser Joomla 1.5 LFI Vulnerability ========================================================= +Title : Joomla Component comuser Joomla 1.5 LFI Vulnerability +Software : comuser Joomla 1.5 +Vendor : http://www.exadomain.co...

R7-0037: SAP BusinessObjects Axis2 Default Admin Password

R7-0037: SAP BusinessObjects Axis2 Default Admin Password October 13th, 2010 Description: The SAP BusinessObjects product contains a module dswsbobje.war which deploys Axis2 with an administrator account which is configured with a static password. As a result, anyone with access to the Axis2 port...

Fedora Update for tuxguitar FEDORA-2010-15783

Check for the Version of tuxguitar OpenVAS Vulnerability Test Fedora Update for tuxguitar FEDORA-2010-15783 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

[SECURITY] Fedora 12 Update: tuxguitar-1.2-3.fc12

TuxGuitar is a guitar tablature editor with player support through midi. It can display scores and multitrack tabs. Various features TuxGuitar provides inc lude autoscrolling while playing, note duration management, bend/slide/vibrato/ hammer-on/pull-off effects, support for tuplets, time signatu...

[SECURITY] Fedora 14 Update: tuxguitar-1.2-3.fc14

TuxGuitar is a guitar tablature editor with player support through midi. It can display scores and multitrack tabs. Various features TuxGuitar provides inc lude autoscrolling while playing, note duration management, bend/slide/vibrato/ hammer-on/pull-off effects, support for tuplets, time signatu...

Rapid7 Security Advisory 37

R7-0037: SAP BusinessObjects Axis2 Default Admin Password October 13th, 2010 Description: The SAP BusinessObjects product contains a module dswsbobje.war which deploys Axis2 with an administrator account which is configured with a static password. As a result, anyone with access to the Axis2 port...

SAP BusinessObjects Axis2 Default Admin Password

Overview The Axis2 component of SAP BusinessObjects contains a default administrator account and password. Description The SAP BusinessObjects product contains a module dswsbobje.war which deploys Axis2 with an administrator account which is configured with a static password. As a result, anyone...

Tycoon CMS Record Script 1.0.9 - SQL Injection

Tycoon CMS Record Script 1.0.9 - SQL Injection % TycoonCMS Record Script Sql vulnerability ------------------------------------------------------------------------------- 0 | | | | | | TM 1 | | | | | | 0 | / | ' \ / | ' \ / |/ | |/ / \ '| ' \ / \ | 1 / / | | | | / | | | | | | | / | | | | | / | 0...

[DSECRG-09-040] SAP Netweaver wsnavigator XSS Security Vulnerability

Digital Security Research Group DSecRG Advisory DSECRG-09-040 Application: SAP Netweaver Versions Affected: Version 6.4 - 7.0 Vendor URL: http://SAP.com Bugs: XSS Exploits: YES Reported: 26.05.2009 Vendor response: 27.05.2009 Date of Public Advisory: 13.07.2010 CVE-number: Author: Alexandr Polyak...

SAP Netweaver 6.4 - 7.0 Cross Site Scripting

Digital Security Research Group DSecRG Advisory DSECRG-09-040 Application: SAP Netweaver Versions Affected: Version 6.4 - 7.0 Vendor URL: http://SAP.com Bugs: XSS Exploits: YES Reported: 26.05.2009 Vendor response: 27.05.2009 Date of Public Advisory: 13.07.2010 CVE-number: Author: Alexandr Polyak...

Google Chrome 5.0.375.99更新修复多个安全漏洞

BUGTRAQ ID: 41334 CVE ID: CVE-2010-2645,CVE-2010-2646,CVE-2010-2647,CVE-2010-2648,CVE-2010-2649,CVE-2010-2650,CVE-2010-2651,CVE-2010-2652 Google Chrome是Google发布的开源WEB浏览器。 Chrome的5.0.375.99版本更新修复了多个安全漏洞，用户受骗访问恶意网页就可能导致拒绝服务或完全入侵用户系统。 1 在使用WebGL时Chrome中可能出现越界读访问错误。 2 Chrome没有正确地隔离沙盒中的IFRAME元素。 3...

Bs Business_Directory Script - SQL Injection Authentication Bypass

Bs BusinessDirectory Script - SQL Injection Authentication Bypass 1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : Bs BusinessDirectory Script Sqli Vulnerability Date : july 5,2010 Critical Level : HIGH vendor U...

OpenJDK CMM readMabCurveData Buffer Overflow Vulnerability (6899653)

Unspecified vulnerability in the Java 2D component in Oracle Java SE and Java for Business 6 Update 18, 5.0, Update, and 23 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the March 2010 CPU. Orac...

CVE-2010-1761

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service application crash via vectors involving HTML document subtrees...

CVE-2010-1417

The Cascading Style Sheets CSS implementation in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via HTML content th...

Microsoft Windows Help and Support Center Vulnerability

US-CERT is aware of a vulnerability affecting the Mircosoft Windows Help and Support Center. This vulnerability is due to improper sanitization of hcp:// URIs. Exploitation of this vulnerability may allow a remote, unauthenticated attacker to execute arbitrary commands. US-CERT encourages users a...

SAP NetWeaver Workflow Modeler - Multiple XSS

Application: SAP NetWeaver Workflow Modeler Versions Affected: SAP NetWeaver NW2004s SP6 Workflow Modeler Vendor URL: http://www.sap.com Bugs: XSS Exploits: YES Reported: 06.08.2010 Vendor response: 07.08.2010 Date of Public Advisory: 12.02.2014 Reference: SAP Security Note 1860923 Author:...

Joomla MS Comment Local File Inclusion

!===========================================================================! Joomla Component MS Comment LFI Vulnerability Author : Xr0b0t [email protected] Homepage : http://www.indonesiancoder.com | http://Xr0b0t.name | http://Malangcyber.com Date : 16 Mei, 2010...

CVE-2010-1429

Red Hat JBoss Enterprise Application Platform aka JBoss EAP or JBEAP 4.2 before 4.2.0.CP09 and 4.3 before 4.3.0.CP08 allows remote attackers to obtain sensitive information about "deployed web contexts" via a request to the status servlet, as demonstrated by a full=true query string. NOTE: this...