1286 matches found
Updated ipython package fixes security vulnerability
In IPython before 1.2, the origin of websocket requests was not verified within the IPython notebook server. If an attacker has knowledge of an IPython kernel id they can run arbitrary code on a user's machine when the client visits a crafted malicious page CVE-2014-3429...
Online Notebook Manager SQLi Vulnerability
No description provided by source...
gtk2 security and bug fix update
2.10.4-29 - Improve patch to parse CUPS user lpoptions file to avoid crashes on s390 and ia64 Resolves: 603809 2.10.4-28 - Fix the filechooser not opening selected file when location entry is empty Resolves: 518483 2.10.4-27 - Fix integer overflow in GdkPixbuf's XBM image file format loader...
Wright-Patt Officials Discipline Those Connected to Misplaced Notebook
The Air Force is taking disciplinary action against members of the 88th Medical Group in Ohio who left a notebook holding sensitive data in a conference room following a blood drive on base. The notebook was found the morning after being misplaced under a chair in the same limited-use room. “Whil...
wordpress Diary/Notebook theme email spoofing vulnerability-vulnerability warning-the black bar safety net
WordPress this Diary/Notebook theme is to have site5 design of a personal Journal blog system theme. The recent burst of the email spoofing vulnerability. Attach the perl script Exp: !/ usr/bin/perl Exploit Title: Diary/Notebook Site5 WordPress Theme - Email Spoofing Date: 15.07.2012 Exploit...
WordPress Theme Diary/Notebook Site5 - Email Spoofing
!/usr/bin/perl Exploit Title: Diary/Notebook Site5 Wordpress Theme - Email Spoofing Date: 15.07.2012 Exploit Author: @bwallHatesTwits Discovered by: @xxDigiPxx http://www.ticktockcomputers.com/wordpress/site5-wordpress-theme-diary-sendmail-php-spoofing/ Software Link: http://www.wpdiarytheme.com/...
HP Data Protector LogClientInstallation Method Userid Field SQL Execution
The HP Data Protector DPNECentral web service listening on this port contains a SQL injection vulnerability because it fails to properly sanitize user-supplied input to the userid field of its LogClientInstallation method before using it in a database query. This may allow an attacker to read and...
HP Data Protector Multiple Products LogClientInstallation SQL Injection (CVE-2011-3156)
An SQL injection vulnerability has been reported in HP Data Protector Notebook Extension and HP Data Protector for Personal Computers...
NASA Computers Hacked Repeatedly in Last Two Years
NASA has been hit repeatedly by hackers during the last two years – including an incident where attackers compromised systems at the agency’s Jet Propulsion Laboratory. The situation was revealed in testimony Feb. 29 by NASA Inspector General Paul Martin before the House Science, Space and...
HP Data Protector Notebook Extension Policy Server LogClientInstallation Remote SQL Injection Vulnerabilty
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector Notebook Extension. Authentication is not required to exploit this vulnerability. The flaw exists within the dpnepolicyservice component which exposes a DPNECentral Web Service on...
HP Data Protector Notebook Extension Policy Server LogCopyOperation Remote SQL Injection Vulnerabilty
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector Notebook Extension. Authentication is not required to exploit this vulnerability. The flaw exists within the dpnepolicyservice component which exposes a DPNECentral Web Service on...
HP Data Protector Notebook Extension Policy Server FinishedCopy Remote SQL Injection Vulnerabilty
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector Notebook Extension. Authentication is not required to exploit this vulnerability. The flaw exists within the dpnepolicyservice component which exposes a DPNECentral Web Service on...
HP Data Protector Notebook Extension Policy Server LogBackupLocationStatus Remote SQL Injection Vulnerabilty
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector Notebook Extension. Authentication is not required to exploit this vulnerability. The flaw exists within the dpnepolicyservice component which exposes a DPNECentral Web Service on...
HP Data Protector Notebook Extension Policy Server RequestCopy Remote SQL Injection Vulnerabilty
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector Notebook Extension. Authentication is not required to exploit this vulnerability. The flaw exists within the dpnepolicyservice component which exposes a DPNECentral Web Service on...
HP Data Protector Notebook Extension multiple security vulnerabilities
No description provided...
CVE-2011-3162
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1296...
CVE-2011-3161
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1229...
CVE-2011-3159
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1227...
CVE-2011-3157
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1225...
CVE-2011-3158
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1226...