RedHat Update for cifs-utils RHSA-2012:0902-04

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Hardcoded credentials

The headerVerifyInfo function in lib/header.c in RPM before 4.9.1.3 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a negative value in a region offset of a package header, which is not properly handled in a numeric range comparison...

CVE-2012-0815

The headerVerifyInfo function in lib/header.c in RPM before 4.9.1.3 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a negative value in a region offset of a package header, which is not properly handled in a numeric range comparison...

Remote Anything Player 5.60.15 Denial Of Service

!python Title: Remote-Anything Player 5.60.15 PoC Author: Saint Patrick Date: 4/25/2012 Just a heads up, you can get full EIP by pushing on. However, at crash time no registers point to buffer, so I chose instead to work with the 3 byte overwrite shown here. This allows calling of other...

CVE-2012-0815

The headerVerifyInfo function in lib/header.c in RPM before 4.9.1.3 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a negative value in a region offset of a package header, which is not properly handled in a numeric range comparison...

Mandriva Linux Security Advisory : libzip (MDVSA-2012:034)

Multiple vulnerabilities has been found and corrected in libzip : libzip version = 0.10 uses an incorrect loop construct, which can result in a heap overflow on corrupted zip files CVE-2012-1162. libzip version = 0.10 has a numeric overflow condition, which, for example, results in improper...

Moderate: Red Hat Security Advisory: glibc security and bug fix update

Updated glibc packages that fix two security issues and three bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

SIP Username Enumerator For Asterisk

require 'msf/core' class Metasploit3 'SIP Username Enumerator for Asterisk UDP Security Advisory AST-2011-013, CVE-2011-4597', 'Version' = '$Revision: 1 $', 'Description' = 'REGISTER scan for numeric peer usernames having a nat setting different to global sip nat setting. ' 'Ben Williams',...

SuSE 10 Security Update : PHP5 (ZYPP Patch Number 7553)

This update for PHP5 fixes the following security issues : - Input Validation in the ZIP extension and NumberFormatter. CWE-20, CVE-2011-0421 / CVE-2011-1470 / CVE-2011-1467 - Numeric Errors in the SHM support and ZIP extension. CWE-189, CVE-2011-1092 / CVE-2011-1471 - Buffer overflows in the...

SuSE 11.1 Security Update : MySQL (SAT Patch Number 5285)

This MySQL version update to 5.0.94 update fixes the following security issues : - CVE-2010-3833: CVSS v2 Base Score: 4.0 moderate AV:N/AC:L/Au:S/C:N/I:N/A:P: Resource Management Errors CWE-399 - CVE-2010-3834: CVSS v2 Base Score: 4.0 moderate AV:N/AC:L/Au:S/C:N/I:N/A:P: Insufficient Information...

SuSE 11.1 Security Update : MySQL (SAT Patch Number 5285)

This MySQL version update to 5.0.94 update fixes the following security issues : - CVE-2010-3833: CVSS v2 Base Score: 4.0 moderate AV:N/AC:L/Au:S/C:N/I:N/A:P: Resource Management Errors CWE-399 - CVE-2010-3834: CVSS v2 Base Score: 4.0 moderate AV:N/AC:L/Au:S/C:N/I:N/A:P: Insufficient Information...

SuSE 10 Security Update : wireshark (ZYPP Patch Number 7500)

This update to wireshark version 1.4.5 fixes the following security issues : - Resource Management Errors. CWE-399, CVE-2011-1590 - Buffer Errors. CWE-119, CVE-2011-1591 - Numeric Errors CWE-189, CVE-2011-1592 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugi...

Yahoo! Mail Cross Site Request Forgery

======================================================================= YAHOOMAIL CSRF Vulnerability ======================================================================= Vulnerability found in- Yahoomail Delete Contact module email [email protected] company AKS IT Services Pvt. Ltd...

CentOS Update for php CESA-2010:0919 centos5 i386

Check for the Version of php OpenVAS Vulnerability Test CentOS Update for php CESA-2010:0919 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Free CD To MP3 Overflow 3.1 Buffer Overflow

!/usr/bin/perl +Exploit Title: Free CD to MP3 Converter 3.1 Universal DEP Bypass Exploit +Date: 07\08\2011 +Author: C4SS!0 G0M3S +Software Link: http://www.exploit-db.com/application/15480/ +Version: 3.1 +Tested On: WIN-XP SP3 Brazilian Portuguese +CVE: N/A Dep bypass method:...

JVN#96950482: Mozilla Firefox vulnerable to cross-site scripting

Mozilla Firefox contains a vulnerability in the rendering of specific numeric character references, which may result in cross-site scripting. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Update to the latest version according to the informatio...

OpenJDK: incorrect numeric type conversion in TransformHelper (2D, 7016495)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 6 Update 25 and earlier allows remote attackers to affect confidentiality via unknown vectors related to 2D...

RHEL 5 / 6 : java-1.6.0-ibm (RHSA-2011:0938)

The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:0938 advisory. - Oracle/IBM JDK: unspecified vulnerabilities fixed in 6u26 Sound CVE-2011-0802, CVE-2011-0814 - OpenJDK: integer overflows in...

SuSE 11.1 Security Update : PHP5 (SAT Patch Number 4663)

This PHP5 update fixes : - CVE-2011-0421: CVSS v2 Base Score: 2.6 AV:N/AC:H/Au:N/C:N/I:N/A:P: Input Validation CWE-20 - CVE-2011-1092: CVSS v2 Base Score: 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P: Numeric Errors CWE-189 - CVE-2011-1148: CVSS v2 Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P: Resource Managemen...

Basic Codebreaking Lesson - Number, ENIGMA, ROT13

Document Title: =============== Basic Codebreaking Lesson - Number, ENIGMA, ROT13 References: =========== Download: http://www.vulnerability-lab.com/resources/videos/13.wmv View: http://www.youtube.com/watch?v=jOsYWvWTBA Release Date: ============= 2011-06-11 Vulnerability Laboratory ID VL-ID:...