Design/Logic Flaw

Unspecified vulnerability in the Retail - Oracle Retail Markdown Optimization component in Oracle Industry Product Suite 13.1 allows remote attackers to affect integrity via unknown vectors related to Online Help...

CVE-2010-0862

The CVE-2010-0862 entry concerns Oracle Industry Product Suite 13.1, specifically the Retail - Oracle Retail Markdown Optimization component. It describes an unspecified vulnerability that could allow remote attackers to affect integrity via unknown vectors related to Online Help. The threat cont...

CVE-2010-0862

Unspecified vulnerability in the Retail - Oracle Retail Markdown Optimization component in Oracle Industry Product Suite 13.1 allows remote attackers to affect integrity via unknown vectors related to Online Help...

ldap-brute NSE Script

Attempts to brute-force LDAP authentication. By default it uses the built-in username and password lists. In order to use your own lists use the userdb and passdb script arguments. This script does not make any attempt to prevent account lockout! If the number of passwords in the dictionary excee...

Beware of Brittany Murphy Death Malware

It didn’t take long before cybercriminals seized the opportunity to use the death of actress Brittany Murphy to peddle malware in search engine optimization poisoning. Read the full article. Help Net Security...

VideoCache 1.9.2 vccleaner root vulnerability

==== SYNOPSIS ===================================================== VideoCache is a Squid URL rewriter plugin written in Python for bandwidth optimization while browsing video sharing websites. Version 1.9.2 allows a user with the privileges of the Squid proxy server to append semi-arbitrary data...

VideoCache 1.9.2 vccleaner root vulnerability

Exploit for unknown platform in category local exploits ============================================= VideoCache 1.9.2 vccleaner root vulnerability ============================================= Title: VideoCache 1.9.2 vccleaner root vulnerability CVE-ID: OSVDB-ID: Author: Dominick LaTrappe...

VideoCache 1.9.2 - vccleaner Local Privilege Escalation

VideoCache 1.9.2 - vccleaner Local Privilege Escalation ==== SYNOPSIS ===================================================== VideoCache is a Squid URL rewriter plugin written in Python for bandwidth optimization while browsing video sharing websites. Version 1.9.2 allows a user with the privileges...

VideoCache 1.9.2 vccleaner root vulnerability

No description provided by source. ==== SYNOPSIS ===================================================== VideoCache is a Squid URL rewriter plugin written in Python for bandwidth optimization while browsing video sharing websites. Version 1.9.2 allows a user with the privileges of the Squid proxy...

FreeBSD直接管道写操作本地信息泄露漏洞

BUGTRAQ ID: 35279 FreeBSD就是一种运行在Intel平台上、可以自由使用的开放源码Unix类系统。 FreeBSD和其他UNIX类系统上最常见的进程间通讯方式之一是匿名管道。这种机制会创建一对文件描述符，可以从一个描述符读取写入到另一个描述符的数据。 FreeBSD的管道实现中包含名为“直接写入”的优化。在这种优化中，FreeBSD内核利用虚拟内存映射允许直接在进程之间拷贝数据，而不是在调用...

Ubuntu 6.06 LTS / 7.10 / 8.04 LTS : linux, linux-source-2.6.15/22 vulnerabilities (USN-659-1)

It was discovered that the direct-IO subsystem did not correctly validate certain structures. A local attacker could exploit this to cause a system crash, leading to a denial of service. CVE-2007-6716 It was discovered that the disabling of the ZEROPAGE optimization could lead to large memory...

Mandriva Update for tripwire MDKA-2007:011 (tripwire)

Check for the Version of tripwire OpenVAS Vulnerability Test Mandriva Update for tripwire MDKA-2007:011 tripwire Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

Be careful what you search for

While search engine optimization SEO is becoming one of the must do’s for companies that are trying to improve theirsite ranking in search engines like Google and Yahoo, it’s also increasingly becoming a trick of the trade for spammers and malware authors looking to drive traffic to their own...

Ubuntu Update for linux, linux-source-2.6.15/22 vulnerabilities USN-659-1

Ubuntu Update for Linux kernel vulnerabilities USN-659-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6591.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for linux, linux-source-2.6.15/22 vulnerabilities USN-659-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks...

Linux/sparc - Portbind 8975/tcp - 284 bytes

No description provided by source. / 0-day portbind shellcode for all those Sun machines running linux.. Coded from scratch, so i take all the credits. It simply binds a pretty shell in port 8975/tcp enjoy. no nulls, no fork, no shit, couldn't be more optimized. enjoy!. Arch : Sparc OS : Linux Ta...

Fedora 8 : imlib2-1.4.2-2.fc8 (2008-10296)

Sun Nov 23 2008 Tomas Smetana 1.4.2-2 - patch for CVE-2008-5187 - Thu Oct 23 2008 Tomas Smetana 1.4.2-1 - new upstream version - Fri May 30 2008 Tomas Smetana 1.4.0-7 - patch for CVE-2008-2426 - Tue Mar 11 2008 Hans de Goede 1.4.0-6 - Disable amd64 assembly optimization. Kills idesk - 222998,...

Fedora 9 : imlib2-1.4.2-2.fc9 (2008-10287)

Sun Nov 23 2008 Tomas Smetana 1.4.2-2 - patch for CVE-2008-5187 - Thu Oct 23 2008 Tomas Smetana 1.4.2-1 - new upstream version - Fri May 30 2008 Tomas Smetana 1.4.0-7 - patch for CVE-2008-2426 - Tue Mar 11 2008 Hans de Goede 1.4.0-6 - Disable amd64 assembly optimization. Kills idesk - 222998,...

Fedora 8 : optipng-0.6.2-1.fc8 (2008-9639)

The main reason for this update is a buffer overflow that is removed in this version, that could be triggered by processing specially crafted bitmap images .bmp. Aggregated upstream changelog: ============================== ++ Put back a speed optimization, accidentally removed in version 0.6,...

kernel: Reinstate ZERO_PAGE optimization in 'get_user_pages()' and fix XIP

The Linux kernel 2.6.24 and 2.6.25 before 2.6.25.9 allows local users to cause a denial of service memory consumption via a large number of calls to the getuserpages function, which lacks a ZEROPAGE optimization and results in allocation of "useless newly zeroed pages."...

CVE-2008-4438

CVE-2008-4438 affects Datafeed Studio 1.6.2, where a Cross-Site Scripting (XSS) flaw exists in search.php due to the q parameter. The vulnerability allows remote attackers to inject arbitrary web script or HTML. The CVSS2 base score is 4.3 (Medium) with network attack vector, requiring no authent...