RoomWizard Credential Disclosure

% Advisory Name: RoomWizard Default Password and Sync Connector Credential Leak % Date: 2010-08-16 % Appliance/SW: RoomWizard Web-based room scheduling system % Versions: Tested on Firmware 3.2.3 Model RW10 % Author: Sean Lam % Vendor Status: Vendor Contacted % CVE Candidate: CVE-2010-0214 %...

Privilege escalation vulnerability when administrator access is compromised

panel:borderColor=ff0000|borderStyle=solid|bgColor=ffccccNote: This issue is superceded by JRA-21004. Please install the patches on that issue, rather than this one. For more details, see JIRA Security Advisory -...

HP OpenView Network Node Manager nnmRptConfig.exe CGI Template Buffer Overflow

Added: 01/09/2010 CVE: CVE-2009-3848 BID: 37296 OSVDB: 60926 Background HP OpenView Network Node Manager is network availability and performance management software. Problem A stack buffer overflow vulnerability allows remote attackers to execute arbitrary commands by requesting the...

Sun Java Web Console Multiple XSS Vulnerabilities

The host is running Java Web Console and is prone to Multiple Cross-Site Scripting Vulnerabilities. OpenVAS Vulnerability Test $Id: gbsunjavawebconsolexssvuln.nasl 4892 2016-12-30 15:39:07Z teissa $ Sun Java Web Console Multiple XSS Vulnerabilities Authors: Sharath S Copyright: Copyright c 2009...

FreeBSD直接管道写操作本地信息泄露漏洞

BUGTRAQ ID: 35279 FreeBSD就是一种运行在Intel平台上、可以自由使用的开放源码Unix类系统。 FreeBSD和其他UNIX类系统上最常见的进程间通讯方式之一是匿名管道。这种机制会创建一对文件描述符，可以从一个描述符读取写入到另一个描述符的数据。 FreeBSD的管道实现中包含名为“直接写入”的优化。在这种优化中，FreeBSD内核利用虚拟内存映射允许直接在进程之间拷贝数据，而不是在调用...

Windows GDI Privilege Elevation

Added: 05/25/2009 CVE: CVE-2006-5758 BID: 20940 OSVDB: 30214 Background The Graphics Rendering Engine in Microsoft Windows 2000 and Windows XP maps GDI Kernel structures on a global shared memory section that is created with insecure permissions. Problem Users with local access can remap the shar...

Moodle < 1.6.9/1.7.7/1.8.9/1.9.5 File Disclosure Vulnerability

Exploit for unknown platform in category web applications ============================================================== Moodle 1.6.9/1.7.7/1.8.9/1.9.5 File Disclosure Vulnerability ============================================================== Moodle File Disclosure Vulnerability Systems Affecte...

Fujitsu SystemcastWizard Lite PXE service buffer overflow

Added: 03/03/2009 CVE: CVE-2009-0270 BID: 33342 OSVDB: 51486 Background SystemcastWizard Lite is support software for the setup of Primequest systems. Problem A buffer overflow vulnerability allows remote attackers to execute arbitrary commands by sending a long, specially crafted datagram to the...

IBM TSM Client Remote Heap BOF Vulnerability

This host is installed with IBM TSM Client and is prone to heap based buffer overflow vulnerability. Vulnerability exists due to an input validation error in TSM Backup-Archive client, which affects the Client Acceptor Daemon CAD and the Backup-Archive client scheduler and scheduler service when...

SA-2008-026 - Drupal core - Access bypass

The menu system routes page requests to appropriate handlers. It also determines whether a user has access to pages based on several criteria, such as permissions assigned to a role. Drupal 6 features an entirely revised menu system, including changes to the way access is dealt with, which if not...

SuSE 10 Security Update : PostgreSQL (ZYPP Patch Number 3244)

This update fixes two vulnerabilities that affect the backend server and can only be exploited by authenticated users to cause a denial-of-service, or maybe to access other tables/databases without authentication. CVE-2007-0555 / CVE-2007-0556 %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

HP-UX Security Patch : PHSS_33692

X OV ITO7.1X Msg/Act Linux Agent A.07.31 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid26814; scriptversion"1.9"; scriptsetattributeattribute:"pluginmodificationdate",...

[SA18480] E-Post Mail Server Products Multiple Vulnerabilities

TITLE: E-Post Mail Server Products Multiple Vulnerabilities SECUNIA ADVISORY ID: SA18480 VERIFY ADVISORY: http://secunia.com/advisories/18480/ CRITICAL: Highly critical IMPACT: Security Bypass, Exposure of system information, DoS, System access WHERE: From remote SOFTWARE: E-Post Mail Server 4.x...

[SA14451] Squid Set-Cookie Header Leak Security Issue

---------------------------------------------------------------------- Monitor, Filter, and Manage Security Information - Filtering and Management of Secunia advisories - Overview, documentation, and detailed reports - Alerting via email and SMS Request Trial: https://ca.secunia.com/?f=l...

[Full-Disclosure] Integrigy Security Advisory - High Risk Security Issues in the Oracle Database and Oracle Applications

Integrigy Security Advisory High Risk Security Issues in the Oracle Database and Oracle Applications Oracle Critical Patch Update - January 2005 January 19, 2005 Summary: Oracle has released the its first Critical Patch Update January 2005 and fixes 23 vulnerabilities in the Oracle Database, Orac...

Security fix for the ALT Linux 8 package apache2 version 2.0.52-alt3

Dec. 27, 2004 Sviatoslav Sviridov 2.0.52-alt3 - updated alt-configure patch to check for available libldap and link with libldap - applied patches: + httpd-2.0.52-sslauth.patch + httpd-2.0.52-SSLCipherSuite-bypass-CAN-2004-0885.diff + httpd-2.0.52-memory-consumption-DoS-CAN-2004-0942.diff +...

Microsoft Data Access Components (MDAC) contains buffer overflow

Overview Microsoft Data Access Components MDAC contains a buffer overflow vulnerability that could allow a remote attacker to execute arbitrary code or cause a denial of service. Description From Microsoft Security Bulletin MS04-003:Microsoft Data Access Components MDAC is a collection of...

Microsoft Help and Support Center contains buffer overflow in code used to handle HCP protocol

Overview There is a buffer overflow in the Microsoft Help and Support Center that could permit an attacker to execute arbitrary code with SYSTEM privileges. Description The Microsoft Help and Support Center is a facility within WIndows to provide product help and documentation. Among other things...

Microsoft Internet Explorer does not properly render input type tag

Overview Microsoft Internet Explorer IE does not properly render an input type tag, allowing a remote attacker to cause a denial of service. Description Microsoft Security Bulletin MS03-032 briefly describes ...a flaw in the way Internet Explorer renders Web pages that could cause the browser or...

gtop daemon contains buffer overflow

Overview A buffer overflow exists in the gtop daemon. Description A buffer overflow in gtopd, specifically permitted, may allow a remote attacker to execute arbitrary code. For more detailed information, please see Flavio Veloso's analysis.gtop background information Many Unix systems allow only...