4601 matches found
Apache Tomcat denial of service (DoS) vulnerability
Overview Apache Tomcat from The Apache Software Foundation contains a denial of service DoS vulnerability. Apache Tomcat from the Apache Software Foundation is an implementation of the Java Servlet and JavaServer Page JSP technologies. If Tomcat receives a request with an invalid header via the...
SEC Consult SA-20090525-0 :: Nortel Contact Center Manager Server Authentication Bypass Vulnerability
SEC Consult Security Advisory 20090525-0 ========================================================================== title: Nortel Contact Center Manager Server Authentication Bypass program: Nortel Contact Center Manager Server vulnerable version: 6.0 homepage: http://www.nortel.com/ccms found:...
Multiple Vendor - PF Null Pointer Dereference
Multiple Vendor - PF Null Pointer Dereference / / / / / / / / / / / / / // / / / / / / / / / // / / / // // / / / / / // ///// // // // Helith - 0815 -------------------------------------------------------------------------------- Author : Rembrandt Date : 2009-04-30 Found : 2009-04-09 Affected...
Microsoft Internet Explorer Denial of Service Vulnerability - Apr09
This host is installed with Internet Explorer and is prone to Denial of Service Vulnerability. OpenVAS Vulnerability Test $Id: secpodmsiedosvulnapr09.nasl 6527 2017-07-05 05:56:34Z cfischer $ Microsoft Internet Explorer Denial of Service Vulnerability - Apr09 Authors: Sharath S Copyright: Copyrig...
PPLive Multiple Argument Injection Vulnerabilities
This host has PPLive installed and is prone to multiple argument injection vulnerabilities. OpenVAS Vulnerability Test $Id: secpodpplivecodeexevuln.nasl 5122 2017-01-27 12:16:00Z teissa $ PPLive Multiple Argument Injection Vulnerabilities Authors: Nikita MR Copyright: Copyright c 2009 SecPod,...
Rittal CMC-TC Processing Unit II Multiple Vulnerabilities
No description provided by source. Louhi Networks Oy -= Security Advisory =- Advisory: Rittal CMC-TC Processing Unit II multiple vulnerabilities Release Date: 2009-03-23 Last Modified: 2009-03-22 Authors: Henri Lindberg, CISA henri d0t lindberg at louhi d0t fi Application: Rittal CMC-TC PU II Web...
DDIVRT-2009-22 SMART Board Whiteboard Directory Traversal Vulnerability
Title ----- DDIVRT-2009-22 SMART Board Whiteboard Directory Traversal Vulnerability Severity -------- High Date Discovered --------------- January 19th, 2009 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: David Marshall and r@b13$ Vulnerability Description...
RavenNuke avartarlist.php模块PHP代码注入漏洞
BUGTRAQ ID: 33787 RavenNuke是基于PHP和MySQL的自动新闻发布和内容管理系统。 RavenNuke的avatarlist.php模块没有正确地验证对pregreplace调用所传送的patterns和replacements参数,远程攻击者可以通过向服务器提交恶意请求导致注入并执行任意PHP代码。以下是有漏洞的代码段: $patterns0 = '/.gif/'; $patterns1 = '/.png/'; ... $replacements1 = ''; $replacements0 = ''; ... $entryname =...
VUPlayer .asx Playlist File Buffer Overflow Vulnerability
This host is installed with VUPlayer and is prone to Buffer Overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodvuplayerasxplaylistbofvuln.nasl 5148 2017-01-31 13:16:55Z teissa $ VUPlayer .asx Playlist File Buffer Overflow Vulnerability Authors: Sharath S Copyright: Copyright c 2009...
SEC Consult SA-20081219-0 :: Fujitsu-Siemens WebTransactions remote command injection vulnerability
SEC-CONSULT Security Advisory 20081219-0 =================================================================================== title: Fujitsu-Siemens WebTransactions Remote Command Injection Vulnerability program: WebTransactions vulnerable version: =7.1 homepage: http://www.fujitsu-siemens.com/...
PT-2008-5548 · Microsoft · Windows Server 2008 +3
Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: A remote code execution issue exists due to improper memory handling during the saving of a search file. This allows attackers to execute arbitrary code via a crafted...
Sun Java Web Start Remote Command Execution Vulnerability (Linux)
This host is running Sun Java Web Start and is prone to Remote Command Execution Vulnerability. OpenVAS Vulnerability Test $Id: gbsunjavawscodeexecvulnlin.nasl 7174 2017-09-18 11:48:08Z asteins $ Sun Java Web Start Remote Command Execution Vulnerability Linux Authors: Veerendra GG Copyright:...
Secunia Research: Trend Micro OfficeScan CGI Parsing Buffer Overflows
====================================================================== Secunia Research 22/10/2008 - Trend Micro OfficeScan CGI Parsing Buffer Overflows - ====================================================================== Table of Contents Affected...
PT-2008-4912 · Jasper +1 · Jasper +1
Name of the Vulnerable Software and Affected Versions: JasPer version 1.900.1 Description: A race condition exists in the jas stream tmpfile function, allowing local users to cause a denial of service by creating a specific temporary file, which causes the program to exit. Recommendations: For...
PT-2008-5050 · Havp · Http Antivirus Proxy
Name of the Vulnerable Software and Affected Versions: HTTP Antivirus Proxy HAVP version 0.88 Description: The issue allows remote attackers to cause a denial of service by connecting to a non-responsive server, triggering an infinite loop due to an uninitialized variable. This occurs in the...
Ruby 1.9 - regex engine Remote Socket Memory Leak
Ruby 1.9 - regex engine Remote Socket Memory Leak ------------------------------------------------------- Language : Ruby Web Site: www.ruby-lang.org Platform: All Bug: Remote Socket Memory Leak Products Affected: 1.8 series: - 1.8.5 and all prior versions - 1.8.6-p286 and all prior versions -...
Ruby 1.9 - regex engine Remote Socket Memory Leak
------------------------------------------------------- Language : Ruby Web Site: www.ruby-lang.org Platform: All Bug: Remote Socket Memory Leak Products Affected: 1.8 series: - 1.8.5 and all prior versions - 1.8.6-p286 and all prior versions - 1.8.7-p71 and all prior versions 1.9 series - r18423...
Camera Life 2.6.2 (id) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ========================================================= Camera Life 2.6.2 id Remote SQL Injection Vulnerability ========================================================= Camera Life 2.6.2id Sql Injection Vulnerability Author: nuclear...
PT-2008-1134 · Underbit Technologies +1 · Libid3Tag +1
Name of the Vulnerable Software and Affected Versions: libid3tag versions 0.15.0b through 0.15.1b-r1 libid3tag version 0.15.1b-r2 is not affected, so the range is up to 0.15.1b-r1 Description: The issue allows context-dependent attackers to cause a denial of service, specifically CPU consumption,...
PT-2008-3244 · Autonomy · Worksite Web
Name of the Vulnerable Software and Affected Versions: WorkSite Web versions 8.2 before SP1 P2 Description: The issue allows remote attackers to cause a denial of service, specifically memory consumption, via a large number of SendNrlLink directives. This results in opening a separate window for...