PT-2016-4817 · Cisco · Cisco Spa300 +2

Name of the Vulnerable Software and Affected Versions: Cisco SPA300, SPA500, and SPA51x devices affected versions not specified Description: The issue allows remote attackers to cause a denial of service, resulting in a device outage, by sending a series of malformed HTTP requests to the HTTP...

PT-2016-1199 · Adobe +3 · Flash Player +4

Name of the Vulnerable Software and Affected Versions: Adobe Integrated Runtime and Flash Player affected versions not specified Description: The issue is caused by a buffer overflow. It may allow a remote attacker to execute arbitrary code or cause a denial of service memory corruption...

PT-2014-2059 · Cisco · Cisco Asa

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software affected versions not specified Description: The issue is a cross-site scripting XSS vulnerability in the WebVPN login page of Cisco Adaptive Security Appliance ASA Software. This vulnerability...

JBoss RichFaces 远程代码执行漏洞(CVE-2013-2165)

Bugtraq ID:61085 CVE ID:CVE-2013-2165 JBoss RichFaces是一个具 Ajax和JSF特性的Web框架 RichFaces ResourceBuilderImpl处理反序列化存在在安全漏洞，允许远程攻击者利用此漏洞发送特殊数据，执行部署在服务器上任意可序列化类中的反序列化方法 此漏洞所产生的影响其严重程序取决于这些类的反序列化逻辑 0 JBoss RichFaces 厂商解决方案 用户可参考如下厂商提供的安全公告获得补丁信息： https://rhn.redhat.com/errata/RHSA-2013-1041.html...

Oracle WebCenter Sites (AKA FatWire) XSS / SQL Injection / CSRF

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple vulnerabilities in Oracle WebCenter Sites product: Oracle WebCenter Sites former FatWire Content Server vulnerable version: 6.1, 6.2, 6.3.x, 7, 7.0.1, 7.0.2,...

PT-2012-1375 · Kaspersky · Kaspersky Internet Security

Name of the Vulnerable Software and Affected Versions: Kaspersky Internet Security 2010 version 9.0.0.736 Description: A race condition allows local users to bypass kernel-mode hook handlers and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based...

PT-2012-1245 · Microsoft · Windows Server +1

Name of the Vulnerable Software and Affected Versions: Reliability Analysis Metrics Calculation Engine RACEng affected versions not specified Description: The issue is related to an elevation of privilege vulnerability in the Reliability Analysis Metrics Calculation Engine RACEng due to inadequat...

AIX 530012 : U841520

The remote host is missing AIX PTF U841520 which is related to the security of the package Java5.source You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...

AIX 610004 : U840238

The remote host is missing AIX PTF U840238 which is related to the security of the package bos.acct You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...

AIX 610006 : U835898

The remote host is missing AIX PTF U835898 which is related to the security of the package sysmgt.pconsole.apps.wrbac.6.1 You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...

IBM Informix IDS 'librpc.dll'伪造漏洞

IBM Informix Dynamic Server是一款数据库服务程序。 默认监听UDP 111端口的librpc.dll组件存在缺陷，当处理pmapset请求时，进程会校验源地址是否为"127.0.0.1"。此通信通过UDP，无需合法源地址。创建源地址为"127.0.0.1"的UDP报文给此服务，允许远程攻击者注册或注销RPC服务，远程攻击者可以利用此漏洞进行拒绝服务条件或窃听进程通信。 Bugtraq ID: 47875 CVE ID：CVE-2011-1210 IBM Informix IDS 11.70 IBM Informix IDS 11.50.xC8 IBM...

AIX 710000 : U837285

The remote host is missing AIX PTF U837285 which is related to the security of the package bos.svpkg.7.1.0.15 You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...

Check Point SSL VPN On-Demand应用程序远程代码执行漏洞

Bugtraq ID: 47695 CVE ID：CVE-2011-1827 SNX SecureWorkSpace和Endpoint Security On-Demand可从Connectra或security gateways下载的客户端，可实现按需远程连接。它们可使用Check Point Deployment Agent Java applet或ActiveX控件配置在浏览中。 应用程序SSL网络扩展器SNX, SecureWorkSpace和Endpoint Security On-Demand通过浏览器配置时，容易受到恶意网站的攻击，导致在末端用户机器上执行任意恶意代码。...

AIX 610004 : U841484

The remote host is missing AIX PTF U841484 which is related to the security of the package bos.rte.man You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...

AIX 610004 : U841460

The remote host is missing AIX PTF U841460 which is related to the security of the package bos.rte.libc You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...

Ecava IntegraXor未明SQL注入漏洞

Bugtraq ID: 47019 Ecava IntegraXor是一款使用HTML和SVG的人机接口产品。 Ecava IntegraXor存在一个未明SQL注入漏洞，允许远程攻击者提交特制的HTTP POST请求获得敏感数据，操作数据或执行任意代码。 Ecava IntegraXor 3.60.4032 Ecava IntegraXor 3.60 Ecava IntegraXor 3.6.4000.0 Ecava IntegraXor 3.5.3900.5 Ecava IntegraXor 3.5.3900.10 Ecava IntegraXor 3.5 厂商解决方案...

RSA Access Manager Server CVE-2011-0322安全绕过漏洞

Bugtraq ID: 46875 CVE ID：CVE-2011-0322 CNCVE ID：CNCVE-20110322 RSA Access Manager Server是一款因素动态口令身份认证解决方案。 由于不正确的输入处理，RSA Access Manager Server存在一个安全漏洞，允许恶意用户获得对受保护资源的未授权访问。 RSA Access Manager Server version 5.5.x RSA Access Manager Server version 6.0.x RSA Access Manager Server version 6.1.x...

AIX 530012 : U840453

The remote host is missing AIX PTF U840453 which is related to the security of the package devices.pciex.8680c71014108003.rte You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...

AIX 530012 : U840433

The remote host is missing AIX PTF U840433 which is related to the security of the package bos.sysmgt.servaid You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...

AIX 610006 : U838281

The remote host is missing AIX PTF U838281 which is related to the security of the package devices.vdevice.IBM.v-scsi.rte.6.1 You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...