AIX 520007 : U805557

The remote host is missing AIX PTF U805557 which is related to the security of the package bos.rte.install You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...

AIX 530003 : U802461

The remote host is missing AIX PTF U802461 which is related to the security of the package sysmgtlib.libraries.apps You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'...

IBM DB2多个特权提升漏洞

IBM DB2 Universal Database是一款商业性质的数据库系统。 IBM DB2 Universal Database存在多个安全问题，远程和本地攻击者可以利用漏洞提升特权。 目前没有详细漏洞细节提供。 IBM DB2 Universal Database for Windows 9.1 FixPak 3 IBM DB2 Universal Database for Windows 9.1 FixPack 2 IBM DB2 Universal Database for Windows 9.1 IBM DB2 Universal Database for Solaris...

Perl Unicode规则表达式缓冲区溢出漏洞

Perl是一款功能强大的编程语言。 Perl的规则表达式引擎存在一个缺陷，远程攻击者可以利用漏洞以Perl进程权限执行任意指令。 在处理Unicode规则表达式时存在一个缓冲区溢出，攻击者构建特殊的输入到规则表达式，可导致Perl不正确分配内存，导致以运行Perl进程的用户进程权限执行任意指令。 RedHat Enterprise Linux Desktop v.5 client RedHat Enterprise Linux WS 4 RedHat Enterprise Linux WS 3 RedHat Enterprise Linux v. 5 server RedHat...

Mac OSX平台下Opera浏览器的Adobe Flash Player存在未明漏洞

Adobe Flash Player是一款FLASH播放器。 Mac OSX平台下Opera浏览器的Adobe Flash Player存在未明安全问题，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 目前没有详细漏洞细节提供。 Adobe Flash Player 9.0.47.0 Adobe Flash Player 9.0.45.0 Adobe Flash Player 9.0.31.0 Adobe Flash Player 9.0.28.0 Adobe Flash Player 8.0.34.0 Adobe Flash Player 7.0.69.0...

Nortel Networks多个UNIStim VoIP产品远程窃听漏洞

Nortel IP Phones是一款IP电话应用方案。 Nortel IP Phones存在设计错误，远程攻击者可以利用漏洞对设备进行窃听，导致敏感信息泄露。 如果正确的UNIStim消息发送给IP电话，IP电话可进入surveillance模式，UNIStim消息ID必须匹配信号服务器和IP电话间的可预期ID，协议使用16位大小作为ID数字，如果恶意用户发送65536个所有可能ID号的伪造UNIStim消息，可导致消息被窃听，造成敏感信息泄露。 Nortel Networks Universal Access - IP 0 Nortel Networks Survivable...

HP-UX OpenSSL未明本地拒绝服务漏洞

HP HP-UX是一款商业性质的操作系统。 HP-UX包含的OpenSSL实现存在未明问题，本地攻击者可以利用漏洞对应用服务进行拒绝服务攻击。 目前没有详细漏洞细节提供。 HP HP-UX 11.23 HP HP-UX 11.11 HP HP-UX 11.31 可参考如下安全公告获得补丁信息： http://www.securityfocus.com/archive/1/482369...

Cisco Unified Communications管理应用程序特权提升漏洞

Cisco Unified Communications Manager（CUCM，之前被称为CallManager）是Cisco IP电话解决方案中的呼叫处理组件。 Cisco Unified Communications管理应用程序包含的基于WEB的工具存在访问验证问题，远程攻击者可以利用漏洞访问设备敏感信息和更改应用程序配置。 Cisco Unified ICME, Unified ICMH, UCCE,...

CISCO IOS NHRP缓冲区溢出漏洞

Cisco IOS是一款流行的网络操作系统。 Cisco IOS包含的NHRP协议存在缓冲区溢出问题，远程攻击者可以利用漏洞对应用协议进行拒绝服务攻击。 NHRP是一款标准用于提供非广播多路访问网络的层二到层三解析的协议。NHRP协议存在未明缓冲区溢出攻击，可导致拒绝服务或任意代码执行攻击。 Cisco IOS 12.4 MR Cisco IOS 12.3 YM Cisco IOS 12.3 YJ Cisco IOS 12.3 BW Cisco IOS 12.2 ZR Cisco IOS 12.2 ZL Cisco IOS 12.2 ZJ Cisco IOS 12.2 ZF Cisco...

PT-2007-4905 · Mozilla · Firefox

Name of the Vulnerable Software and Affected Versions: Mozilla Firefox version 2.0.0.4 Description: The issue allows remote attackers to cause a denial of service by opening multiple tabs in a popup window. However, this issue has been disputed by third-party researchers, who claim that they cann...

F5 FirePass 4100 SSL VPN My.Activiation.PHP3远程命令注入漏洞

F5's FirePass SSL VPN提供使用标准WEB浏览器对应用程序和数据进行安全访问的解决方案。 F5 FirePass 4100不正确过滤用户提交的输入，远程攻击者可以利用漏洞以WEB权限执行任意命令。 问题是'my.activation.php3'脚本对用户提交的'username'参数缺少过滤，在部分条件下允许用户注入Linux SHELL命令，导致以WEB权限执行。 F5 FirePass 4100 厂商解决方案 可参考如下安全公告获得补丁信息： https://tech.f5.com/home/solutions/sol167.html...

Cisco Unified CallManager和Unified Server多个拒绝服务漏洞

Cisco Unified CallManager提供了一种可扩展、可分布和高可用的企业IP电话呼叫处理解决方案。 Cisco Unified CallManager CUCM和Cisco Unified Presence Server CUPS存在多个安全问题，远程攻击者可以利用漏洞对服务程序进行拒绝服务攻击。 具体问题如下： - SCCP/SCCPS端口扫描拒绝服务 Skinny Call Control Protocol SCCP协议是Cisco私有语音协议，用于CallManager系统和IP电话的呼叫管理。SCCP使用TCP 2000进行通信，运行在TCP...

Hitachi Directory Server LDAP请求处理多个安全漏洞

Hitachi Directory Server是一款目录服务协议实现应用系统。 Hitachi Directory Server不正确处理非法LDAP请求，远程攻击者可以利用漏洞对服务程序进行拒绝服务或任意代码执行攻击。 目前没有详细漏洞细节提供。 Hitachi Directory Server Version 2 P-2444-A124 02-11-/H Hitachi Directory Server Version 2 P-2444-A124 02-11-/G Hitachi Directory Server Version 2 P-2444-A124 02-11-/F...

SQL Injection in package SYS.DBMS_CDC_IMPDP

Name SQL Injection in package SYS.DBMSCDCIMPDP DB04 Systems Affected Oracle 10g Severity High Risk Category SQL Injection Vendor URL http://www.oracle.com/ Author Alexander Kornbrust ak at red-database-security.com Advisory 18 October 2006 V 1.00 Advisory...

[Full-disclosure] Novell NDPS Remote Vulnerability (Server & Client)

Summary: There's an integer overflow present that affects Novell Windows clients and Novell Netware server and Novell Open Enterprise server. Impact: Remote, unauthenticated, super-user privileges. Affected software: Novell Netware All versions Novell Open Enterprise Server All NetWare based...

oracle_htmldb_css.txt

Cross-Site-Scripting Vulnerabilities in Oracle HTMLDB Name Cross-Site-Scripting Vulnerabilities in Oracle HTMLDB Systems Affected Oracle HTMLDB Severity Medium Risk Category Cross Site Scripting CSS/XSS Vendor URL http://www.oracle.com This advisory...

Run any OS Command via unauthorized Oracle Reports

Name Run any OS Command via unauthorized Oracle Reports Systems Affected Oracle Reports 6.0, 6i, 9i, 10g Severity High Risk Category OS command execution Vendor URL http://www.oracle.com Author Alexander Kornbrust ak at red-database-security.com Date 19 July 2005 V 1.00 Advisory AKSEC2003-014...

Various Cross-Site-Scripting Vulnerabilities in Oracle Reports

Name Various Cross-Site-Scripting Vulnerabilities in Oracle Reports Systems Affected Oracle Reports 9.0.2 Severity Low Risk Category Cross Site Scripting CSS/XSS Vendor URL http://www.oracle.com Author Alexander Kornbrust ak at red-database-security.com Date 19 July 2005 V 1.00 Inital bug report...

PT-2005-2672 · Postnuke · Postnuke

Name of the Vulnerable Software and Affected Versions: PostNuke versions 0.750 through 0.760RC3 Description: The issue allows remote attackers to obtain sensitive information via a direct request to "simple smarty.php", which reveals the path in an error message. Recommendations: For PostNuke...

Veritas Backup Exec registration request buffer overflow

Overview Certain versions of Veritas Backup Exec 8.x and 9.x can be remotely exploited to allow execution of arbitrary code on affected servers. Description A buffer overflow exists in Veritas Backup Exec 8.x prior to 8.60.3878 Hotfix 68, and 9.x pritor to 9.1.4691 Hotfix 40. A stack-based buffer...