1848 matches found
Oracle WebLogic Server Java Object Deserialization RCE (October 2016 CPU)
The remote Oracle WebLogic server is affected by a remote code execution vulnerability in the WLS Security component due to unsafe deserialize calls of unauthenticated Java objects to the Apache Commons File Upload library. An unauthenticated, remote attacker can exploit this, via a crafted a...
Critical Flaws in MySQL Give Hackers Root Access to Server (Exploits Released)
Over a month ago we reported about two critical zero-day vulnerabilities in the world's 2nd most popular database management software MySQL: MySQL Remote Root Code Execution CVE-2016-6662 Privilege Escalation CVE-2016-6663 At that time, Polish security researcher Dawid Golunski of Legal Hackers w...
Important: Red Hat Security Advisory: mariadb55-mariadb security update
An update for mariadb55-mariadb is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
The CISCO Nexus series switches release critical patch update-bug warning-the black bar safety net
! Cisco recently released a batch of patches, mainly for the CISCO Nexus 7 0 0 0 series switch with Nexus OS software. Nexus OTV(overlay transport virtualization)buffer overflow vulnerability According to the recent Cisco security Bulletin, Nexus 7 0 0 0 and the Nexus 7 7 0 0 series switches exis...
Oracle Netbeans IDE 8.1 - Directory Traversal
Oracle Netbeans IDE 8.1 - Directory Traversal + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/ORACLE-NETBEANS-IDE-DIRECTORY-TRAVERSAL.txt + ISR: ApparitionSec Vendor: =============== www.oracle.com Product:...
Oracle Fixes 253 Vulnerabilities in Last CPU of 2016
Oracle fixed 253 vulnerabilities across 76 product lines on Tuesday as part of its quarterly Critical Patch Update. Many of the fixes addressed by Oracle tackled vulnerabilities tied to securing critical enterprise data. Vulnerabilities in Oracle Fusion Middleware, a family of infrastructure...
Oracle Solaris Critical Patch Update : oct2016_SRU11_2_9_5_0
This Solaris system is missing necessary patches to address a critical security update : - Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Bash. The supported version that is affected is 10. Easily exploitable vulnerability allows low privileged attacker...
Oracle Solaris Critical Patch Update : oct2016_SRU11_3_13_4_0
This Solaris system is missing necessary patches to address a critical security update : - Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Kernel Zones. The supported version that is affected is 11.3. Easily exploitable vulnerability allows low privileged...
Oracle Solaris Critical Patch Update : oct2016_SRU11_3_12_4_0
This Solaris system is missing necessary patches to address critical security updates : - Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Files. The supported version that is affected is 11.3. Easily exploitable vulnerability allows low privileged attacke...
Oracle Solaris Critical Patch Update : oct2016_SRU11_3_11_6_0
This Solaris system is missing necessary patches to address critical security updates : - Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Kernel/X86. Supported versions that are affected are 10 and 11.3. Easily exploitable vulnerability allows low...
Oracle Releases Security Bulletin
Oracle has released its Critical Patch Update for October 2016 to address 247 vulnerabilities across multiple products. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review the Oracle...
Upgrade bundled Java to 8u101+
Oracle's Critical patch update for July includes some "unspecified vulnerability", for example CVE-2016-3552 & CVE-2016-3503, fixes in the "install" component of java that may affect Confluence...
Upgrade bundled Java to 8u101+
Oracle's Critical patch update for July includes some "unspecified vulnerability", for example CVE-2016-3552 & CVE-2016-3503, fixes in the "install" component of java that may affect Confluence...
Upgrade bundled Java to 8u101+
Oracle's Critical patch update for July includes some "unspecified vulnerability", for example CVE-2016-3552 & CVE-2016-3503, fixes in the "install" component of java that may affect Confluence...
DLA-567-1 mysql-5.5 - security update
Bulletin has no description...
Upgrade bundled Java to 8u101+
Oracle's Critical patch update for July includes some "unspecified vulnerability", for example CVE-2016-3552 & CVE-2016-3503, fixes in the "install" component of java that may affect JIRA...
Upgrade bundled Java to 8u101+
Oracle's Critical patch update for July includes some "unspecified vulnerability", for example CVE-2016-3552 & CVE-2016-3503, fixes in the "install" component of java that may affect JIRA...
Oracle WebLogic Server Java Object Deserialization RCE (July 2016 CPU)
The remote Oracle WebLogic Server is affected by a remote code execution vulnerability in the WLS Core component in the readObject function due to improper sanitization of user-supplied input. An unauthenticated, remote attacker can exploit this, via a crafted object payload, to bypass the...
Important: Red Hat Security Advisory: mysql55-mysql security update
An update for mysql55-mysql is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...
Moderate: Red Hat Security Advisory: mariadb55-mariadb security update
An update for mariadb55-mariadb is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...