Fedora 16 : mumble-1.2.3-5.fc16.1 (2012-8956)

This update fixes a number of startup problems of the mumble server murmur. Additionally it contains a fix for CVE-2012-0863 insecure world-readable permissions on database file of the mumble client. Note that Tenable Network Security has extracted the preceding description block directly from th...

Firefox 13 Fixes Seven Security Vulnerabilities

Mozilla has fixed seven security vulnerabilities in its flagship Firefox browser, including four critical bugs. The fixes are included in Firefox 13, which was released Tuesday. Firefox 13 will download automatically for most users and be installed once users restart the browser. Among the securi...

SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 5667)

This kernel update for SUSE Linux Enterprise 10 Service Pack 2 fixes various bugs and some security problems : - When creating a file, open/creat allowed the setgid bit to be set via the mode argument even when, due to the bsdgroups mount option or the file being created in a setgid directory, th...

SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 2605)

This kernel update fixes the following security problems : - The ftdisio driver allowed local users to cause a denial of service memory consumption by writing more data to the serial port than the hardware can handle, which causes the data to be queued. This requires this driver to be loaded, whi...

Lynx Message Server 7.11.10.2 Cross Site Scripting / SQL Injection

Summary The Micro Technology Services Inc. "Lynx Message Server 7.11.10.2" and/or "LynxTCPService version 1.1.62" web interface is vulnerable to SQL Injection, Cross-Site Scripting, and other security problems. 2. Description Lynx is a "Facility wide Duress and Emergency Notification" system...

OpenSSL 1.0.1 Memory Corruption

Exploit for multiple platform in category remote exploits Incorrect integer conversions in OpenSSL can result in memory corruption. -------------------------------------------------------------------------- CVE-2012-2110 This advisory is intended for system administrators and developers exposing...

Mandriva Update for kdegraphics4 MDVA-2012:025 (kdegraphics4)

Check for the Version of kdegraphics4 OpenVAS Vulnerability Test Mandriva Update for kdegraphics4 MDVA-2012:025 kdegraphics4 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

UPDATE: Wikileaks Dumps First of 5 Million Stratfor E-Mails

The whistle-blower Web site Wikileaks has published what it claims are the first of millions of internal e-mails taken from the Texas based strategic intelligence firm Stratfor. In a statement on the Web site of Wikileaks, the organization published links to 167 email messages – a first installme...

ThinkSAAS upload File Vulnerabilities-vulnerability warning-the black bar safety net

Author:Insight-D. Software Link: http://www.thinksaas.cn Useful to uploadify2. 1. 4 The program has this problem A lot of cms use this uploadify.php many programmers directly calling the swf file regardless of the uploadify. php has lead to security problems generated Download:...

Facebook 2012 Hacker Cup announced !

Facebook 2012 Hacker Cup announced Facebook today announced open registration for its second annual Hacker Cup, an annual algorithmic programming contest open to engineers from around the world. Programmers will be judged on accuracy and speed as they race to solve algorithmic problems to advance...

Talking about web application permissions problems-vulnerability warning-the black bar safety net

Before knowing about web permissions there might be a problem, but in reality the test encountered is relatively small, today met on record: a warrior please don't waste your valuable time A, longitudinal Stripping of the right to In General the site has many users, divided into different...

An error message "Collecting thread has failed to initialize (Time difference between Veeam Monitor server and ESX host is too large. Make sure that NTP is enabled on ESX host and try again.) and will be stopped" in Veeam Monitor

Challenge The error "Connection problems" appears with vCenter server or ESXi host in Veeam ONE Monitor client infrastructure view. vCenter server or the ESXi host becomes grayed out: No data goes to the Veeam ONE Monitor client and into the Veeam ONE database. vCenter server or ESXi might be...

SuSE 11.1 Security Update : openswan (SAT Patch Number 5424)

openswan's crypto helper was prone to an use-after-free flaw which could potentially allow remote attackers to cause a Denial of Service CVE-2011-4073, bnc727002. Additionally, the following issues have been fixed : - AH handshake problems bnc713986, - potential dereference of no longer valid...

SuSE 10 Security Update : ncpfs (ZYPP Patch Number 7711)

Following issues are fixed by this update : - The ncpfs mount and umount programs were affected by the /etc/mtab truncation problems on RLIMITFSIZE. CVE-2011-1679 - on errors, the mtab lock was not removed, blocking other applications from modifying /etc/mtab. CVE-2011-1680 - we now keep the...

Kool Media Converter 2.6.0 Denial Of Service

!/usr/bin/env python Exploit Title: Kool Media Converter v2.6.0 DOS Date: 10/10/2011 Author: swami E-Mail: flaviodotbaldassiatgmaildotcom Software Link: http://www.bestwebsharing.com/downloads/kool-media-converter-setup.exe Version: 2.6.0 Tested on: Windows XP SP3 ENG --- From Vendor Website Kool...

ABCMS news publishing system vulnerabilities and fixes-vulnerability warning-the black bar safety net

// APP/Controller/Admincp.php function actionliulan //Administrator information $nowindex = $GET'page' ? $GET'page' :1; //Get the data query from the first few bars begin to take the data $page = $GET'page' ? $GET'page'-16 : 0; //Query the data $liulan = $this-admin-findAll",'id desc',array6,$pag...

USN-1222-2: Mozvoikko, ubufox, webfav update

USN-1222-1 fixed vulnerabilities in Firefox. This update provides updated packages for use with Firefox 7. Original advisory details: Benjamin Smedberg, Bob Clary, Jesse Ruderman, Bob Clary, Andrew McCreight, Andreas Gal, Gary Kwong, Igor Bukanov, Jason Orendorff, Jesse Ruderman, and Marcia Knous...

Hotmail, MSN, Office 365, live.com sites down (now up)

Hotmail , MSN , Office 365 , live.com sites down now up A number of Microsoft online services, including Hotmail, MSN, Office 365, and seemingly most if not all of .live.com addresses are currently "experiencing an outage". MSN and Office 365 have already tweeted about it: The downtime, which...

The rlogin service is running

This remote host is running a rlogin service. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 15 : libpng10-1.0.55-1.fc15 (2011-8844)

This update fixes a 1-byte uninitialized memory reference in pngformatbuffer. It allows attackers to cause a denial of service crash via a malformed PNG image file that triggers an error that causes an out-of-bounds read when creating the error message. This is CVE-2011-2501. Also fixed in this...