[SECURITY] Fedora 13 Update: boa-0.94.14-0.15.rc21.fc13

Boa is a single-tasking HTTP server. That means that unlike traditional web servers, it does not fork for each incoming connection, nor does it fork ma ny copies of itself to handle multiple connections. It internally multiplexes all of the ongoing HTTP connections, and forks only for CGI program...

[SECURITY] Fedora 11 Update: boa-0.94.14-0.15.rc21.fc11

Boa is a single-tasking HTTP server. That means that unlike traditional web servers, it does not fork for each incoming connection, nor does it fork ma ny copies of itself to handle multiple connections. It internally multiplexes all of the ongoing HTTP connections, and forks only for CGI program...

CVE-2010-1908

The SdcUser.TgConCtl ActiveX control in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance does not properly restrict access to the HTTPDownloadFile, HTTPGetFile, Install, and RunCmd methods, which allows remote attackers to execute arbitrary programs via a URL in th...

CVE-2010-1908

The SdcUser.TgConCtl ActiveX control in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance does not properly restrict access to the HTTPDownloadFile, HTTPGetFile, Install, and RunCmd methods, which allows remote attackers to execute arbitrary programs via a URL in th...

Checks XP Internetcommunication of some Programs - Windows

The script Checks XP Internetcommunication of some Programs: Internet Explorer Windows Media Player Windows Messenger Windows Zeitdienst Hilfe- und Supportcenter Windows Update Gerätemanager Windows Aktivierung und Registrierung Aktualisierung der Stammzertifikate Ereignisanzeige Webdienst...

Checks XP Internetcommunication of some Programs (Windows)

The script Checks XP Internetcommunication of some Programs: Internet Explorer Windows Media Player Windows Messenger Windows Zeitdienst Hilfe- und Supportcenter Windows Update Gerätemanager Windows Aktivierung und Registrierung Aktualisierung der Stammzertifikate Ereignisanzeige Webdienst...

Security Programs Focusing Too Much on Compliance, Study Finds

Enterprises are spending huge amounts of money on compliance programs related to PCI-DSS, HIPAA and other regulations, but those funds may be misdirected in light of the priorities of most information security programs, a new study has found. A paper by Forrester Research, commissioned by Microso...

Sql injection

Foxit Reader before 3.2.1.0401 allows remote attackers to 1 execute arbitrary local programs via a certain "/Type /Action /S /Launch" sequence, and 2 execute arbitrary programs embedded in a PDF document via an unspecified "/Launch /Action" sequence, a related issue to CVE-2009-0836...

China Hardest Hit by Latest IE Malware Attacks

Computer users in China and Korea were the hardest hit by the latest wave of zero-day malware attacks targeting a flaw in the Internet Explorer browser, according to data released by the Microsoft Malware Protection Center MMPC. The attacks, first spotted on March 9, included Trojan downloaders a...

[SECURITY] Fedora 12 Update: mozvoikko-1.0-9.fc12

This is mozvoikko, an extension for Mozilla programs for using the Finnish spell-checker Voikko...

Moscow Bombings, TJX Hacker Spur Black Hat Campaigns

Spammers and malware writers have wasted no time in taking advantage of Monday’s bombings in Moscow, opening up a campaign on Twitter to point users to malicious sites. The pair of suicide bombings that hit the Metro system in Moscow Monday morning inevitably led to a flood of messages on Twitter...

Fedora Update for cronie FEDORA-2010-4300

Check for the Version of cronie OpenVAS Vulnerability Test Fedora Update for cronie FEDORA-2010-4300 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

[SECURITY] Fedora 11 Update: cronie-1.3-4.fc11

Cronie contains the standard UNIX daemon crond that runs specified programs at scheduled times and related tools. It is a fork of the original vixie-cron and has security and configuration enhancements like the ability to use pam and SELinux...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in YourFreeWorld Programs Rating Script allow remote attackers to inject arbitrary web script or HTML via the id parameter to 1 rate.php and 2 postcomments.php...

CVE-2009-4690

Multiple cross-site scripting XSS vulnerabilities in YourFreeWorld Programs Rating Script allow remote attackers to inject arbitrary web script or HTML via the id parameter to 1 rate.php and 2 postcomments.php...

Arugizer Backdoor Detection

The remote Windows host appears to be running the Arugizer backdoor. An unauthenticated, remote attacker who connects to this port can use the backdoor to list directories, send and receive files, and execute programs. C Tenable Network Security, Inc. include"compat.inc"; if description...

Remote included and local contain vulnerabilities principle-vulnerability warning-the black bar safety net

First, let's discuss the include file vulnerability,the first thing to ask is,what is"remote file inclusion vulnerability"for? The answer is: the server through the php properties of a function to contain any files, since you want to include this file source filter is not strict, so can go to tha...

CVE-2010-0189

A certain ActiveX control in NOS Microsystems getPlus Download Manager aka DLM or Downloader 1.5.2.35, as used in Adobe Download Manager, improperly validates requests involving web sites that are not in subdomains, which allows remote attackers to force the download and installation of arbitrary...

Spoofing

A certain ActiveX control in NOS Microsystems getPlus Download Manager aka DLM or Downloader 1.5.2.35, as used in Adobe Download Manager, improperly validates requests involving web sites that are not in subdomains, which allows remote attackers to force the download and installation of arbitrary...

[SECURITY] Fedora 12 Update: mozvoikko-1.0-8.fc12

This is mozvoikko, an extension for Mozilla programs for using the Finnish spell-checker Voikko...