17 matches found
EUVD-2018-1066
Malware in sbrugna...
EUVD-2008-1162
Malware in sbrugna...
EUVD-2018-8797
Malware in sbrugna...
EUVD-2008-4750
Malware in sbrugna...
EUVD-2009-2694
Malware in sbrugna...
EUVD-2015-7742
Malware in sbrugna...
Critical Erlang/OTP SSH Vulnerability (CVSS 10.0) Allows Unauthenticated Code Execution
A critical security vulnerability has been disclosed in the Erlang/Open Telecom Platform OTP SSH implementation that could permit an attacker to execute arbitrary code sans any authentication under certain conditions. The vulnerability, tracked as CVE-2025-32433 , has been given the maximum CVSS...
Default configuration
A vulnerability has been identified in Cerberus DMS All versions, Desigo CC All versions, Desigo CC Compact All versions, SIMATIC WinCC OA V3.16 All versions in default configuration, SIMATIC WinCC OA V3.17 All versions in non-default configuration, SIMATIC WinCC OA V3.18 All versions in...
PT-2019-1861 · Oracle +6 · Mysql Server +5
Name of the Vulnerable Software and Affected Versions: Oracle MySQL versions 8.0.15 and prior Description: The issue is related to insufficient access control in the MySQL Server component, specifically in the Server: Optimizer subcomponent. It allows an attacker with network access via multiple...
New DDoS Attack Method Demands a Fresh Approach to Amplification Assault Mitigation
Amplification attack vectors are some of the most commonly used tools in the DDoS attacker’s arsenal. In the last quarter of 2017, we saw NTP amplification employed in roughly 33 percent of all DDoS assaults against our customers, while DNS and SSDP amplification vectors played a part in 17 perce...
Security vulnerabilities fixed in Firefox ESR 52.3 — Mozilla
The Developer Tools feature suffers from a XUL injection vulnerability due to improper sanitization of the web page source code. In the worst case, this could allow arbitrary code execution when opening a malicious page with the style editor tool. A use-after-free vulnerability can occur in...
Oracle Automatic Service Request Remote Vulnerability (CNVD-2017-06150)
Automatic Service Request ASR is an "Oracle Support Service" that provides automatic case generation in the event of common hardware component failures. A remote security vulnerability exists in Oracle Automatic Service Request. The vulnerability can be exploited via the "SFT" protocol. This allo...
Oracle FLEXCUBE Private Banking Security Bypass Vulnerability
Oracle FLEXCUBE Private Banking is a product of Oracle Corporation USA. It plans, records, tracks and manages client wealth across a range of asset classes and tools to increase financial advisor productivity and improve client relationships. A remote security bypass vulnerability exists in Oracl...
Oracle WebLogic Server Remote Vulnerability
Oracle WebLogic server is an application server platform for building and running enterprise applications and services. A remote vulnerability exists in Oracle WebLogic Server that allows attackers to exploit the 'HTTP' protocol to compromise 'CIE Related Components' subcomponents...
kernel: udp socket NULL ptr dereference
The udpsendmsg function in the UDP implementation in 1 net/ipv4/udp.c and 2 net/ipv6/udp.c in the Linux kernel before 2.6.19 allows local users to gain privileges or cause a denial of service NULL pointer dereference and system crash via vectors involving the MSGMORE flag and a UDP socket...
Ethereal 0.10.10 - SIP Protocol Dissector Remote Buffer Overflow
Ethereal 0.10.10 - SIP Protocol Dissector Remote Buffer Overflow / tetherealsip.c now quite functional Ethereal 0.10.0 to 0.10.10 SIP Dissector remote root exploit Advisory: http://www.ethereal.com/appnotes/enpa-sa-00019.html produced by Team W00dp3ck3r: frauk\x41iser mag00n s00n thorben Notes:...
Netscape 4.76 gif comment flaw
Product: Netscape Navigator/Communicator Tested on: 4.76 on Linux and Win98/NT Vendor Contact: Reported 2001-03-22 Problem -------------------------------------------------------- - Overview: The Netscape browser does not escape the gif file comment in the image information page. This allows...