1320 matches found
Multiple Remote Code Execution Vulnerabilities in Privoxy
Privoxy is a proxy server with filtering for HTTP and HTTPS protocols, often used in combination with Tor. Privoxy suffers from multiple remote code execution vulnerabilities that can be exploited by an attacker to execute arbitrary code in the context of a user running an affected application. o...
[SECURITY] Fedora 21 Update: wget-1.16-3.fc21
GNU Wget is a file retrieval utility which can use either the HTTP or FTP protocols. Wget features include the ability to work in the background while you are logged out, recursive retrieval of directories, file name wildcard matching, remote file timestamp storage and comparison, use of Rest wit...
[SECURITY] Fedora 20 Update: wget-1.16-3.fc20
GNU Wget is a file retrieval utility which can use either the HTTP or FTP protocols. Wget features include the ability to work in the background while you are logged out, recursive retrieval of directories, file name wildcard matching, remote file timestamp storage and comparison, use of Rest wit...
CVE-2014-2358
Multiple cross-site request forgery CSRF vulnerabilities in the administrative web interface in the proxy server on Fox-IT Fox DataDiode appliances before 1.7.2 allow remote attackers to hijack the authentication of administrators for requests that 1 create administrative users, 2 remove...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in the administrative web interface in the proxy server on Fox-IT Fox DataDiode appliances before 1.7.2 allow remote attackers to hijack the authentication of administrators for requests that 1 create administrative users, 2 remove...
CVE-2014-2358 Fox-IT DataDiode Appliance CSRF
Multiple cross-site request forgery CSRF vulnerabilities in the administrative web interface in the proxy server on Fox-IT Fox DataDiode appliances before 1.7.2 allow remote attackers to hijack the authentication of administrators for requests that 1 create administrative users, 2 remove...
Information disclosure
The MCX Desktop Config Profiles implementation in Apple OS X before 10.10 retains web-proxy settings from uninstalled mobile-configuration profiles, which allows remote attackers to obtain sensitive information in opportunistic circumstances by leveraging access to an unintended proxy server...
CVE-2014-4440
CVE-2014-4440 affects Apple OS X (pre-10.10) MCX Desktop Config Profiles. The vulnerability arises because web-proxy settings from mobile configuration profiles remain after uninstallation, allowing a remote attacker with access to an unintended proxy server to obtain sensitive information. The i...
CVE-2014-4440
The MCX Desktop Config Profiles implementation in Apple OS X before 10.10 retains web-proxy settings from uninstalled mobile-configuration profiles, which allows remote attackers to obtain sensitive information in opportunistic circumstances by leveraging access to an unintended proxy server...
CVE-2014-2473
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv and SGD SSL Daemon ttassl...
CVE-2014-2472
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv, a different vulnerability than CVE-2014-2474, CVE-2014-2476, and CVE-2014-6459...
CVE-2014-2475
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 4.63, 4.71, 5.0, and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv...
CVE-2014-2474
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv, a different vulnerability than CVE-2014-2472, CVE-2014-2476, and CVE-2014-6459...
CVE-2014-2476
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv, a different vulnerability than CVE-2014-2472, CVE-2014-2474, and CVE-2014-6459...
Buffer overflow
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 4.63, 4.71, 5.0, and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv, a different vulnerability than CVE-2014-2474, CVE-2014-2476, and CVE-2014-6459...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv, a different vulnerability than CVE-2014-2472, CVE-2014-2476, and CVE-2014-6459...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv, a different vulnerability than CVE-2014-2472, CVE-2014-2474, and CVE-2014-6459...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv, a different vulnerability than CVE-2014-2472, CVE-2014-2474, and CVE-2014-2476...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv and SGD SSL Daemon ttassl...