8 matches found
Avast Premium Security 安全漏洞
Avast Premium Security is an application from the Czech company Avast. It is used for comprehensive scanning of websites for vulnerabilities. A security vulnerability exists in Avast Premium Security that stems from the presence of an elevation of privilege vulnerability that would allow a local...
exist-db:exist-core XML External Entity (XXE) vulnerability
exist version = 5.0.0-RC4 contains a XML External Entity XXE vulnerability in XML Parser for REST Server that can result in Disclosure of confidential data, denial of service, SSRF, port scanning...
Malicious Gaming App Infects More than 1 Million Android Users
It's not at all surprising that the Google Play Store is surrounded by a number of malicious applications that may gain users' attention to fall victim for one, but this time it might be even worse than you thought. Threat researchers from security firm ESET have discovered a malicious...
Protection Against Port Scanners: Portspoof
The portspoof program is designed to enhance OS security through emulation of legitimate service signatures on otherwise closed ports. It is meant to be a lightweight, fast, portable and secure addition to the any firewall system or security infrastructure. The general goal of the program is to...
CVE-2012-5970
The Huawei E585 device allows remote attackers to cause a denial of service NULL pointer dereference and device outage via crafted HTTP requests, as demonstrated by unspecified vulnerability-scanning software...
smf105.txt
Simple Machine Forum 1-0-5 possibly prior versions user IP address / information disclosure software: site: http://www.simplemachines.org/ information disclosure: a user can choose an sumbit an avatar url like this: http://evilsite/image.php where image.php is a file like this: When forum users...
GLSA-200410-31 : Archive::Zip: Virus detection evasion
The remote host is affected by the vulnerability described in GLSA-200410-31 Archive::Zip: Virus detection evasion Archive::Zip can be used by email scanning software like amavisd-new to uncompress attachments before virus scanning. By modifying the uncompressed size of archived files in the glob...
Debian DSA-118-1 : xsane - insecure temporary files
Tim Waugh found several insecure uses of temporary files in the xsane program, which is used for scanning. This was fixed for Debian/stable by moving those files into a securely created directory within the /tmp directory. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text...