741 matches found
phpDenora 1.4.6 - Multiple SQL Injections
Title : phpDenora = 1.4.6 Multiple SQL Injection Vulnerabilities Author : P. de Brouwer - KnickLighter @knickz0r NLSecurity - www.nlsecurity.org [email protected] Dork : intext:"Powered by phpDenora" Software : phpDenora = 1.4.6 http://sourceforge.net/projects/phpdenora/files/phpDenora/1.4.6/...
ImpressPages CMS 'actions.php' Remote Code Execution Vulnerability
ImpressPages CMS is prone to a remote-code execution vulnerability. Exploiting this issue will allow attackers to execute arbitrary code within the context of the affected application. ImpressPages CMS 1.0.12 is vulnerable; other versions may also be affected. OpenVAS Vulnerability Test $Id:...
CMS Made Simple < 1.9.4.3 Remote Database Corruption Vulnerability
CMS Made Simple is prone to a vulnerability that could result in the corruption of the database. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...
samba3x security update
3.5.4-0.83.2 - Security Release, add fix for CVE-2011-2724 - related: 722555 3.5.4-0.83.1 - Security Release, fixes CVE-2011-2694, CVE-2011-2522, CVE-2011-1678 - resolves: 722555...
Foxit Releases Foxit Reader 5.0.2
The Foxit Corporation has released Foxit Reader 5.0.2 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code. US-CERT encourages users and administrators to review the security release notes for Foxit Reader 5.0.2 and apply any necessary updates...
Fedora 15 : asterisk-1.8.4.4-2.fc15 (2011-8983)
Remove systemd dependencies from EL6 and F15 The Asterisk Development Team has announced the release of Asterisk versions 1.4.41.2, 1.6.2.18.2, and 1.8.4.4, which are security releases. These releases are available for immediate download at...
SuSE 11.1 Security Update : perl-Config-General (SAT Patch Number 4776)
This update adds the perl-Config-General to the SLES update channel, which is a new requirement after the last tgt security release. - 697106: tgt is not installable %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuS...
OpenSSL leaks ECDSA private key through a remote timing attack
Overview The OpenSSL ladder implementation for scalar multiplication of points on elliptic curves over binary fields is susceptible to a timing attack vulnerability. This vulnerability can be used to steal the private key of a TLS server that authenticates with ECDSA signatures and binary curves...
SUSE: Security Advisory for MozillaFirefox, seamonkey, MozillaThunderbird (SUSE-SA:2011:022)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 13 : asterisk-1.6.2.17.2-1.fc13 (2011-3945)
The Asterisk Development Team has announced security releases for Asterisk branches 1.6.1, 1.6.2, and 1.8. The available security releases are released as versions 1.6.1.24, 1.6.2.17.2, and 1.8.3.2. These releases are available for immediate download at...
samba security update
3.5.4-68.2 - Security Release, fixes CVE-2011-0719 - resolves: 678334...
Denial of service - memory corruption
Description All current released versions of Samba are vulnerable to a denial of service caused by memory corruption. Range checks on file descriptors being used in the FDSET macro were not present allowing stack corruption. This can cause the Samba code to crash or to loop attempting to select o...
Axis2 -- Cross-site scripting (XSS) vulnerability
Apache Axis2 reports: Apache Axis2 1.7.3 is a security release that contains a fix for CVE-2010-3981. That security vulnerability affects the admin console that is part of the Axis2 Web application and was originally reported for SAP BusinessObjects which includes a version of Axis2. That report...
Fedora 12 : samba-3.4.9-60.fc12 (2010-14678)
Thu Sep 9 2010 Guenther Deschner - 3.4.9-60 - Security Release, fixes CVE-2010-3069 - resolves: 630869 - Wed May 12 2010 Guenther Deschner - 3.4.8-59 - Update to 3.4.8 - Make sure nmb and smb initscripts return LSB compliant return codes - resolves: 521095 - Mon Mar 8 2010 Simo Sorce - 3.4.7-58 -...
Fedora 12 : samba-3.4.5-55.fc12 (2010-1218)
Tue Jan 26 2010 Guenther Deschner - 3.4.5-55 - Security Release, fixes CVE-2009-3297 - resolves: 532940 - Tue Jan 26 2010 Guenther Deschner - 3.4.5-54 - Fix crash in pdbedit - resolves: 541267 - Tue Jan 19 2010 Guenther Deschner - 3.4.5-53 - Update to 3.4.5 - Thu Jan 14 2010 Guenther Deschner -...
Fedora 11 : samba-3.4.5-0.47.fc11 (2010-1190)
Tue Jan 26 2010 Guenther Deschner - 3.4.5-0.47 - Security Release, fixes CVE-2009-3297 - resolves: 532940 - Tue Jan 19 2010 Guenther Deschner - 3.4.5-0.46 - Update to 3.4.5 - Thu Jan 7 2010 Guenther Deschner - 3.4.4-0.45 - Update to 3.4.4 - Thu Oct 29 2009 Guenther Deschner - 3.4.3-0.44 - Update...
Security Release: symfony 1.3.6 and 1.4.6
New releases for symfony 1.3 and 1.4 have been packaged sooner than expected to address a security vulnerability reported yesterday. It is strongly recommended that all applications running symfony 1.3 and 1.4 upgrade to this latest release immediately. The Security Fix One of the enhancements...
Memory Corruption Vulnerability
Description Samba versions 3.3.12 and all versions previous to this are affected by a memory corruption vulnerability. Samba versions 3.4.0 and all releases since this version are NOT affected by this problem. In particular, the current stable Samba version 3.5.3 is NOT affected by this problem...
Security Release: 1.2.12, 1.3.3 and 1.4.3
A SQL injection vulnerability in the Doctrine admin generator was reported earlier today which has been addressed in these 1.2.12, 1.3.3 and 1.4.3 security releases. This vulnerability was limited to the Doctrine admin generator and did not affect the Propel admin generator or any other aspect of...
Fedora Core 10 FEDORA-2009-10172 (samba)
The remote host is missing an update to samba announced via advisory FEDORA-2009-10172. OpenVAS Vulnerability Test $Id: fcore200910172.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-10172 samba Authors: Thomas Reinke Copyright: Copyright c 2009...