PT-2011-2949 · Data Dynamics +1 · Data Dynamics Activebar +1

Name of the Vulnerable Software and Affected Versions: Data Dynamics ActiveBar ActiveX controls version 1.0.6.5 IBM Rational System Architect versions 11.4.0.2, 11.4.0.1, and earlier Description: The issue is related to the ActiveBar1 ActiveX control, which does not properly restrict the...

Mozilla integer overflow in frameset spec (MFSA 2011-12)

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before 3.1.10, and SeaMonkey before 2.0.14 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code vi...

CVE-2011-1658

ld.so in the GNU C Library aka glibc or libc6 2.13 and earlier expands the $ORIGIN dynamic string token when RPATH is composed entirely of this token, which might allow local users to gain privileges by creating a hard link in an arbitrary directory to a 1 setuid or 2 setgid program with this RPA...

PT-2012-1310 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.37 Description: The issue is related to the orinoco ioctl set auth function in the Linux kernel, which does not properly implement a TKIP protection mechanism. This makes it easier for remote attackers to...

IBM Informix Dynamic Server SET ENVIRONMENT Stack Buffer Overflow (CVE-2011-1033)

IBM Informix Dynamic Server is an online transaction processing data server. IBM Informix Dynamic Server functionalities include an implementation of SQL including SQL statements, data types, and system catalog tables that provide information regarding database structures. A stack-based buffer...

UBUNTU-CVE-2011-0116

Use-after-free vulnerability in the setOuterText method in the htmlelement library in WebKit, as used in Apple iTunes before 10.2 on Windows, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via vectors related to DO...

CVE-2011-1033

Stack-based buffer overflow in oninit in IBM Informix Dynamic Server IDS 11.50 allows remote attackers to execute arbitrary code via crafted arguments in the USELASTCOMMITTED session environment option in a SQL SET ENVIRONMENT statement...

CVE-2011-1033

IBM Informix Dynamic Server (IDS) 11.50 is affected by a stack-based buffer overflow in the oninit process when handling malformed USELASTCOMMITTED arguments in a SET ENVIRONMENT statement, enabling remote code execution. OpenVAS entries (Windows/Linux) corroborate RCE in IDS via the oninit path;...

2-step verification, Advanced sign-in security for your Google account !

Has anyone you know ever lost control of an email account and inadvertently sent spam—or worse—to their friends and family? There are plenty of examples like the classic "Mugged in London" scam that demonstrate why it's important to take steps to help secure your activities online. Your Gmail...

Fedora 13 : mod_auth_mysql-3.0.0-12.fc13 (2011-0114)

This update fixes a security issue in modauthmysql. A flaw was found in the way modauthmysql escaped certain multibyte-encoded strings. If modauthmysql was configured to use a multibyte character set that allowed a backslash '' as part of the character encodings, a remote attacker could inject...

PT-2011-1489 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.37 Description: The issue is related to the pipe fcntl function in fs/pipe.c, which does not properly determine whether a file is a named pipe. This allows local users to cause a denial of service via an F...

SuSE 11.1 Security Update : vte, vte-debuginfo, vte-debugsource, vte-devel, vte-doc, vte-lang (SAT Patch Number 2718)

This update fixes a vulnerability of VTE to an old title set and query attack which could be used by remote attackers to execute arbitrary code. CVE-2010-2713 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11...

MySQL: Mysqld DoS (crash) by processing joins involving a table with a unique SET column (MySQL BZ#54575)

Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote authenticated users to cause a denial of service mysqld daemon crash via a join query that uses a table with a unique SET column...

MySQL Mysqld Multiple Denial Of Service Vulnerabilities

MySQL is prone to multiple denial of service vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mysql:mysql";...

Design/Logic Flaw

Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote authenticated users to cause a denial of service mysqld daemon crash via a join query that uses a table with a unique SET column...

CVE-2010-3677

The CVE-2010-3677 issue affects Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92, where a remote authenticated user can cause a denial of service (mysqld crash) via a join query that uses a table with a unique SET column. The connected advisories/ Nessus entries confirm the same root cause an...

NewV Smartclient 1.0.0.18 Command Execution

Vendor: NewV http:// www.newv.com.cn/ Product: NewV smartclient http://demo.newv.com.cn/lds/module/smartclientsetting.exe Vulnerable Version: 1.0.0.18 Status: Not Fixed, Vendor Alerted Risk level: High Credit: Yu Guoyuguo.cngmail.com Description: An input validation issue exists in the NewV Activ...

SNMP Set Module

This module, similar to snmpset tool, uses the SNMP SET request to set information on a network entity. A OID numeric notation and a value are required. Target device must permit write access. This module requires Metasploit: https://metasploit.com/download Current source:...

RHEL 6 : mod_auth_mysql (RHSA-2010:1002)

An updated modauthmysql package that fixes one security issue is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...

USBsploit v0.5 BETA Version Out !

"USBsploit is a PoC to generate Reverse TCP backdoors, malicious PDF or LNK files. But also running Autorun|play infections and dumping all USB files remotely on multiple targets at the same time, a set of extensions to dump can be specified. All EXE, PDF and LNK on the USB targets can also be...