Ubuntu Update for ubufox USN-1355-3

Ubuntu Update for Linux kernel vulnerabilities USN-1355-3 OpenVAS Vulnerability Test $Id: gbubuntuUSN13553.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for ubufox USN-1355-3 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...

Ubuntu: Security Advisory (USN-1355-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2012-0450

Mozilla Firefox 4.x through 9.0 and SeaMonkey before 2.7 on Linux and Mac OS X set weak permissions for Firefox Recovery Key.html, which might allow local users to read a Firefox Sync key via standard filesystem operations...

Code injection

Mozilla Firefox 4.x through 9.0 and SeaMonkey before 2.7 on Linux and Mac OS X set weak permissions for Firefox Recovery Key.html, which might allow local users to read a Firefox Sync key via standard filesystem operations...

CVE-2012-0450

Mozilla Firefox 4.x through 9.0 and SeaMonkey before 2.7 on Linux and Mac OS X set weak permissions for Firefox Recovery Key.html, which might allow local users to read a Firefox Sync key via standard filesystem operations...

CVE-2012-0450

Mozilla Firefox (Linux/macOS) and SeaMonkey

Firefox < 10.0 Multiple Vulnerabilities (Mac OS X)

The installed version of Firefox 9.x is potentially affected by the following security issues : - A use-after-free error exists related to removed nsDOMAttribute child nodes.CVE-2011-3659 - Various memory safety issues exist. CVE-2012-0442, CVE-2012-0443 - Memory corruption errors exist related t...

CVE-2012-0450

Mozilla Firefox 4.x through 9.0 and SeaMonkey before 2.7 on Linux and Mac OS X set weak permissions for Firefox Recovery Key.html, which might allow local users to read a Firefox Sync key via standard filesystem operations...

Firefox Recovery Key.html is saved with unsafe permission — Mozilla

magicant starmen reported that if a user chooses to export their Firefox Sync key the "Firefox Recovery Key.html" file is saved with incorrect permissions, making the file contents potentially readable by other users on Linux and OS X systems...

Apple iOS Lockdown Detection

The lockdown service, part of Apple iOS, was detected on the remote host. This service is used to communicate with iOS devices for several tasks e.g., Wi-Fi sync. Note that this plugin will only work against devices that have ever had Wi-Fi sync enabled iOS versions 5 and later. C Tenable Network...

ZDI-11-251: Apple QuickTime STSS atom Parsing Remote Code Execution Vulnerability

ZDI-11-251: Apple QuickTime STSS atom Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-251 August 9, 2011 -- CVE ID: CVE-2011-0250 -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C -- Affected Vendors: Apple -- Affected Products: Apple Quicktime -- TippingPointT...

Chrome Stable Release

The Google Chrome team is happy to announce the release of Chrome 12 to the Stable Channel for all platforms. Chrome 12.0.742.91 includes a number of new features and updates, including: Hardware accelerated 3D CSS New Safe Browsing protection against downloading malicious files Ability to delete...

Nmap NSE net: broadcast-dropbox-listener

Listens for the LAN sync information broadcasts that the Dropbox.com client broadcasts every 20 seconds, then prints all the discovered client IP addresses, port numbers, version numbers, display names, and more. If the 'newtargets' script argument is given, all discovered Dropbox clients will be...

Sybase M-Business Anywhere (AvantGo) Sync Server Detection

The remote service is a Sybase M-Business Anywhere formerly AvantGo Sync Server, which handles synchronization requests from a mobile device and determines whether to obtain requested pages from the source web server or from a shared cache on the Sync Server itself. C Tenable Network Security, In...

Steam Software - Denial of Service

Steam Software - Denial of Service Exploit Title: Steam Cloud Denial of Service 0day Date: 06042011 Author: david.r.klein \x0agmail\x0acom Software Link: http://steampowered.com Version: Steam - Latest Tested on: Windows XP/2003, Windows7 CVE : NA Notes: Copy file to C:\Program...

Steam Cloud Denial Of Service

Exploit Title: Steam Cloud Denial of Service 0day Date: 06042011 Author: david.r.klein \x0agmail\x0acom Software Link: http://steampowered.com Version: Steam - Latest Tested on: Windows XP/2003, Windows7 CVE : NA Notes: Copy file to C:\Program Files\Steam\userdata\remote\sharedconfig.vdf Run...

Sybase M-Business Anywhere agd.exe username Parameter Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sybase M-Business Anywhere. Authentication is not required to exploit this vulnerability. The specific flaw exists within agsync.dll, which listens for SOAP and sync HTTP requests on ports 80 and 4...

Mozilla introduces the "Web Apps" project just before release of release of Firefox 4 final !

Shortly before the release of the final version of Firefox 4, the Mozilla developers have introduced the "Web Apps" project. These apps are expected to play a major role play in future browsers, and in such a future, the browser will not just be for viewing web pages but will be a platform for...

broadcast-dropbox-listener NSE Script

Listens for the LAN sync information broadcasts that the Dropbox.com client broadcasts every 20 seconds, then prints all the discovered client IP addresses, port numbers, version numbers, display names, and more. If the newtargets script argument is given, all discovered Dropbox clients will be...

PolyVision RoomWizard insecurely stores Sync Connector Active Directory credentials and uses default administrative password

Overview The PolyVision RoomWizard web based scheduling system with touch screen display contains two vulnerabilities that allow an unauthorized user to access the device console and Sync Connector Active Directory credentials. Description The PolyVision RoomWizard is a touch screen scheduling...