Authentication flaw

The high-availability service in the Fabric Interconnect component in Cisco Unified Computing System UCS does not properly bind the cluster service to the management interface, which allows remote attackers to obtain sensitive information or cause a denial of service peer-syncing outage via a...

Facebook Reassures Users, But Hole May Put Mobile Data at Risk

UPDATED: Facebook Security assured users on Thursday who access their Facebook account via Android or iOS devices that mobile sessions on the social networking site aren’t vulnerable to hacking. However, research published this week suggests otherwise. A blog entry posted by UK-based mobile...

CVE-2012-0237

Advantech/BroadWin WebAccess before 7.0 allows remote attackers to 1 enable date and time syncing or 2 disable date and time syncing via a crafted URL...

Code injection

Advantech/BroadWin WebAccess before 7.0 allows remote attackers to 1 enable date and time syncing or 2 disable date and time syncing via a crafted URL...

CVE-2012-0237

Advantech/BroadWin WebAccess before version 7.0 is affected by CVE-2012-0237, a remote vulnerability that allows an unauthenticated attacker to enable or disable date/time syncing via a crafted URL. The NVD entry (CVSS2 base score 6.4, Network vector, no authentication, partial integrity/availabi...

CVE-2012-0237

Advantech/BroadWin WebAccess before 7.0 allows remote attackers to 1 enable date and time syncing or 2 disable date and time syncing via a crafted URL...

rsync-brute NSE Script

Performs brute force password auditing against the rsync remote file syncing protocol. Script Arguments rsync-brute.module - the module against which brute forcing should be performed passdb, unpwdb.passlimit, unpwdb.timelimit, unpwdb.userlimit, userdb See the documentation for the unpwdb library...

CVE-2009-5034

IBM Lotus Notes Traveler before 8.5.0.2 allows remote authenticated users to cause a denial of service memory consumption and daemon crash by syncing a large volume of data, related to the launch of a new process to handle the data while the previous process is still operating on the data...

CVE-2010-4545

IBM Lotus Notes Traveler before 8.5.1.2 allows remote authenticated users to cause a denial of service resource consumption and sync outage by syncing a large volume of data...

CVE-2009-5034

IBM Lotus Notes Traveler before 8.5.0.2 allows remote authenticated users to cause a denial of service memory consumption and daemon crash by syncing a large volume of data, related to the launch of a new process to handle the data while the previous process is still operating on the data...

Mandriva Update for tomboy MDVA-2010:222 (tomboy)

Check for the Version of tomboy OpenVAS Vulnerability Test Mandriva Update for tomboy MDVA-2010:222 tomboy Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

CVE-2010-1768

Unspecified vulnerability in Apple iTunes before 9.1 allows local users to gain console privileges via vectors related to log files, "insecure file operation," and syncing an iPhone, iPad, or iPod touch...

CVE-2010-1768

Unspecified vulnerability in Apple iTunes before 9.1 allows local users to gain console privileges via vectors related to log files, "insecure file operation," and syncing an iPhone, iPad, or iPod touch...

cman security, bug fix, and enhancement update

2.0.115-1 - RSA II fencing agent has been fixed. - Resolves: rhbz493802 2.0.114-1 - local variable 'verbosefilename' referenced before assignment has been fixed - RSA II fencing agent has been fixed. - Resolves: rhbz493802 rhbz514758 2.0.113-1 - Limitations with 2-node fencescsi are now properly...

SunOS Release 5.11 snv_101b - Remote IPv6 Crash

/ SunOS Release 5.11 Version snv101b Remote IPV6 Kernel Crash Exploit 0day By Kingcope/2009 / include include include include include include include include include include unsigned char rawData = "\x60\xfc\x57\x29\x00\x00\x3c\x56\x6f\x35\x40\x72\x70\x2f\x52\x58"...

ActiveSync can access a locked workstation w/o unlocking

Microsoft was notified on 3/28/2001, you may use my name when publishing this. I cannot register on your site, so I am trying the general e-mail addresses. Platforms tested: =================================================== Microsoft Windows 2000 Professional build 2195 w/ SP1 Microsoft...