8159 matches found
SafeNet SoftRemote Local Buffer Overflow - Security Advisory - SOS-09-008
SafeNet SoftRemote Local Buffer Overflow - Security Advisory - SOS-09-008 Release Date. 30-Oct-2009 Vendor Notification Date. 20-Jul-2009 Product. SafeNet SoftRemote Platform. Microsoft Windows Affected versions. 10.8.5 Build 2, 10.3.5 Build 6 verified and possibly others. Other vendors which hav...
SystemTap Version Detection
This script detects the installed version of SystemTap and sets the result in KB. OpenVAS Vulnerability Test $Id: secpodsystemtapdetect.nasl 7823 2017-11-20 08:54:04Z cfischer $ SystemTap Version Detection Authors: Antu Sanadi Copyright: Copyright c 2009 SecPod, http://www.secpod.com This program...
Jetty 6.x / 7.x Information Disclosure / XSS
Jetty 6.x and 7.x Multiple Vulnerabilities Name Multiple Vulnerabilities in Jetty Systems Affected Jetty 7.0.0 and earlier versions Severity Medium Impact CVSSv2 Medium 5/10, vector: AV:N/AC:L/Au:N/C:P/I:N/A:N Vendor http://www.mortbay.org/jetty/ Advisory...
Vivvo CMS 4.1.5.1 file disclosure
Exploit for unknown platform in category web applications ================================= Vivvo CMS 4.1.5.1 file disclosure ================================= Description of vulnerable software: Vivvo CMS is an intuitive content management system atop a powerful programming framework, empowering...
[waraxe-2009-SA#075] - Remote File Disclosure in Vivvo CMS 4.1.5.1
waraxe-2009-SA075 - Remote File Disclosure in Vivvo CMS 4.1.5.1 =============================================================================== Author: Janek Vind "waraxe" Date: 21. October 2009 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-75.html Description of vulnerable software...
Remote File Disclosure in Vivvo CMS 4.1.5.1
No description provided by source. waraxe-2009-SA075 - Remote File Disclosure in Vivvo CMS 4.1.5.1 =============================================================================== Author: Janek Vind "waraxe" Date: 21. October 2009 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-75.html...
Microsoft Windows Graphics Rendering Engine Code Execution (MS07-046; CVE-2007-3034)
The Windows Metafile WMF is a standard Windows image file format. It consists of a set of graphics functions and parameters that describe the steps required to render an image. WMF is a 16-bit format that can contain both vector and bitmap information. A WMF file contains a main header, followed ...
SLES10: Security update for libsoup
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: libsoup libsoup-devel More details may also be found by searching for the SuSE Enterprise Server 10 patch database linked in the references...
Microsoft GDI+ PNG File Integer Overflow Remote Code Execution Vulnerability
Description Microsoft GDI+ is prone to a remote code-execution vulnerability because the vector graphics link library improperly processes PNG image files. An attacker could exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts m...
Microsoft GDI+ .NET Framework Remote Code Execution Vulnerability
Description Microsoft GDI+ is prone to a remote code-execution vulnerability because the vector graphics link library within the .NET framework fails to properly handle certain API calls. Successful exploits can allow an attacker to execute arbitrary code with the privileges of the currently...
Microsoft GDI+ TIFF File Processing 'BitsPerSample' Tag Remote Code Execution Vulnerability
Description Microsoft GDI+ is prone to a remote code-execution vulnerability because the vector graphics link library improperly processes TIFF image files. An attacker could exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts...
Microsoft GDI+ PNG File Processing Remote Code Execution Vulnerability
Description Microsoft GDI+ is prone to a remote code-execution vulnerability because the vector graphics link library improperly processes PNG image files. An attacker could exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts m...
Microsoft GDI+ WMF Integer Overflow (MS09-062; CVE-2009-2500)
The Microsoft Windows graphics device interface GDI enables applications to use graphics and formatted text on the video display and on the printer.Windows Metafile WMF is a 16-bit metafile image format optimized for the Windows operating system that can contain both vector information and bitmap...
SLES11: Security update for ImageMagick
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: libMagickCore1 More details may also be found by searching for the SuSE Enterprise Server 11 patch database linked in the references. SPDX-FileCopyrightText:...
EXcms Root directory disclosure vulnerability
---------------------------------------------------------------------- PT-2009-22 Positive Technologies Security Advisory EXcms Root directory disclosure vulnerability ---------------------------------------------------------------------- --- Affected Software EXcms Versions prior to 2.02 Product...
Code injection
Unspecified vulnerability in OpenOffice.org OOo has unknown impact and client-side attack vector, as demonstrated by a certain module in VulnDisco Pack Professional 8.8, aka "Client-side exploit." NOTE: as of 20091005, this disclosure has no actionable information. However, because the VulnDisco...
CVE-2009-3571
Unspecified vulnerability in OpenOffice.org OOo has unknown impact and client-side attack vector, as demonstrated by a certain module in VulnDisco Pack Professional 8.8, aka "Client-side exploit." NOTE: as of 20091005, this disclosure has no actionable information. However, because the VulnDisco...
CVE-2009-3571
Unspecified vulnerability in OpenOffice.org OOo has unknown impact and client-side attack vector, as demonstrated by a certain module in VulnDisco Pack Professional 8.8, aka "Client-side exploit." NOTE: as of 20091005, this disclosure has no actionable information. However, because the VulnDisco...
CVE-2009-3571
Technical details are not publicly available in the provided documents. This CVE entry has no public details in the supplied records; monitor for updates.
SuSE9 Security Update : PHP4 (YOU Patch Number 11666)
This update fixes multiple bugs in PHP : - Predictable generaton of an initialization vector IV in the mcrypt extension - Additional cookie attributes could be injected via a session ID. - Specially crafted files could cause integer overflows in gd and leverage them to at least crash gd based...