[SECURITY] Fedora 16 Update: polipo-1.0.4.1-6.fc16

Polipo is a lightweight caching web proxy that was designed as a personal cache. It is able to cache incomplete objects and will complete them using range requests. It will use HTTP/1.1 pipelining if supported by the remote server...

[SECURITY] Fedora 15 Update: polipo-1.0.4.1-6.fc15

Polipo is a lightweight caching web proxy that was designed as a personal cache. It is able to cache incomplete objects and will complete them using range requests. It will use HTTP/1.1 pipelining if supported by the remote server...

New Mac Malware Variants Found in Trojaned Apps Are Stealing Data

Researchers have discovered a series of variants of the DevilRobber Mac OS X Trojan that have a menu of different capabilities, depending upon the strain, and can not only mine Bitcoins using the infected machine’s processing power, but also steals files, installs a Web proxy and may steal the...

php: DoS when using HTTP proxy with the FTP wrapper

Unspecified vulnerability in the Streams component in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service application crash by accessing an ftp:// URL during use of an HTTP proxy with the FTP wrapper...

Squid: Multiple vulnerabilities

Background Squid is a full-featured web proxy cache. Description Multiple vulnerabilities have been discovered in Squid. Please review the CVE identifiers referenced below for details. Impact Remote unauthenticated attackers may be able to execute arbitrary code with the privileges of the Squid...

Squid WCCP Message Receive Buffer Overflow (CVE-2005-0211)

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. An attacker can exploit this vulnerability to terminate the vulnerable product, creating a denial of service condition, or it can be exploited for code. A remote vulnerability was found in Squid web proxy/cache processes...

CVE-2011-0846

Unspecified vulnerability in the Oracle Sun Java System Access Manager Policy Agent 2.2 allows remote attackers to affect availability via unknown vectors related to Web Proxy Agent...

Design/Logic Flaw

Unspecified vulnerability in the Oracle Sun Java System Access Manager Policy Agent 2.2 allows remote attackers to affect availability via unknown vectors related to Web Proxy Agent...

DSA-2111-1 squid3 - denial of service

Bulletin has no description...

Open Classifieds version 1.7.0.2 XSS Vuln.

Vuln. discovered by : r0t Date: 12 September 2010 vendor:http://open-classifieds.com/ orginal advisory:http://pridels-team.blogspot.com/2010/09/open-classifieds-version-1702-xss-vuln.html affected versions:Open Classifieds version 1.7.0.2 Open Classifieds version 1.7.0 and other prior versions al...

NetArtMEDIA Car Portal v2.0 XSS vuln.

Vuln. discovered by : r0t Date: 09 September 2010 vendor:http://www.netartmedia.net/carsportal/ orginal advisory:http://pridels-team.blogspot.com/2010/09/netartmedia-car-portal-v20-xss-vuln.html affected versions:v2.0 and other versions also can be affected. NetArtMEDIA Car Portal contains a flaw...

PowerStore™ 3 XSS vuln.

Vuln. discovered by : r0t Date: 09 September 2010 vendor:http://www.webassist.com/php-scripts-and-solutions/powerstore/ orginal advisory:http://pridels-team.blogspot.com/2010/09/powerstore-3-xss-vuln.html affected versions:PowerStore™ 3 and other versions also can be affected. PowerStore™ 3...

iBoutique.MALL 1.2 XSS vuln.

Vuln. discovered by : r0t Date: 09 September 2010 vendor:http://www.netartmedia.net/mall/ orginal advisory:http://pridels-team.blogspot.com/2010/09/iboutiquemall-12-xss-vuln.html affected versions:iBoutique.MALL 1.2and other versions also can be affected. iBoutique.MALL 1.2 contains a flaw that...

Member Management System v 4.0 XSS vuln.

Vuln. discovered by : r0t Date: 09 September 2010 vendor:http://www.expinion.net/Applications/MMSoverview.asp orginal advisory:http://pridels-team.blogspot.com/2010/09/member-management-system-v-40-xss-vuln.html affected versions:v 4.0 and other versions also can be affected. Member Management...

NetArtMEDIA Real Estate Portal v2.0 XSS vuln. + NetArtMEDIA lfi.

Vuln. discovered by : r0t Date: 09 September 2010 vendor:http://www.netartmedia.net/realestate/ original advisory:http://pridels-team.blogspot.com/2010/09/netartmedia-real-estate-portal-v20-xss.html affected versions:NetArtMEDIA Real Estate Portal v2.0 and other versions also can be affected...

Squid代理字符串处理空指针引用漏洞

BUGTRAQ ID: 42982 Squid是一个高效的Web缓存及代理程序，最初是为Unix平台开发的，现在也被移植到Linux和大多数的Unix类系统中，最新的Squid可以运行在Windows平台下。 某些Squid内部字符串处理例程没有正确地检查空指针，远程攻击者可以通过发送恶意请求导致拒绝服务。 Squid Web Proxy Cache 3.2 Squid Web Proxy Cache 3.1 Squid Web Proxy Cache 3.0 临时解决方法： 如果您不能立刻安装补丁或者升级，NSFOCUS建议您采取以下措施以降低威胁： 1 将ignoreexpect10...

CVE-2010-2385

Unspecified vulnerability in Oracle Sun Java System Web Proxy Server 4.0.13 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Administration Server...

Design/Logic Flaw

Unspecified vulnerability in Oracle Sun Java System Web Proxy Server 4.0.13 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Administration Server...

CVE-2010-2385

Unspecified vulnerability in Oracle Sun Java System Web Proxy Server 4.0.13 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Administration Server...

CVE-2010-2385

CVE-2010-2385 affects Sun Java System Web Proxy Server 4.0.13. The vulnerability is described as unspecified and exploitable remotely via the Administration Server (HTTP). The CVE is listed with a base score of 5.8 (Medium) and is included in the Oracle July 2010 Critical Patch Update advisory, w...