EUVD-2016-5631

Malware in sbrugna...

Privilege Escalation

JRE proxy implementation is vulnerable to privilege escalation. Two flaws were found in the JRE proxy implementation. An untrusted applet or application could use these flaws to discover the usernames of users running applets and applications, or obtain web browser cookies and use them for sessio...

Information Disclosure

JRE proxy implementation is vulnerable to information disclosure. Two flaws were found in the JRE proxy implementation. An untrusted applet or application could use these flaws to discover the usernames of users running applets and applications, or obtain web browser cookies and use them for...

CVE-2016-4645

CFNetwork in Apple OS X before 10.11.6 uses weak permissions for web-browser cookies, which allows local users to obtain sensitive information via unspecified vectors...

Information disclosure

CFNetwork in Apple OS X before 10.11.6 uses weak permissions for web-browser cookies, which allows local users to obtain sensitive information via unspecified vectors...

CVE-2016-4645

CFNetwork in Apple OS X before 10.11.6 uses weak permissions for web-browser cookies, which allows local users to obtain sensitive information via unspecified vectors...

Debian Security Advisory DSA 1405-3 (zope-cmfplone)

The remote host is missing an update to zope-cmfplone announced via advisory DSA 1405-3. OpenVAS Vulnerability Test $Id: deb14053.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1405-3 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 1405-2 (zope-cmfplone)

The remote host is missing an update to zope-cmfplone announced via advisory DSA 1405-2. OpenVAS Vulnerability Test $Id: deb14052.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1405-2 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 1405-1 (zope-cmfplone)

The remote host is missing an update to zope-cmfplone announced via advisory DSA 1405-1. OpenVAS Vulnerability Test $Id: deb14051.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1405-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian: Security Advisory (DSA-1405-2)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-1405-3 : zope-cmfplone - missing input sanitising

It was discovered that Plone, a web content management system, allows remote attackers to execute arbitrary code via specially crafted web browser cookies. The oldstable distribution sarge is not affected by this problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text a...

[SECURITY] [DSA 1405-2] New zope-cmfplone packages fix regression

-------------------------------------------------------------------------- Debian Security Advisory DSA 1405-2 [email protected] http://www.debian.org/security/ Thijs Kinkhorst November 11th, 2007 http://www.debian.org/security/faq -...