47153 matches found
TA-2003-06 Denial of Service Attack against Armida Databased Web Server v1.0
TA-2003-06 Denial of Service Attack against Armida Databased Web Server v1.0 contributed by: rushjo ============================================================================ Tripbit Security Advisory TA-2003-06 Denial of Service Attack against Armida Databased Web Server v1.0...
Buffer Overflow in GazTek HTTP Daemon v1.4 (ghttpd)
/ qitest1's security advisory 002 / Buffer Overflow in GazTek HTTP Daemon v1.4 ghttpd +Systems Affected Any system running GazTek HTTP Daemon v1.4 ghttpd +Program Description ghttpd is a small and easy to configure HTTP server with CGI support, tested on Linux. It can run as a standalone daemon o...
ICQ2000A ICQmail temparary internet link vulnearbility
============================================== Vulnerability : ICQ2000A ICQwebmail temparary internet link vulnearbility Name : Gert Fokkema. Email : [email protected] Function : SecurityManager. Organization : ISAAN. http://www.fokkema.8k.com Organization : Noorderpoortcollege...
Linux news 13.04.00
Linux Kernel 2.2.15pre18 Сегодня вышел очередной, восемнадцатый по счету, пререлиз нового стабильного ядра Linux - Linux Kernel 2.2.15. Подробнее: http://kernelnotes.org/lnxlists/linux-kernel/lk000402/ Linux Kernel 2.3.99-pre5 Сегодня выпустили очередной пререлиз нового ядра Linux - Linux Kernel...
APPLE-SA-2015-08-13-1 Safari 8.0.8, Safari 7.1.8, and Safari 6.2.8
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2015-08-13-1 Safari 8.0.8, Safari 7.1.8, and Safari 6.2.8 Safari 8.0.8, Safari 7.1.8, and Safari 6.2.8 is now available and addresses the following: Safari Application Available for: OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.5, and O...
NetCracker Resource Management 8.0 - SQL Injection Vulnerability
Vulnerability type: SQL Injection Vendor: http://www.netcracker.com/ Product: NetCracker Resource Management System Affected version: = 8.0 Patched version: 8.2 Credit: Foo Jong Meng, Chia Junyuan, Benjamin Tan CVE ID: CVE-2015-3423 PROOF OF CONCEPT SQLi SQL Injection SQLi vulnerability in multip...
[ MDVSA-2015:209 ] php
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:209 http://www.mandriva.com/en/support/security/ Package : php Date : April 27, 2015 Affected: Business Server 1.0, Business Server 2.0 Problem Description: Updated php packages fix security vulnerabilities:...
[USN-2592-1] XML::LibXML vulnerability
========================================================================== Ubuntu Security Notice USN-2592-1 May 04, 2015 libxml-libxml-perl vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its...
APPLE-SA-2015-04-08-4 Apple TV 7.2
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 APPLE-SA-2015-04-08-4 Apple TV 7.2 Apple TV 7.2 is now available and addresses the following: Apple TV Available for: Apple TV 3rd generation and later Impact: A malicious application may be able to execute arbitrary code with system privileges...
APPLE-SA-2015-01-27-3 Safari 8.0.3, Safari 7.1.3, and Safari 6.2.3
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2015-01-27-3 Safari 8.0.3, Safari 7.1.3, and Safari 6.2.3 Safari 8.0.3, Safari 7.1.3, and Safari 6.2.3 are now available and address the following: WebKit Available for: OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.5, OS X Yosemite v10.10...
APPLE-SA-2014-11-17-1 iOS 8.1.1
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-11-17-1 iOS 8.1.1 iOS 8.1.1 is now available and addresses the following: CFNetwork Available for: iPhone 4s and later, iPod touch 5th generation and later, iPad 2 and later Impact: Website cache may not be fully cleared after leaving...
[USN-2324-1] OpenStack Keystone vulnerabilities
========================================================================== Ubuntu Security Notice USN-2324-1 August 21, 2014 keystone vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
KL-001-2014-001 : Oracle VirtualBox Guest Additions Arbitrary Write Privilege Escalation
Title: Oracle VirtualBox Guest Additions Arbitrary Write Privilege Escalation Advisory ID: KL-001-2014-001 Publication Date: 07.15.2014 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2014-001.txt 1. Vulnerability Details Affected Vendor: Oracle Affected Product: VirtualBox...
Oracle / Sun / MySQL / PeopleSoft / OpenJDK applications multiple security vulnerabilities
104 vulnerabilities in quarterly Critical Patch Update...
ESA-2012-029: RSA BSAFE® SSL-C Multiple Vulnerabilities
ESA-2012-029.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2012-029: RSA BSAFE® SSL-C Multiple Vulnerabilities EMC Identifier: ESA-2012-029 CVE Identifier: CVE-2011-3389, CVE-2012-2110, CVE-2012-2131 Severity Rating: See below for scores for individual issues Affected Products: For the...
APPLE-SA-2014-03-10-2 Apple TV 6.1
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-03-10-2 Apple TV 6.1 Apple TV 6.1 is now available and addresses the following: Apple TV Available for: Apple TV 2nd generation and later Impact: An attacker with access to an Apple TV may access sensitive user information from logs...
[SECURITY] [DSA 2829-1] hplip security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2829-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 28, 2013 http://www.debian.org/security/faq -...
[ MDVSA-2013:276 ] curl
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:276 http://www.mandriva.com/en/support/security/ Package : curl Date : November 21, 2013 Affected: Business Server 1.0, Enterprise Server 5.0 Problem Description: Updated curl packages fix security...
[SECURITY] CVE-2012-3544 Chunked transfer encoding extension size is not limited
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2012-3544 Chunked transfer encoding extension size is not limited Severity: Important Vendor: The Apache Software Foundation Versions Affected: - - Tomcat 7.0.0 to 7.0.29 - - Tomcat 6.0.0 to 6.0.36 Description: When processing a request submitted...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
Arbitrary File Upload and Code Execution in Accusoft Prizm Content Connect
In the course of our security assessment consulting we often find 0day vulnerabilities and report them to vendors. In this particular case the vendor has unfortunately shown a general disregard for the security risk of this uncovered vulnerability which was originally disclosed privately to them ...
Chrome for Android - Android APIs exposed to JavaScript
CVE Number: CVE-2012-4907 Title: Chrome for Android - Android APIs exposed to JavaScript Affected Software: Confirmed on Chrome for Android v18.0.1025123 Credit: Takeshi Terada Issue Status: v18.0.1025308 was released which fixes this vulnerability Overview: By abusing Java objects exposed to...
APPLE-SA-2012-09-24-1 Apple TV 5.1
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2012-09-24-1 Apple TV 5.1 Apple TV 5.1 is now available and addresses the following: Apple TV Available for: Apple TV 2nd generation and later Impact: Viewing a maliciously crafted movie file may lead to an unexpected application termination ...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
[CVE-2012-3373] Apache Wicket XSS vulnerability via manipulated URL parameter
Severity: Important Vendor: The Apache Software Foundation Versions Affected: Apache Wicket 1.4.x and 1.5.x Description: https://wicket.apache.org/2012/09/06/cve-2012-3373.html It is possible to inject JavaScript statements into an ajax link by adding an encoded null byte to a URL pointing to a...
NGS00162 Patch Notification: Symantec Message Filter Session Hijacking via session fixation
High Risk Vulnerability in Symantec Message Filter 2 July 2012 Ben Williams of NCC Group has discovered a High risk vulnerability in Symantec Message Filter Impact: Session Hijacking via session fixation Versions affected: Symantec Message Filter Version 6.3 An updated version of the software has...
ZDI-12-100 : HP OpenView Performance Manager PMParamHandler Remote Code Execution Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-100 : HP OpenView Performance Manager PMParamHandler Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-100 June 21, 2012 - -- CVE ID: CVE-2012-0127 - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected...
LSE-2012-03-01: PyPAM -- Python bindings for PAM - Double Free Corruption
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 === LSE Leading Security Experts - Security Advisory 2012-03-01 === PyPAM -- Python bindings for PAM - Double Free Corruption - --------------------------------------------------------- Affected Versions ================= PyPAM = 0.4.2 Red Hat PyPAM =...
CMS wizard Cross Site Scripting
================================================================= -=CMS wizard Cross Site Scripting ================================================================= Author: XaDaL Date: 14-02-2012 vendor: http://www.cmswizard.co.uk/ tested on: windows mobile dork : powered by CMS wizard This...
Serendipity freetag plugin 'serendipity[tagview]' Cross-Site Scripting vulnerability
Advisory: Serendipity freetag plugin 'serendipitytagview' Cross-Site Scripting vulnerability Advisory ID: SSCHADV2011-016 Author: Stefan Schurtz Affected Software: Successfully tested on Serendipity 1.5.5 Vendor URL: http://www.s9y.org Vendor Status: fixed CVE-ID: - ==========================...
Microsoft Security Bulletin MS10-089 - Important Vulnerabilities in Forefront Unified Access Gateway (UAG) Could Allow Elevation of Privilege (2316074)
Microsoft Security Bulletin MS10-089 - Important Vulnerabilities in Forefront Unified Access Gateway UAG Could Allow Elevation of Privilege 2316074 Published: November 09, 2010 Version: 1.0 General Information Executive Summary This security update resolves four privately reported vulnerabilities...
Path disclosure in eoCMS
Vulnerability ID: HTB22674 Reference: http://www.htbridge.ch/advisory/pathdisclosureineocms.html Product: eoCMS Vendor: eocms.com http://eocms.com Vulnerable Version: 0.9.04 Vendor Notification: 21 October 2010 Vulnerability Type: Path disclosure Status: Not Fixed, Vendor Alerted, Awaiting Vendor...
[oCERT-2010-003] Free Simple CMS path sanitization errors
2010-003 Free Simple CMS path sanitization errors Description: Free Simple CMS, an open source content management system, suffers from remote file inclusion vulnerabilities. Insufficient path sanitization on several query string parameters leads to inclusion of arbitrary files from remote sources...
[ MDVSA-2010:132 ] python
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2010:132 http://www.mandriva.com/security/ Package : python Date : July 14, 2010 Affected: 2008.0, 2009.0, 2009.1, 2010.0, 2010.1, Corporate 4.0, Enterprise Server 5.0 Problem Description: Multiple vulnerabilitie...
Microsoft Security Bulletin MS10-035 - Critical Cumulative Security Update for Internet Explorer (982381)
Microsoft Security Bulletin MS10-035 - Critical Cumulative Security Update for Internet Explorer 982381 Published: June 08, 2010 Version: 1.0 General Information Executive Summary This security update resolves five privately reported vulnerabilities and one publicly disclosed vulnerability in...
FreeBSD jail escape
It's possible to access current working directory...
Zigurrat CMS SQL Injection Vulnerability
================= IUT-CERT ================= Title: Zigurrat CMS SQL Injection Vulnerability Vendor: www.farsi-cms.com Dork: Design by Tagfa Co Type: Input.Validation.Vulnerability SQL Injection Fix: N/A ================== nsec.ir ================= Description: ------------------ Zigurrat CMS is ...
Microsoft Windows NT #GP Trap Handler Allows Users to Switch Kernel Stack
Microsoft Windows NT GP Trap Handler Allows Users to Switch Kernel Stack ------------------------------------------------------------------------- CVE-2010-0232 In order to support BIOS service routines in legacy 16bit applications, the Windows NT Kernel supports the concept of BIOS calls in the...
FreeBSD privilege escalation
It's possible to bypass environment variables filtering on suid program execution...
Bypassing DBMS_ASSERT in certain situations
DBMSASSERT can be used to prevent PL/SQL injection. In certain cases it can be bypassed. This is documented in a paper I wrote in July 2008 but am only publishing now: http://www.databasesecurity.com/oracle/Bypassing-DBMSASSERT.pdf Cheers, David Litchfield NGSSoftware Ltd...
ZDI-09-050: Sun Java Web Start JPEG Header Parsing Integer Overflow Vulnerability
ZDI-09-050: Sun Java Web Start JPEG Header Parsing Integer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-050 August 5, 2009 -- Affected Vendors: Sun Microsystems -- Affected Products: Sun Microsystems Java Runtime -- Vulnerability Details: This vulnerability allows...
DOMPDF Arbitrary File Read <= 0.5.1
================================= DOMPDF Arbitrary File Read = 0.5.1 ================================= Discovered by: Aung Khant, YGN Ethical Hacker Group, Myanmar http://yehg.net/ believe in full disclosure Advisory URL: http://yehg.net/lab/pr0js/view.php/Apache20Security20Bypass20Vul20DomPDF.pd...
[ MDVSA-2009:050-1 ] python-pycrypto
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2009:050-1 http://www.mandriva.com/security/ Package : python-pycrypto Date : February 23, 2009 Affected: 2009.0 Problem Description: A vulnerability have been discovered and corrected in PyCrypto ARC2 module...
DoS vulnerabilities in Mozilla, Internet Explorer, Google Chrome and Opera
Здравствуйте 3APA3A! Сообщаю вам о найденных мною Denial of Service уязвимостях в браузерах Mozilla Firefox, Opera та Google Chrome. Данные уязвимости похожи на DoS в Firefox, Opera и Chrome http://websecurity.com.ua/2456/, которые я опубликовал в проекте День багов в браузерах. Данную атаку я...
Mozilla Foundation Security Advisory 2008-16
Mozilla Foundation Security Advisory 2008-16 Title: HTTP Referrer spoofing with malformed URLs Impact: Moderate Announced: March 25, 2008 Reporter: Gregory Fleischer, RSnake Products: Firefox, SeaMonkey Fixed in: Firefox 2.0.0.13 SeaMonkey 1.1.9 Description Security researcher Gregory Fleischer...
iDefense Security Advisory 04.11.07: Apache HTTPD suEXEC Multiple Vulnerabilities
Apache HTTPD suEXEC Multiple Vulnerabilities iDefense Security Advisory 04.11.07 http://labs.idefense.com/intelligence/vulnerabilities/ Apr 11, 2007 I. BACKGROUND The suexec binary is a helper application which is part of the Apache HTTP server package. It is designed to allow a script to run wit...
Ezboxx multiple vulnerabilities.
Ezboxx multiple vulnerabilities. Vulnerable version: Ezboxx Portal System Beta v 0.7.6 and below. The Ezboxx Portal System Beta v 0.7.6 and below versions are vulnerable to Cross-site scripting, Path disclosure and SQL Injection attacks. Cross-site scripting: ---------------------- Description:...
TFTP Server 3CTftpSvc Buffer Overflow Vulnerability (Long transporting mode)
TFTP Server 3CTftpSvc Buffer Overflow Vulnerability Long transporting mode ------------------------------------------------------------------ SUMMARY: 3CTftpSvc TFTP Server is a Freeware TFTP server for Windows 9x/NT/XP. http://support.3com.com/software/utilitiesforwindows32bit.htm or...
PHPOLL => 0.96 Cross Site Scripting
""""""""""""""""""""""""""""""""""""""""""""""" """ :: :: ::::: :::: """ """ :: :: :: : :: """ """ :::: :: :: ::::: ::::: :::: """ """ :: :: ::: ::: :: :: :: :: :: """ """ :: :: :: : : ::::: :: :: :::: """ """ """ """"""""""""""""""""""""""""""""""""""""""""""" Xmor$ DigitaL Hacking TeaM PHPOLL =...
UStore 1.0 (detail.asp) Remote SQL Injection Vulnerability
Title : UStore 1.0 detail.asp Remote SQL Injection Vulnerability Author : ajann http://target/path//detail.asp?ID=SQL Example: //detail.asp?ID=-120union20select200,username,password,0,0,0,0,0,0,020from20tblusers20where20id20like201 """"""""""""""""""""" ajann,Turkey ... Im not Hacker!...