47153 matches found
Samsung TV DoS (possible overflow) via SOAPACTION
!/bin/bash Samsung TV DoS possible overflow via SOAPACTION Authors: 22733db72ab3ed94b5f8a1ffcde850251fe6f466 c8e74ebd8392fda4788179f9a02bb49337638e7b AKAT-1 Verified for ue55es6800. Nope, it's different than http://www.exploit-db.com/exploits/18751/. havetelnet ? RCE : "vuln is DoS if not clever...
[IA32] HP Intelligent Management Center v5.1 E0202 topoContent.jsf Non-Persistent Cross-Site Scripting
Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: HP Intelligent Management Center Vendor URL: www.hp.com Type: Cross-Site Scripting CWE-79 Date found: 2012-06-08 Date published: 2013-03-04 CVSSv2 Score: CWE-79: 3,5 AV:N/AC:M/Au:S/C:N/I:P/A:...
Verax NMS multiple security vulnerabilities
Authentication bypass, replay attacks, hardcoded private key, information leakage...
Varnish 2.1.5, 3.0.3 DoS in http_GetHdr() while parsing Vary header
httpGetHdr | l == strlenhdr + 1 Authors: 22733db72ab3ed94b5f8a1ffcde850251fe6f466 c8e74ebd8392fda4788179f9a02bb49337638e7b AKAT-1 Versions: 3.0.3, 2.1.5 Summary: It's possible to crash Varnish via assertion if the single header within the Vary header is longer then 127 bytes. The 'l' cachehttp.c2...
[security bulletin] HPSBMU02849 SSRT101124 rev.1 - HP ServiceCenter, Remote Denial of Service (DoS)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03680085 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03680085 Version: 1 HPSBMU02849...
[ MDVSA-2013:017 ] libxml2
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:017 http://www.mandriva.com/security/ Package : libxml2 Date : March 5, 2013 Affected: Enterprise Server 5.0 Problem Description: A vulnerability has been found and corrected in libxml2: A denial of service...
[USN-1756-1] Linux kernel vulnerabilities
========================================================================== Ubuntu Security Notice USN-1756-1 March 06, 2013 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
Corel WordPerfect uninitialized pointer dereference
User-controlled pointer dereferences on WPD parsing...
Squid 3.2.7 DoS (loop, 100% cpu) strHdrAcptLangGetItem() at errorpage.cc
DoS loop, 100 cpu strHdrAcptLangGetItem at errorpage.cc Authors: 22733db72ab3ed94b5f8a1ffcde850251fe6f466 c8e74ebd8392fda4788179f9a02bb49337638e7b AKAT-1 Versions: 3.2.5, 3.2.7 This error is only triggered when squid needs to generate an error page for example backend node is not responding etc...
[SECURITY] [DSA 2641-1] perl security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2641-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 09, 2013 http://www.debian.org/security/faq -...
Perl memory leakage
Memory leakage on hash tables...
Squid 3.2.5 httpMakeVaryMark() header value DoS, 2.7.Stable9 memory corruption.
httpMakeVaryMark header value 'value' http.cc:603 line Authors: 22733db72ab3ed94b5f8a1ffcde850251fe6f466 c8e74ebd8392fda4788179f9a02bb49337638e7b AKAT-1 Versions: 3.2.5 It takes combination of a 5x requests and responses in less than 10 seconds to crash the parent: Request -- cut -- !/usr/bin/env...
Corel Quattro Pro DoS
NULL pointer dereferences on QPW parsing...
Multiple NULL Pointer Dereference Vulnerabilities in Corel Quattro Pro X6
Advisory ID: HTB23112 Product: Corel Quattro Pro X6 Standard Edition Vendor: Corel Corporation Vulnerable Versions: 16.0.0.388, other versions may be also affected Tested Version: 16.0.0.388 on Windows 7 SP1 32 bits Vendor Notification: August 27, 2012 Public Disclosure: March 7, 2013 Vulnerabili...
Untrusted Pointer Dereference Vulnerability in Corel WordPerfect X6
Advisory ID: HTB23114 Product: Corel WordPerfect X6 Standard Edition Vendor: Corel Corporation Vulnerable Versions: 16.0.0.388, other versions may be also affected Tested Version: 16.0.0.388 on Windows 7 SP1 32 bits Vendor Notification: September 12, 2012 Public Disclosure: March 7, 2013...
Re: Squid 3.2.7 DoS (loop, 100% cpu) strHdrAcptLangGetItem() at errorpage.cc
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 03/05/2013 01:53 PM, [email protected] wrote: DoS loop, 100 cpu strHdrAcptLangGetItem at errorpage.cc Authors: 22733db72ab3ed94b5f8a1ffcde850251fe6f466 c8e74ebd8392fda4788179f9a02bb49337638e7b AKAT-1 Versions: 3.2.5, 3.2.7 This error i...
[ MDVSA-2013:020 ] wireshark
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:020 http://www.mandriva.com/en/support/security/ Package : wireshark Date : March 8, 2013 Affected: Enterprise Server 5.0 Problem Description: Multiple vulnerabilities was found and corrected in Wireshark:...
Squid security vulnerabilities
CPU exhaustion DoS, memory corruption...
Wireshark multiple security vulnerabilities
Multiple vulnerabilities on CLNP, DTLS, DCP-ETSI, NTLMSSP and another protocols parsing...
sudo protection bypass
It's possible to bypass password request by manipulating timestamps. Session id hijacking is possible under some conditions...
[SE-2012-01] One more attack affecting Oracle's Java SE 7u15
Hello All, Last week, Oracle disputed our claim regarding one of the Issues reported to the company on Feb 25, 2012. This was Issue 54 that was partly responsible for a successful attack demonstrated in the environment of Java SE 7 Update 15. It turns out Oracle's attempt to deny Issue 54 turned...
Cisco Prime Central / Cisco Unified Communications Manager / Cisco Unified Presence Server DoS
Different DoS conditions on traffic processing...
[Onapsis Security Advisory 2013-002] SAP SDM Denial of Service
Onapsis Security Advisory 2013-002: SAP SDM Denial of Service This advisory can be downloaded in PDF format from http://www.onapsis.com/. By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations and new...
Stored Cross-site Scripting ('XSS') in Airvana HubBub C1-600-RT Femtocell
Advisory ID: NEOCAN-2013-002 Advisory Title: Stored XSS 'cross-site scripting' in Airvana HubBub C1-600-RT router Author: Scott Behrens / [email protected] Release Date: 02/27/2013 Vendor: Airvana Application: Airrave 2.5 router administration page Platform: Web Application Severity:...
Airvana HubBub routers crossite scripting
Web interface crossite scripting...
[Onapsis Security Advisory 2013-001] SAP Portal PDC Information Disclosure
Onapsis Security Advisory 2013-001: SAP Portal PDC Information Disclosure This advisory can be downloaded in PDF format from http://www.onapsis.com/. By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations...
[Onapsis Security Advisory 2013-004] SAP J2EE Core Service Arbitrary File Access
Onapsis Security Advisory 2013-004: SAP J2EE Core Service Arbitrary File Access This advisory can be downloaded in PDF format from http://www.onapsis.com/. By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories,...
[waraxe-2013-SA#097] - Multiple Vulnerabilities in PHP-Fusion 7.02.05
waraxe-2013-SA097 - Multiple Vulnerabilities in PHP-Fusion 7.02.05 =============================================================================== Author: Janek Vind "waraxe" Date: 27. February 2013 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-97.html Description of vulnerable...
Adobe Reader / Acrobat security vulnerabilities
Buffer oveflows are exploited in-the-wild...
[KIS-2013-03] Joomla! <= 3.0.2 (highlight.php) PHP Object Injection Vulnerability
------------------------------------------------------------------- Joomla! = 3.0.2 highlight.php PHP Object Injection Vulnerability ------------------------------------------------------------------- - Software Link: http://www.joomla.org/ - Affected Versions: Version 3.0.2 and earlier 3.0.x...
Fileutils ruby gem possible remote command execution and insecure file handling in /tmp
Fileutils ruby gem possible remote command execution and insecure file handling in /tmp 2/23/2013 Hi list, I was looking at some gem files and noticed a few issues with fileutils-0.7 http://rubygems.org/gems/fileutils "A set of utility classes to extract meta data from different file types"...
[Onapsis Security Advisory 2013-006] SAP SMD Agent Code Injection
Onapsis Security Advisory 2013-006: SAP SMD Agent Code Injection This advisory can be downloaded in PDF format from http://www.onapsis.com/. By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations and new...
SAP applications multiple security vulnerabilities
Code executions, filesystem access, information leakage, DoS...
Kayako Fusion v4.51.1891 - Multiple Web Vulnerabilities
Title: ====== Kayako Fusion v4.51.1891 - Multiple Web Vulnerabilities Date: ===== 2013-01-22 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=824 ID: SWIFT-3119 URL: http://dev.kayako.com/browse/SWIFT-3119 VL-ID: ===== 824 Common Vulnerability Scoring System:...
Multiple Vulnerabilities in Piwigo
Advisory ID: HTB23144 Product: Piwigo Vendor: Piwigo project Vulnerable Versions: 2.4.6 and probably prior Tested Version: 2.4.6 Vendor Notification: February 6, 2013 Vendor Patch: February 19, 2013 Public Disclosure: February 27, 2013 Vulnerability Type: Cross-Site Request Forgery CWE-352, Path...
[SECURITY] [DSA 2633-1] fusionforge security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2633-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez February 26, 2013 http://www.debian.org/security/faq -...
Adobe Flash Player multiple security vulnerabilities
Multiple code execution vulnerabilities are exploited in-the-wild...
[Onapsis Security Advisory 2013-003] SAP Enterprise Portal Cross-Site-Scripting
Onapsis Security Advisory 2013-003: SAP Enterprise Portal Cross-Site-Scripting This advisory can be downloaded in PDF format from http://www.onapsis.com/. By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories,...
[Onapsis Security Advisory 2013-005] SAP CCMS Agent Code Injection
Onapsis Security Advisory 2013-005: SAP CCMS Agent Code Injection This advisory can be downloaded in PDF format from http://www.onapsis.com/. By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations and new...
Cross-Site Scripting (XSS) in Geeklog
Advisory ID: HTB23143 Product: Geeklog Vendor: http://www.geeklog.net Vulnerable Versions: 1.8.2 and probably prior Tested Version: 1.8.2 Vendor Notification: February 6, 2013 Vendor Patch: February 20, 2013 Public Disclosure: February 27, 2013 Vulnerability Type: Cross-Site Scripting CWE-79 CVE...
Fwd: [SECURITY] CVE-2013-0253 Apache Maven 3.0.4
CVE-2013-0253 Apache Maven Severity: Medium Vendor: The Apache Software Foundation Versions Affected: - Apache Maven 3.0.4 - Apache Maven Wagon 2.1, 2.2, 2.3 Description: Apache Maven 3.0.4 with Apache Maven Wagon 2.1 has introduced a non-secure SSL mode by default. This mode disables all SSL...
BF, IAA and CSRF vulnerabilities in Question2Answer
Hello 3APA3A! These are Brute Force, Insufficient Anti-automation and Cross-Site Request Forgery vulnerabilities in Question2Answer. This is the first part of vulnerabilities in this web application. ------------------------- Affected products: ------------------------- Vulnerable are all version...
[SECURITY] [DSA 2634-1] python-django security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2634-1 [email protected] http://www.debian.org/security/ Nico Golde February 27, 2013 http://www.debian.org/security/faq -...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
Denial of Service vulnerability in War FTP Daemon 1.82
Late last week, security researchers at jura.ba reported a Denial of Service vulnerability in War FTP Daemon 1.82. The problem was rooted in the way log messages was relayed from the internal log handler to the Windows Event log when the sever was running as a Windows service. Theoretically, it...
PHP securiy vulnerabilities
safedir protection bypass and code execution on SOAP handling...
[IA48] Photodex ProShow Producer v5.0.3297 Insecure Library Loading Vulnerability
Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Photodex ProShow Producer Vendor URL: www.photodex.com Type: Uncontrolled Search Path Element CWE-427 Date found: 2013-02-23 Date published: 2013-02-23 CVSSv2 Score: 4,4...
ESA-2013-012: RSA® Authentication Agent 7.1.1 for Microsoft Windows® Access Control Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-012: RSA® Authentication Agent 7.1.1 for Microsoft Windows® Access Control Vulnerability EMC Identifier: ESA-2013-012 CVE Identifier: CVE-2013-0931 Severity Rating: CVSS v2 Base Score: 6.0 AV:N/AC:M/Au:S/C:P/I:P/A:P Affected Products: Product...
openjpeg library security vulnerabilities
Vulnerabilities on JPEG encoding and decoding...
Transmission memory corruption
micro transport packets parsing memory corruption...