47153 matches found
FreeType security vulnerabilities
Multiple vulnerabilities on BDF fonts parsing...
Adobe ColdFusion multiple security vulnerabilities
Authentication bypass, privilege escalation, information leakage...
IL, XSS, FPD, AoF, DoS, AFU vulnerabilities in Daily Edition Mouss theme for WordPress
Hello 3APA3A! I want to warn you about multiple vulnerabilities in Daily Edition Mouss theme for WordPress. In 2011 when I wrote about Cross-Site Scripting WASC-08, Full path disclosure WASC-13, Abuse of Functionality WASC-42 and Denial of Service WASC-10 vulnerabilities in TimThumb and multiple...
[SE-2012-01] 'Fix' for Issue 32 exploited by new Java 0-day code
Hello All, We were notified today of ongoing attacks with the use of a new Java vulnerability affecting latest version 7 Update 10 of the software 12. Due to the unpatched status of Issue 50 3 and some inquiries received regarding whether the attack code found exploited this bug, we had a quick...
Adobe Reader / Acrobat multiple security vulnereabilities
Multiple memory corruptions, buffer overflows, integer overflows, privilege escalations, code executions...
CVE-2012-5649 Apache CouchDB JSONP arbitrary code execution with Adobe Flash
CVE-2012-5649 JSONP arbitrary code execution with Adobe Flash Severity: Moderate Vendor: The Apache Software Foundation Affected Versions: JSONP is supported but disabled by default in all currently supported releases of Apache CouchDB. Administrator access is required to enable it. Releases up t...
Multiple vulnerabilities in Floating Tweets for WordPress
Hello 3APA3A! I want to warn you about multiple vulnerabilities in plugin Floating Tweets for WordPress. These are Full path disclosure, Directory Traversal and Cross-Site Scripting vulnerabilities. ------------------------- Affected products: ------------------------- Vulnerable are Floating...
[USN-1683-1] Linux kernel vulnerability
========================================================================== Ubuntu Security Notice USN-1683-1 January 10, 2013 linux vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
[security bulletin] HPSBMU02838 SSRT100789 rev.1 - HP Serviceguard on Linux, Remote Denial of Service (DoS)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03621178 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03621178 Version: 1 HPSBMU02838...
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
Multiple memory corruptions, buffer overflows, privilege escalations, address spoofing, misissued certificate...
Chrome for Android - UXSS via com.android.browser.application_id Intent extra
CVE Number: CVE-2012-4905 Title: Chrome for Android - UXSS via com.android.browser.applicationid Intent extra Affected Software: Confirmed on Chrome for Android v18.0.1025123 Credit: Takeshi Terada Issue Status: v18.0.1025308 was released which fixes this vulnerability Overview: By sending a...
Facebook for Android information leakage
Malicious app can steal private files...
Microsoft System Center Operations Manager crossite scripting
Crossite scripting in Web console...
Cisco Prime LAN Management Solution code execution
Insufficient network traffic validation...
EMC Networker buffer overflow
Buffer overflow in nsrindexd RPC based service...
X.Org / XFree86 xfs DoS
Invalid SendErrToClient function use...
Nero MediaHome DoS
Different vulnerabilities on TCP/54444 requests parsing...
Samsung Kies ActiveX multiple security vulnerabilities
Code execution, files modification...
Chrome for Android - Cookie theft from Chrome by malicious Android app
CVE Number: CVE-2012-4909 Title: Chrome for Android - Cookie theft from Chrome by malicious Android app Affected Software: Confirmed on Chrome for Android v18.0.1025123 Credit: Takeshi Terada Issue Status: v18.0.1025308 was released which fixes this vulnerability Overview: Symbolic links can be...
Chrome for Android - Bypassing SOP for Local Files By Symlinks
CVE Number: CVE-2012-4908 Title: Chrome for Android - Bypassing SOP for Local Files By Symlinks Affected Software: Confirmed on Chrome for Android v18.0.1025123 Credit: Takeshi Terada Issue Status: v18.0.1025308 was released which fixes this vulnerability Overview: Chrome for Android's Same-Origi...
[SECURITY] [DSA 2602-1] zendframework security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2602-1 [email protected] http://www.debian.org/security/ Florian Weimer January 08, 2013 http://www.debian.org/security/faq -...
Cisco Unified IP Phones 7900 privilege escalation
Insufficient syscall arguments check...
Chrome for Android - Android APIs exposed to JavaScript
CVE Number: CVE-2012-4907 Title: Chrome for Android - Android APIs exposed to JavaScript Affected Software: Confirmed on Chrome for Android v18.0.1025123 Credit: Takeshi Terada Issue Status: v18.0.1025308 was released which fixes this vulnerability Overview: By abusing Java objects exposed to...
Google Chrome for Android multiple security vulnerabilities
Multiple protection bypass and privilege escalation vulnerabilities...
Microsoft Windows multiple security vulnerabilities
Print spooler service code execution, XML library integer overflow and memory corruption, multiple .Net vulnerabilities, Win32K privilege escalation SSL/TLS library protection bypass, Open Data Protocol DoS...
Facebook for Android - Information Diclosure Vulnerability
Title: Facebook for Android - Information Diclosure Vulnerability Affected Software: Facebook Application 1.8.1 for Android Confirmed on Android 2.2 Credit: Takeshi Terada Issue Status: v1.8.2 was released which fixes this vulnerability Overview: The LoginActivity of Facebook app has improper...
Chrome for Android - Download Function Information Disclosure
CVE Number: CVE-2012-4906 Title: Chrome for Android - Download Function Information Disclosure Affected Software: Confirmed on Chrome for Android v18.0.1025123 Credit: Takeshi Terada Issue Status: v18.0.1025308 was released which fixes this vulnerability Overview: Rogue Android apps can steal...
Cross-Site Scripting (XSS) vulnerability in Quick.Cms and Quick.Cart
Advisory ID: HTB23135 Product: Quick.Cms, Quick.Cart Vendor: OpenSolution team Vulnerable Versions: Quick.Cms 5.0, Quick.Cart 6.0 and probably prior Tested Version: Quick.Cms 5.0, Quick.Cart 6.0 Vendor Notification: December 19, 2012 Vendor Patch: December 20, 2012 Public Disclosure: January 9,...
TomatoCart 1.x | Cross Site Request Forgery Protection Bypass via JavaScript Hijacking
OVERVIEW TomatoCart 1.x versions are vulnerable to Cross Site Request Forgery Protection Bypass. 2. BACKGROUND TomatoCart is an innovative Open Source shopping cart solution developed by Wuxi Elootec Technology Co., Ltd. It is forked from osCommerce 3 as a separate project and is released under...
New vulnerabilities in MODx Revolution
Hello 3APA3A! I want to warn you about two new vulnerabilities in MODx Revolution. This is addition to previous publication about vulnerabilities in MODx Revolution http://securityvulns.ru/docs28923.html. These are Abuse of Functionality vulnerabilities in MODx related to earlier mentioned Brute...
TomatoCart 1.x | Unrestricted File Creation
OVERVIEW TomatoCart 1.x versions are vulnerable to Unrestricted File Creation. 2. BACKGROUND TomatoCart is an innovative Open Source shopping cart solution developed by Wuxi Elootec Technology Co., Ltd. It is forked from osCommerce 3 as a separate project and is released under the GNU General...
Remote Buffer Overflow Vulnerability in Samsung Kies
Advisory ID: HTB23136 Product: Samsung Kies Vendor: Samsung Electronics Vulnerable Versions: 2.5.0.121141 Tested Version: 2.5.0.121141 on Windows 7 SP1 and Internet Explorer 9.0 Vendor Notification: December 19, 2012 Vendor Patch: December 27, 2012 Public Disclosure: January 9, 2013 Vulnerability...
ESA-2013-001: EMC NetWorker Buffer Overflow vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-001: EMC NetWorker Buffer Overflow vulnerability. EMC Identifier: ESA-2013-001 EMC CQ Identifier: NW145612 EMC CQ Identifier: NW145894 CVE Identifier: CVE-2012-4607 Severity Rating: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C Affected Products: EMC...
Nero MediaHome Multiple Remote DoS Vulnerabilities
Advisory ID: HTB23130 Product: Nero MediaHome Vendor: Nero Vulnerable Versions: 4.5.8.0 and probably prior Tested Version: 4.5.8.0 in Windows 7 SP1 Vendor Notification: November 21, 2012 Public Disclosure: January 9, 2013 Vulnerability Type: Improper Handling of Length Parameter Inconsistency...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
PMSoftware Simple Webserver directory traversal
Request with relative path allows file retrieval...
Asterisk security vulnerabilities
DoS conditions caused by resources exhaustion...
CVE-2012-6493 - Nexpose Security Console - Cross-Site Request Forgery (CSRF)
Product: Nexpose Security Console Vendor: Rapid7 Version: 5.5.3 Tested Version: 5.5.1 Vendor Notified Date: December 19, 2012 Release Date: January 2, 2013 Risk: High Authentication: None required Remote: Yes Description: Multiple Cross-Site Request Forgery CSRF vulnerabilities in Nexpose Securit...
AST-2012-014: Crashes due to large stack allocations when using TCP
Asterisk Project Security Advisory - AST-2012-014 Product Asterisk Summary Crashes due to large stack allocations when using TCP Nature of Advisory Stack Overflow Susceptibility Remote Unauthenticated Sessions SIP Remote Authenticated Sessions XMPP, HTTP Severity Critical Exploits Known No Report...
Simple Webserver 2.3-rc1 Directory Traversal
Exploit Title: Simple Webserver 2.3-rc1 Directory Traversal Date: 01/02/2013 Exploit Author: CwG GeNiuS Vendor Homepage: http://www.pmx.it Software Link: http://www.pmx.it/download/sws-2.3-rc1-i686.exe Version: 2.3-rc1 and earlier Tested on: Windows 7 Enterprise SP1 Vulnerability: When removing t...
AST-2012-015: Denial of Service Through Exploitation of Device State Caching
Asterisk Project Security Advisory - AST-2012-015 Product Asterisk Summary Denial of Service Through Exploitation of Device State Caching Nature of Advisory Denial of Service Susceptibility Remote Unauthenticated Sessions Severity Critical Exploits Known None Reported On 26 July, 2012 Reported By...
Rapid7 Nexpose security vulnerabilities
Crossite scripting and request forgery...
Слабая криптография в IP-телефонах Aastra
Configuration file encryption is vulnerable to replay attacks...
Aastra IP Telephone encrypted .tuz configuration file leakage
Aastra IP telephone encrypted .tuz configuration file leakage ------------------------------------------------------------- Affected products ================= Aastra 6753i IP Telephone Firmware Version 3.2.2.56 Firmware Release Code SIP Boot Version 2.5.2.1010 Background ========== "The 6753i fr...
CVE-2012-6494 - Nexpose Security Console - Session Hijacking
Product: Nexpose Security Console Vendor: Rapid7 Version: 5.5.3 Tested Version: 5.5.1 Vendor Notified Date: December 19, 2012 Release Date: January 2, 2013 Risk: Medium Authentication: Access to logs required. Remote: Yes Description: Due to a flaw in the way the Nexpose Security Console logs...
DoS vulnerability in Flash player (access violation)
Hello 3APA3A! I want to warn you about Denial of Service vulnerability in Flash player plugin for browsers. I've found this vulnerability in June 11.06.2011. That time I've wrote about this built-in DoS in new version of Flash player as a "surprise" from Adobe for owners of old browser, because i...
Charybdis IRC server DoS
assert on client capabilities negotiation...
Multiple vulnerabilities in RocketTheme themes for WordPress
Hello 3APA3A! Earlier I've wrote to the list about multiple vulnerabilities in multiple themes for WordPress http://seclists.org/fulldisclosure/2012/Dec/236. In that later I've mentioned 16 themes by RocketTheme with Rokbox: Afterburner, Refraction, Solarsentinel, Mixxmag, Iridium, Infuse,...
CA IdentityMinder security vulnerabilities
Code execution, privilege escalation...
SonicWall Email Security 7.4.1.x - Persistent Web Vulnerability
Title: ====== SonicWall Email Security 7.4.1.x - Persistent Web Vulnerability Date: ===== 2012-12-21 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=768 VL-ID: ===== 768 Common Vulnerability Scoring System: ==================================== 4.1 Introduction:...