Securityvulns - Page 124 of Securityvulns Vulnerabilities List | Vulners.com

SecurityvulnsRecent

Recent Most viewed

47153 matches found

securityvulns•added 2012/10/15 12:0 a.m.•57 views

[CVE-2012-4501] CloudStack configuration vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 CVE-2012-4501: Apache CloudStack configuration vulnerability Severity: Critical Vendors: The Apache Software Foundation Citrix, Inc. Versions Affected: As no official releases have been made, this does not affect any official Apache CloudStack...

10CVSS1.2AI score0.02729EPSS

securityvulns•added 2012/10/15 12:0 a.m.•21 views

BigPond 3G21WB security vulnerabilities

Hard coded credentials, commands injection...

Exploits0References1

securityvulns•added 2012/10/15 12:0 a.m.•34 views

VLC code execution

Code execution on PNG files parsing...

Exploits0References1Affected Software1

securityvulns•added 2012/10/15 12:0 a.m.•45 views

Hard-coded credentials and command-injection vulnerabilities on BigPond 3G21WB

Hard-coded credentials and command-injection vulnerabilities on BigPond 3G21WB ============================================================================== ADVISORY INFORMATION Title: Hard-coded credentials and command-injection vulnerabilities on BigPond 3G21WB Discovery date: 17/09/2012 Relea...

securityvulns•added 2012/10/15 12:0 a.m.•33 views

EMC NetWorker Module for Microsoft Applications security vulnerabilities

Code execution, information leakage...

9.3CVSS2.5AI score0.04683EPSS

Exploits0References1Affected Software1

securityvulns•added 2012/10/15 12:0 a.m.•37 views

Cisco ASA / FWSM multiple security vulnerabilities

Buffer overflow, multiple DoS conditions...

9CVSS2.6AI score0.09665EPSS

Exploits0Affected Software3

securityvulns•added 2012/10/15 12:0 a.m.•352 views

ESA-2012-025: EMC NetWorker Module for Microsoft Applications (NMM) Multiple Vulnerabilities

ESA-2012-025.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2012-025: EMC NetWorker Module for Microsoft Applications NMM Multiple Vulnerabilities. EMC Identifier: ESA-2012-025 CVE Identifier: CVE-2012-2284,CVE-2012-2290 Severity Rating: See below for individual severity scores EMC...

9.3CVSS1.5AI score0.04683EPSS

securityvulns•added 2012/10/15 12:0 a.m.•45 views

VMSA-2012-0014 VMware vCenter Operations, CapacityIQ, and Movie Decoder security updates

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ----------------------------------------------------------------------- VMware Security Advisory Advisory ID: VMSA-2012-0014 Synopsis: VMware vCenter Operations, CapacityIQ, and Movie Decoder security updates Issue date: 2012-10-04 Updated on:...

6.9CVSS6.1AI score0.00334EPSS

securityvulns•added 2012/10/15 12:0 a.m.•31 views

Microsoft Office Excel ReadAV Arbitrary Code Execution

!/usr/bin/perl Microsoft Office Excel ReadAV Arbitrary Code Execution Author: Jean Pascal Pereira [email protected] Vendor URI: http://office.microsoft.com Vendor Description: Microsoft Excel is a commercial spreadsheet application written and distributed by Microsoft for Microsoft Windows and Ma...

securityvulns•added 2012/10/15 12:0 a.m.•33 views

VMWare applications security vulnerabilities

VMware Movie Decoder code execution, vCenter Operations crossite scripting, vCenter CapacityIQ directory travesal...

6.9CVSS3AI score0.00334EPSS

Exploits0References1Affected Software1

securityvulns•added 2012/10/15 12:0 a.m.•28 views

utempter allows fake host setting

Quoting from http://bugs.debian.org/689562 Utempter does not cannot? verify the setting of host, so it can easily be faked. This may affect any software that depend on utmp correctness. Demo of the issue: psz@bari:$ cat silly.c include sys/types.h include sys/stat.h include fcntl.h include unistd...

securityvulns•added 2012/10/15 12:0 a.m.•24 views

Microsoft Excel code execution

Code execution on .xls files parsing...

Exploits0References1Affected Software1

securityvulns•added 2012/10/15 12:0 a.m.•84 views

[USN-1603-1] Ruby vulnerabilities

========================================================================== Ubuntu Security Notice USN-1603-1 October 10, 2012 ruby1.8 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

5CVSS0.6AI score0.01686EPSS

securityvulns•added 2012/10/12 12:0 a.m.•66 views

[ MDVSA-2012:162 ] bind

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:162 http://www.mandriva.com/security/ Package : bind Date : October 10, 2012 Affected: 2011., Enterprise Server 5.0 Problem Description: A vulnerability was discovered and corrected in bind: A certain...

7.8CVSS7.5AI score0.41981EPSS

securityvulns•added 2012/10/12 12:0 a.m.•45 views

bind DoS

A problem in RBT algorythm implementation causes hang on specific combination of records...

7.8CVSS2.2AI score0.41981EPSS

Exploits0References1

securityvulns•added 2012/10/10 12:0 a.m.•32 views

hostapd buffer overflow

Buffer overflow during EAP authentication...

4.3CVSS2.9AI score0.05318EPSS

Exploits0References2Affected Software1

securityvulns•added 2012/10/10 12:0 a.m.•38 views

Fortigate UTM WAF Appliance multiple security vulnerabilities

Privilege escalation, crossite scripting...

Exploits0References3

securityvulns•added 2012/10/10 12:0 a.m.•63 views

GTA UTM Firewall GB 6.0.3 - Multiple Web Vulnerabilities

Title: ====== GTA UTM Firewall GB 6.0.3 - Multiple Web Vulnerabilities Date: ===== 2012-09-10 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=579 VL-ID: ===== 579 Common Vulnerability Scoring System: ==================================== 4 Introduction: ============= The...

securityvulns•added 2012/10/10 12:0 a.m.•19 views

GTA UTM Firewall multiple security vulnerabilities

Multiple crossite scripting possibilities...

Exploits0References2Affected Software1

securityvulns•added 2012/10/10 12:0 a.m.•27 views

[SECURITY] [DSA 2558-1] bacula security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2558-1 [email protected] http://www.debian.org/security/ Raphael Geissert October 08, 2012 http://www.debian.org/security/faq -...

4CVSS1.7AI score0.00607EPSS

securityvulns•added 2012/10/10 12:0 a.m.•30 views

bacula restriction bypass

ACLs are not enforced properly...

4CVSS2.7AI score0.00607EPSS

Exploits0References1Affected Software1

securityvulns•added 2012/10/10 12:0 a.m.•32 views

WingFTP DoS

Crash on ZIP archive requests processing...

6.8CVSS1.7AI score0.00712EPSS

Exploits0References1Affected Software1

securityvulns•added 2012/10/10 12:0 a.m.•35 views

Microsoft SQL Server crossite scripting

SQL Server Report Manager crossite scripting...

4.3CVSS1.2AI score0.44363EPSS

Exploits0Affected Software1

securityvulns•added 2012/10/10 12:0 a.m.•26 views

soapbox protection bypass

It's possible to bypass protection by launching second application instance...

Exploits0References1Affected Software1

securityvulns•added 2012/10/10 12:0 a.m.•19 views

Endpoint Protector multiple security vulnerabilities

Multiple crossite scripting possibilities...

Exploits0References1Affected Software1

securityvulns•added 2012/10/10 12:0 a.m.•51 views

Key Systems Electronic Key Lockers command injection and weak authentication vulnerabilities

OVERVIEW Key Systems Electronic Key Lockers contain a command injection vulnerability which may allow a remote unauthenticated attacker to inject commands into the electronic key locker. Key Systems Electronic Key Lockers also contains weak authentication which could allow an attacker...

securityvulns•added 2012/10/10 12:0 a.m.•58 views

Fortigate UTM WAF Appliance - Multiple Web Vulnerabilities

Title: ====== Fortigate UTM WAF Appliance - Multiple Web Vulnerabilities Date: ===== 2012-09-06 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=557 VL-ID: ===== 557 Common Vulnerability Scoring System: ==================================== 5 Introduction: ============= T...

securityvulns•added 2012/10/10 12:0 a.m.•46 views

[SECURITY] [DSA 2557-1] hostapd security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2557-1 [email protected] http://www.debian.org/security/ Nico Golde October 08, 2012 http://www.debian.org/security/faq -...

4.3CVSS1.1AI score0.05318EPSS

securityvulns•added 2012/10/10 12:0 a.m.•60 views

GTA UTM Firewall GB 6.0.3 - Multiple Web Vulnerabilities

Title: ====== GTA UTM Firewall GB 6.0.3 - Multiple Web Vulnerabilities Date: ===== 2012-09-30 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=579 VL-ID: ===== 579 Common Vulnerability Scoring System: ==================================== 4 Introduction: ============= The...

securityvulns•added 2012/10/10 12:0 a.m.•87 views

Fortigate UTM WAF Appliance - Cross Site Vulnerabilities

Title: ====== Fortigate UTM WAF Appliance - Cross Site Vulnerabilities Date: ===== 2012-09-07 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=559 VL-ID: ===== 559 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: ============= T...

securityvulns•added 2012/10/10 12:0 a.m.•49 views

Fortigate UTM WAF Appliance - Multiple Web Vulnerabilities

Title: ====== Fortigate UTM WAF Appliance - Multiple Web Vulnerabilities Date: ===== 2012-09-06 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=557 VL-ID: ===== 557 Common Vulnerability Scoring System: ==================================== 5 Introduction: ============= T...

securityvulns•added 2012/10/10 12:0 a.m.•54 views

soapbox Local Root / Privilege Escalation Vulnerability

----------------------------------- soapbox 0.3.1 = Local Root Exploit ----------------------------------- Vendor URI: http://dag.wieers.com/home-made/soapbox/ Credit: Jean Pascal Pereira [email protected] Description: "Soapbox allows to restrict processes to write only to those places you want...

securityvulns•added 2012/10/10 12:0 a.m.•49 views

Microsoft Windows kernel integer overflow

Kernel integer overflow leads to privilege escalation...

7.2CVSS4.1AI score0.01174EPSS

Exploits1Affected Software1

securityvulns•added 2012/10/10 12:0 a.m.•60 views

WingFTP Server Denial of Service Vulnerability

-------------------------------------------------------------------------------- | WingFTP Server Denial of Service Vulnerability| -------------------------------------------------------------------------------- Summary ======= WingFTP server is prone to a remote denial-of-service vulnerability...

6.8CVSS2AI score0.00712EPSS

securityvulns•added 2012/10/10 12:0 a.m.•25 views

Logica HotScan buffer overflow

Buffer overflow on SWIFT Alliance Access Interface request parsing...

4.3CVSS6AI score0.01048EPSS

Exploits0References1

securityvulns•added 2012/10/10 12:0 a.m.•50 views

Endpoint Protector v4.0.4.0 - Multiple Web Vulnerabilities

Title: ====== Endpoint Protector v4.0.4.0 - Multiple Web Vulnerabilities Date: ===== 2012-10-01 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=571 VL-ID: ===== 571 Common Vulnerability Scoring System: ==================================== 5 Introduction: =============...

securityvulns•added 2012/10/10 12:0 a.m.•30 views

Key Systems Electronic Key Lockers unauthorized access

Unauthentication port TCP/1010 service access...

Exploits0References1

securityvulns•added 2012/10/10 12:0 a.m.•33 views

Microsoft Windows kerberos server DoS

NULL pointer dereference on authentication request...

5CVSS3.2AI score0.61326EPSS

Exploits0Affected Software1

securityvulns•added 2012/10/10 12:0 a.m.•62 views

[PRE-SA-2012-07] hostapd: Missing EAP-TLS message length validation

PRE-CERT Security Advisory ========================== Advisory: PRE-SA-2012-07 Released on: 8 October 2012 Affected product: Hostapd 0.6 - 1.0 Impact: denial of service Origin: specially crafted EAP-TLS messages CVSS Base Score: 7.8 Impact Subscore: 6.9 Exploitability Subscore: 10 CVSS Vector:...

4.3CVSS0.6AI score0.05318EPSS

securityvulns•added 2012/10/10 12:0 a.m.•50 views

BufferOverflow Vulnerability on Logica HotScan SWIFT Alliance Access Interface

-------------------------------------------------------------------------------- | BufferOverflow Vulnerability on Logica HotScan SWIFT Alliance Access Interface -------------------------------------------------------------------------------- Summary ======= Hotscan Listener interface is prone to...

4.3CVSS2AI score0.01048EPSS

securityvulns•added 2012/10/09 12:0 a.m.•23 views

Microsoft Works memory corruption

Memory corruption on Word files parsing...

9.3CVSS3.6AI score0.66728EPSS

Exploits0Affected Software1

securityvulns•added 2012/10/09 12:0 a.m.•46 views

Microsoft Word security vulnerabilities

Memory corruption, use-after-free...

9.3CVSS2.4AI score0.5685EPSS

Exploits2Affected Software3

securityvulns•added 2012/10/09 12:0 a.m.•47 views

Microsoft Fast Search Server vulnerabilities

Multiple vulnerabilities in Oracle Outside In built-in libraries...

2.1CVSS2.1AI score0.09702EPSS

Exploits0Affected Software1

securityvulns•added 2012/10/09 12:0 a.m.•39 views

Multiple Microsoft web applications crossite scripting

Insufficient HTML sanitization...

4.3CVSS0.7AI score0.24181EPSS

Exploits2Affected Software8

securityvulns•added 2012/10/07 12:0 a.m.•68 views

Secunia Research: Novell GroupWise iCalendar Date/Time Parsing Denial of Service

====================================================================== Secunia Research 17/09/2012 - Novell GroupWise iCalendar Date/Time Parsing Denial of Service - ====================================================================== Table of Contents Affected...

4.3CVSS0.5AI score0.0365EPSS

securityvulns•added 2012/10/07 12:0 a.m.•29 views

Novell Groupwise DoS

Crash on iCal parsing...

4.3CVSS2.4AI score0.0365EPSS

Exploits0References1Affected Software1

securityvulns•added 2012/10/05 12:0 a.m.•39 views

HP Network Node Manager i information leakage

No description provided...

5CVSS0.8AI score0.01493EPSS

Exploits0References1Affected Software1

securityvulns•added 2012/10/05 12:0 a.m.•54 views

XnView buffer overflow

Buffer overflow on JLS files parsing...

9.3CVSS4.9AI score0.34944EPSS

Exploits3References1Affected Software1

securityvulns•added 2012/10/05 12:0 a.m.•48 views

[security bulletin] HPSBST02818 SSRT100960 rev.1 - HP IBRIX X9000 Storage, Remote Disclosure of Information

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03510876 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03510876 Version: 1 HPSBST02818...

5CVSS0.3AI score0.00689EPSS

securityvulns•added 2012/10/05 12:0 a.m.•41 views

HP SiteScope multiple security vulnerabilities

Information leakage, code execution...

10CVSS1.5AI score0.68581EPSS

Exploits6References1Affected Software1

Total number of security vulnerabilities47153