Lucene search
K
SecurityvulnsRecent

47153 matches found

securityvulns
securityvulns
•added 2012/08/29 12:0 a.m.•63 views

[SE-2012-01] information regarding recently discovered Java 7 attack

Hello All, This post is made in reference to recently discovered attack against Java SE 7 platform 12. We discovered that the vulnerabilities used by the attack code are similar to some of the weaknesses that we have found as part of our SE-2012-01 Java SE security research project 3. The recentl...

0.1AI score
Exploits0
securityvulns
securityvulns
•added 2012/08/29 12:0 a.m.•51 views

OpenOffice security vulnerabilities

Multiple buffer overflows...

7.5CVSS3AI score0.07006EPSS
Exploits0References3Affected Software1
securityvulns
securityvulns
•added 2012/08/29 12:0 a.m.•69 views

US-CERT Alert TA12-240A - Oracle Java 7 Security Manager Bypass Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 National Cyber Awareness System US-CERT Alert TA12-240A Oracle Java 7 Security Manager Bypass Vulnerability Original release date: August 27, 2012 Last revised: -- Systems Affected Any system using Oracle Java 7 1.7, 1.7.0 including: Java Platform...

0.6AI score
Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•41 views

ZDI-12-166 : (0Day) HP LeftHand Virtual SAN Appliance Unauthenticated Access Remote Command Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-166 : 0Day HP LeftHand Virtual SAN Appliance Unauthenticated Access Remote Command Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-166 August 22, 2012 - -- CVE ID: - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affect...

1.5AI score
Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•22 views

HP Integrity Server DoS

No description provided...

4.9CVSS1AI score0.00484EPSS
Exploits0References1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•20 views

HP Operations Agent for NonStop Server code execution

Code execution on TCP/7771 and TCP/8976 packets parsing...

3.8AI score
Exploits0References1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•22 views

HP Fortify Software Security Center security vulnerabilities

Information leakage...

5CVSS1.4AI score0.02178EPSS
Exploits0References2Affected Software1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•90 views

ZDI-12-148 : GE Proficy Real-Time Information Portal Remote Interface Service Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-148 : GE Proficy Real-Time Information Portal Remote Interface Service Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-148 August 22, 2012 - -- CVE ID: CVE-2012-0232 - -- CVSS: 9.4,...

6.4CVSS0.6AI score0.0227EPSS
Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•36 views

Symantec Endpoint Protection code execution

Multiple security vulnerabilities on TCP/8433 https request parsing...

7.2CVSS2.6AI score0.0146EPSS
Exploits7References1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•41 views

GIMP security vulnerabilities

Memory corruptions on KISS CEL and GIF parsing...

6.8CVSS4AI score0.05142EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•33 views

HP Serviceguard DoS

No description provided...

7.8CVSS0.7AI score0.03847EPSS
Exploits0References1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•93 views

Apple WebKit (iTunes, iPhone, Safari, Google Chrome) multiple security vulnerabilities

70 of different memory corruption vulnerabilities, crossite scripting, information leakage...

9.3CVSS1.6AI score0.04188EPSS
Exploits0References3Affected Software3
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•170 views

ZDI-12-146 : Novell eDirectory RelativeToFullDN Parsing Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-146 : Novell eDirectory RelativeToFullDN Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-146 August 22, 2012 - -- CVE ID: - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected Vendors: Novell - -...

0.5AI score
Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•230 views

ZDI-12-165 : (0Day) HP Operations Agent for NonStop Server HEALTH Packet Parsing Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-165 : 0Day HP Operations Agent for NonStop Server HEALTH Packet Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-165 August 22, 2012 - -- CVE ID: - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - --...

0.3AI score
Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•27 views

Lsoft ListServ crossite scripting

Crossite scripting via Web interface...

2.6AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•56 views

ZDI-12-153 : Apple QuickTime sean Atom Size Parsing Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-153 : Apple QuickTime sean Atom Size Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-153 August 22, 2012 - -- CVE ID: CVE-2012-0670 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected Vendors:...

9.3CVSS0.5AI score0.04944EPSS
Exploits1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•53 views

[security bulletin] HPSBMU02800 SSRT100921 rev.1 - HP Service Manager and HP Service Center Server, Remote Denial of Service (DoS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03447828 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03447828 Version: 1 HPSBMU02800...

5CVSS0.3AI score0.0235EPSS
Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•52 views

ZDI-12-162 : (0Day) HP Diagnostics Server magentservice.exe Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-162 : 0Day HP Diagnostics Server magentservice.exe Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-162 August 22, 2012 - -- CVE ID: - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected Vendors:...

1.2AI score
Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•44 views

ZDI-12-163 : (0Day) HP iNode Management Center iNodeMngChecker.exe Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-163 : 0Day HP iNode Management Center iNodeMngChecker.exe Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-163 August 22, 2012 - -- CVE ID: - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected Vendors:...

0.7AI score
Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•33 views

HP Service Manager security vulnerabilities

DoS, crossite scriptings...

5CVSS1.2AI score0.0235EPSS
Exploits0References1Affected Software2
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•19 views

HP Intelligent Management code execution

img.exe code execution on TCP/8800 request parsing...

3.8AI score
Exploits0References1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•61 views

CVE-2011-0340

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-155 : InduSoft Thin Client ISSymbol InternationalOrder Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-155 August 22, 2012 - -- CVE ID: CVE-2011-0340 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affecte...

9.3CVSS0.3AI score0.32349EPSS
Exploits12
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•58 views

Fortify Software Security Center

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03447895 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03447895 Version: 1 HPSBMU02802...

4CVSS0.4AI score0.01145EPSS
Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•90 views

ZDI-12-151 : Oracle Outside In Excel File TxO Parsing Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-151 : Oracle Outside In Excel File TxO Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-151 August 22, 2012 - -- CVE ID: - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected Vendors: Oracle - --...

0.5AI score
Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•37 views

Xend DoS conditions

Different DoS conditions...

4.9CVSS1.5AI score0.00642EPSS
Exploits1References1Affected Software1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•63 views

[ MDVSA-2012:142 ] gimp

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:142 http://www.mandriva.com/security/ Package : gimp Date : August 21, 2012 Affected: 2011., Enterprise Server 5.0 Problem Description: Multiple vulnerabilities has been discovered and corrected in gimp: A...

6.8CVSS7.6AI score0.05142EPSS
Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•71 views

Cisco AnyConnect Secure Mobility Client multiple security vulnerabilities

Code execution, protection bypass...

9.3CVSS2.5AI score0.04637EPSS
Exploits0References3Affected Software1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•52 views

ZDI-12-164 : (0Day) HP Intelligent Management Center img.exe Integer Wrap Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-164 : 0Day HP Intelligent Management Center img.exe Integer Wrap Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-164 August 22, 2012 - -- CVE ID: - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected...

1AI score
Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•89 views

[FOREGROUND SECURITY 2012-001] Lsoft ListServ v16 (WA revision R4241) SHOWTPL parameter Cross-SIte Scripting - XSS

============================================================ FOREGROUND SECURITY, SECURITY ADVISORY 2012-001 - Original release date: August 16, 2012 - Discovered by: Jose Carlos de Arriba Penetration Testing Team Lead at Foreground Security - Contact: jcarriba at foregroundsecurity dot com, dade...

0.4AI score
Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•27 views

HP LeftHand Virtual SAN Appliance unauthorized access

TCP/13841 service authentication bypass...

2.9AI score
Exploits0References1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•82 views

ZDI-12-149 : Cisco AnyConnect VPN Client Verification Bypass Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-149 : Cisco AnyConnect VPN Client Verification Bypass Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-149 August 22, 2012 - -- CVE ID: CVE-2012-2494 - -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C - -- Affected...

4.3CVSS0.1AI score0.01401EPSS
Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•76 views

ZDI-12-145 : Symantec Endpoint Protection SemSvc.exe AgentServlet Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-145 : Symantec Endpoint Protection SemSvc.exe AgentServlet Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-145 August 22, 2012 - -- CVE ID: CVE-2012-0289 - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - --...

7.2CVSS0.9AI score0.0146EPSS
Exploits7
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•60 views

Apple QuickTime multiple security vulnerabilities

Multiple vulnerabilities in TexML, H.264, MP4, MPEG, PNG, QTVR, JPEG2000, PICT and different audio and video formats parsing...

9.3CVSS3.6AI score0.28623EPSS
Exploits24References12Affected Software1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•29 views

Novell eDirectory buffer overflow

Buffer overflow in RelativeToFullDN on LDAP request processing...

3.2AI score
Exploits0References1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•51 views

[security bulletin] HPSBMU02801 SSRT100879 rev.1 - HP Fortify Software Security Center, Remote Unauthenticated Disclosure of Information

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03447824 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03447824 Version: 1 HPSBMU02801...

5CVSS0.4AI score0.02178EPSS
Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•45 views

PostgreSQL privilege escalation

Privilege escalations via XML2 extension...

4.9CVSS4.2AI score0.03297EPSS
Exploits2References1Affected Software1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•38 views

[security bulletin] HPSBHF02804 SSRT100631 rev.1 - HP Integrity Server rx2800 i2, BL860c i2, BL870c i2, BL890c i2, Potential Denial of Service (DoS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03450553 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03450553 Version: 1 HPSBHF02804...

4.9CVSS0.9AI score0.00484EPSS
Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•54 views

[SECURITY] [DSA 2531-1] xen security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2531-1 [email protected] http://www.debian.org/security/ Luciano Bello August 18, 2012 http://www.debian.org/security/faq -...

4.9CVSS1.8AI score0.00642EPSS
Exploits1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•48 views

Nova security vulnerabilities

Privilege escalation, DoS...

5.5CVSS3AI score0.02997EPSS
Exploits4References2
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•36 views

GE Proficy Real-Time Information Portal code execution

Code execution on TCP/5159 traffic parsing...

6.4CVSS4.4AI score0.0227EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•55 views

ZDI-12-154 : IBM Lotus Notes URL Command Injection Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-154 : IBM Lotus Notes URL Command Injection Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-154 August 22, 2012 - -- CVE ID: CVE-2012-2174 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected Vendors:...

9.3CVSS0.6AI score0.38291EPSS
Exploits11
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•95 views

ZDI-12-147 : WebKit ContentEditable swapInNode Use-After-Free Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-147 : WebKit ContentEditable swapInNode Use-After-Free Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-147 August 22, 2012 - -- CVE ID: CVE-2011-3897 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affecte...

6.8CVSS0.6AI score0.01541EPSS
Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•47 views

APPLE-SA-2012-08-20-1 Apple Remote Desktop 3.6.1

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2012-08-20-1 Apple Remote Desktop 3.6.1 Apple Remote Desktop 3.6.1 is now available and addresses the following: Apple Remote Desktop Available for: Apple Remote Desktop 3.0 or later Impact: Connecting to a third-party VNC server with "Encryp...

4.3CVSS5.9AI score0.01711EPSS
Exploits1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•58 views

ZDI-12-150 : Oracle Outside In XPM Processing Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-150 : Oracle Outside In XPM Processing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-150 August 22, 2012 - -- CVE ID: - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected Vendors: Oracle - -- Affected...

Exploits0
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•105 views

[USN-1542-1] PostgreSQL vulnerabilities

========================================================================== Ubuntu Security Notice USN-1542-1 August 21, 2012 postgresql-8.3, postgresql-8.4, postgresql-9.1 vulnerabilities ========================================================================== A security issue affects these...

4.9CVSS0.03297EPSS
Exploits2
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•34 views

ImageMagic memory corruption

Memory corruption on PNG processing...

4.3CVSS2.6AI score0.02754EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•67 views

ESA-2012-039: EMC ApplicationXtender Arbitrary File Upload Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2012-039: EMC ApplicationXtender Arbitrary File Upload Vulnerability EMC Identifier: ESA-2012-039 CVE Identifier: CVE-2012-2289 Severity Rating: CVSS v2 Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P Affected products: EMC ApplicationXtender Desktop 6...

7.5CVSS1.1AI score0.05424EPSS
Exploits1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•31 views

OpenLDAP DoS

assert on attrsOnly search request...

2.6CVSS2.3AI score0.03691EPSS
Exploits1Affected Software1
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•85 views

[USN-1545-1] Nova vulnerability

========================================================================== Ubuntu Security Notice USN-1545-1 August 22, 2012 nova vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...

5.5CVSS0.9AI score0.02582EPSS
Exploits2
securityvulns
securityvulns
•added 2012/08/27 12:0 a.m.•43 views

[USN-1544-1] ImageMagick vulnerability

========================================================================== Ubuntu Security Notice USN-1544-1 August 22, 2012 imagemagick vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: ...

4.3CVSS1.1AI score0.02754EPSS
Exploits0
Total number of security vulnerabilities47153