47153 matches found
ZDI-12-133 : GE Proficy Historian ihDataArchiver.exe Multiple Opcode Parsing Remote Code Execution Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-133 : GE Proficy Historian ihDataArchiver.exe Multiple Opcode Parsing Remote Code Execution Vulnerabilities http://www.zerodayinitiative.com/advisories/ZDI-12-133 August 3, 2012 - -- CVE ID: CVE-2012-0229 - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A...
Oracle Business Transaction Management Server FlashTunnelService Remote File Deletion
Oracle Business Transaction Management Server 12.1.0.2.7 FlashTunnelService Remote File Deletion tested against: Microsoft Windows Server 2003 r2 sp2 Oracle WebLogic Server 12c 12.1.1 Oracle Business Transaction Management Server 12.1.0.2.7 Production version files tested:...
[USN-1526-1] KOffice vulnerability
========================================================================== Ubuntu Security Notice USN-1526-1 August 09, 2012 koffice vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
[CVE-2012-3870] Openconstructor CMS 3.12.0 'createobject.php', 'name' and 'description' parameters Stored Cross-site Scrpting vulnerabilities
Title: Openconstructor CMS 3.12.0 'createobject.php', 'name' and 'description' parameters Stored Cross-site Scrpting vulnerabilities Affected Software: http://www.openconstructor.org/ http://code.google.com/p/openconstructor/downloads/list...
[SECURITY] [DSA 2523-1] globus-gridftp-server security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2523-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff August 06, 2012 http://www.debian.org/security/faq -...
Globus GridFTP privilege escalation
Insufficient validation on name lookup...
[CVE-2012-3871] Openconstructor CMS 3.12.0 'data/hybrid/i_hybrid.php', 'header' parameter Stored Cross-site Scripting Vulnerability
Title: Openconstructor CMS 3.12.0 'data/hybrid/ihybrid.php', 'header' parameter Stored Cross-site Scripting Vulnerability Affected Software: http://www.openconstructor.org/ http://code.google.com/p/openconstructor/downloads/list...
HP Network Node Manager i crossite scripting
No description provided...
GE Intelligent Platforms Proficy Historian code execution
Multiple Data Archiver TCP/14000 service memory corruptions...
[PRE-SA-2012-05] Multiple heap-based buffer overflows in LibreOffice / OpenOffice
PRE-CERT Security Advisory ========================== Advisory: PRE-SA-2012-05 Released on: 6 August 2012 Affected product: LibreOffice 3.5.5 Apache OpenOffice = 3.4.0 Impact: code execution Origin: encrypted office files CVSS Base Score: 9.3 Impact Subscore: 10 Exploitability Subscore: 8.6 CVSS...
ZDI-12-129: Microsoft Windows TrueType Font Parsing Remote Code Execution Vulnerability (Remote Kernel)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-129 : Microsoft Windows TrueType Font Parsing Remote Code Execution Vulnerability Remote Kernel http://www.zerodayinitiative.com/advisories/ZDI-12-129 August 3, 2012 - -- CVE ID: CVE-2012-0159 - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - --...
ZDI-12-132 : IBM Lotus iNotes dwa85W ActiveX Attachment_Times Remote Code Execution Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-132 : IBM Lotus iNotes dwa85W ActiveX AttachmentTimes Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-132 August 3, 2012 - -- CVE ID: CVE-2012-2175 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected...
[SECURITY] [DSA 2524-1] openttd security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2524-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff August 06, 2012 http://www.debian.org/security/faq -...
Oracle Business Transaction Management Server directory traversal
FlashTunnelService allows arbitrary files deletion via SOAP interface...
[SECURITY] [DSA 2522-1] fckeditor security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2522-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez August 05, 2012 http://www.debian.org/security/faq -...
iAuto Mobile Application 2012 - Multiple Web Vulnerabilities
Title: ====== iAuto Mobile Application 2012 - Multiple Web Vulnerabilities Date: ===== 2012-07-11 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=658 VL-ID: ===== 658 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: ===========...
Zend Framework - Local file disclosure via XXE injection
Hello! I'll give you additional information concerning SEC Consult Vulnerability Lab Security Advisory 20120626-0 http://securityvulns.ru/docs28331.html. This advisory was about Local file disclosure via XXE injection in Zend Framework and was talking only about Local File Disclosure attack vecto...
Social Engine 4 Persistent XSS & Non-Persistent XSS
===================================================== Social Engine 4 Persistent XSS & Non-Persistent XSS ===================================================== :------------------------------------------------------------------------------------------ ---------------------------------------------...
Joomla com_package - SQL Injection Vulnerability
Title: ====== Joomla compackage - SQL Injection Vulnerability Date: ===== 2012-07-08 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=652 VL-ID: ===== 652 Common Vulnerability Scoring System: ==================================== 8.3 Introduction: ============= Joomla is ...
libtiff tiff2pdf code execution
Code exeucution on tiff parsing...
Security Advisory in LedgerSMBv 1.3.20 and below: Denial of Service vulnerability
A security oversight has been discovered in LedgerSMB 1.3 which could allow a malicious user to cause a denial of service against LedgerSMB or otherwise affect the way in which certain forms of data would get entered. In most cases we do not believe this to be particularly severe in the absence o...
ZDI-12-135 : Apple QuickTime JPEG2k Sample Size Atom Remote Code Execution Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-135 : Apple QuickTime JPEG2k Sample Size Atom Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-135 August 3, 2012 - -- CVE ID: CVE-2012-0661 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected Vendors:...
[SECURITY] [DSA 2521-1] libxml2 security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2521-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff August 04, 2012 http://www.debian.org/security/faq -...
ESA-2012-031: Iomega StorCenter/EMC Lifeline Remote Access Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2012-031: Iomega StorCenter/EMC Lifeline Remote Access Vulnerability EMC Identifier: ESA-2012-031 CVE Identifier: CVE-2012-2283 Severity Rating: CVSS v2 Base Score: 9.3 AV:N/AC:L/Au:S/C:C/I:C/A:C Affected products: Iomega network storage devices...
[CVE-2012-3873] Openconstructor CMS 3.12.0 'id' parameter multiple SQL injection vulnerabilities
Title: Openconstructor CMS 3.12.0 'id' parameter multiple SQL injection vulnerabilities Affected Software: http://www.openconstructor.org/ http://code.google.com/p/openconstructor/downloads/list http://esectorsolutions.com/about/whats-new/esector-news/detailed/?id=234 Description: Openconstructor...
AOL Products downloadUpdater2 Plugin SRC Parameter Remote Code Execution
AOL Products downloadUpdater2 Plugin SRC Parameter Remote Code Execution tested against: Microsoft Windows Vista sp2 Microsoft Windows Server 2003 r2 sp2 Mozilla Firefox 14.0.1 download url: http://client.web.aol.com/toolbarfiles/Prod/downloads/downloadupdater/dnupdatersetup.exe this was the upda...
Multiple Vulnerabilities in phpList
Advisory ID: HTB23100 Product: phpList Vendor: phpList Ltd Vulnerable Versions: 2.10.18 and probably prior Tested Version: 2.10.18 Vendor Notification: July 11, 2012 Public Disclosure: August 8, 2012 Vulnerability Type: Cross-Site Scripting CWE-79, SQL Injection CWE-89 CVE References:...
KOffice / Calligra code execution
Code execution on MS Word document parsing...
IBM Lotus iNotes / Quickr ActiveX code execution
dwa85W.cab / QP2.cab ActiveX buffer overflow...
ZDI-12-128 : Mozilla Firefox nsHTMLSelectElement Remote Code Execution Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-128 : Mozilla Firefox nsHTMLSelectElement Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-128 August 3, 2012 - -- CVE ID: CVE-2011-3671 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected Vendors:...
XXE Injection in CakePHP and Squiz CMS
Hello! I'll give you additional information concerning advisories CakePHP 2.x-2.2.0-RC2 XXE Injection http://securityvulns.ru/docs28331.html and Squiz CMS Multiple Vulnerabilities http://securityvulns.ru/docs28220.html. It's about XXE Injection in CakePHP and Squiz CMS. Similarly to earlier...
ocPortal 7.1.5 <= | Open URL Redirection Vulnerability
OVERVIEW ocPoral CMS 7.1.5 and lower versions are vulnerable to Open URL Redirection. 2. BACKGROUND ocPortal is the website Content Management System a CMS for building and maintaining a dynamic website. ocPortal's powerful feature-set means there's always a way to accomplish your vision. Not...
[ MDVSA-2012:125 ] wireshark
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:125 http://www.mandriva.com/security/ Package : wireshark Date : August 6, 2012 Affected: 2011., Enterprise Server 5.0 Problem Description: Multiple vulnerabilities was found and corrected in Wireshark: It m...
OpenTTD DoS
Few DoS conditions against game server...
[security bulletin] HPSBMU02798 SSRT100908 rev.1 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Cross Site Scripting (XSS)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03405705 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03405705 Version: 1 HPSBMU02798...
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
Multiple memory corruptions, code execution, data spoofing, crossite scripting, information leakage...
Another Solaris 10 Patch Cluster Symlink Attack
Larry W. Cashdollar 8/6/2012 Here is another symlink attack with temp file creation using process id in Solaris 10 patch cluster. You can over write the contents of root owned files with the contents of inetd.conf. In patches/137097-01/SUNWcsr/reloc/lib/svc/method/inetd-upgrade lines : 72...
Oracle Sun Solaris Update Manager symbolic links vulnerability
Insecure temporary files creation...
Tekno.Portal v0.1b 'link.php' Blind SQL Injection Vulnerability
====================================================== Tekno.Portal v0.1b - Blind SQL Injection in "link.php" ====================================================== Exploit Title: Tekno.Portal v0.1b 'link.php' Blind SQL Injection Vulnerability Date: 08-01-2012 Author: Socket0x03 Alvaro J. Gene...
AOL Deskbar ActiveX code exeuction
AOL dnUpdater ActiveX uninitialized potiner...
Joomla com_photo - SQL Injection Vulnerability
Title: ====== Joomla comphoto - SQL Injection Vulnerability Date: ===== 2012-07-10 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=654 VL-ID: ===== 641 Common Vulnerability Scoring System: ==================================== 8 Introduction: ============= Joomla is a fr...
[USN-1529-1] Linux kernel vulnerabilities
========================================================================== Ubuntu Security Notice USN-1529-1 August 10, 2012 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
[USN-1531-1] Linux kernel vulnerabilities
========================================================================== Ubuntu Security Notice USN-1531-1 August 10, 2012 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
Iomega StorCenter/EMC Lifeline unauthorized access
Remote unauthenticated access is possible under some conditions...
Linux kernel multiple security vulnerabilities
Multiple DoS conditions, privilege escalation...
Inout Mobile Webmail APP - Multiple Web Vulnerabilities
Title: ====== Inout Mobile Webmail APP - Multiple Web Vulnerabilities Date: ===== 2012-06-08 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=609 VL-ID: ===== 609 Common Vulnerability Scoring System: ==================================== 3.5 Abstract: ========= The...
ZDI-12-131 : Microsoft .NET Framework Undersized Glyph Buffer Remote Code Execution Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-131 : Microsoft .NET Framework Undersized Glyph Buffer Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-131 August 3, 2012 - -- CVE ID: CVE-2012-0162 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected...
Cross-Site Scripting (XSS) in Redaxo
Advisory ID: HTB23098 Product: Redaxo Vendor: Redaxo team Vulnerable Versions: 4.4 and probably prior Tested Version: 4.4 Vendor Notification: 4 July 2012 Vendor Patch: 23 July 2012 Public Disclosure: 25 July 2012 Vulnerability Type: Cross-Site Scripting XSS CVE Reference: CVE-2012-3869 CVSSv2 Ba...
Dir2web3 Mutiple Vulnerabilities
Title: ====== Dir2web3 Multiple Vulnerabilities Date: ===== 05/08/2012 Author: ======= Daniel Correa http://www.sinfocol.org/ Vulnerable software: ==================== Dir2web v3.0 http://www.dir2web.it/ CVE: ==== CVE-2012-4069 CVE-2012-4070 Details: ======== There are two vulnerabilities...