47153 matches found
python-httplib information leakage
SSL certificates are not checked...
Microsoft Windows multiple security vulnerabilities
GDI code execution, drivers privilege escalation, unsafe DLL loading, C Runtime code execution, .Net framework and Silverlight vulnerabilities...
ZDI-12-034 : Microsoft Windows Media Player ASX Meta-File Parsing Remote Code Execution Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-034 : Microsoft Windows Media Player ASX Meta-File Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-034 February 22, 2012 - -- CVE ID: CVE-2012-0150 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - --...
[Onapsis Security Advisory 2012-08] Oracle JD Edwards Security Kernel Information Disclosure
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Onapsis Security Advisory: Oracle JD Edwards Security Kernel Information Disclosure This advisory can be downloaded in PDF format from http://www.onapsis.com/. By downloading this advisory from the Onapsis Resource Center, you will gain access to...
Cisco Wireless LAN Controller Multiple security vulnerabilities
Multiple DoS conditions, unauthorized access...
Cisco TelePresence Video Communication Server DoS
Crash on SIP request processing...
[SECURITY] [DSA 2419-1] puppet security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2419-1 [email protected] http://www.debian.org/security/ Florian Weimer February 27, 2012 http://www.debian.org/security/faq -...
PostgreSQL vulnerabilities
Triggers privilege escalation, pgdump reloading SQL injection...
[SECURITY] [DSA 2425-1] plib security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2425-1 [email protected] http://www.debian.org/security/ Florian Weimer March 04, 2012 http://www.debian.org/security/faq -...
APPLE-SA-2012-03-07-1 iTunes 10.6
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2012-03-07-1 iTunes 10.6 iTunes 10.6 is now available and addresses the following: WebKit Available for: Windows 7, Vista, XP SP2 or later Impact: A man-in-the-middle attack while browsing the iTunes Store via iTunes may lead to an unexpected...
[Onapsis Security Advisory 2012-03] Oracle JD Edwards SawKernel Arbitrary File Read
Onapsis Security Advisory: Oracle JD Edwards SawKernel Arbitrary File Read This advisory can be downloaded in PDF format from http://www.onapsis.com/. By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentation...
gnome-terminal, xfce4-terminal, terminator and others write scrollback buffer to disk
Title: Gnome terminal, xfce4-terminal, terminator and other libVTE based terminals write scrollback buffer data to /tmp filesystem Report date: 2011-03-06 Reported by: Mark Krenz Severity: High depending on use and expectations Software: libVTE v0.21.6 and later since September 17th, 2009 Copy of...
ESA-2012-013: RSA SecurID(r) Software Token Converter buffer overflow vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2012-013: RSA SecurID® Software Token Converter buffer overflow vulnerability Advisories Updated March 2, 2012 Summary: RSA SecurID® Software Token Converter contains a buffer overflow vulnerability that could allow a malicious user to compromise ...
Cisco Cius DoS
DoS on network traffic processing...
RSA SecurID Software Token Converter buffer overflow
No description provided...
Cisco Security Advisory: Cisco TelePresence Video Communication Server Session Initiation Protocol Denial of Service Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco TelePresence Video Communication Server Session Initiation Protocol Denial of Service Vulnerabilities Advisory ID: cisco-sa-20120229-vcs Revision 1.0 For Public Release 2012 February 29 16:00 UTC GMT...
[ MDVSA-2012:026 ] postgresql
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:026 http://www.mandriva.com/security/ Package : postgresql Date : February 29, 2012 Affected: 2010.1, 2011. Problem Description: Multiple vulnerabilities has been discovered and corrected in postgresql:...
[SECURITY] [DSA 2422-1] file security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2422-1 [email protected] http://www.debian.org/security/ Florian Weimer February 29, 2012 http://www.debian.org/security/faq -...
Eleytt Research ER-03-2012
Eleytt Research www.eleytt.com Overview: ==================== Michal A. Bucko Credit: ==================== Anonymous researcher Michal A. Bucko Vulnerability Table =================== Note: All of the vulnerabilities are reported in Holdem Manager Professional, poker tracking software. 1. Holdem...
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Wireless LAN Controllers
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Multiple Vulnerabilities in Cisco Wireless LAN Controllers Advisory ID: cisco-sa-20120229-wlc Revision 1.0 For Public Release 2012 February 29 16:00 UTC GMT Summary ======= The Cisco Wireless LAN Controller WLC product family is affected by the...
XML::Atom Perl module limitations bypass
It's possible to obtain read access to limited resources...
[Onapsis Security Advisory 2012-06] Oracle JD Edwards JDENET Large Packets Denial of Service
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Onapsis Security Advisory: Oracle JD Edwards JDENET Large Packets Denial of Service This advisory can be downloaded in PDF format from http://www.onapsis.com/. By downloading this advisory from the Onapsis Resource Center, you will gain access to...
[Onapsis Security Advisory 2012-07] Oracle JD Edwards SawKernel SET_INI Configuration Modification
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Onapsis Security Advisory: Oracle JD Edwards SawKernel SETINI Configuration Modification This advisory can be downloaded in PDF format from http://www.onapsis.com/. By downloading this advisory from the Onapsis Resource Center, you will gain access to...
Cisco Security Advisory: Cisco Unified Communications Manager Skinny Client Control Protocol Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Unified Communications Manager Skinny Client Control Protocol Vulnerabilities Advisory ID: cisco-sa-20120229-cucm Revision 1.0 For Public Release 2012 February 29 16:00 UTC GMT Summary ======= Cisco Unified Communications Manager devices may...
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unity Connection
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unity Connection Advisory ID: cisco-sa-20120229-cuc Revision 1.0 For Public Release 2012 February 29 16:00 UTC GMT +---------------------------------------------------------------------...
Holdem Manager security vulnerabilities
Multiple memory corruptions...
Cisco Security Advisory: Cisco Cius Denial of Service Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco Cius Denial of Service Vulnerability Advisory ID: cisco-sa-20120229-cius Revision 1.0 For Public Release 2012 February 29 16:00 UTC GMT +-------------------------------------------------------------------- Summary...
imagemagic security vulnerabilities
Memory corruption and DoS conditions on EXIF data parsing...
APPLE-SA-2012-03-07-3 Apple TV 5.0
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2012-03-07-3 Apple TV 5.0 Apple TV 5.0 is now available and addresses the following: Apple TV Available for: Apple TV 2nd generation Impact: Applications that use the libresolv library may be vulnerable to an unexpected application terminatio...
[Onapsis Security Advisory 2012-01] Oracle JD Edwards JDENET Arbitrary File Write
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Onapsis Security Advisory: Oracle JD Edwards JDENET Arbitrary File Write This advisory can be downloaded in PDF format from http://www.onapsis.com/. By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand...
[SECURITY] [DSA 2427-1] imagemagick security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2427-1 [email protected] http://www.debian.org/security/ Florian Weimer March 06, 2012 http://www.debian.org/security/faq -...
Puppet security vulnerabilities
Privilege escalation conditions...
[Onapsis Security Advisory 2012-04] Oracle JD Edwards SawKernel GET_INI Information Disclosure
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Onapsis Security Advisory: Oracle JD Edwards SawKernel GETINI Information Disclosure This advisory can be downloaded in PDF format from http://www.onapsis.com/. By downloading this advisory from the Onapsis Resource Center, you will gain access to...
Apple TV integer overflow
libresolve integer overflow...
Cisco Unity Connection security vulnerabilities
Privilege escalation, crafted TCP packets DoS...
libVTE (gnome-terminal, xfce4-terminal, terminator, etc) information leakage
scrollback buffer data is saved to temporary file...
Samba DoS
Infinite recursion on Batched request processing...
[ MDVSA-2012:023-1 ] libvpx
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:023-1 http://www.mandriva.com/security/ Package : libvpx Date : February 28, 2012 Affected: 2010.1, 2011. Problem Description: A vulnerability has been found and corrected in libvpx: VP8 Codec SDK libvpx...
[ MDVSA-2012:025 ] samba
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:025 http://www.mandriva.com/security/ Package : samba Date : February 28, 2012 Affected: Enterprise Server 5.0 Problem Description: A vulnerability has been found and corrected in samba: Heap-based buffer...
libvpx security vulnerabilities
Few DoS conditions...
NGS00120 Patch Notification: BlackBerry PlayBook Samba Remote Code Execution
High Risk Vulnerability in Samba on the BlackBerry PlayBook 23 February 2012 Andy Davis of NGS Secure has discovered a high risk vulnerability in the Samba service running on the BlackBerry PlayBook Impact: Remote Code Execution Versions affected: BlackBerry Tablet OS prior to v2.0.0.7971 More...
NGS00237 Patch Notification: Samba Andx request Remote Code Execution
High Risk Vulnerability in Samba 25 February 2012 Andy Davis of NGS Secure has discovered a high risk vulnerability in the Samba service Impact: Remote Code Execution Versions affected: Samba versions up to 3.4.0 More details about this vulnerability and how to obtain software updates can be foun...
plib / TORCS buffer overflow
Buffer overflow on error messages processing...
[SECURITY] [DSA 2424-1] libxml-atom-perl security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2424-1 [email protected] http://www.debian.org/security/ Florian Weimer March 04, 2012 http://www.debian.org/security/faq -...
[ MDVSA-2012:028 ] libxslt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:028 http://www.mandriva.com/security/ Package : libxslt Date : March 1, 2012 Affected: 2010.1, 2011., Enterprise Server 5.0 Problem Description: A vulnerability has been found and corrected in libxslt: libxs...
libxslt out-of-bounds read
No description provided...
Cisco Unified Communications Manager SQL injection
SQL injection and DoS on SCCP request processing...
Apple iPhone multiple security vulnerabilities
Information leakage, protection bypass, sandbox limitation bypass...
[Onapsis Security Advisory 2012-02] Oracle JD Edwards Security Kernel Remote Password Disclosure
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Onapsis Security Advisory: Oracle JD Edwards Security Kernel Remote Password Disclosure This advisory can be downloaded in PDF format from http://www.onapsis.com/. By downloading this advisory from the Onapsis Resource Center, you will gain access to...
APPLE-SA-2012-03-07-2 iOS 5.1 Software Update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2012-03-07-2 iOS 5.1 Software Update iOS 5.1 Software Update is now available and addresses the following: CFNetwork Available for: iPhone 3GS, iPhone 4, iPhone 4S, iPod touch 3rd generation and later, iPad, iPad 2 Impact: Visiting a...