47153 matches found
wget unsafe files creation
Local file is created with server controlled filename...
Abus IP cameras multiple security vulnerabilities
Read/write files access and command execution...
G-WAN Web server buffer overflow
Buffer overflow on request processing...
CORE-2011-0106: Microsoft Publisher 2007 Pubconv.dll Memory Corruption
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - Corelabs Advisory http://corelabs.coresecurity.com/ Microsoft Publisher 2007 Pubconv.dll Memory Corruption 1. Advisory Information Title: Microsoft Publisher 2007 Pubconv.dll Memory Corruption Advisory ID: CORE-2011-0106...
[ GLSA 201110-09 ] Conky: Privilege escalation
Gentoo Linux Security Advisory GLSA 201110-09 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
Apple iTunes multiple security vulnerabilities
Multiple security vulnerabilities on different media formats parsing...
[security bulletin] HPSBMU02710 SSRT100601 rev.1 - HP Onboard Administrator (OA), Remote Unauthorized Access
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03048779 Version: 1 HPSBMU02710 SSRT100601 rev.1 - HP Onboard Administrator OA, Remote Unauthorized Access NOTICE: The information in this Security Bulletin should be acted upon as soon as...
[USN-1226-1] Samba vulnerabilities
========================================================================== Ubuntu Security Notice USN-1226-1 October 04, 2011 samba vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
Samba security vulnerabilities
Different mtab file related vulnerabilities lead to DoS...
Apple TV multiple security vulnerabilities
SSL vulnerabilities, vulnerabilities in different media formats parsing...
APPLE-SA-2011-10-12-2 Apple TV Software Update 4.4
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2011-10-12-2 Apple TV Software Update 4.4 Apple TV Software Update 4.4 is now available and addresses the following: Apple TV Available for: Apple TV 4.0 through 4.3 Impact: An attacker with a privileged network position may intercept user...
Apple iPhone multiple security vulnerabilities
Multiple vulnerabilities in different system components and applications...
Multiple G-WAN vulnerabilities
======================================================================== Title: Multiple G-WAN vulnerabilities Product: G-WAN http://gwan.com/ Author: Fredrik Widlund E-mail: fredrik.widlund at gmail dot com Date: 2011-10-12 ========================================================================...
Two Remote Code Execution Vulnerabilities in Internet Explorer
Vulnerability 1: Internet Explorer Select Element Remote Code Execution Original advisory: http://ifsec.blogspot.com/2011/10/internet-explorer-select-element-remote.html I. OVERVIEW There is a vulnerability in Internet Explorer which enables execution of arbitrary code if the user visits a web pa...
libxml2 memory corruption
Multiple vulnerabilities related to XPath processing...
Microsoft Publisher memory corruption
Memory corruption on .pub files parsing...
conky symbolic links vulnerability
Insecure temporary files creation...
OpenSSL security vulnerabilities
DoS, protection bypass...
APPLE-SA-2011-10-12-3 OS X Lion v10.7.2 and Security Update 2011-006
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2011-10-12-3 OS X Lion v10.7.2 and Security Update 2011-006 OS X Lion v10.7.2 and Security Update 2011-006 is now available and addresses the following: Apache Available for: Mac OS X v10.6.8, Mac OS X Server v10.6.8, OS X Lion v10.7 and...
APPLE-SA-2011-10-12-4 Safari 5.1.1
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2011-10-12-4 Safari 5.1.1 Safari 5.1.1 is now available and addresses the following: Safari Available for: Mac OS X v10.6.8, Mac OS X Server v10.6.8, OS X Lion v10.7.2, OS X Lion Server v10.7.2, Windows 7, Vista, XP SP2 or later Impact:...
Quassel IRC client weak permissions
Weak permissions for user's files and directories...
APPLE-SA-2011-10-12-5 Pages for iOS v1.5
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2011-10-12-5 Pages for iOS v1.5 Pages for iOS v1.5 is now available and addresses the following: Pages Available for: iOS Impact: Opening a maliciously crafted Microsoft Word document may lead to an unexpected application termination or...
Apple Safari / WebKit multiple security vulnerabilities
Crossite scripting, multiple memory corruption, code execution...
[USN-1230-1] Quassel vulnerability
========================================================================== Ubuntu Security Notice USN-1230-1 October 14, 2011 quassel vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
APPLE-SA-2011-10-12-1 iOS 5 Software Update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2011-10-12-1 iOS 5 Software Update iOS 5 Software Update is now available and addresses the following: CalDAV Available for: iOS 3.0 through 4.3.5 for iPhone 3GS and iPhone 4, iOS 3.1 through 4.3.5 for iPod touch 3rd generation and later, iOS...
APPLE-SA-2011-10-12-6 Numbers for iOS v1.5
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2011-10-12-6 Numbers for iOS v1.5 Numbers for iOS v1.5 is now available and addresses the following: Numbers Available for: iOS Impact: Opening a maliciously crafted Excel file may lead to an unexpected application termination or arbitrary co...
Microsoft Windows multiple security vulnerabilities
Active Accessibility and Media Center insecure DLL loading...
Microsoft Host Integration Server DoS
Uninitialized pointer dereference, endless loop...
PHP multiple security vulnerabilities
Memory corruptions in different functions...
Microsoft .Net / Silverlight code execution
It's possible to escape from sandbox...
[ GLSA 201110-06 ] PHP: Multiple vulnerabilities
Gentoo Linux Security Advisory GLSA 201110-06 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
[ MDVSA-2011:144 ] apache
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2011:144 http://www.mandriva.com/security/ Package : apache Date : September 8, 2011 Affected: 2009.0, 2010.1, 2011., Enterprise Server 5.0 Problem Description: A vulnerability has been discovered and corrected i...
Anatomy Keyview multiple security vulnerabilities
Memory corruption, integer overflow, buffer overflow...
VUPEN Security Research - Google Chrome WebKit Engine Ruby Tag Stale Pointer Vulnerability
VUPEN Security Research - Google Chrome WebKit Engine Ruby Tag Stale Pointer Vulnerability Website : http://www.vupen.com/english/research.php Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- "Google Chrome is a web browser developed by Google that uses the WebKit layout...
Secunia Research: Autonomy Keyview Ichitaro QLST Integer Overflow Vulnerability
====================================================================== Secunia Research 07/10/2011 - Autonomy Keyview Ichitaro QLST Integer Overflow Vulnerability - ====================================================================== Table of Contents Affected...
Google Chrome security vulnerabilities
Memory corruption on WebKit functions...
[SECURITY] [DSA 2316-1] quagga security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2316-1 [email protected] http://www.debian.org/security/ Florian Weimer October 05, 2011 http://www.debian.org/security/faq -...
Secunia Research: Autonomy Keyview Ichitaro Object Reconstruction Logic Vulnerability
====================================================================== Secunia Research 07/10/2011 - Autonomy Keyview - - Ichitaro Object Reconstruction Logic Vulnerability - ====================================================================== Table of Contents Affected...
VMSA-2011-0011 VMware hosted products address remote code execution vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ VMware Security Advisory Advisory ID: VMSA-2011-0011 Synopsis: VMware hosted products address remote code execution vulnerability Issue date: 2011-10-04 Updated on: 2011-10-04...
rpm multiple security vulnerabilities
Multiple vulnerabilities on RPM file header parsing...
OpenOffice multiple security vulnerabilities
Multiple memmory corruptions on .doc files import...
Cisco ASA / Cisco FSM multiple security vulnerabilities
Multiple vulnerabilities in MSN, ILS and Sun RPC parsing, authentication bypass in TACACS+...
ark archiver directory traversal
Directory traversal during archive extraction...
[ MDVSA-2011:143 ] rpm
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2011:143 http://www.mandriva.com/security/ Package : rpm Date : October 5, 2011 Affected: 2009.0, 2010.1, Enterprise Server 5.0 Problem Description: Multiple flaws were found in the way the RPM library parsed...
[SECURITY] [DSA 2318-1] cyrus-imapd-2.2 security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-2318-1 [email protected] http://www.debian.org/security/ Nico Golde Oct 6, 2011 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2315-1] openoffice.org security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2315-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano October 05, 2011 http://www.debian.org/security/faq -...
VMWare buffer overflow
Buffer overflow on UDF file system import...
UI spoofing in different QT applications
Using Qt QLabel class to display security critical information allows interface spoofing...
Cisco Network Admission Control Manager directory traversal
HTTPS directory traversal...
VUPEN Security Research - Google Chrome WebKit Engine Child Tag Deletion Stale Pointer Vulnerability
VUPEN Security Research - Google Chrome WebKit Engine Child Tag Deletion Stale Pointer Vulnerability Website : http://www.vupen.com/english/research.php Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- "Google Chrome is a web browser developed by Google that uses the WebKit...