47153 matches found
IGSS 8 ODBC Server Multiple Remote Uninitialized Pointer Free DoS
!/usr/bin/python igss.py IGSS 8 ODBC Server Multiple Remote Uninitialized Pointer Free DoS Jeremy Brown / jbrown at patchtuesday dot org Mar 2011 There are multiple remote uninitialized pointer free conditions in IGSS's ODBC server. By sending a specially crafted packet to listening port 20222, i...
AST-2011-003:
Product Asterisk Summary Resource exhaustion in Asterisk Manager Interface Nature of Advisory Denial of Service Susceptibility Remote Unauthenticated Sessions if manager interface is accessible Severity Moderate Exploits Known No Reported On March 1, 2011 Reported By Blake Cornell...
Buffer overflow in libtiff in Imagemagick
--Credits: zgmzgmatmail.ustc.edu.cn -- Disclosure Timeline: 3-17-2011 -- Affected Vendor: Imagemagick 6.6.8-5 Libtiff 6.9.4 -- Problem Description: A buffer overflow is triggered by displaying a malformed tiff image by the Imagemagick.The error information is followed: display: malformed.tif: Wro...
[USN-1089-1] Linux kernel vulnerabilities
=========================================================== Ubuntu Security Notice USN-1089-1 March 18, 2011 linux, linux-ec2 vulnerabilities CVE-2010-4076, CVE-2010-4077, CVE-2010-4158, CVE-2010-4162, CVE-2010-4163, CVE-2010-4175, CVE-2010-4242...
[security bulletin] HPSBMA02647 SSRT100383 rev.1 - HP Discovery & Dependency Mapping Inventory (DDMI) Running on Windows, Insecure SNMP Configuration
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02757867 Version: 1 HPSBMA02647 SSRT100383 rev.1 - HP Discovery & Dependency Mapping Inventory DDMI Running on Windows, Insecure SNMP Configuration NOTICE: The information in this Security Bullet...
[SECURITY] [DSA 2193-1] libcgroup security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2193-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst March 16, 2011 http://www.debian.org/security/faq -...
[PRE-SA-2011-02] Information disclosure vulnerability in the OSF partition handling code of the Linux kernel
PRE-CERT Security Advisory ========================== Advisory: PRE-SA-2011-02 Released on: 16 Mar 2011 Last updated on: 16 Mar 2011 Affected product: Linux Kernel 2.4 and 2.6 Impact: disclosure of sensitive information Origin: storage devices Credit: Timo Warns PRESENSE Technologies GmbH CVE...
[SECURITY] [DSA 2194-1] libvirt security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2194-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst March 18, 2011 http://www.debian.org/security/faq -...
Douran Portal File Download/Source Code Disclosure Vulnerability
Title: Douran Portal File Download/Source Code Disclosure Vulnerability Date of Publishing: 16 March 2010 Application Name: Douran Portal Version: 3.9.7.8 Impact: Medium Vendor: www.douran.com Link: http://douran.com/HomePage.aspx?TabID=4862 Vendor Responses: They didn't respond to the emails...
XOOPS 2.5.0 <= Cross Site Scripting Vulnerability
XOOPS 2.5.0 = Cross Site Scripting Vulnerability 1. OVERVIEW The XOOPS 2.5.0 and lower versions were vulnerable to Cross Site Scripting. 2. BACKGROUND XOOPS is an acronym of eXtensible Object Oriented Portal System. It's the 1 Content Management System CMS project on www.sourceforge.net and a...
XSS vulnerability in Web Poll Pro
Product: Web Poll Pro Vendor: http://www.got.my Vulnerable Version: 1.0.3 and probably prior versions Vulnerability Type: Stored XSS Cross Site Scripting Risk level: Medium Credit: Hector.x90 Vulnerability Details: User can execute arbitrary JavaScript code within the vulnerable application. The...
LFI, IAA, XSS и FPD уязвимости в W-Agora
Здравствуйте 3APA3A! Сообщаю вам о найденных мною Local File Inclusion, Insufficient Anti-automation, Cross-Site Scripting и Full path disclosure уязвимостях в W-Agora. Local File Inclusion WASC-31: http://site/register.php?bn=1 в папке conf http://site/register.php?bn=..1 в любой папке - только ...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
Tugux CMS (nid) BLIND sql injection vulnerability
=================================================================== Tugux CMS nid BLIND sql injection vulnerability =================================================================== Software: Tugux CMS Vendor: www.tugux.com Vuln Type: BLind SQL Injection Download link:...
libzip library / PHP DoS
NULL pointer dereference in zipnamelocate...
libzip 0.9.3 _zip_name_locate NULL Pointer Dereference (incl PHP 5.3.5)
libzip 0.9.3 zipnamelocate NULL Pointer Dereference incl PHP 5.3.5 Author: Maksymilian Arciemowicz http://securityreason.com/ http://cxib.net/ Date: - Dis.: 03.01.2011 - Pub.: 18.03.2011 CVE: CVE-2011-0421 CERT: VU325039 Affected Software: - libzip 0.9.3 - PHP 5.3.5 fixed 5.3.6 Original URL:...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
[DSECRG-11-011] SAP Crystal Reports 2008 - Multiple XSS
DSECRG-11-011 SAP Crystal Reports 2008 - Multiple XSS SAP Crystal Report Server 2008 - multiple cross-site scripting vulnerabilities. SAP Crystal Report Server 2008 - Multiple cross-site scripting vulnerabilities. DSecRG-11-011 Internal DSECRG-00147 Multiple XSS vulnerabilities found in the modul...
HTB22893: XSS in Sodahead Polls wordpress plugin
Vulnerability ID: HTB22893 Reference: http://www.htbridge.ch/advisory/xssinsodaheadpollswordpressplugin.html Product: Sodahead Polls wordpress plugin Vendor: SodaHead.com SodaHead.com Vulnerable Version: 2.0.2 Vendor Notification: 03 March 2011 Vulnerability Type: XSS Cross Site Scripting Risk...
SAP GUI DLL hijacking
DLL hijacking by placing .sap files in network floder...
HTB22889: XSS in Rating-Widget wordpress plugin
Vulnerability ID: HTB22889 Reference: http://www.htbridge.ch/advisory/xssinratingwidgetwordpressplugin.html Product: Rating-Widget wordpress plugin Vendor: Vova Feldman http://rating-widget.com/ Vulnerable Version: 1.3.1 Vendor Notification: 03 March 2011 Vulnerability Type: XSS Cross Site...
EMC Avamar secrurity vulnerabilities
Information leakage, privilege escalation...
HTB22890: XSS in Rating-Widget wordpress plugin
Vulnerability ID: HTB22890 Reference: http://www.htbridge.ch/advisory/xssinratingwidgetwordpressplugin1.html Product: Rating-Widget wordpress plugin Vendor: Vova Feldman http://rating-widget.com/ Vulnerable Version: 1.3.1 Vendor Notification: 03 March 2011 Vulnerability Type: XSS Cross Site...
HTB22894: XSS in Sodahead Polls wordpress plugin
Vulnerability ID: HTB22894 Reference: http://www.htbridge.ch/advisory/xssinsodaheadpollswordpressplugin1.html Product: Sodahead Polls wordpress plugin Vendor: SodaHead.com SodaHead.com Vulnerable Version: 2.0.2 Vendor Notification: 03 March 2011 Vulnerability Type: XSS Cross Site Scripting Status...
HTB22892: Path disclosure in Smen Social Button wordpress plugin
Vulnerability ID: HTB22892 Reference: http://www.htbridge.ch/advisory/pathdisclosureinsmensocialbuttonwordpressplugin.html Product: Smen Social Button wordpress plugin Vendor: Alexandru Dumencu http://smen.ro/ Vulnerable Version: 0.7 Vendor Notification: 03 March 2011 Vulnerability Type: Path...
[DSECRG-11-014] SAP GUI (sapgui) - DLL hijacking
DSECRG-11-014 SAP GUI sapgui - DLL hijacking SAP Front End applications SAPGui.exe are vulnerable to DLL hijacking attacks. It makes possible to remote code execution Digital Security Research Group DSecRG Advisory DSecRG-11-014 Internal DSecRG-00183 Application: SAP GUI Versions Affected: 6.4 -...
HTB22891: XSS in Rating-Widget wordpress plugin
Vulnerability ID: HTB22891 Reference: http://www.htbridge.ch/advisory/xssinratingwidgetwordpressplugin2.html Product: Rating-Widget wordpress plugin Vendor: Vova Feldman http://rating-widget.com/ Vulnerable Version: 1.3.1 Vendor Notification: 03 March 2011 Vulnerability Type: XSS Cross Site...
ESA-2011-009: RSA, The Security Division of EMC, announces a fix for potential security vulnerability in RSA Access Manager Server
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2011-009: RSA, The Security Division of EMC, announces a fix for potential security vulnerability in RSA® Access Manager Server. Summary: RSA Access Manager Server contains a potential vulnerability that could be exploited by malicious people to...
SAP Crystal Reports Server crossite scripting
Multiple crossite scripting vulnerabilities...
ESA-2011-007: EMC Avamar sensitive information disclosure vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2011-007: EMC Avamar sensitive information disclosure vulnerability. EMC Identifier: ESA-2011-007 CVE Identifier: CVE-2011-0442 Severity Rating: CVSS v2 Base Score: 8.5 AV:N/AC:M/Au:S/C:C/I:C/A:C Affected products: EMC Avamar 5.0.0-407 and later b...
RSA Access Manager Server unauthorized access
No description provided...
[SECURITY] [DSA 2192-1] chromium-browser security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2192-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano March 15, 2011 http://www.debian.org/security/faq -...
[RT-SA-2011-001] nostromo nhttpd directory traversal leading to arbitrary command execution
Advisory: nostromo nhttpd directory traversal leading to arbitrary command execution During a penetration test, RedTeam Pentesting discovered a directory traversal vulnerability leading to arbitrary command execution in the nostromo HTTP server. Details ======= Product: nostromo nhttpd Affected...
[DSECRG-11-013] SAP NetWeaver Runtime - multiple XSS
DSECRG-11-013 SAP NetWeaver Runtime - multiple XSS SAP NetWeaver Integration Directory has linked XSS vulnerability. Digital Security Research Group DSecRG Advisory DSecRG-11-013 Internal DSecRG-00163 Application: SAP NetWeaver Runtime Versions Affected: SAP NetWeaver Runtime Vendor URL:...
[DSECRG-11-012] SAP NetWeaver Integration Directory - multiple XSS
DSECRG-11-012 SAP NetWeaver Integration Directory - multiple XSS SAP NetWeaver Integration Directory has multiple linked XSS vulnerabilities. Digital Security Research Group DSecRG Advisory DSecRG-11-012 Internal DSecRG-00159 Application: SAP NetWeaver XI Versions Affected: SAP NetWeaver XI Vendo...
Apple WebKit / Safari / iTunes / libtiff / Google Chrome multiple security vulnerabilities
Multiple vulnerabilities on PNG, TIFF, JPEG, XML parsing, multipe WebKit memory corruptions...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
nostromo nhttpd directory traversal
Directory traversal including code execution via CGI with escaped URI...
XSS, LFI и BT уязвимости в W-Agora
Здравствуйте 3APA3A! Сообщаю вам о найденных мною Cross-Site Scripting, Local File Inclusion и Brute Force уязвимостях в W-Agora. XSS WASC-08: http://site/current/getfile.php/supporthowto/223E3Cbody20onload=alertdocument.cookie3E/1/ Local File Inclusion WASC-31: В папке conf:...
MITKRB5-SA-2011-003 [CVE-2011-0284] KDC double-free when PKINIT enabled
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 MITKRB5-SA-2011-003 MIT krb5 Security Advisory 2011-003 Original release: 2011-03-15 Last update: 2011-03-15 Topic: KDC vulnerable to double-free when PKINIT enabled CVE-2011-0284 CVSSv2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:POC/RL:OF/RC:C CVSSv2 Base...
MIT Kerberos 5 double free
Double free vulnerability on PKINIT...
HTB22882: Path disclosure in OXID eShop
Vulnerability ID: HTB22882 Reference: http://www.htbridge.ch/advisory/pathdisclosureinoxideshop.html Product: OXID eShop Vendor: OXID eSales AG http://www.oxid-esales.com/ Vulnerable Version: CE 4.4.7 Vendor Notification: 01 March 2011 Vulnerability Type: Path disclosure Status: Not Fixed Risk...
HTB22884: XSS vulnerability in LotusCMS
Vulnerability ID: HTB22884 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinlotuscms1.html Product: LotusCMS Vendor: Arboroia Network http://www.lotuscms.org/ Vulnerable Version: 3.0.3 and probably prior versions Vendor Notification: 01 March 2011 Vulnerability Type: Stored XSS Cross...
HTB22883: XSS vulnerability in LotusCMS
Vulnerability ID: HTB22883 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinlotuscms.html Product: LotusCMS Vendor: Arboroia Network http://www.lotuscms.org/ Vulnerable Version: 3.0.3 and probably prior versions Vendor Notification: 01 March 2011 Vulnerability Type: Stored XSS Cross...
Medium severity flaw in QNX Neutrino RTOS
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Nth Dimension Security Advisory NDSA20110310 Date: 10th March 2011 Author: Tim Brown mailto:[email protected] URL: http://www.nth-dimension.org.uk/ / http://www.machine.org.uk/ Product: QNX Neutrino RTOS 6.5.0...
VUPEN Security Research - Apple Safari WebKit Scroll Event Handling Remote Use-after-free
VUPEN Security Research - Apple Safari WebKit Scroll Event Handling Remote Use-after-free http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Apple Safari is a web browser developed by Apple. As of February 2010, Safari was the fourth most widely used browser, with 4.45...
HTB22887: XSS vulnerability in LotusCMS
Vulnerability ID: HTB22887 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinlotuscms3.html Product: LotusCMS Vendor: Arboroia Network http://www.lotuscms.org/ Vulnerable Version: 3.0.3 and probably prior versions Vendor Notification: 01 March 2011 Vulnerability Type: Stored XSS Cross...
HTB22888: File Content Disclosure in LotusCMS
Vulnerability ID: HTB22888 Reference: http://www.htbridge.ch/advisory/filecontentdisclosureinlotuscms.html Product: LotusCMS Vendor: Arboroia Network http://www.lotuscms.org/ Vulnerable Version: 3.0.3 and probably prior versions Vendor Notification: 01 March 2011 Vulnerability Type: File Content...
bbPress 1.0.2 <= Cross Site Scripting Vulnerability
========================================= bbPress 1.0.2 = Cross Site Scripting Vulnerability ========================================= 1. OVERVIEW bbPress 1.0.2 and lower versions were vulnerable to Cross Site Scripting. 2. APPLICATION DESCRIPTION bbPress is plain and simple forum software, plain...
[DSECRG-11-010] SAP NetWeaver logon.html - XSS
DSECRG-11-010 SAP NetWeaver logon.html - XSS SAP NetWeaver BSP logon page has linked XSS vulnerability. Digital Security Research Group DSecRG Advisory DSecRG-11-010 Internal DSecRG-00127 Application: SAP NetWeaver Versions Affected: SAP NetWeaver SAPBASIS 620-730 Vendor URL: http://www.sap.com...