47153 matches found
ProFTPD unauthorized files access
Unauthorized files copy via modcopy...
LibreOffice memory corruption
Memory corruption on HWP documents parsing...
[ MDVSA-2015:191 ] owncloud
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:191 http://www.mandriva.com/en/support/security/ Package : owncloud Date : April 1, 2015 Affected: Business Server 2.0 Problem Description: Multiple vulnerabilities has been discovered and corrected in...
[SECURITY] [DSA 3241-1] elasticsearch security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3241-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 29, 2015 http://www.debian.org/security/faq -...
Elasticsearch directory traversal
Directory traversal via requests to /plugin...
[ALICLOUDSEC-VUL2015-001]Android wpa_supplicant WLAN Direct remote buffer overflow
Advisory Information Advisory URL: http://security.alibaba.com/blog/blog.htm?spm=0.0.0.0.p1ECc3&id=19 Date published: 2015-04-23 Date of last update: 2015-04-23 2. Vulnerability Information Class: heap overflow Impact: memory information leak and remote code execution Remote Exploitable: Yes...
dnsmasq uninitialized memory dereference
Uninitilized memory dereference on DNS request parsing...
[SECURITY] [DSA 3242-1] chromium-browser security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3242-1 [email protected] http://www.debian.org/security/ Michael Gilbert April 30, 2015 http://www.debian.org/security/faq -...
HUAWEI MobiConnect weak permissions
Weak permissions for executable files...
SQLite multiple security vulnerabilities
Over 20 errors, including uninitialized memory access...
owncloud multiple security vulnerabilities
CSRF, XSS, limitations bypass...
usb-creator privilege escalation
No description provided...
[ MDVSA-2015:217 ] sqlite3
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:217 http://www.mandriva.com/en/support/security/ Package : sqlite3 Date : April 30, 2015 Affected: Business Server 1.0, Business Server 2.0 Problem Description: Multiple vulnerabilities has been found and...
[slackware-security] proftpd (SSA:2015-111-12)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 slackware-security proftpd SSA:2015-111-12 New proftpd packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+...
[SECURITY] [DSA 3238-1] chromium-browser security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3238-1 [email protected] http://www.debian.org/security/ Michael Gilbert April 26, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DSA 3239-1] icecast2 security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3239-1 [email protected] http://www.debian.org/security/ Alessandro Ghedini April 29, 2015 http://www.debian.org/security/faq -...
icecast DoS
NULL pointer dereference on authentication by URL...
libphp-snoopy code execution
No description provided...
[USN-2577-1] wpa_supplicant vulnerability
========================================================================== Ubuntu Security Notice USN-2577-1 April 23, 2015 wpa vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu...
[ MDVSA-2015:211 ] glusterfs
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:211 http://www.mandriva.com/en/support/security/ Package : glusterfs Date : April 27, 2015 Affected: Business Server 2.0 Problem Description: Updated glusterfs packages fix security vulnerability: glusterfs...
[ MDVSA-2015:207 ] perl-Module-Signature
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:207 http://www.mandriva.com/en/support/security/ Package : perl-Module-Signature Date : April 27, 2015 Affected: Business Server 1.0 Problem Description: Updated perl-Module-Signature package fixes the...
[ MDVSA-2015:204 ] librsync
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:204 http://www.mandriva.com/en/support/security/ Package : librsync Date : April 27, 2015 Affected: Business Server 1.0 Problem Description: Updated librsync packages fix security vulnerability: librsync...
[USN-2591-1] curl vulnerabilities
========================================================================== Ubuntu Security Notice USN-2591-1 April 30, 2015 curl vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubun...
[USN-2578-1] LibreOffice vulnerabilities
========================================================================== Ubuntu Security Notice USN-2578-1 April 27, 2015 libreoffice vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives:...
Cherokee authentication bypass
LDAP authentication allows to authenticate with empty password...
Grindr v2.1.1 iOS Bounty #1 - (Session) Auth Bypass Vulnerabilities
Document Title: =============== Grindr v2.1.1 iOS Bounty 1 - Session Auth Bypass Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1419 Release Date: ============= 2015-05-04 Vulnerability Laboratory ID VL-ID:...
[ MDVSA-2015:221 ] clamav
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:221 http://www.mandriva.com/en/support/security/ Package : clamav Date : May 4, 2015 Affected: Business Server 1.0, Business Server 2.0 Problem Description: Multiple vulnerabilities has been found and...
ClamAV multiple security vulnerabilities
DoS conditions, buffer overflow, memory corruption...
EMC Autostart data injection
Commands injection is possible...
DirectFB security vulnerabilities
Signess errors, buffer overflow, memory corruption...
EMC SourceOne DoS
Management account lockout is possible...
Ruby SSL checks bypass
Invalid hostname matching limplementation...
Grindr v2.1.1 iOS - (eMail) Session Vulnerability
Document Title: =============== Grindr v2.1.1 iOS - eMail Session Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1426 Release Date: ============= 2015-05-04 Vulnerability Laboratory ID VL-ID: ==================================== 1426 Commo...
Photo Manager Pro 4.4.0 iOS - Code Execution Vulnerability
Document Title: =============== Photo Manager Pro 4.4.0 iOS - Code Execution Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1444 Release Date: ============= 2015-03-10 Vulnerability Laboratory ID VL-ID: ====================================...
[ MDVSA-2015:223 ] directfb
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:223 http://www.mandriva.com/en/support/security/ Package : directfb Date : May 4, 2015 Affected: Business Server 1.0, Business Server 2.0 Problem Description: Updated directfb packages fix security...
ESA-2015-084: EMC AutoStart Packet Injection Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-084: EMC AutoStart Packet Injection Vulnerability EMC Identifier: ESA-2015-084 CVE Identifier: CVE-2015-0538 Severity Rating: CVSS v2 Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C Affected products: • EMC AutoStart versions 5.4.3 and prior all...
ESA-2015-077: EMC SourceOne Email Management Account Lockout
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-077: EMC SourceOne Email Management Account Lockout Policy Vulnerability EMC Identifier: ESA-2015-077 CVE Identifier: CVE-2015-0531 Severity Rating: Medium CVSS v2 Base Score: 5.4 AV:N/AC:H/Au:N/C:C/I:N/A:N Affected products: • EMC SourceOne...
SevDesk v1.1 iOS - Persistent Dashboard Vulnerability
Document Title: =============== SevDesk v1.1 iOS - Persistent Dashboard Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1311 Release Date: ============= 2015-04-23 Vulnerability Laboratory ID VL-ID: ==================================== 1311...
PhotoWebsite v3.1 iOS - File Include Web Vulnerability
Document Title: =============== PhotoWebsite v3.1 iOS - File Include Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1474 Release Date: ============= 2015-05-04 Vulnerability Laboratory ID VL-ID: ==================================== 147...
Photo Manager Pro v4.4.0 iOS - File Include Vulnerability
Document Title: =============== Photo Manager Pro v4.4.0 iOS - File Include Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1445 Release Date: ============= 2015-03-12 Vulnerability Laboratory ID VL-ID: ====================================...
[ MDVSA-2015:220 ] curl
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:220 http://www.mandriva.com/en/support/security/ Package : curl Date : May 4, 2015 Affected: Business Server 1.0 Problem Description: Updated curl packages fix security vulnerabilities: NTLM-authenticated...
[ MDVSA-2015:224 ] ruby
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:224 http://www.mandriva.com/en/support/security/ Package : ruby Date : May 4, 2015 Affected: Business Server 1.0, Business Server 2.0 Problem Description: Updated ruby packages fix security vulnerability: Ru...
Wifi Drive Pro v1.2 iOS - File Include Web Vulnerability
Document Title: =============== Wifi Drive Pro v1.2 iOS - File Include Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1447 Release Date: ============= 2015-03-13 Vulnerability Laboratory ID VL-ID: ====================================...
[ MDVSA-2015:226 ] fcgi
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:226 http://www.mandriva.com/en/support/security/ Package : fcgi Date : May 4, 2015 Affected: Business Server 1.0 Problem Description: Updated fcgi packages fix security vulnerability: FCGI does not perform...
FastCGI buffer overflow
Buffer overflow on fdset structure handling...
Grindr 2.1.1 iOS Bug Bounty #2 - Denial of Service Software Vulnerability
Document Title: =============== Grindr 2.1.1 iOS Bug Bounty 2 - Denial of Service Software Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1418 Release Date: ============= 2015-05-02 Vulnerability Laboratory ID VL-ID:...
iPassword Manager v2.6 iOS - Persistent Vulnerabilities
Document Title: =============== iPassword Manager v2.6 iOS - Persistent Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1453 Release Date: ============= 2015-04-21 Vulnerability Laboratory ID VL-ID: ==================================== 14...
[USN-2593-1] Dnsmasq vulnerability
========================================================================== Ubuntu Security Notice USN-2593-1 May 04, 2015 dnsmasq vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...
[ MDVSA-2015:225 ] cherokee
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:225 http://www.mandriva.com/en/support/security/ Package : cherokee Date : May 4, 2015 Affected: Business Server 1.0 Problem Description: Updated cherokee packages fix security vulnerability: The...
XML::LibXML information leakage
Information disclosure on expandentities...