Securityvulns - Page 22 of Securityvulns Vulnerabilities List

securityvulns•added 2015/04/20 12:0 a.m.•82 views

[ MDVSA-2015:077 ] python-numpy

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:077 http://www.mandriva.com/en/support/security/ Package : python-numpy Date : March 27, 2015 Affected: Business Server 2.0 Problem Description: Updated python-numpy packages fix security vulnerabilities: f2...

2.1CVSS5.7AI score0.00048EPSS

securityvulns•added 2015/04/20 12:0 a.m.•49 views

snmplib / snmpd DoS

Multiple DoS conditions...

5CVSS1.5AI score0.07498EPSS

securityvulns•added 2015/04/20 12:0 a.m.•83 views

[ MDVSA-2015:092 ] net-snmp

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:092 http://www.mandriva.com/en/support/security/ Package : net-snmp Date : March 28, 2015 Affected: Business Server 2.0 Problem Description: Updated net-snmp packages fix security vulnerabilities: Remotely...

5CVSS7.9AI score0.07498EPSS

securityvulns•added 2015/04/20 12:0 a.m.•39 views

python-numpy symbolic links vulnerability

Symbolic links vulnerability on temporary files creation...

2.1CVSS1.5AI score0.00048EPSS

securityvulns•added 2015/04/20 12:0 a.m.•40 views

[ MDVSA-2015:096 ] stunnel

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:096 http://www.mandriva.com/en/support/security/ Package : stunnel Date : March 28, 2015 Affected: Business Server 2.0 Problem Description: Updated stunnel package fixes security vulnerability: A flaw was...

4.3CVSS7.3AI score0.00312EPSS

securityvulns•added 2015/04/20 12:0 a.m.•66 views

[ MDVSA-2015:066 ] cpio

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:066 http://www.mandriva.com/en/support/security/ Package : cpio Date : March 27, 2015 Affected: Business Server 1.0 Problem Description: Updated cpio package fixes security vulnerability: In GNU Cpio 2.11, t...

1.9CVSS5.9AI score0.03332EPSS

Exploits4

securityvulns•added 2015/04/20 12:0 a.m.•40 views

libarchive directory traversal

Directory traversal and symbolic links vulnerability in cpio implementation...

6.4CVSS4.1AI score0.03332EPSS

Exploits5References2Affected Software1

securityvulns•added 2015/04/20 12:0 a.m.•62 views

[ MDVSA-2015:090 ] libpng

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:090 http://www.mandriva.com/en/support/security/ Package : libpng Date : March 28, 2015 Affected: Business Server 2.0 Problem Description: Updated libpng package fixes security vulnerabilities: The...

10CVSS6.7AI score0.03487EPSS

securityvulns•added 2015/04/20 12:0 a.m.•34 views

stunnel crypto vulnerabilities

Entropy pools are reused if fork if used for threading...

4.3CVSS1.8AI score0.00312EPSS

securityvulns•added 2015/04/20 12:0 a.m.•34 views

cabextract directory traversal

Directory traversal on files extraction...

3.7AI score0.08747EPSS

securityvulns•added 2015/04/20 12:0 a.m.•46 views

libpng security vulnerabilities

Few integer overflows lead to heap buffer overrun...

10CVSS3.1AI score0.03487EPSS

Exploits1References2Affected Software1

securityvulns•added 2015/04/20 12:0 a.m.•49 views

[ MDVSA-2015:064 ] cabextract

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:064 http://www.mandriva.com/en/support/security/ Package : cabextract Date : March 27, 2015 Affected: Business Server 1.0, Business Server 2.0 Problem Description: Updated cabextract packages fix security...

5CVSS5AI score0.08747EPSS

Exploits2

securityvulns•added 2015/04/19 12:0 a.m.•57 views

[SECURITY] [DSA 3206-1] dulwich security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3206-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 28, 2015 http://www.debian.org/security/faq -...

7.5CVSS0.9AI score0.02814EPSS

securityvulns•added 2015/04/19 12:0 a.m.•49 views

pillow multiple security vulnerabilities

Symbolic links vulnerability, DoS, shell injection...

10CVSS2AI score0.03547EPSS

Exploits2References1Affected Software1

securityvulns•added 2015/04/19 12:0 a.m.•71 views

[ MDVSA-2015:100 ] cups-filters

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:100 http://www.mandriva.com/en/support/security/ Package : cups-filters Date : March 29, 2015 Affected: Business Server 2.0 Problem Description: Updated cups-filters packages fix security vulnerabilities:...

8.3CVSS7.9AI score0.14176EPSS

Exploits3

securityvulns•added 2015/04/19 12:0 a.m.•34 views

cups-filters code execution

cups-browsed shell characters vulnerability...

8.3CVSS4.3AI score0.14176EPSS

Exploits4References2Affected Software1

securityvulns•added 2015/04/19 12:0 a.m.•35 views

[security bulletin] HPSBGN03316 rev.1 - HP Support Solution Framework on Windows, Remote Execution of Code, Disclosure of Information

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04634535 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04634535 Version: 1 HPSBGN03316 rev....

6.8CVSS0.9AI score0.00562EPSS

securityvulns•added 2015/04/19 12:0 a.m.•63 views

[ MDVSA-2015:158 ] jython

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:158 http://www.mandriva.com/en/support/security/ Package : jython Date : March 29, 2015 Affected: Business Server 2.0 Problem Description: Updated jython packages fix security vulnerability: There are server...

4.6CVSS9.7AI score0.00021EPSS

securityvulns•added 2015/04/19 12:0 a.m.•39 views

Jython weak permissions

Weak permissions on cache files creation...

4.6CVSS1.8AI score0.00021EPSS

securityvulns•added 2015/04/19 12:0 a.m.•42 views

dulwich security vulnerabilities

Code execution, buffer overflow...

7.5CVSS3.6AI score0.02814EPSS

securityvulns•added 2015/04/19 12:0 a.m.•42 views

[ MDVSA-2015:141 ] not-yet-commons-ssl

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:141 http://www.mandriva.com/en/support/security/ Package : not-yet-commons-ssl Date : March 29, 2015 Affected: Business Server 2.0 Problem Description: Updated not-yet-commons-ssl packages fixes security...

6.8CVSS9.2AI score0.00205EPSS

securityvulns•added 2015/04/19 12:0 a.m.•47 views

[ MDVSA-2015:162 ] gtk+3.0

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:162 http://www.mandriva.com/en/support/security/ Package : gtk+3.0 Date : March 29, 2015 Affected: Business Server 2.0 Problem Description: Updated gtk+3.0 packages fix security vulnerability: Clemens Fries...

7.2CVSS6AI score0.00037EPSS

securityvulns•added 2015/04/19 12:0 a.m.•37 views

gtk+ protection bypass

Screen lock bypass...

7.2CVSS1.9AI score0.00037EPSS

Exploits0References1

securityvulns•added 2015/04/19 12:0 a.m.•64 views

[ MDVSA-2015:099 ] python-pillow

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:099 http://www.mandriva.com/en/support/security/ Package : python-pillow Date : March 28, 2015 Affected: Business Server 2.0 Problem Description: Updated python-imaging packages fix security vulnerabilities:...

10CVSS8AI score0.03547EPSS

Exploits2

securityvulns•added 2015/04/19 12:0 a.m.•73 views

Safari iOS/OS X/Windows cookie access vulnerability

OVERVIEW ========== The 4/8/2015 security updates from Apple included a patch for a Safari cross-domain vulnerability. An attacker could create web content which, when viewed by a target user, bypasses some of the normal cross-domain restrictions to access or modify HTTP cookies belonging to any...

6.1AI score

securityvulns•added 2015/04/19 12:0 a.m.•32 views

Shibboleth Service Provider DoS

Crash on parsing SAML message...

4CVSS3.4AI score0.00455EPSS

securityvulns•added 2015/04/19 12:0 a.m.•35 views

[ MDVSA-2015:134 ] pulseaudio

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:134 http://www.mandriva.com/en/support/security/ Package : pulseaudio Date : March 29, 2015 Affected: Business Server 2.0 Problem Description: Updated pulseaudio package fixes RTP remote crash vulnerability:...

2.9CVSS5.4AI score0.00473EPSS

securityvulns•added 2015/04/19 12:0 a.m.•32 views

util-linux blkid commands injection

No description provided...

7.2CVSS2.3AI score0.00132EPSS

securityvulns•added 2015/04/19 12:0 a.m.•44 views

CVE-2014-7954 MTP path traversal vulnerability in Android

MTP path traversal vulnerability in Android 4.4 ----------------------------------------------- doSendObjectInfo method of the MtpServer class implemented in frameworks/av/media/mtp/MtpServer.cpp does not validate the name parameter of the incoming MTP packet at all. It is possible to upload file...

2.1CVSS0.4AI score0.00416EPSS

securityvulns•added 2015/04/19 12:0 a.m.•65 views

[SECURITY] [DSA 3208-1] freexl security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3208-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 29, 2015 http://www.debian.org/security/faq -...

6.8CVSS1.7AI score0.02149EPSS

securityvulns•added 2015/04/19 12:0 a.m.•50 views

Apple Safari / Webkit multiple security vulnerabilities

Invalid SSL validation, information leakage, crossite access, memory corruptions...

6.8CVSS1.8AI score0.65446EPSS

Exploits2References2Affected Software1

securityvulns•added 2015/04/19 12:0 a.m.•53 views

[ MDVSA-2015:122 ] util-linux

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:122 http://www.mandriva.com/en/support/security/ Package : util-linux Date : March 29, 2015 Affected: Business Server 2.0 Problem Description: Updated util-linux packages fix security vulnerability: Sebastia...

7.2CVSS7.9AI score0.00132EPSS

securityvulns•added 2015/04/19 12:0 a.m.•43 views

PulseAudio DoS

Crash on empty UDP packet...

2.9CVSS1.9AI score0.00473EPSS

securityvulns•added 2015/04/19 12:0 a.m.•33 views

freexl multiple security vulnerabilities

Multiple memory corruptions on Excel documents parsing...

6.8CVSS3.3AI score0.02149EPSS

securityvulns•added 2015/04/19 12:0 a.m.•46 views

CVE-2014-7951 adb backup archive path traversal file overwrite

ADB backup archive path traversal file overwrite ------------------------------------------------ Using adb one can create a backup of his/her Android device and store it on the PC. The backup archive is based on the tar file format. By modifying tar headers to contain ../../ like patterns it is...

0.6AI score0.01965EPSS

Exploits6

securityvulns•added 2015/04/19 12:0 a.m.•36 views

TP-LINK devices unauthorized files access

Directory traversal in web interface...

7.8CVSS4.9AI score0.92856EPSS

Exploits5References1

securityvulns•added 2015/04/19 12:0 a.m.•41 views

[ MDVSA-2015:114 ] cifs-utils

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:114 http://www.mandriva.com/en/support/security/ Package : cifs-utils Date : March 29, 2015 Affected: Business Server 2.0 Problem Description: Updated cifs-utils packages fix security vulnerability: Sebastia...

10CVSS6.9AI score0.02896EPSS

securityvulns•added 2015/04/19 12:0 a.m.•41 views

Android multiple security vulnerabilities

Restrictions bypass, code execution...

2.1CVSS3.1AI score0.01965EPSS

Exploits6References3Affected Software1

securityvulns•added 2015/04/19 12:0 a.m.•38 views

Not Yet Commons SSL certificate spoofing

Insufficient certificate checking...

6.8CVSS1.7AI score0.00205EPSS

securityvulns•added 2015/04/19 12:0 a.m.•60 views

SEC Consult SA-20150410-0 :: Unauthenticated Local File Disclosure in multiple TP-LINK products (CVE-2015-3035)

SEC Consult Vulnerability Lab Security Advisory 20150410-0 ======================================================================= title: Unauthenticated Local File Disclosure product: Multiple TP-LINK products see Vulnerable / tested versions vulnerable version: Multiple see Vulnerable / tested...

7.8CVSS0.92856EPSS

Exploits5

securityvulns•added 2015/04/19 12:0 a.m.•22 views

HP Support Solution Framework security vulnerabilities

Code execution, information disclosure...

6.8CVSS1AI score0.00562EPSS

securityvulns•added 2015/04/19 12:0 a.m.•51 views

CVE-2014-7953 Android backup agent code execution

Android backup agent arbitrary code execution --------------------------------------------- The Android backup agent implementation was vulnerable to privilege escalation and race condition. An attacker with adb shell access could run arbitrary code as the system 1000 user or any other valid...

0.1AI score0.01965EPSS

Exploits6

securityvulns•added 2015/04/19 12:0 a.m.•52 views

[SECURITY] [DSA 3207-1] shibboleth-sp2 security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3207-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez March 28, 2015 http://www.debian.org/security/faq -...

4CVSS2.1AI score0.00455EPSS

securityvulns•added 2015/04/19 12:0 a.m.•34 views

cifs-utils buffer overflow

pamcifscreds buffer overflow...

10CVSS3.7AI score0.02896EPSS

securityvulns•added 2015/04/19 12:0 a.m.•1013 views

112 ipTIME Routers/WiFi APs/Modems/Firewalls models vulnerable with RCE with root privileges

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory Information Title: 112 ipTIME Routers/WiFi APs/Modems/Firewalls models vulnerable with RCE with root privileges Advisory URL: https://pierrekim.github.io/advisories/2015-iptime-0x00.txt.asc Date published: 2015-04-17 Vendors contacted:...

securityvulns•added 2015/04/17 12:0 a.m.•46 views

[USN-2569-2] Apport vulnerability

========================================================================== Ubuntu Security Notice USN-2569-2 April 16, 2015 apport vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubun...

securityvulns•added 2015/04/17 12:0 a.m.•66 views

Secunia Research: Oracle Outside In ibpsd2.dll PSD File Processing Buffer Overflow Vulnerability

====================================================================== Secunia Research 16/04/2015 Oracle Outside In ibpsd2.dll PSD File Processing Buffer Overflow Vulnerability ====================================================================== Table of Contents Affected...

1.5CVSS0.5AI score0.00738EPSS

securityvulns•added 2015/04/17 12:0 a.m.•31 views

EMC NetWorker buffer overflow

nsrrenderlog buffer overflow...

7.2CVSS3.6AI score0.00055EPSS