Securityvulns - Page 53 of Securityvulns Vulnerabilities List | Vulners.com

SecurityvulnsRecent

Recent Most viewed

47153 matches found

securityvulns•added 2014/07/22 12:0 a.m.•69 views

[USN-2293-1] CUPS vulnerability

========================================================================== Ubuntu Security Notice USN-2293-1 July 21, 2014 cups vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu...

1.2CVSS0.5AI score0.00053EPSS

securityvulns•added 2014/07/22 12:0 a.m.•70 views

libgd / PHP DoS

NULL pointer dereference on XPM files parsing...

4.3CVSS2.7AI score0.05174EPSS

Exploits3References1Affected Software2

securityvulns•added 2014/07/22 12:0 a.m.•41 views

PolarSSL DoS

DoS on GCM cypher...

5CVSS2.6AI score0.00535EPSS

Exploits0References1Affected Software1

securityvulns•added 2014/07/22 12:0 a.m.•159 views

[ MDVSA-2014:133 ] gd

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:133 http://www.mandriva.com/en/support/security/ Package : gd Date : July 10, 2014 Affected: Business Server 1.0 Problem Description: Updated gd and libgd packages fix security vulnerability: The...

4.3CVSS7.2AI score0.05174EPSS

securityvulns•added 2014/07/22 12:0 a.m.•62 views

KL-001-2014-002 : Microsoft XP SP3 BthPan.sys Arbitrary Write Privilege Escalation

Title: Microsoft XP SP3 BthPan.sys Arbitrary Write Privilege Escalation Advisory ID: KL-001-2014-002 Publication Date: 2014-07-18 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2014-002.txt 1. Vulnerability Details Affected Vendor: Microsoft Affected Product: Bluetooth...

7.2CVSS0.1AI score0.23441EPSS

securityvulns•added 2014/07/22 12:0 a.m.•154 views

[security bulletin] HPSBHF02913 rev.1 - HP Intelligent Management Center (iMC) and HP Branch Intelligent Management System (BIMS), Remote Disclosure of Information

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04369484 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04369484 Version: 1 HPSBHF02913 rev....

8.5CVSS6.2AI score0.01522EPSS

securityvulns•added 2014/07/21 12:0 a.m.•36 views

HP Storage Data Protector code execution

No description provided...

10CVSS1.7AI score0.89835EPSS

Exploits20References1

securityvulns•added 2014/07/21 12:0 a.m.•57 views

VUPEN Security Research - Microsoft Windows "DirectShow" Privilege Escalation Vulnerability (Pwn2Own 2014)

VUPEN Security Research - Microsoft Windows "DirectShow" Local Privilege Escalation Vulnerability Pwn2Own 2014 Website : http://www.vupen.com Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- "Microsoft Windows is a series of software operating systems and graphical user...

6.9CVSS8.8AI score0.03119EPSS

securityvulns•added 2014/07/21 12:0 a.m.•103 views

VUPEN Security Research - Microsoft Internet Explorer CSS @import Memory Corruption (Pwn2Own 2014)

VUPEN Security Research - Microsoft Internet Explorer CSS @import Memory Corruption Pwn2Own 2014 Website : http://www.vupen.com Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- "Microsoft Internet Explorer is a web browser developed by Microsoft and included as part of the...

10CVSS8.2AI score0.39317EPSS

securityvulns•added 2014/07/21 12:0 a.m.•57 views

ESA-2014-074: EMC RecoverPoint Appliance Security Control Bypass Vulnerability

ESA-2014-074.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2014-074: EMC RecoverPoint Appliance Security Control Bypass Vulnerability EMC Identifier: ESA-2014-074 CVE Identifier: CVE-2014-2519 Severity Rating: CVSS v2 Base Score: 5.8 AV:N/AC:M/Au:N/C:P/I:N/A:P Affected products: • EMC...

5.8CVSS0.6AI score0.00443EPSS

securityvulns•added 2014/07/21 12:0 a.m.•90 views

[security bulletin] HPSBMU03072 SSRT101644 rev.1 - HP Data Protector, Remote Execution of Arbitrary Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04373818 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04373818 Version: 1 HPSBMU03072...

10CVSS0.8AI score0.89835EPSS

securityvulns•added 2014/07/21 12:0 a.m.•21 views

OpenVPN Access Server CSRF

XML-RPC interface CSRF...

Exploits0References1

securityvulns•added 2014/07/21 12:0 a.m.•82 views

KL-001-2014-001 : Oracle VirtualBox Guest Additions Arbitrary Write Privilege Escalation

Title: Oracle VirtualBox Guest Additions Arbitrary Write Privilege Escalation Advisory ID: KL-001-2014-001 Publication Date: 07.15.2014 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2014-001.txt 1. Vulnerability Details Affected Vendor: Oracle Affected Product: VirtualBox...

3.6CVSS0.08492EPSS

securityvulns•added 2014/07/21 12:0 a.m.•81 views

[USN-2289-1] Linux kernel vulnerabilities

========================================================================== Ubuntu Security Notice USN-2289-1 July 17, 2014 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubun...

6.9CVSS0.1AI score0.10105EPSS

securityvulns•added 2014/07/21 12:0 a.m.•66 views

SEC Consult SA-20140716-3 :: Multiple critical vulnerabilities in Bitdefender GravityZone

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SEC Consult Vulnerability Lab Security Advisory 20140716-3 ======================================================================= title: Multiple critical vulnerabilities product: Bitdefender GravityZone vulnerable version: 5.1.11.432 fixed version:...

securityvulns•added 2014/07/21 12:0 a.m.•871 views

transmission memory corruption

Memory corruption on bittorrent packets parsing...

6.8CVSS4AI score0.09187EPSS

Exploits1References1Affected Software1

securityvulns•added 2014/07/21 12:0 a.m.•48 views

Barracuda Networks Message Archiver 650 - Persistent Input Validation Vulnerability (BNSEC 703)

Document Title: =============== Barracuda Networks Message Archiver 650 - Persistent Input Validation Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=751 https://www.barracuda.com/support/knowledgebase/501600000013lXe Barracuda Networks...

securityvulns•added 2014/07/21 12:0 a.m.•82 views

SEC Consult SA-20140716-2 :: Multiple vulnerabilities in Citrix NetScaler Application Delivery Controller and Citrix NetScaler Gateway

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SEC Consult Vulnerability Lab Security Advisory 20140716-2 ======================================================================= title: Multiple vulnerabilities product: Citrix NetScaler Application Delivery Controller Citrix NetScaler Gateway...

5CVSS6.2AI score0.00978EPSS

securityvulns•added 2014/07/21 12:0 a.m.•29 views

perl LWP::Protocol::https certificates check vulnerability

Certificate check is completely disabled if hostname check was disabled...

1AI score0.0065EPSS

Exploits1References1Affected Software1

securityvulns•added 2014/07/21 12:0 a.m.•81 views

[oss-security] CVE-2014-4943: Linux privilege escalation in ppp over l2tp sockets

CVE-2014-4943 is a flaw in the Linux kernel allowing an unprivileged user to escalate to kernel privilege when CONFIGPPPOL2TP is enabled. If built as a module, a work-around to limit this to just the root user would be to add this to /etc/modprobe.conf: alias pppox-proto-1 off blacklist l2tpppp...

6.9CVSS2.1AI score0.01034EPSS

securityvulns•added 2014/07/21 12:0 a.m.•65 views

Linux kernel multiple security vulnerabilities

Kernel memory content leak via mediaenumentities and rdmcp IOCTL, DoS, privilege escalations...

6.9CVSS3.4AI score0.14138EPSS

Exploits15References14Affected Software1

securityvulns•added 2014/07/21 12:0 a.m.•106 views

Oracle / Sun / PeopleSoft / MySQL applications security vulnerabilities

Over 100 vulnerabilities in different applications are fixed in quarterly update...

10CVSS2.5AI score0.94052EPSS

Exploits36References1Affected Software36

securityvulns•added 2014/07/21 12:0 a.m.•79 views

VUPEN Security Research - Microsoft Internet Explorer "Request" Object Confusion Sandbox Bypass (Pwn2Own 2014)

VUPEN Security Research - Microsoft Internet Explorer "Request" Object Confusion Sandbox Bypass Pwn2Own 2014 Website : http://www.vupen.com Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- "Microsoft Internet Explorer is a web browser developed by Microsoft and included as...

10CVSS6.7AI score0.71057EPSS

securityvulns•added 2014/07/21 12:0 a.m.•84 views

VUPEN Security Research - Microsoft Internet Explorer "ShowSaveFileDialog()" Sandbox Bypass (Pwn2Own 2014)

VUPEN Security Research - Microsoft Internet Explorer "ShowSaveFileDialog" Protected Mode Sandbox Bypass Pwn2Own 2014 Website : http://www.vupen.com Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- "Microsoft Internet Explorer is a web browser developed by Microsoft and...

7.5CVSS6.2AI score0.34014EPSS

securityvulns•added 2014/07/21 12:0 a.m.•27 views

Barracuda Networks Message Archiver 650 code execution

Code execution via web interface...

Exploits0References1Affected Software1

securityvulns•added 2014/07/21 12:0 a.m.•46 views

Bitdefender GravityZone multiple security vulnerabilities

Unauthorized access, authentication bypass...

Exploits0References1Affected Software1

securityvulns•added 2014/07/21 12:0 a.m.•41 views

Citrix NetScaler security vulnerabilities

Information leak, XSS...

5CVSS1.9AI score0.00978EPSS

Exploits2References1Affected Software1

securityvulns•added 2014/07/21 12:0 a.m.•26 views

EMC RecoverPoint Appliance restrictions bypass

Access to arbitrary ports is not restricted...

5.8CVSS4.1AI score0.00443EPSS

Exploits0References1Affected Software1

securityvulns•added 2014/07/21 12:0 a.m.•48 views

[USN-2292-1] LWP::Protocol::https vulnerability

========================================================================== Ubuntu Security Notice USN-2292-1 July 17, 2014 liblwp-protocol-https-perl vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its...

0.6AI score0.0065EPSS

securityvulns•added 2014/07/21 12:0 a.m.•20 views

DoS via fail2ban

Invalid logs parsing allows to ban arbitrary hosts...

5CVSS4.7AI score0.00843EPSS

Exploits2References1Affected Software1

securityvulns•added 2014/07/21 12:0 a.m.•54 views

[USN-2279-1] Transmission vulnerability

========================================================================== Ubuntu Security Notice USN-2279-1 July 16, 2014 transmission vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

6.8CVSS0.5AI score0.09187EPSS

securityvulns•added 2014/07/21 12:0 a.m.•28 views

Cisco Wireless Residential Gateway code execution

Code execution via web interface...

10CVSS4.2AI score0.05084EPSS

securityvulns•added 2014/07/21 12:0 a.m.•59 views

Microsoft Windows multiple security vulnerabilities

RDP weak encryption, TCP DoS, XML libraries information leakage, graphics libraries memory corruptions, Windows Journal memory corruptions, virtual keyboard privilege escalation, ADF privilege escalation, DirectoShow privilege escalation, Microsoft Service Bus DoS, multiple Internet Explorer...

10CVSS3AI score0.71563EPSS

Exploits12References4Affected Software1

securityvulns•added 2014/07/21 12:0 a.m.•91 views

[SECURITY] [DSA 2979-1] fail2ban security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2979-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff July 17, 2014 http://www.debian.org/security/faq -...

5CVSS2.1AI score0.00843EPSS

securityvulns•added 2014/07/21 12:0 a.m.•53 views

SEC Consult SA-20140716-1 :: Remote Code Execution via CSRF in OpenVPN Access Server "Desktop Client"

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SEC Consult Vulnerability Lab Security Advisory 20140716-1 ======================================================================= title: Remote Code Execution via CSRF product: OpenVPN Access Server "Desktop Client" vulnerable version: all fixed...

securityvulns•added 2014/07/14 12:0 a.m.•35 views

FreeBSD information leakage

SCTP calls information leakage...

4.9CVSS0.8AI score0.00071EPSS

Exploits0References1Affected Software1

securityvulns•added 2014/07/14 12:0 a.m.•74 views

[ MDVSA-2014:129 ] ffmpeg

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:129 http://www.mandriva.com/en/support/security/ Package : ffmpeg Date : July 9, 2014 Affected: Business Server 1.0 Problem Description: Multiple vulnerabilities has been discovered and corrected in ffmpeg:...

10CVSS9.7AI score0.02978EPSS

securityvulns•added 2014/07/14 12:0 a.m.•45 views

Microsoft Word memory corruption

Memory corruption on embedded fonts parsing...

9.3CVSS2.9AI score0.40401EPSS

Exploits0Affected Software1

securityvulns•added 2014/07/14 12:0 a.m.•64 views

[oss-security] CVE request: python: _json module is vulnerable to arbitrary process memory read

Hello, It was reported 1 that Python built-in json module have a flaw insufficient bounds checking, which allows a local user to read current process' arbitrary memory. From initial bug report 1: ... The sole prerequisites of this attack are that the attacker is able to control or influence the t...

securityvulns•added 2014/07/14 12:0 a.m.•141 views

[USN-2276-1] PHP vulnerabilities

========================================================================== Ubuntu Security Notice USN-2276-1 July 09, 2014 php5 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...

7.5CVSS0.8AI score0.48662EPSS

securityvulns•added 2014/07/14 12:0 a.m.•96 views

python security vulnerabilities

json information leak, CGIHTTPServer unauthroized files access and code execution, lz4 integer overflow...

4.3CVSS3.1AI score0.07232EPSS

Exploits6References3Affected Software1

securityvulns•added 2014/07/14 12:0 a.m.•62 views

[oss-security] CVE ID Request for Python CGIHTTPServer File Disclosure

Hi, I would like to request a CVE ID for a file disclosure vulnerability in the Python CGIHTTPServer class. Current details are available in the Python bug tracker: http://bugs.python.org/issue21766 Kind Regards Till -- RedTeam Pentesting GmbH Tel.: +49 241 510081-0 Dennewartstr. 25-27 Fax : +49...

securityvulns•added 2014/07/14 12:0 a.m.•65 views

[SECURITY] [DSA 2976-1] eglibc security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2976-1 [email protected] http://www.debian.org/security/ Florian Weimer July 10, 2014 http://www.debian.org/security/faq -...

6.8CVSS0.9AI score0.00782EPSS

securityvulns•added 2014/07/14 12:0 a.m.•85 views

file / PHP multiple security vulnerabilities

Memroy corruptions, DoS, information leakage...

7.5CVSS1.5AI score0.48662EPSS

Exploits7References1Affected Software1

securityvulns•added 2014/07/14 12:0 a.m.•50 views

FreeBSD Security Advisory FreeBSD-SA-14:17.kmem

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-14:17.kmem Security Advisory The FreeBSD Project Topic: Kernel memory disclosure in control messages and SCTP notifications Category: core Module: kern, sctp...

4.9CVSS6AI score0.00071EPSS

securityvulns•added 2014/07/14 12:0 a.m.•26 views

Microsoft Lync information leakage

Cross application scripting...

4.3CVSS1AI score0.28434EPSS

Exploits0Affected Software1

securityvulns•added 2014/07/14 12:0 a.m.•59 views

ffmpeg / libav multiple security vulnerabilities

Integer overflows, memory corruptions, buffer overflows, etc...

10CVSS3.6AI score0.02978EPSS

Exploits3References1Affected Software2

securityvulns•added 2014/07/14 12:0 a.m.•38 views

glibc protection bypass

It may be possible to bypass some restriction because of incorrect .. seqence processing in locale related functions...

6.8CVSS2.5AI score0.00782EPSS

Exploits0References1Affected Software1

securityvulns•added 2014/07/14 12:0 a.m.•62 views

[oss-security] LMS-2014-07-07-1: python-lz4

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello All, Please find the bug report for python-lz4 attached below. Steeve Morin @steeve, the maintainer of the python-lz4 package, has been great to work with. He worked quickly to get the package up to date by this morning. Thanks, Don A. Bailey...

securityvulns•added 2014/06/28 12:0 a.m.•104 views

[oss-security] LMS-2014-06-16-2: Linux Kernel LZO

Hello All, A vulnerability has been identified in the Linux kernel implementation of the LZO algorithm. Please find the bug report inline. Best, Don A. Bailey Founder / CEO Lab Mouse Security https://www.securitymouse.com/ Lab Mouse Security Report LMS-2014-06-16-2 Report ID: LMS-2014-06-16-2 CVE...

5CVSS0.5AI score0.08604EPSS

Total number of security vulnerabilities47153