Securityvulns - Page 77 of Securityvulns Vulnerabilities List

securityvulns•added 2013/12/30 12:0 a.m.•52 views

[CVE-2013-6986] Insecure Data Storage in Subway Ordering for California (ZippyYum) 3.4 iOS mobile application

Title: CVE-2013-6986 Insecure Data Storage in Subway Ordering for California ZippyYum 3.4 iOS mobile application Published: December 7, 2013 Reported to Vendor: May 2013 CVE Reference: CVE-2013-6986 https://vulners.com/cve/CVE-2013-6986 CVSS v2 Base Score: 4.9 CVSS v2 Vector...

2.1CVSS5.8AI score0.00561EPSS

securityvulns•added 2013/12/30 12:0 a.m.•54 views

[SECURITY] [DSA 2817-1] libtar security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2817-1 [email protected] http://www.debian.org/security/ Luciano Bello December 14, 2013 http://www.debian.org/security/faq -...

6.8CVSS2.1AI score0.05485EPSS

securityvulns•added 2013/12/30 12:0 a.m.•117 views

Advisory 01/2013: PHP openssl_x509_parse() Memory Corruption Vulnerability

SektionEins GmbH www.sektioneins.de -= Security Advisory =- Advisory: PHP opensslx509parse Memory Corruption Vulnerability Release Date: 2013/12/13 Last Modified: 2013/12/13 Author: Stefan Esser stefan.esseratsektioneins.de Application: PHP 4.0.6 - PHP 4.4.9 PHP 5.0.x PHP 5.1.x PHP 5.2.x PHP 5.3....

7.5CVSS7.6AI score0.35635EPSS

Exploits8

securityvulns•added 2013/12/30 12:0 a.m.•51 views

Photo Video Album Transfer 1.0 iOS - Multiple Vulnerabilities

Document Title: =============== Photo Video Album Transfer 1.0 iOS - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1166 Release Date: ============= 2013-12-10 Vulnerability Laboratory ID VL-ID:...

7.8AI score

securityvulns•added 2013/12/30 12:0 a.m.•46 views

Song Exporter v2.1.1 RS iOS - File Include Vulnerabilities

2.1CVSS5.8AI score0.00561EPSS

securityvulns•added 2013/12/30 12:0 a.m.•1752 views

iOS applications multiple seucrity vulnereabilities

Multiple application with remote data access are vulnerable...

5CVSS2.4AI score0.01072EPSS

Exploits4References43Affected Software39

securityvulns•added 2013/12/30 12:0 a.m.•210 views

Microsoft Windows multiple security vulnerabilities

Memory corruption in graphics library, signature check bypass, use-after-free in scripting, multiple privilege escalations...

9.3CVSS3.2AI score0.84971EPSS

Exploits14References1Affected Software1

securityvulns•added 2013/12/30 12:0 a.m.•72 views

PHP memory corruption

Memory corruption in asn1timetotimet...

7.5CVSS1.6AI score0.35635EPSS

Exploits8References2Affected Software1

securityvulns•added 2013/12/30 12:0 a.m.•81 views

CORE-2013-0807 - Divide Error in Windows Kernel

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Divide Error in Windows Kernel 1. Advisory Information Title: Divide Error in Windows Kernel Advisory ID: CORE-2013-0807 Advisory URL: http://www.coresecurity.com/advisories/divide-error-in-windows-kernel Date published: 2013-12-...

4.9CVSS6.4AI score0.02764EPSS

Exploits6

securityvulns•added 2013/12/24 12:0 a.m.•27 views

denyhosts DoS

Invalid regular expression can be exploited to ban arbitrary IP address...

5CVSS2.1AI score0.08896EPSS

securityvulns•added 2013/12/24 12:0 a.m.•36 views

[slackware-security] llvm (SSA:2013-350-03)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 slackware-security llvm SSA:2013-350-03 New llvm packages are available for Slackware 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+...

7.7AI score

securityvulns•added 2013/12/24 12:0 a.m.•31 views

[slackware-security] libiodbc (SSA:2013-350-01)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 slackware-security libiodbc SSA:2013-350-01 New libiodbc packages are available for Slackware 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+...

0.1AI score

securityvulns•added 2013/12/24 12:0 a.m.•23 views

Asterisk security vulnerabilities

SMS parsing buffer overflow, Asterisk Manager privilege escalation...

5.6AI score

Exploits0References2Affected Software1

securityvulns•added 2013/12/24 12:0 a.m.•80 views

APPLE-SA-2013-12-16-1 Safari 6.1.1 and Safari 7.0.1

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2013-12-16-1 Safari 6.1.1 and Safari 7.0.1 Safari 6.1.1 and Safari 7.0.1 are now available and address the following: Safari Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8.5, OS X Mavericks v10.9 Impact:...

7.5CVSS0.3AI score0.02259EPSS

Exploits3

securityvulns•added 2013/12/24 12:0 a.m.•29 views

Apple Motion buffer overflow

Buffer overflow on .motn files parsing...

5CVSS4.9AI score0.04895EPSS

Exploits1References1Affected Software1

securityvulns•added 2013/12/24 12:0 a.m.•48 views

QT resources exhaustion

Resources exhaustion leads to denial of service...

5CVSS2.3AI score0.03105EPSS

securityvulns•added 2013/12/24 12:0 a.m.•22 views

Apple Safari multiple security vulnerabilities

Information leakage, multiple memory corruptions...

2AI score

Exploits0References2Affected Software1

securityvulns•added 2013/12/24 12:0 a.m.•25 views

libiodbc rpath vulnerability

Unsafe rpath vulnerability in test applications...

2.1AI score

securityvulns•added 2013/12/24 12:0 a.m.•36 views

RealPlayer buffer overflow

Buffer overflow on RMP files parsing...

9.3CVSS4.5AI score0.11345EPSS

Exploits11References1Affected Software1

securityvulns•added 2013/12/24 12:0 a.m.•45 views

APPLE-SA-2013-12-16-2 OS X Mavericks v10.9.1

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2013-12-16-2 OS X Mavericks v10.9.1 OS X Mavericks v10.9.1 is now available and includes the content of Safari 7.0.1. For further details see "About the security content of Safari 6.1.1 and Safari 7.0.1" at http://support.apple.com/kb/HT6082 ...

6.8AI score

securityvulns•added 2013/12/24 12:0 a.m.•45 views

CORE-2013-0903 - RealPlayer Heap-based Buffer Overflow Vulnerability

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ RealPlayer Heap-based Buffer Overflow Vulnerability 1. Advisory Information Title: RealPlayer Heap-based Buffer Overflow Vulnerability Advisory ID: CORE-2013-0903 Advisory URL:...

9.3CVSS0.11345EPSS

Exploits11

securityvulns•added 2013/12/24 12:0 a.m.•117 views

[ MDVSA-2013:298 ] php

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:298 http://www.mandriva.com/en/support/security/ Package : php Date : December 20, 2013 Affected: Enterprise Server 5.0 Problem Description: A vulnerability has been discovered and corrected in php: The...

7.5CVSS7.9AI score0.35635EPSS

Exploits8

securityvulns•added 2013/12/24 12:0 a.m.•50 views

[SECURITY] [DSA 2825-1] wireshark security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2825-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 20, 2013 http://www.debian.org/security/faq -...

5CVSS1.6AI score0.02244EPSS

securityvulns•added 2013/12/24 12:0 a.m.•36 views

Wireshark DoS

Problems with NTLMSSPv2 and BSSGP dissectors...

5CVSS2.3AI score0.02244EPSS

Exploits1References1Affected Software1

securityvulns•added 2013/12/24 12:0 a.m.•32 views

VMWare ESX / ESXi privilege escalation

Files access privilege escalation...

4.4CVSS3.9AI score0.00353EPSS

Exploits0References1Affected Software2

securityvulns•added 2013/12/24 12:0 a.m.•58 views

[USN-2057-1] Qt vulnerability

========================================================================== Ubuntu Security Notice USN-2057-1 December 17, 2013 qt4-x11, qtbase-opensource-src vulnerability ========================================================================== A security issue affects these releases of Ubuntu...

5CVSS6.1AI score0.03105EPSS

securityvulns•added 2013/12/24 12:0 a.m.•26 views

llvm unsafe rpath

rpath is set to /tmp...

1.3AI score

securityvulns•added 2013/12/24 12:0 a.m.•34 views

AST-2013-007: Asterisk Manager User Dialplan Permission Escalation

Asterisk Project Security Advisory - AST-2013-007 Product Asterisk Summary Asterisk Manager User Dialplan Permission Escalation Nature of Advisory Permission Escalation Susceptibility Remote Authenticated Sessions Severity Minor Exploits Known None Reported On November 25, 2013 Reported By Matt...

1.6AI score

securityvulns•added 2013/12/24 12:0 a.m.•33 views

AST-2013-006: Buffer Overflow when receiving odd length 16 bit SMS message

Asterisk Project Security Advisory - AST-2013-006 Product Asterisk Summary Buffer Overflow when receiving odd length 16 bit SMS message Nature of Advisory Buffer Overflow and Remote Crash Susceptibility Remote SMS Messages Severity Major Exploits Known None Reported On September 26, 2013 Reported...

0.4AI score

securityvulns•added 2013/12/24 12:0 a.m.•41 views

NEW VMSA-2013-0016 VMware ESXi and ESX unauthorized file access through vCenter Server and ESX

4.4CVSS6AI score0.00353EPSS

securityvulns•added 2013/12/24 12:0 a.m.•42 views

APPLE-SA-2013-12-19-1 Motion 5.1

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2013-12-19-1 Motion 5.1 Motion 5.1 is now available and addresses the following: Motion Available for: OS X Mavericks v10.9 or later Impact: A maliciously crafted .motn file could lead to arbitrary code execution Description: An integer...

5CVSS0.3AI score0.04895EPSS

securityvulns•added 2013/12/24 12:0 a.m.•72 views

[SECURITY] [DSA 2826-1] denyhosts security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2826-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez December 22, 2013 http://www.debian.org/security/faq -...

5CVSS2.2AI score0.08896EPSS

securityvulns•added 2013/12/23 12:0 a.m.•44 views

cURL certificates spoofing

Имя хоста не проверяется при включенном CURLOPTSSLVERIFYPEER...

4.3CVSS0.6AI score0.03076EPSS

Exploits0References2Affected Software1

securityvulns•added 2013/12/23 12:0 a.m.•97 views

[USN-2058-1] curl vulnerability

========================================================================== Ubuntu Security Notice USN-2058-1 December 18, 2013 curl vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

4CVSS0.6AI score0.02761EPSS

securityvulns•added 2013/12/23 12:0 a.m.•23 views

ANSSI certificate is used for spoofing

ANSSI agency uses valid intermediate certificate in traffic sniffing device...

3.4AI score

securityvulns•added 2013/12/23 12:0 a.m.•89 views

[USN-2061-1] OpenStack Keystone vulnerability

========================================================================== Ubuntu Security Notice USN-2061-1 December 19, 2013 keystone vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

5.8CVSS0.2AI score0.02239EPSS

Exploits2

securityvulns•added 2013/12/23 12:0 a.m.•52 views

OpenStack multiple security vulnerabilities

DoS, information leakage...

6.5CVSS2.3AI score0.03082EPSS

Exploits12References9Affected Software7

securityvulns•added 2013/12/23 12:0 a.m.•87 views

[SECURITY] [DSA 2822-1] xorg-server security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2822-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 18, 2013 http://www.debian.org/security/faq -...

5CVSS2.8AI score0.02879EPSS

securityvulns•added 2013/12/23 12:0 a.m.•32 views

X.Org integer overflow

Integer overflow...

5CVSS3.2AI score0.02879EPSS

securityvulns•added 2013/12/23 12:0 a.m.•82 views

[ MDVSA-2013:291 ] kernel

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:291 http://www.mandriva.com/en/support/security/ Package : kernel Date : December 17, 2013 Affected: Business Server 1.0 Problem Description: Multiple vulnerabilities has been found and corrected in the Linu...

6.9CVSS8.4AI score0.00661EPSS

Exploits7

securityvulns•added 2013/12/23 12:0 a.m.•50 views

Linux kernel multiple security vulnerabilities

Weak permissions, information leakage, privilege escalation, DoS...

6.9CVSS2.5AI score0.04144EPSS

Exploits14References2Affected Software1

securityvulns•added 2013/12/23 12:0 a.m.•83 views

[USN-2062-1] OpenStack Horizon vulnerability

========================================================================== Ubuntu Security Notice USN-2062-1 December 20, 2013 horizon vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

1.9CVSS5.3AI score0.01734EPSS

securityvulns•added 2013/12/23 12:0 a.m.•38 views

GnuPG acoustic attack

It's possible to resover sensitive information via acousitc emanations...

2.1CVSS2.8AI score0.00451EPSS

securityvulns•added 2013/12/23 12:0 a.m.•92 views

[USN-2059-1] GnuPG vulnerability

========================================================================== Ubuntu Security Notice USN-2059-1 December 18, 2013 gnupg vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

2.1CVSS0.2AI score0.00451EPSS