Securityvulns - Page 91 of Securityvulns Vulnerabilities List

SecurityvulnsRecent

47153 matches found

securityvulns•added 2013/08/12 12:0 a.m.•100 views

CORE-2013-0708 - Hikvision IP Cameras Multiple Vulnerabilities

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Hikvision IP Cameras Multiple Vulnerabilities 1. Advisory Information Title: Hikvision IP Cameras Multiple Vulnerabilities Advisory ID: CORE-2013-0708 Advisory URL:...

10CVSS10AI score0.56432EPSS

Exploits10

securityvulns•added 2013/08/12 12:0 a.m.•50 views

Chromium / Google Chrome multiple security vulnerabilities

Protection bypass, privilege escalation, DoS, use-after-free, information leakage, memory corruptions...

9.3CVSS2.7AI score0.01716EPSS

Exploits5References2Affected Software1

securityvulns•added 2013/08/12 12:0 a.m.•142 views

HP / 3COM / H3C switches security vulnerabilities

Code execution, information leakage...

10CVSS1.8AI score0.18506EPSS

Exploits0References3

securityvulns•added 2013/08/12 12:0 a.m.•42 views

HP Integrated Lights-Out authentication bypass

No description provided...

9CVSS2.1AI score0.00602EPSS

Exploits0References1Affected Software1

securityvulns•added 2013/08/12 12:0 a.m.•33 views

Wireshark multiple security vulnerabilities

Multiple vulnerabilities in different protocol dissectors...

7.8CVSS3AI score0.01815EPSS

Exploits0References1Affected Software1

securityvulns•added 2013/08/12 12:0 a.m.•28 views

withU Music Share v1.3.7 iOS - Command Inject Vulnerability

Title: ====== withU Music Share v1.3.7 iOS - Command Inject Vulnerability Date: ===== 2013-08-03 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1040 VL-ID: ===== 1040 Common Vulnerability Scoring System: ==================================== 6.1 Introduction:...

0.3AI score

Exploits0

securityvulns•added 2013/08/12 12:0 a.m.•27 views

D-Link DIR-645 unauthroized access

It's possible to obtain administration password without authentication, crossite scripting, buffer overflow...

3.8AI score

Exploits0References2

securityvulns•added 2013/08/12 12:0 a.m.•66 views

NGS00434 Technical Advisory: Oracle Hyperion 11 Directory Traversal

======= Summary ======= Name: Oracle Hyperion 11 - Directory Traversal Release Date: 30 July 2013 Reference: NGS00434 Discoverer: Richard Warren [email protected] Vendor: Oracle Vendor Reference: S0318807 Systems Affected: Oracle Hyperion 11.1.1.3, 11.1.1.4.107 and earlier, 11.1.2.1.129...

3.5CVSS5.6AI score0.20369EPSS

Exploits4

securityvulns•added 2013/08/12 12:0 a.m.•81 views

[security bulletin] HPSBGN02904 rev.1 - HP SiteScope running SOAP, Remote Code Execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03861260 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03861260 Version: 1 HPSBGN02904 rev....

10CVSS0.5AI score0.83849EPSS

Exploits10

securityvulns•added 2013/08/12 12:0 a.m.•116 views

Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities

Memory corruptions, buffer overflows, crossite data access, crossite scripting, information spoofing, privilege escalation, protection bypass, code execution, information leakage...

10CVSS3.9AI score0.76472EPSS

Exploits16Affected Software5

securityvulns•added 2013/08/12 12:0 a.m.•39 views

WD My Net security vulnerabilities

Unauthorized access, information leakages...

4.3CVSS3.1AI score0.08274EPSS

Exploits5References3

securityvulns•added 2013/08/12 12:0 a.m.•83 views

Oracle / Sun / MySQL / PeopleSoft applications multiple security vulnerabilities

Quarterly CPU fixes 89 dufferent vulnerabilities...

10CVSS2.1AI score0.86822EPSS

Exploits42References1Affected Software19

securityvulns•added 2013/08/12 12:0 a.m.•38 views

Vodafone EasyBox weak WPS PIN

PIN is generated based on publically available data...

1.8AI score

Exploits0References1Affected Software1

securityvulns•added 2013/08/12 12:0 a.m.•77 views

[ MDVSA-2013:209 ] subversion

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:209 http://www.mandriva.com/en/support/security/ Package : subversion Date : August 6, 2013 Affected: Business Server 1.0 Problem Description: A vulnerability has been found and corrected in subversion: The...

4CVSS8.2AI score0.00665EPSS

Exploits0

securityvulns•added 2013/08/12 12:0 a.m.•48 views

Huawei B153 3G/UMTS router WPS weakness

Huawei B153 3G/UMTS router WPS weakness ======================================= ADVISORY INFORMATION Title: Huawei B153 3G/UMTS router WPS weakness Discovery date: 21/05/2013 Release date: 05/08/2013 Advisory URL: http://blog.emaze.net/2013/08/huawei-b153-3gumts-router-wps-weakness.html Credits:...

0.4AI score

Exploits0

securityvulns•added 2013/08/12 12:0 a.m.•92 views

[security bulletin] HPSBHF02912 rev.1 - HP Networking Products including H3C and 3COM Routers and Switches, OSPF Remote Information Disclosure and Denial of Service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03880910 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03880910 Version: 1 HPSBHF02912 rev....

7CVSS0.1AI score0.00242EPSS

Exploits0

securityvulns•added 2013/08/05 12:0 a.m.•46 views

HP printers information leakage

It's possible to obtain user accounts and WiFi PIN without authentication...

7.8CVSS2.4AI score0.01465EPSS

Exploits0References2

securityvulns•added 2013/08/05 12:0 a.m.•109 views

PuTTY SSH handshake heap overflow

PuTTY SSH handshake heap overflow CVE-2013-4852 Description: PuTTY versions 0.62 and earlier - as well as all software that integrates these versions of PuTTY - are vulnerable to an integer overflow leading to heap overflow during the SSH handshake before authentication, caused by improper bounds...

6.8CVSS0.01751EPSS

Exploits1

securityvulns•added 2013/08/05 12:0 a.m.•88 views

HPSBPI02887 rev.2 - Certain HP LaserJet Pro Printers, Remote Information Disclosure

NOTICE: The information in this Security Bulletin should be acted upon as soon as possible. Release Date: 2013-07-31 Last Updated: 2013-07-31 Potential Security Impact: Remote information disclosure Source: Hewlett-Packard Company, HP Software Security Response Team VULNERABILITY SUMMARY A...

7.8CVSS0.5AI score0.01465EPSS

Exploits0

securityvulns•added 2013/08/05 12:0 a.m.•333 views

HP LaserJet Pro printers remote admin password extraction

Some of the networked HP LaserJet printers have hidden URLs hardcoded in the firmware. The URLs are not authenticated and can be used to extract admin password in plaintext v among other information like WiFi settings including WPS PIN. Models affected: HP LaserJet Pro P1102w, HP LaserJet Pro...

Exploits0

securityvulns•added 2013/07/29 12:0 a.m.•44 views

Photo Server 2.0 iOS - Multiple Critical Vulnerabilities

Title: ====== Photo Server 2.0 iOS - Multiple Critical Vulnerabilities Date: ===== 2013-07-23 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1029 VL-ID: ===== 1029 Common Vulnerability Scoring System: ==================================== 8.6 Introduction: =============...

0.2AI score

Exploits0

securityvulns•added 2013/07/29 12:0 a.m.•26 views

Dell Kace security vulnerabilities

Crossite scripting and SQL injection in web administration...

2AI score

Exploits0References2Affected Software1

securityvulns•added 2013/07/29 12:0 a.m.•67 views

SEC Consult SA-20130726-0 :: Multiple vulnerabilities - Surveillance via Symantec Web Gateway

SEC Consult Vulnerability Lab Security Advisory 20130726-0 ======================================================================= title: Multiple vulnerabilities - Surveillance via Symantec Web Gateway product: Symantec Web Gateway vulnerable version: = 5.1.0. fixed version: 5.1.1 CVE number:...

8.3CVSS0.3AI score0.15661EPSS

Exploits4

securityvulns•added 2013/07/29 12:0 a.m.•32 views

Cisco Video Surveillance Manager multiple security vulnerabilities

Directory traversal, authentication bypass...

9CVSS3.3AI score0.11667EPSS

Exploits0Affected Software1

securityvulns•added 2013/07/29 12:0 a.m.•63 views

Easy Blog by JM LLC - Multiple Vulnerabilities

Dear all, I have discovered some vulnerabilities in Easy Blog, developed by JM LLC. Cheers, Sp3ctrecore ADVISORY =========================================== Easy Blog JM LLC - Multiple Vulnerabilities =========================================== Software................: Easy Blog Software...

0.3AI score

Exploits0

securityvulns•added 2013/07/29 12:0 a.m.•95 views

[security bulletin] HPSBGN02905 rev.1 - HP LoadRunner, Remote Code Execution and Denial of Service (DoS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03862772 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03862772 Version: 1 HPSBGN02905 rev....

10CVSS1.3AI score0.83193EPSS

Exploits27

securityvulns•added 2013/07/29 12:0 a.m.•180 views

[security bulletin] HPSBMU02894 rev.1 - HP Network Node Manager I (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Denial of Service (DoS), Unauthorized Access, Execution of Arbitrary Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03824583 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03824583 Version: 1 HPSBMU02894 rev....

7.5CVSS1.3AI score0.92431EPSS

Exploits43

securityvulns•added 2013/07/29 12:0 a.m.•51 views

Foscam cameras security vulnerabilities

Directory traversal, CSRF...

7.8CVSS3.4AI score0.52554EPSS

Exploits6References3

securityvulns•added 2013/07/29 12:0 a.m.•134 views

Xymon Systems and Network Monitor - remote file deletion vulnerability

Advisory ID: HTB23163 Product: Magnolia CMS Vendor: Magnolia International Ltd Vulnerable Versions: 4.5.7, 4.5.8, 4.5.9, 5.0 and 5.0.1 Community Edition Tested Version: 5.0 Community Edition Vendor Notification: July 3, 2013 Vendor Patch: July 18, 2013 Public Disclosure: July 24, 2013 Vulnerabili...

4.3CVSS0.8AI score0.10299EPSS

Exploits3

securityvulns•added 2013/07/29 12:0 a.m.•46 views

[SECURITY] [DSA 2729-1] openafs security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2729-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff July 28, 2013 http://www.debian.org/security/faq -...

4.3CVSS0.7AI score0.00283EPSS

Exploits0

securityvulns•added 2013/07/29 12:0 a.m.•45 views

DirectShow Arbitrary Memory Overwrite Vulnerability ms13-056

Introduction: The Microsoft DirectShow application programming interface API is a media-streaming architecture for Microsoft Windows. Using DirectShow, your applications can perform high-quality video and audio playback or capture. Overview: DirectShow in Microsoft Windows XP SP2 and SP3, Windows...

9.3CVSS1.6AI score0.34922EPSS

Exploits5

securityvulns•added 2013/07/29 12:0 a.m.•37 views

Barracuda CudaTel 2.6.02.040 - SQL Injection Vulnerability

Title: ====== Barracuda CudaTel 2.6.02.040 - SQL Injection Vulnerability Date: ===== 2013-07-20 References: =========== http://vulnerability-lab.com/getcontent.php?id=775 BARRACUDA NETWORK SECURITY ID: BNSEC-723 VL-ID: ===== 775 Common Vulnerability Scoring System:...

0.3AI score

Exploits0

securityvulns•added 2013/07/29 12:0 a.m.•40 views

Little CMS library DoS

Crash on file parsing...

5CVSS2.4AI score0.01102EPSS

Exploits0References1Affected Software1

securityvulns•added 2013/07/29 12:0 a.m.•77 views

Private Photos v1.0 iOS - Persistent Path Web Vulnerability

Title: ====== Private Photos v1.0 iOS - Persistent Path Web Vulnerability Date: ===== 2013-07-25 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1034 VL-ID: ===== 1034 Common Vulnerability Scoring System: ==================================== 3.5 Introduction:...

0.6AI score

Exploits0

securityvulns•added 2013/07/29 12:0 a.m.•47 views

ESA-2013-033: EMC NetWorker Information Disclosure Vulnerability

ESA-2013-033.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-033: EMC NetWorker Information Disclosure Vulnerability EMC Identifier: ESA-2013-033 EMC Identifier: NW144712 CVE Identifier: CVE-2013-0943 Severity Rating: CVSS v2 Base Score: 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C Affected products...

4.6CVSS0.8AI score0.00127EPSS

Exploits0

securityvulns•added 2013/07/29 12:0 a.m.•57 views

Cross-Site Scripting (XSS) in Duplicator WordPress Plugin

Advisory ID: HTB23162 Product: Duplicator WordPress Plugin Vendor: LifeInTheGrid Vulnerable Versions: 0.4.4 and probably prior Tested Version: 0.4.4 Vendor Notification: June 19, 2013 Vendor Patch: July 21, 2013 Public Disclosure: July 24, 2013 Vulnerability Type: Cross-Site Scripting CWE-79 CVE...

4.3CVSS5.5AI score0.07785EPSS

Exploits2

securityvulns•added 2013/07/29 12:0 a.m.•62 views

Samsung TV - DoS vulnerability

Author: Malik Mesellem - @MMEIT - http://www.itsecgames.com Type: Denial of Service DoS attack Description: DoS vulnerability on some Samsung TVs The web server DMCRUIS/0.1 on port TCP/5600 is crashing by sending a long HTTP GET request Tested successfully on my Samsung PS50C7700 plasma TV...

0.1AI score

Exploits0

securityvulns•added 2013/07/29 12:0 a.m.•28 views

XnView buffer overflow

Buffer overflow on .PCT parsing...

9.3CVSS4.9AI score0.31793EPSS

Exploits4References1Affected Software1

securityvulns•added 2013/07/29 12:0 a.m.•28 views

Symantec Web Gateway multiple security vulnerabilities

Crossite scripting, crossite request forgery, SQL injection, code execution, privilege escalation...

8.3CVSS3.2AI score0.15661EPSS

Exploits4References1Affected Software1

securityvulns•added 2013/07/29 12:0 a.m.•25 views

Barracuda CudaTel multiple security vulnerabilities

Multiple web interface vulnerabilities...

2.4AI score

Exploits0References6Affected Software1

securityvulns•added 2013/07/29 12:0 a.m.•74 views

[CVE-2013-2137] Apache OFBiz XSS vulnerability in the "View Log" screen of the Webtools application

CVE-2013-2137 - Apache OFBiz XSS vulnerability in the "View Log" screen of the Webtools application Vendor: The Apache Software Foundation Versions Affected: Apache OFBiz 10.04.01 to 10.04.05 Apache OFBiz 11.04.01 to 11.04.02 Apache OFBiz 12.04.01 Description: XSS vulnerability in the "View Log"...

4.3CVSS0.4AI score0.03436EPSS

Exploits0

securityvulns•added 2013/07/29 12:0 a.m.•133 views

Cross-Site Scripting (XSS) in Magnolia CMS

4.3CVSS0.6AI score0.10299EPSS

Exploits3

securityvulns•added 2013/07/29 12:0 a.m.•30 views

iPic Sharp v1.2.1 Wifi iOS - Persistent Foldername Web Vulnerability

Title: ====== iPic Sharp v1.2.1 Wifi iOS - Persistent Foldername Web Vulnerability Date: ===== 2013-07-24 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1031 VL-ID: ===== 1031 Common Vulnerability Scoring System: ==================================== 3.6 Introduction:...

Exploits0

securityvulns•added 2013/07/29 12:0 a.m.•56 views

[USN-1911-1] Little CMS vulnerability

========================================================================== Ubuntu Security Notice USN-1911-1 July 29, 2013 lcms2 vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu...

5CVSS0.4AI score0.01102EPSS

Exploits0

securityvulns•added 2013/07/29 12:0 a.m.•80 views

[ MDVSA-2013:199 ] squid

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:199 http://www.mandriva.com/en/support/security/ Package : squid Date : July 25, 2013 Affected: Business Server 1.0, Enterprise Server 5.0 Problem Description: Multiple vulnerabilities has been discovered an...

7.5CVSS9.2AI score0.75061EPSS

Exploits0

securityvulns•added 2013/07/29 12:0 a.m.•60 views

FreeBSD Security Advisory FreeBSD-SA-13:08.nfsserver

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-13:08.nfsserver Security Advisory The FreeBSD Project Topic: Incorrect privilege validation in the NFS server Category: core Module: nfsserver Announced: 2013-07-...

6.4CVSS6.3AI score0.00207EPSS

Exploits1

securityvulns•added 2013/07/29 12:0 a.m.•173 views

Apache OpenOffice security vulnerabilities

Few memory corruptions...

6.8CVSS3AI score0.01221EPSS

Exploits2References2Affected Software1

securityvulns•added 2013/07/29 12:0 a.m.•65 views

[USN-1911-1] Little CMS vulnerability

5CVSS0.4AI score0.01102EPSS

Exploits0

securityvulns•added 2013/07/29 12:0 a.m.•58 views

CORE-2013-0613 - FOSCAM IP-Cameras Improper Access Restrictions

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ FOSCAM IP-Cameras Improper Access Restrictions 1. Advisory Information Title: FOSCAM IP-Cameras Improper Access Restrictions Advisory ID: CORE-2013-0613 Advisory URL:...

0.1AI score0.52554EPSS

Exploits5

securityvulns•added 2013/07/29 12:0 a.m.•91 views

[CVE-2013-2250] Apache OFBiz Nested expression evaluation allows remote users to execute arbitrary UEL functions in OFBiz

CVE-2013-2250 - Apache OFBiz Nested expression evaluation allows remote users to execute arbitrary UEL functions in OFBiz Vendor: The Apache Software Foundation Versions Affected: Apache OFBiz 10.04.01 to 10.04.05 Apache OFBiz 11.04.01 to 11.04.02 Apache OFBiz 12.04.01 Description: Parameter valu...

10CVSS3.1AI score0.05894EPSS

Exploits1

Total number of security vulnerabilities47153