Skip to main content

Hírolvasó

Bugtraq: Re: Re: IIS5.1 Directory Authentication Bypass by using ?:$I30:$Index_Allocation?

SecurityFocus Vulnerabilities - 43 perc 13 másodperc
Re: Re: IIS5.1 Directory Authentication Bypass by using ?:$I30:$Index_Allocation?
Kategóriák: Sebezhetőségek

Bugtraq: VUPEN Security Research - Google Chrome Focus Processing Memory Corruption Vulnerability (VUPEN-SR-2010-249)

SecurityFocus Vulnerabilities - 43 perc 13 másodperc
VUPEN Security Research - Google Chrome Focus Processing Memory Corruption Vulnerability (VUPEN-SR-2010-249)
Kategóriák: Sebezhetőségek

Bugtraq: [SECURITY] [DSA-2102-1] New barnowl packages fix arbitrary code execution

SecurityFocus Vulnerabilities - 43 perc 13 másodperc
[SECURITY] [DSA-2102-1] New barnowl packages fix arbitrary code execution
Kategóriák: Sebezhetőségek

Bugtraq: [ MDVSA-2010:170 ] wget

SecurityFocus Vulnerabilities - 43 perc 13 másodperc
[ MDVSA-2010:170 ] wget
Kategóriák: Sebezhetőségek

More rss feeds from SecurityFocus

SecurityFocus Vulnerabilities - 43 perc 13 másodperc
News, Infocus, Columns, Vulnerabilities, Bugtraq ...
Kategóriák: Sebezhetőségek

Bugtraq: [security bulletin] HPSBMA02572 SSRT100082 rev.1 - HP Operations Agent Running on Windows, Local Elevation of Privileges and Remote Execution of Arbitrary Code

SecurityFocus Vulnerabilities - 2010, szeptember 3 - 20:30
[security bulletin] HPSBMA02572 SSRT100082 rev.1 - HP Operations Agent Running on Windows, Local Elevation of Privileges and Remote Execution of Arbitrary Code
Kategóriák: Sebezhetőségek

Bugtraq: {PRL} Novell Netware OpenSSH Remote Stack Overflow

SecurityFocus Vulnerabilities - 2010, szeptember 3 - 18:00
{PRL} Novell Netware OpenSSH Remote Stack Overflow
Kategóriák: Sebezhetőségek

Bugtraq: Vulnerabilities in CMS WebManager-Pro

SecurityFocus Vulnerabilities - 2010, szeptember 3 - 18:00
Vulnerabilities in CMS WebManager-Pro
Kategóriák: Sebezhetőségek

Bugtraq: [ MDVSA-2010:169 ] mozilla-thunderbird

SecurityFocus Vulnerabilities - 2010, szeptember 3 - 18:00
[ MDVSA-2010:169 ] mozilla-thunderbird
Kategóriák: Sebezhetőségek

Bugtraq: [USN-982-1] Wget vulnerability

SecurityFocus Vulnerabilities - 2010, szeptember 3 - 18:00
[USN-982-1] Wget vulnerability
Kategóriák: Sebezhetőségek

CVE-2010-2954

National Vulnerability Database - 2010, szeptember 3 - 00:00
The irda_bind function in net/irda/af_irda.c in the Linux kernel before 2.6.36-rc3-next-20100901 does not properly handle failure of the irda_open_tsap function, which allows local users to cause a denial of service (NULL pointer dereference and panic) and possibly have unspecified other impact via multiple unsuccessful calls to bind on an AF_IRDA (aka PF_IRDA) socket.
Kategóriák: Sebezhetőségek

CVE-2010-2532

National Vulnerability Database - 2010, szeptember 3 - 00:00
** DISPUTED ** lxsession-logout in lxsession in LXDE, as used on SUSE openSUSE 11.3 and other platforms, does not lock the screen when the Suspend or Hibernate button is pressed, which might make it easier for physically proximate attackers to access an unattended laptop via a resume action. NOTE: there is no general agreement that this is a vulnerability, because separate control over locking can be an equally secure, or more secure, behavior in some threat environments.
Kategóriák: Sebezhetőségek

CVE-2010-2240

National Vulnerability Database - 2010, szeptember 3 - 00:00
The do_anonymous_page function in mm/memory.c in the Linux kernel before 2.6.27.52, 2.6.32.x before 2.6.32.19, 2.6.34.x before 2.6.34.4, and 2.6.35.x before 2.6.35.2 does not properly separate the stack and the heap, which allows context-dependent attackers to execute arbitrary code by writing to the bottom page of a shared memory segment, as demonstrated by a memory-exhaustion attack against the X.Org X server.
Kategóriák: Sebezhetőségek

CVE-2010-2226

National Vulnerability Database - 2010, szeptember 3 - 00:00
The xfs_swapext function in fs/xfs/xfs_dfrag.c in the Linux kernel before 2.6.35 does not properly check the file descriptors passed to the SWAPEXT ioctl, which allows local users to leverage write access and obtain read access by swapping one file into another file.
Kategóriák: Sebezhetőségek

CVE-2010-1507

National Vulnerability Database - 2010, szeptember 3 - 00:00
WebYaST in yast2-webclient in SUSE Linux Enterprise (SLE) 11 on the WebYaST appliance uses a fixed secret key that is embedded in the appliance's image, which allows remote attackers to spoof session cookies by leveraging knowledge of this key.
Kategóriák: Sebezhetőségek

CVE-2010-1325

National Vulnerability Database - 2010, szeptember 3 - 00:00
Cross-site request forgery (CSRF) vulnerability in the apache2-slms package in SUSE Lifecycle Management Server (SLMS) 1.0 on SUSE Linux Enterprise (SLE) 11 allows remote attackers to hijack the authentication of unspecified victims via vectors related to improper parameter quoting. NOTE: some sources report that this is a vulnerability in a product named "Apache SLMS," but that is incorrect.
Kategóriák: Sebezhetőségek

Vuln: Icarus 'PGN' File Remote Stack Buffer Overflow Vulnerability

SecurityFocus Vulnerabilities - 2010, szeptember 3 - 00:00
Icarus 'PGN' File Remote Stack Buffer Overflow Vulnerability
Kategóriák: Sebezhetőségek

Vuln: HP-UX Software Distributor Unspecified Local Privilege Escalation Vulnerability

SecurityFocus Vulnerabilities - 2010, szeptember 3 - 00:00
HP-UX Software Distributor Unspecified Local Privilege Escalation Vulnerability
Kategóriák: Sebezhetőségek

Vuln: Joomla! TPDugg Component 'id' Parameter SQL Injection Vulnerability

SecurityFocus Vulnerabilities - 2010, szeptember 3 - 00:00
Joomla! TPDugg Component 'id' Parameter SQL Injection Vulnerability
Kategóriák: Sebezhetőségek

CVE-2010-3212

National Vulnerability Database - 2010, szeptember 3 - 00:00
SQL injection vulnerability in index.php in Seagull 0.6.7 and earlier allows remote attackers to execute arbitrary SQL commands via the frmQuestion parameter in a retrieve action, in conjunction with a user/password PATH_INFO.
Kategóriák: Sebezhetőségek
Tartalom átvétel