BugTraq Mode:
(Page 447 of 1747)  < Prev  442 443 444 445 446 447 448 449 450 451 452  Next >
[USN-1086-1] Linux kernel (EC2) vulnerabilities 2011-03-08
Kees Cook (kees ubuntu com)
===========================================================
Ubuntu Security Notice USN-1086-1 March 08, 2011
linux-ec2 vulnerabilities
CVE-2010-4076, CVE-2010-4077, CVE-2010-4158, CVE-2010-4163,
CVE-2010-4175
===========================================================

A security issue af

[ more ]  [ reply ]
[ MDVSA-2011:044 ] wireshark 2011-03-08
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2011:044
http://www.mandriva.com/security/
______________________________________________________________________

[ more ]  [ reply ]
NSOADV-2011-003: Majordomo2 'help' Command Directory Traversal (Patch Bypass) 2011-03-08
NSO Research (nso-research sotiriu de)
______________________________________________________________________
-------------------------- NSOADV-2011-003 ---------------------------

Majordomo2 'help' Command Directory Traversal (Patch Bypass)
______________________________________________________________________
____________________

[ more ]  [ reply ]
AthCon 2011 Announcement 2011-03-09
kyprianos athcon org
AthCon 2011 has been scheduled for 2-3 June 2011.

The Speakers have been selected, the Schedule is ready and are both published on AthCon's website.

This year's AthCon holds a surprise event. A documentary about Hacking in Greece...

For more information please visit http://www.athcon.org

Regard

[ more ]  [ reply ]
[security bulletin] HPSBUX02641 SSRT100412 rev.1 - HP OpenView Network Node Manager (OV NNM) for HP-UX, Linux, Solaris, and Windows running Java, Remote Denial of Service (DoS) 2011-03-08
security-alert hp com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c02738573
Version: 1

HPSBUX02641 SSRT100412 rev.1 - HP OpenView Network Node Manager (OV NNM) for HP-UX, Linux, Solaris, and Windows running Java, Remote Denial of Service (DoS)

NOTICE: The infor

[ more ]  [ reply ]
[HITB-Announce] HITB Magazine Call for Articles 2011-03-08
Hafez Kamal (aphesz hackinthebox org)
HITB Magazine is currently seeking submissions for our next issue. If you have something interesting to write, please drop us an email at: editorial (at) hackinthebox (dot) org [email concealed]

TOPICS

Topics of interest include, but are not limited to the following:

* New Attack and Defense Techniques
* Reverse Code Enginee

[ more ]  [ reply ]
[ MDVSA-2011:043 ] libtiff 2011-03-08
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2011:043
http://www.mandriva.com/security/
______________________________________________________________________

[ more ]  [ reply ]
Cross-Site Scripting vulnerabilities in Icinga 2011-03-08
sschurtz t-online de
Advisory: Cross-Site Scripting vulnerabilities in Icinga
Advisory ID: SSCHADV2011-001
Author: Stefan Schurtz
Affected Software: Successfully tested on: icinga-1.3.0 / icinga-1.2.1
Vendor URL: http://www.icinga.org
Vendor Status: fixed csv export link to mak

[ more ]  [ reply ]
HTB22869: SQL Injection in 1 Flash Gallery wordpress plugin 2011-03-08
advisory htbridge ch
Vulnerability ID: HTB22869
Reference: http://www.htbridge.ch/advisory/sql_injection_in_1_flash_gallery_wordpre
ss_plugin.html
Product: 1 Flash Gallery wordpress plugin
Vendor: 1plugin.com ( http://1plugin.com/ )
Vulnerable Version: 0.2.5
Vendor Notification: 22 February 2011
Vulnerability Type: SQL

[ more ]  [ reply ]
HTB22867: XSS in PhotoSmash wordpress plugin 2011-03-08
advisory htbridge ch
Vulnerability ID: HTB22867
Reference: http://www.htbridge.ch/advisory/xss_in_photosmash_wordpress_plugin.html
Product: PhotoSmash wordpress plugin
Vendor: Byron Bennett ( http://smashly.net/ )
Vulnerable Version: 1.0.1
Vendor Notification: 22 February 2011
Vulnerability Type: XSS (Cross Site Scri

[ more ]  [ reply ]
HTB22868: XSS in 1 Flash Gallery wordpress plugin 2011-03-08
advisory htbridge ch
Vulnerability ID: HTB22868
Reference: http://www.htbridge.ch/advisory/xss_in_1_flash_gallery_wordpress_plugin.
html
Product: 1 Flash Gallery wordpress plugin
Vendor: 1plugin.com ( http://1plugin.com/ )
Vulnerable Version: 0.2.5
Vendor Notification: 22 February 2011
Vulnerability Type: XSS (Cross Si

[ more ]  [ reply ]
HTB22870: SQL Injection in GRAND Flash Album Gallery wordpress plugin 2011-03-08
advisory htbridge ch
Vulnerability ID: HTB22870
Reference: http://www.htbridge.ch/advisory/sql_injection_in_grand_flash_album_galle
ry_wordpress_plugin.html
Product: GRAND Flash Album Gallery wordpress plugin
Vendor: Sergey Pasyuk ( http://codeasily.com/ )
Vulnerable Version: 0.55
Vendor Notification: 22 February 2011

[ more ]  [ reply ]
HTB22873: XSS in Inline Gallery wordpress plugin 2011-03-08
advisory htbridge ch
Vulnerability ID: HTB22873
Reference: http://www.htbridge.ch/advisory/xss_in_inline_gallery_wordpress_plugin.h
tml
Product: Inline Gallery wordpress plugin
Vendor: m0n5t3r ( http://m0n5t3r.info/work/wordpress-plugins/inline-gallery/ )
Vulnerable Version: 0.3.9
Vendor Notification: 22 February 2011

[ more ]  [ reply ]
HTB22871: File Content Disclosure in GRAND Flash Album Gallery wordpress plugin 2011-03-08
advisory htbridge ch
Vulnerability ID: HTB22871
Reference: http://www.htbridge.ch/advisory/file_content_disclosure_in_grand_flash_a
lbum_gallery_wordpress_plugin.html
Product: GRAND Flash Album Gallery wordpress plugin
Vendor: Sergey Pasyuk ( http://codeasily.com/ )
Vulnerable Version: 0.55
Vendor Notification: 22 Febr

[ more ]  [ reply ]
HTB22872: Path disclosure in Cool Video Gallery wordpress plugin 2011-03-08
advisory htbridge ch
Vulnerability ID: HTB22872
Reference: http://www.htbridge.ch/advisory/path_disclosure_in_cool_video_gallery_wo
rdpress_plugin.html
Product: Cool Video Gallery wordpress plugin
Vendor: Praveen Rajan ( http://wordpress.org/extend/plugins/cool-video-gallery/ )
Vulnerable Version: 1.3
Vendor Notificatio

[ more ]  [ reply ]
VMSA-2011-0004 VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm. 2011-03-08
VMware Security Team (security vmware com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------

VMware Security Advisory

Advisory ID: VMSA-2011-0004
Synopsis: VMware ESX/ESXi SLPD denial of service vulnerability
and ESX

[ more ]  [ reply ]
Plaintext injection in STARTTLS (multiple implementations) 2011-03-07
Wietse Venema (wietse porcupine org)
This is a writeup about a flaw that I found recently, and that
existed in multiple implementations of SMTP (Simple Mail Transfer
Protocol) over TLS (Transport Layer Security) including my Postfix
open source mailserver. I give an overview of the problem and its
impact, how to find out if a server is

[ more ]  [ reply ]
[ MDVSA-2011:042 ] mozilla-thunderbird 2011-03-07
security mandriva com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDVSA-2011:042
http://www.mandriva.com/security/
______________________________________________________________________

[ more ]  [ reply ]
[TEHTRI-Security] Security and iPhone iOS 4.3 Personal Hotspot feature 2011-03-07
Laurent OUDOT at TEHTRI-Security (laurent oudot-ml tehtri-security com)

Gents,

Here is a tiny mail dealing with the new feature of the iPhone 4 with
iOS 4.3, which turns it into a Wireless Hotspot in order to share your
3G session through a WLAN.

We wanted to share a quick geeky and security overview of this awesome
functionality.

Basically, we only found one tiny v

[ more ]  [ reply ]
[USN-1085-1] tiff vulnerabilities 2011-03-07
Marc Deslauriers (marc deslauriers canonical com)
===========================================================
Ubuntu Security Notice USN-1085-1 March 07, 2011
tiff vulnerabilities
CVE-2010-2482, CVE-2010-2483, CVE-2010-2595, CVE-2010-2597,
CVE-2010-2598, CVE-2010-2630, CVE-2010-3087, CVE-2011-0191,
CVE-2011-0192
=========================

[ more ]  [ reply ]
[USN-1084-1] avahi vulnerability 2011-03-07
Marc Deslauriers (marc deslauriers canonical com)
===========================================================
Ubuntu Security Notice USN-1084-1 March 07, 2011
avahi vulnerability
CVE-2011-1002
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 8.04 LTS
Ubuntu 9.10

[ more ]  [ reply ]
Kodak InSite Login Page Cross-Site Scripting 2011-03-07
vulns dionach com
Class Input Validation Error

CVE

Remote Yes

Local No

Published Feb 14 2011 08:55AM

Credit Dionach

Vulnerable Kodak InSite 5.5.2

Kodak InSite is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data.

An attacker may leverage this is

[ more ]  [ reply ]
InSite Troubleshooting Cross-Site Scripting 2011-03-07
vulns dionach com
Class Input Validation Error

CVE

Remote Yes

Local No

Published Feb 14 2011 08:55AM

Credit Dionach

Vulnerable Kodak InSite 5.5.2

Kodak InSite is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data.

An attacker may leverage this is

[ more ]  [ reply ]
RECON 2011 CFP 2011-03-07
hfortier recon cx
/*
+ + + +
+ + +
+ +
\ /
+ _ - _+_ - ,__
_=. .:.

[ more ]  [ reply ]
[SECURITY] [DSA 2184-1] isc-dhcp security update 2011-03-05
Florian Weimer (fw deneb enyo de)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-2184-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Florian Weimer
March 05, 2011

[ more ]  [ reply ]
[SECURITY] [DSA 2183-1] nbd security update 2011-03-05
Raphael Geissert (geissert debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-2183-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Raphael Geissert
March 04, 2011

[ more ]  [ reply ]
[DCA-2011-0009] Weborf 0.12.4 Denial-of-Service 2011-03-04
Rodrigo Escobar (ipax dclabs com br)
[Discussion]

- DcLabs Security Research Group advises about the following vulnerability(ies):

[Software]

- Weborf-0.12.4 (Denial-of-Service)

[Vendor Product Description]

- Weborf is a lightweight webserver designed to rapidly share
directories. Runs on POSIX systems.

- Source: http://galileo.d

[ more ]  [ reply ]
XSS in CubeCart <= 2.0.7 2011-03-06
Michele Spagnuolo (mikispag gmail com)
CubeCart (http://www.cubecart.com) up to version 2.0.7 inclusive are vulnerable to a XSS in sale_cat.php.

http://www.example.com/storedirectory/sale_cat.php/";<script>alert(docum
ent.cookie)</script>

[ more ]  [ reply ]
[DCA-2011-0006] Hiawatha 7.4 - Denial-of-Service 2011-03-04
Rodrigo Escobar (ipax dclabs com br)
[Discussion]
- DcLabs Security Research Group advises about the following vulnerability(ies):

[Software]
- Hiawatha WebServer 7.4

[Vendor Product Description]
- Hiawatha is an open source webserver with a focus on security. I
started Hiawatha in January 2002. Before that time, I had used several
w

[ more ]  [ reply ]
'Quick Polls' Local File Inclusion & Deletion Vulnerabilities (CVE-2011-1099) 2011-03-06
Mark Stanislav (mark stanislav gmail com)
'Quick Polls' Local File Inclusion & Deletion Vulnerabilities (CVE-2011-1099)
Mark Stanislav - mark.stanislav (at) gmail (dot) com [email concealed]

I. DESCRIPTION
---------------------------------------
Two vulnerabilities exist in 'Quick Polls' providing local file inclusion & local file deletion due to null-byte attacks ag

[ more ]  [ reply ]
(Page 447 of 1747)  < Prev  442 443 444 445 446 447 448 449 450 451 452  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus