seeing is believing
Showing 1 - 25 of 492 RSS Feed

Files

Cisco Security Advisory 20120530-iosxr
Posted May 31, 2012
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - Cisco IOS XR Software contains a vulnerability when handling crafted packets that may result in a denial of service condition. The vulnerability only exists on Cisco 9000 Series Aggregation Services Routers (ASR) Route Switch Processor (RSP440) and Cisco Carrier Routing System (CRS) Performance Route Processor (PRP). The vulnerability is a result of improper handling of crafted packets and could cause the route processor, which processes the packets, to be unable to transmit packets to the fabric. Cisco has released free software updates that address this vulnerability.

tags | advisory, denial of service
systems | cisco, osx
MD5 | afef98e7588e0171291bcdc3ea8f1cc5
Drupal Filedepot 6.x Access Bypass
Posted May 31, 2012
Authored by dolu | Site drupal.org

Drupal Filedepot third party module version 6.x suffers from an access bypass vulnerability.

tags | advisory, bypass
MD5 | 4db6713d10ffecf12f55290cf3561e80
.NET 4 Remote Code Execution
Posted May 31, 2012
Authored by James Forshaw, Context Information Security Ltd

.NET versions 1.0 through 4 suffer from a remote code execution vulnerability.

tags | advisory, remote, code execution
advisories | CVE-2012-0160, CVE-2012-0161
MD5 | fde464f2676d6b0c6ba962260016eae4
Drupal Counter 6.x SQL Injection
Posted May 31, 2012
Authored by Balazs Dianiska | Site drupal.org

Drupal Counter third party module version 6.x suffers from a remote SQL injection vulnerability.

tags | advisory, remote, sql injection
MD5 | edecf485a3ca16ae22887dcfa6a7f01a
Drupal Mobile Tools 6.x Cross Site Scripting
Posted May 31, 2012
Authored by Justin C. Klein Keane | Site drupal.org

Drupal Mobile Tools third party module version 6.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 06318f25f07e30e65bfb57fd9a78360c
Drupal Comment Moderation 6.x Cross Site Request Forgery
Posted May 30, 2012
Authored by Dylan Wilder-Tack, Tim Wood | Site drupal.org

Drupal Comment Moderation third party module version 6.x suffers from a cross site request forgery vulnerability.

tags | advisory, csrf
MD5 | 40d56ed7ea8f4a6948da8a283a611eb6
Drupal Amadou 6.x Cross Site Scripting
Posted May 30, 2012
Authored by Peter Wolanin, Matt Chapman | Site drupal.org

Drupal Amadou third party theme version 6.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 1bdcad999e5c211784a48b9d6895e9c9
FreeBSD Security Advisory - Incorrect crypt() Hashing
Posted May 30, 2012
Site security.freebsd.org

FreeBSD Security Advisory - There is a programming error in the DES implementation used in crypt() when handling input which contains characters that can not be represented with 7-bit ASCII. When the input contains characters with only the most significant bit set (0x80), that character and all characters after it will be ignored.

tags | advisory
systems | freebsd
advisories | CVE-2012-2143
MD5 | e4d4e2b2811a3cf4254d7ba2637b5c40
Mapserver 3.0.4 For Windows Remote Code Execution
Posted May 30, 2012
Authored by Mike Arnold

Mapserver for Windows versions 3.0.4 and below down to 2.0 suffer from a remote code execution vulnerability.

tags | advisory, remote, code execution
systems | windows
advisories | CVE-2012-2950
MD5 | e1a754afe3446ca1d2988baec2447e8b
Red Hat Security Advisory 2012-0702-01
Posted May 30, 2012
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2012-0702-01 - The IBM Java SE version 1.4.2 release includes the IBM Java 1.4.2 Runtime Environment and the IBM Java 1.4.2 Software Development Kit. This update fixes several vulnerabilities in the IBM Java 1.4.2 Runtime Environment and the IBM Java 1.4.2 Software Development Kit.

tags | advisory, java, vulnerability
systems | linux, redhat
advisories | CVE-2011-3563, CVE-2012-0499, CVE-2012-0502, CVE-2012-0503, CVE-2012-0505, CVE-2012-0506
MD5 | dd5623568386d8cf314e3a9d3116df67
Mandriva Linux Security Advisory 2012-085
Posted May 30, 2012
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2012-085 - Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7.0.23 uses an inefficient approach for handling parameters, which allows remote attackers to cause a denial of service via a request that contains many parameters and parameter values, a different vulnerability than CVE-2011-4858. The updated packages have been patched to correct this issue.

tags | advisory, remote, denial of service
systems | linux, mandriva
advisories | CVE-2012-0022
MD5 | 98864e82504c2072e99d71a60a50b166
Ubuntu Security Notice USN-1455-1
Posted May 30, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1455-1 - A flaw was found in the Linux kernel's KVM (Kernel Virtual Machine) virtual cpu setup. An unprivileged local user could exploit this flaw to crash the system leading to a denial of service. Steve Grubb reported a flaw with Linux fscaps (file system base capabilities) when used to increase the permissions of a process. For application on which fscaps are in use a local attacker can disable address space randomization to make attacking the process with raised privileges easier. Various other issues were also addressed.

tags | advisory, denial of service, kernel, local
systems | linux, ubuntu
advisories | CVE-2012-1601, CVE-2012-2123, CVE-2012-1601, CVE-2012-2123
MD5 | d6fc1f7b6a189673c09cdefd2b89e5fe
Secunia Security Advisory 49251
Posted May 30, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability with an unknown impact has been reported in Restlet Framework.

tags | advisory
MD5 | 52f5c538a398f7098ea8f417dba29cc3
Secunia Security Advisory 49310
Posted May 30, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Horde have acknowledged multiple vulnerabilities in Horde Groupware, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | d02a63c50a9fb3a3a1e3666b96ba404b
Secunia Security Advisory 49321
Posted May 30, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Horde have acknowledged multiple vulnerabilities in Horde Groupware Webmail Edition, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | 1939ce7ab65f8d74a6783fd2f0e012d1
Secunia Security Advisory 49303
Posted May 30, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability
MD5 | 8614d7464f022d3fe8be0d333191b0c1
Secunia Security Advisory 49337
Posted May 30, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for mailman. This fixes a security issue, which can be exploited by malicious, local users to disclose certain sensitive information.

tags | advisory, local
systems | linux, suse
MD5 | 32dc3b024cecf6b20354de647e026c2e
Secunia Security Advisory 49278
Posted May 30, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for chromium and v8. This fixes multiple vulnerabilities, where some have unknown impacts and others can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.

tags | advisory, vulnerability
systems | linux, suse
MD5 | 9840c416e4d24d63e936f76652c48e79
Secunia Security Advisory 49307
Posted May 30, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for wireshark. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability
systems | linux, suse
MD5 | b54c29f0f283f482fac820f524e7c939
Secunia Security Advisory 49320
Posted May 30, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in the ALO EasyMail Newsletter plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | 977f758d62abe66c1b175dd66dc9f2fe
Secunia Security Advisory 49335
Posted May 30, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some security issues and a vulnerability have been reported in AutoFORM PDM Archive, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to conduct cross-site request forgery attacks.

tags | advisory, csrf
MD5 | bb0998c6b790acf63747695606765a6d
Secunia Security Advisory 49324
Posted May 30, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for openssl. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) of the application using the library.

tags | advisory, denial of service
systems | linux, redhat
MD5 | 8f0f504853f466dca6ff67ce7bfdfdc6
Secunia Security Advisory 49227
Posted May 30, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in the BrowserID module for Drupal, which can be exploited by malicious people to conduct spoofing attacks.

tags | advisory, spoof
MD5 | 3d0cad85e134135b61345f70f36e44eb
Secunia Security Advisory 49333
Posted May 30, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - IBM has acknowledged multiple vulnerabilities in IBM Java, which can be exploited by malicious users to disclose certain information and by malicious people to disclose potentially sensitive information, hijack a user's session, conduct DNS cache poisoning attacks, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.

tags | advisory, java, denial of service, vulnerability
MD5 | 29f822f571229e114ea9572e1553e835
Asterisk Project Security Advisory - AST-2012-008
Posted May 29, 2012
Authored by Matt Jordan | Site asterisk.org

Asterisk Project Security Advisory - A Null-pointer dereference has been identified in the SCCP (Skinny) channel driver of Asterisk. When an SCCP client closes its connection to the server, a pointer in a structure is set to Null. If the client was not in the on-hook state at the time the connection was closed, this pointer is later dereferenced. A remote attacker with a valid SCCP ID can can use this vulnerability by closing a connection to the Asterisk server in certain call states (e.g. "Off hook") to crash the server. Successful exploitation of this vulnerability would result in termination of the server, causing denial of service to legitimate users.

tags | advisory, remote, denial of service
advisories | CVE-2012-2948
MD5 | e5bbb9c38534065f766274d2c055497d
Page 1 of 20
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Domino's Pizza Delivers User Details To Spammers
Posted Oct 18, 2017

tags | headline, privacy, email, spam, fraud
Adobe Patches Zero-Day Used To Plant Gov't Spying Software
Posted Oct 17, 2017

tags | headline, hacker, government, usa, flaw, cyberwar, adobe, zero day, nsa
UK TV Drama About North Korea Hit By Hackers
Posted Oct 17, 2017

tags | headline, hacker, government, britain, cyberwar, korea
Russia Tweaks Telegram With Tiny Fine For Decryption Denial
Posted Oct 17, 2017

tags | headline, government, privacy, russia, cryptography
Never Mind The WPA2 Drama... Details Emerge Of TPM Key Fail
Posted Oct 17, 2017

tags | headline, wireless, flaw, cryptography
Millions Of High Security Crypto Keys Crippled By Newly Discovered Flaw
Posted Oct 16, 2017

tags | headline, flaw, cryptography
Pizza Hut Latest To Be Hit In Card Data Breach
Posted Oct 16, 2017

tags | headline, hacker, privacy, bank, cybercrime, data loss, fraud
Artificial Intelligence - Hype, Hope, And Fear
Posted Oct 16, 2017

tags | headline, botnet, cyberwar
KRACK Attacks: Breaking WPA2 By Forcing Nonce Reuse
Posted Oct 16, 2017

tags | headline, privacy, phone, wireless, flaw, cryptography
Even Pokemon Go Was Used By Russia To Meddle In The Election
Posted Oct 13, 2017

tags | headline, government, usa, russia, cyberwar
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close