This document discusses the security implications of native IPv6 support and IPv6 transition/co-existence technologies on "IPv4-only" networks, and describes possible mitigations for the aforementioned issues.
4c30e6e9159627379ef776d8274b192d
It was discovered that the fix for CVE-2012-2110 released on 19 Apr 2012 was not sufficient to correct the issue for OpenSSL 0.9.8.
a48249934ce6fc947ab668fb05a6f779
The Joomla Video Gallery component suffers from local file inclusion and remote SQL injection vulnerabilities.
687964eb7effc24d4e14e55641adefe4
PHP Ticket System Beta 1 suffers from a remote SQL injection vulnerability.
de9c3151481d4ed277bda7277f2c0775
An undocumented backdoor account exists within all released versions of RuggedCom's Rugged Operating System (ROS®). The username for the account, which cannot be disabled, is "factory" and its password is dynamically generated based on the device's MAC address. Multiple attempts have been made in the past 12 months to have this backdoor removed and customers notified. Exploit included.
e51be3bac64f7905511a5067a62595a4
BeyondCHM version 1.1 suffers from a buffer overflow vulnerability when handling a specially crafted chm file. Proof of concept included.
34685c0f1589495d901a6187bb5dac85
HP Security Bulletin HPSBUX02768 SSRT100664 - Potential security vulnerabilities have been identified with HP-UX CIFS-Server (Samba). The vulnerabilities could be exploited remotely to create a cross site request forgery (CSRF) or create a Denial of Service (DoS). Revision 1 of this advisory.
77491bb5f757309ac5f2d24c865aac48
Plown is a security scanner for Plone CMS. Although Plone has the best security track record of any major CMS and is considered highly secure, misconfigurations and weak passwords might enable system break-ins. Plown has been developed to ease the discovery of usernames and passwords, and act as an assistant to system administrators to strengthen their Plone sites.
03f2edb27ed5c9b3a25014a10e23f8a1
CMS By Hispanic Digital Network, Inc. suffers from cross site scripting and remote SQL injection vulnerabilities.
5458913946de11ba54b7ea5fea41d190
Whitepaper called Intro to SQL Injection and Countermeasures.
68db188cf8aab372f9306915334ea57d
Ettercap version 0.7.4.1 suffers from a DLL hijacking vulnerability.
ee04c8868d7c31f15510cc6477ba930a
Vulnerability Lab has produced a large amount of cross site scripting payloads that can be used with fuzzers for automated scanning, etc.
a1bef07ff4bd5d4358baf87d3e3c349f
Website Deisgn Cardiff suffers from a remote SQL injection vulnerability.
5b98be3959d705d9134906b2cb8529ff
Mitsubishi.ru suffers from cross site scripting and remote SQL injection vulnerabilities.
35ecbdc9a41ce2eaea6f72391cec7b2d
Secunia Security Advisory - Luigi Auriemma has discovered two vulnerabilities in NET-i viewer, which can be exploited by malicious people to compromise a user's system.
531ab7bf438b2c2dd18ad3e370796afc
Secunia Security Advisory - Luigi Auriemma has discovered two vulnerabilities in NET-i viewer, which can be exploited by malicious people to compromise a user's system.
1fd50063453cafb0e1303c3063064481
Secunia Security Advisory - Two vulnerabilities have been reported in multiple products, which can be exploited by malicious people to compromise a user's system.
a76239a79f58ce7bec5976e603952095
Secunia Security Advisory - SUSE has issued an update for the kernel. This fixes multiple vulnerabilities, which can be exploited by malicious, local users and malicious, local users in a guest virtual machine to cause a DoS (Denial of Service) and gain escalated privileges and by malicious people to cause a DoS.
13be216706215cec3e7b0c1b04206e93
Secunia Security Advisory - SUSE has issued an update for SUSE Manager. This fixes a vulnerability, which can be exploited by malicious users to compromise a vulnerable system.
3bc5c99fe76c742d87272e37d1052045
Secunia Security Advisory - HP has issued an update for CIFS Server in HP-UX. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site request forgery attacks.
53ad2f2bc751b0018b6a33c1b421c913
Secunia Security Advisory - SUSE has issued an update for freetype2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library.
cf1363966d699cb2ff62828914a80809
Secunia Security Advisory - Multiple vulnerabilities have been reported in Asterisk and Asterisk Business Edition, which can be exploited by malicious users to cause a DoS (Denial of Service), bypass certain security restrictions, and compromise a vulnerable system.
eaaa42dae33d524798f1d820466e4b16
Secunia Security Advisory - Mavituna Security has discovered two vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
7ec15d90726c507e355a8ea00014c8b8
Secunia Security Advisory - Mavituna Security has discovered a vulnerability in Exponent CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
c2ce7e481ede7c188848830edea0ffad
Secunia Security Advisory - Ubuntu has issued an update for mysql. This fixes multiple vulnerabilities, where one has unknown impacts and the others can be exploited by malicious users to cause a DoS (Denial of Service).
1d65fcdf0425acdeaa7756fc5eaa20eb