SonicWALL EMail Security version 7.3.5 suffers from multiple cross site scripting and script insertion vulnerabilities.
55e711f63c0524475898a301478326f8
Axis VoIP Manager version 2.1.5.7 suffers from multiple cross site scripting vulnerabilities.
bb1651eba9ed1f3783f7b9d68775ee4a
Entropy Broker is an infrastructure for distributing cryptographically secure random numbers (entropy data) from one or more servers to one or more clients. Entropy Broker allows you to distribute entropy data (random values) to /dev/random devices from other systems (real servers or virtualised systems). It helps preventing that the /dev/random device gets depleted; an empty /dev/random-device can cause programs to hang (waiting for entropy data to become available). This is useful for systems that need to generate encryption keys, run VPN software or run a casino website.
3b28e4bb24529bf31687b2e60a685b94
HP Security Bulletin HPSBMU02813 SSRT100712 - A potential security vulnerability has been identified with HP Operations Orchestration. The vulnerability could be remotely exploited to allow execution or arbitrary code. Revision 1 of this advisory.
fcb5791847fe9882ece3d9096c257b19
Symantec Messaging Gateway version 9.5.3-3 suffers from an out-of-band stored cross site scripting vulnerability via email. Unfortunately, as usual, the NCC group are withholding any details for three months.
3975238671a8b47e5bc448e219ebfabe
Symantec Messaging Gateway version 9.5.3-3 suffers from an authenticated arbitrary file download vulnerability. Unfortunately, as usual, the NCC group are withholding any details for three months.
2b91c1f139c0f6dcdec40664ba5dac47
Symantec Messaging Gateway version 9.5.3-3 suffers from an unauthorized ssh access vulnerability. Unfortunately, as usual, the NCC group are withholding any details for three months.
37a236641d4118ea0aeb70c6520b9259
Symantec Messaging Gateway version 9.5.3-3 suffers from a cross site request forgery vulnerability. Unfortunately, as usual, the NCC group are withholding any details for three months.
8e6e15cf34e3afa61786045123624764
Apple Security Advisory 2012-09-17-1 - Apple Remote Desktop 3.5.3 is now available and addresses an information disclosure vulnerability.
e1d4fd3ebe5a9ac1c24c43caf7ad8df9
Fortigate UTM WAF Appliance suffers from multiple cross site scripting vulnerabilities.
10c1336c6ca4cf59ab6eb2e558626699
This is a brief whitepaper that discusses DTMF input processing and easy denial of service attack via phone lines against banking systems.
525b16fb2baa86974f8a1b50afe7a536
WordPress version 3.4.2 appears to suffer from user enumeration and path disclosure vulnerabilities.
fa1b6660fa3b421b3ce956098eb9018e
Symantec Messaging Gateway version 9.5.3-3 suffers from an unauthenticated detailed version disclosure vulnerability. Unfortunately, as usual, the NCC group are withholding any details for three months.
367e6d7ecd5e249203c321bd413cfb98
Avcmedia CMS suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
d77942ad7fa7ca9099fb1c8b431d5581
vBulletin version 4.1.12 suffers from a remote SQL injection vulnerability in blog_plugin_useradmin.php.
9c18fe314c155fbef6b23042cec8d89a
A simple request to WordPress discloses a given author's name in the title when you enumerate values for author=.
9bab0040ff8d75c5e337ee930efab14a
Secunia Security Advisory - A security issue has been reported in CoSoSys Endpoint Protector, which can be exploited by malicious people to conduct brute-force attacks.
ad95087e68a6513b51bd7cfeb20e0855
Secunia Security Advisory - Red Hat has issued an update for spice-gtk. This fixes a vulnerability, which can be exploited by malicious, local users to potentially gain escalated privileges.
1725a4aca9725b2f4dc4b973741c34f7
Secunia Security Advisory - Two vulnerabilities have been reported in Jenkins, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to conduct cross-site scripting attacks.
013ad8b2f6fbed84228104d89c6578fe
Secunia Security Advisory - A vulnerability has been reported in OptiPNG, which can be exploited by malicious people to potentially compromise a user's system.
1b8ffa36058b8f25e4851dc181e70fba
Secunia Security Advisory - A vulnerability has been reported in Microsoft Internet Explorer, which can be exploited by malicious people to compromise a user's system.
2e0eda4a8eaca0fe42bba7052f063486
Secunia Security Advisory - A vulnerability has been reported in Oracle Business Transaction Management, which can be exploited by malicious people to compromise a vulnerable system.
57d45f6891cd7e3b050bc8927def0a6d
Secunia Security Advisory - SUSE has issued an update for xen. This fixes multiple vulnerabilities, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service) and potentially gain escalated privileges.
5b8cef1a5b2bab266b87728093cd0175
Secunia Security Advisory - A weaknesses and some security issues have been reported in Moodle, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to disclose certain system information and bypass certain security restrictions.
1417d5f2446c8bcba56ab57920c9e820
Secunia Security Advisory - SUSE has issued an update for inn. This fixes a vulnerability, which can be exploited by malicious people to manipulate certain data.
0d13c7c9431de8b90257018607b08545