The NASA Orion (Mars) website suffers from filter bypass and persistent cross site scripting vulnerabilities.
d6e231218cbfa4ae51582480cfebe4ad
OpenEMR versions 4.1.2(7) and below suffer from multiple remote SQL injection vulnerabilities.
f5a1a6caaa8d8207f92143b2089aedf7
VMware Security Advisory 2014-0012 - VMware vSphere product updates address a Cross Site Scripting issue, a certificate validation issue and security vulnerabilities in third-party libraries.
f36bc2e46b09054b56cf41449f829177
HP Security Bulletin HPSBGN03205 1 - A potential security vulnerability has been identified with HP Insight Remote Support Clients running SSLv3 which may impact WBEM, WS-MAN and WMI connections from monitored devices to a HP Insight Remote Support Central Management Server (CMS). This is the SSLv3 vulnerability known as "Padding Oracle on Downgraded Legacy Encryption" also known as "Poodle", which could be exploited remotely to allow disclosure of information. SSLv3 is enabled by default in all version 5 HP Insight Remote Support Clients. Revision 1 of this advisory.
d616a2661271c171262b03bade501297
HP Security Bulletin HPSBUX03218 SSRT101770 1 - Potential security vulnerabilities have been identified in the Java Runtime Environment (JRE) and the Java Developer Kit (JDK) running on HP-UX. These vulnerabilities could allow remote unauthorized access, disclosure of information, and other vulnerabilities. Revision 1 of this advisory.
bbb9a77e55c3648a6f1ca3ca0bd8d78d
The release of this advisory provides exploitation details in relation a weakness in the Linux ASLR implementation. The problem appears when the executable is PIE compiled and it has an address leak belonging to the executable. These details were obtained through the Packet Storm Bug Bounty program and are being released to the community.
a5d4f2cb712163a7ebbd72e95f1856ec
Proof of concept code that demonstrates an ASLR bypass of PIE compiled 64bit Linux.
9b3003328fe6cdd2b86f5a1bb5b63531