Posts under ‘Security’

HP OpenView NNM ovalarm.exe CGI Accept-Language Stack Overflow Vulnerability

Dec 9th, 2009
by invalid string.
No comments yet

Bugtraq: TPTI-09-12: HP OpenView NNM ovalarm.exe CGI Accept-Language Stack Overflow Vulnerability
TPTI-09-12: HP OpenView NNM ovalarm.exe CGI Accept-Language Stack Overflow Vulnerability
URL: http://www.securityfocus.com/archive/1/508355

HP OpenView NNM ovwebsnmpsrv.exe OVwSelection Stack Overflow Vulnerability

Dec 9th, 2009
by invalid string.
No comments yet

Bugtraq: TPTI-09-14: HP OpenView NNM ovwebsnmpsrv.exe OVwSelection Stack Overflow Vulnerability
TPTI-09-14: HP OpenView NNM ovwebsnmpsrv.exe OVwSelection Stack Overflow Vulnerability
URL: http://www.securityfocus.com/archive/1/508357

Symantec Multiple Products VRTSweb.exe Remote Code Execution Vulnerability

Dec 9th, 2009
by invalid string.
No comments yet

Bugtraq: ZDI-09-098: Symantec Multiple Products VRTSweb.exe Remote Code Execution Vulnerability
ZDI-09-098: Symantec Multiple Products VRTSweb.exe Remote Code Execution Vulnerability
URL: http://www.securityfocus.com/archive/1/508358

HP OpenView NNM snmpviewer.exe CGI Host Header Stack Overflow Vulnerability

Dec 9th, 2009
by invalid string.
No comments yet

Bugtraq: TPTI-09-13: HP OpenView NNM snmpviewer.exe CGI Host Header Stack Overflow Vulnerability
TPTI-09-13: HP OpenView NNM snmpviewer.exe CGI Host Header Stack Overflow Vulnerability
URL: http://www.securityfocus.com/archive/1/508356

ffmpeg

Dec 5th, 2009
by invalid string.
No comments yet

[ MDVSA-2009:297-1 ] ffmpeg
Posted by security on Dec 05
_______________________________________________________________________
Mandriva Linux Security Advisory MDVSA-2009:297-1
http://www.mandriva.com/security/
_______________________________________________________________________
Package : ffmpeg
Date : December 5, 2009
Affected: 2008.0
_______________________________________________________________________
Problem Description:
Vulnerabilities have been…
URL: http://seclists.org/fulldisclosure/2009/Dec/133

out of box scanner

Dec 5th, 2009
by invalid string.
No comments yet

Re: out of box scanner
Posted by Nathan Grandbois on Dec 04
John Bennett wrote:
John,
You might want to take a look at the WASC list here:
http://projects.webappsec.org/Web-Application-Security-Scanner-List
The thread is still under discussion on the webappsec mailing list.
_nathan
URL: http://seclists.org/pen-test/2009/Dec/5

Autodesk Maya Script Nodes Arbitrary Command Execution

Nov 23rd, 2009
by invalid string.
No comments yet

Bugtraq: CORE-2009-0910: Autodesk Maya Script Nodes Arbitrary Command Execution
CORE-2009-0910: Autodesk Maya Script Nodes Arbitrary Command Execution
URL: http://www.securityfocus.com/archive/1/508013

DoS vulnerability in Internet Explorer

Nov 10th, 2009
by invalid string.
No comments yet

Bugtraq: Re: DoS vulnerability in Internet Explorer
Re: DoS vulnerability in Internet Explorer
URL: http://www.securityfocus.com/archive/1/507759

Dark side of bookmarks

Nov 1st, 2009
by invalid string.
No comments yet

Dark side of bookmarks
Posted by MustLive on Nov 01
Hello participants of Full-Disclosure!
After my articles about different attacks via redirectors – Redirectors: the
phantom menace (http://websecurity.com.ua/3495/) and Attacks via closed
redirectors (http://websecurity.com.ua/3531/), here is my new article. This
time about attacks via bookmarks. In article Dark side of bookmarks
(http://websecurity.com.ua/3643/) I’ll tell you about risks of [...]

ARM Expects Mobile Phones with Dual-Core Processors Next Year.

Oct 31st, 2009
by invalid string.
No comments yet

ARM Expects Mobile Phones with Dual-Core Processors Next Year.
Dual-core central processing units (CPUs) were considered a breakthrough in the personal computer industry back in 2005. In 2010, dual-core chips, albeit powered by processors with different micro-architecture, are set to enter the market of mobile phones, according to ARM, a leading developer of processors for portable [...]

/proc filesystem allows bypassing directory permissions on

Oct 30th, 2009
by invalid string.
No comments yet

Bugtraq: Re: /proc filesystem allows bypassing directory permissions on
Re: /proc filesystem allows bypassing directory permissions on
URL: http://www.securityfocus.com/archive/1/507584

/proc filesystem allows bypassing directory permissions on

Oct 29th, 2009
by invalid string.
No comments yet

Bugtraq: Re: /proc filesystem allows bypassing directory permissions on
Re: /proc filesystem allows bypassing directory permissions on
URL: http://www.securityfocus.com/archive/1/507584

/proc filesystem allows bypassing directory permissions on Linux

Oct 26th, 2009
by invalid string.
No comments yet

Bugtraq: Re: /proc filesystem allows bypassing directory permissions on Linux
Re: /proc filesystem allows bypassing directory permissions on Linux
URL: http://www.securityfocus.com/archive/1/507473

2910 (kernel)

Oct 21st, 2009
by invalid string.
No comments yet

CVE-2009-2910 (kernel)
arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the x86_64 platform does not clear certain kernel registers before a return to user mode, which allows local users to read register values from an earlier process by switching an ia32 process to 64-bit mode.
URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-2910

insecure elements in https protected pages

Oct 18th, 2009
by invalid string.
No comments yet

insecure elements in https protected pages
Posted by Mohammad Hosein on Oct 18
in a certain web application e.g gmail there are times the whole
communication is secured by ssl and sometimes "there are insecure elements"
that raise questions . i’m not a web professional . how to find these
insecure elements ? and how to evaluate if these elements [...]

← Earlier Posts