[Forgot Password]
Login  Register Subscribe












Paid content will be excluded from the download.

Matches : 2952 Download | Alert*

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2011-4086 Eric Sandeen reported an issue in the journaling layer for EXT4 filesystems . Local users can cause buffers to be accessed after they have been torn down, resulting in a denia ...

Raul Benencia discovered that ikiwiki, a wiki compiler, does not properly escape the author of certain metadata, such as comments. This might be used to conduct cross-site scripting attacks.

Kaspar Brand discovered that Mozilla"s Network Security Services library did insufficient length checking in the QuickDER decoder, allowing to crash a program using the library.

Jueri Aedla discovered several integer overflows in libxml, which could lead to the execution of arbitrary code or denial of service.

Sébastien Bocahu discovered that the reverse proxy add forward module for the Apache webserver is vulnerable to a denial of service attack through a single crafted request with many headers.

Two vulnerabilities related to XML processing were discovered in PostgreSQL, an SQL database. CVE-2012-3488 contrib/xml2"s xslt_process can be used to read and write external files and URLs. CVE-2012-3489 xml_parse fetches external files or URLs to resolve DTD and entity references in XML values. This update removes the problematic functionality, potentially breaking applications which use it in a ...

Yury Dyachenko discovered that Zend Framework uses the PHP XML parser in an insecure way, allowing attackers to open files and trigger HTTP requests, potentially accessing restricted information.

Multiple stack-based buffer overflows were discovered in libupnp4, a library used for handling the Universal Plug and Play protocol. HD Moore from Rapid7 discovered that SSDP queries where not correctly handled by the unique_service_name function. An attacker sending carefully crafted SSDP queries to a daemon built on libupnp4 could generate a buffer overflow, overwriting the stack, leading to the ...

Ilja van Sprundel of IOActive discovered several security issues in multiple components of the X.org graphics stack and the related libraries: Various integer overflows, sign handling errors in integer conversions, buffer overflows, memory corruption and missing input sanitising may lead to privilege escalation or denial of service.

Several vulnerabilities have been discovered in Swift, the Openstack object storage. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2013-2161 Alex Gaynor from Rackspace reported a vulnerability in XML handling within Swift account servers. Account strings were unescaped in xml listings, and an attacker could potentially generate unparsable or arbitrary XML ...

Pages:      Start    5    6    7    8    9    10    11    12    13    14    15    16    17    18    ..   295

© 2013 SecPod Technologies