[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248392

 
 

909

 
 

195452

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 26616 Download | Alert*

The host is installed with Oracle MySQL 5.1.x before 5.1.63, 5.5.x before 5.5.24, or 5.6.x before 5.6.6 and is prone to security bypass vulnerability. A flaw is present in the application, which fails to properly handle authentication by password. Successful exploitation allows remote attackers to bypass certain security restrictions.

The host is installed with Oracle MySQL 5.1.x before 5.1.63 or 5.5.x before 5.5.24 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle vectors related to incorrect calculation and a sort order index. Successful exploitation allows remote authenticated users to cause a denial of service (mysqld crash).

MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL data home ...

mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not (1) properly handle errors during execution of certain SELECT statements with subqueries, and does not (2) preserve certain null_value flags during execution of statements that use the GeomFromWKB function, which allows remote authenticated users to cause a denial of service (daemon crash) via a crafted statement.

The vio_verify_callback function in viosslfactories.c in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41, when OpenSSL is used, accepts a value of zero for the depth of X.509 certificates, which allows man-in-the-middle attackers to spoof arbitrary SSL-based MySQL servers via a crafted certificate, as demonstrated by a certificate presented by a server linked against the yaSSL library.

The host is installed with Oracle Java 7 Update 17 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation could allow attackers to execute arbitrary code.

The host is installed with Oracle Java 7 Update 17 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle unspecified vectors involving reflection. Successful exploitation could allow attackers to execute arbitrary code.

The host is installed with Oracle Java 7 Update 17 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle unspecified vectors involving reflection. Successful exploitation could allow attackers to execute arbitrary code.

The host is installed with Oracle Java 7 Update 17 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle unspecified vectors involving reflection. Successful exploitation could allow attackers to execute arbitrary code.

The host is installed with Oracle Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 or earlier, 6 update 43 or earlier and is prone to unspecified vulnerability. A flaw is present in the application, which fails to handle vectors related to Deployment. Successful exploitation allows attackers to affect confidentiality, integrity, and availability.


Pages:      Start    1213    1214    1215    1216    1217    1218    1219    1220    1221    1222    1223    1224    1225    1226    ..   2661

© SecPod Technologies