[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250770

 
 

909

 
 

196157

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 195419 Download | Alert*

Updates available for VMWare Tools.

Joel R. Voss discovered that the IAX2 module of Asterisk, a free software PBX and telephony toolkit performs insufficient validation of IAX2 protocol messages, which may lead to denial of service.

The host is installed with Apache OpenOffice 4.x before 4.1.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle unrestricted actions in a crafted document. Successful exploitation could allow an attacker to construct documents containing hyperlinks pointing to an executable on the target users file system.

The host is installed with PHP before 5.2.12 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to properly handle the session data. Successful exploitation allows attackers to have unspecified impact and attack vectors related to (1) interrupt corruption of the SESSION superglobal array and (2) the session.save_path directive.

Several denial of service vulnerabilities have been discovered in polipo, a small, caching web proxy. The Common Vulnerabilities and Exposures project identifies the following problems: A malicous remote sever could cause polipo to crash by sending an invalid Cache-Control header. A malicous client could cause polipo to crash by sending a large Content-Length value. This upgrade also fixes some ot ...

A vulnerability has been found and corrected in php: PHP before 5.2.12 does not properly handle session data, which has unspecified impact and attack vectors related to interrupt corruption of the SESSION superglobal array and the session.save_path directive . Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue.

The host is installed with Apple Mac OS X 10.5.8 and is prone to arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle session data. Successful exploitation could allow attackers to inject arbitrary code.

openSUSE 15.5 is installed

The host is installed with Cisco AnyConnect Secure Mobility Client 3.1.60 is prone to a privilege escalation vulnerability. A flaw is present in the application which fails to properly handle the INF file. Successful exploitation could allow local users to install and execute an arbitrary executable file with privileges.

The host is installed with Cisco AnyConnect Secure Mobility Client 4.4.4027 or 4.5.58 is prone to a cross-site scripting (XSS) vulnerability. A flaw is present in the application which fails to properly validate parameters. Successful exploitation could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user


Pages:      Start    10483    10484    10485    10486    10487    10488    10489    10490    10491    10492    10493    10494    10495    10496    ..   19541

© SecPod Technologies