[Forgot Password]
Login  Register Subscribe

24128

 
 

131615

 
 

114154

 
 

909

 
 

88671

 
 

136

 
 
Paid content will be excluded from the download.

Filter
Matches : 88569 Download | Alert*

Telepathy-glib is the glib bindings for the telepathy unified framework for all forms of real time conversations, including instant messaging, IRC, voice calls and video calls.

A Jabber/XMPP connection manager, that handles single and multi-user chats and voice calls.

It was discovered that phpMyAdmin, a a tool to administer MySQL over the web, when the bookmarks feature is enabled, allowed to create a bookmarked query which would be executed unintentionally by other users.

It was discovered that telepathy-gabble, the Jabber/XMMP connection manager for the Telepathy framework, is processing google:jingleinfo updates without validating their origin. This may allow an attacker to trick telepathy-gabble into relaying streamed media data through a server of his choice and thus intercept audio and video calls.

It was discovered that Gabble did not verify the from field of google jingleinfo updates. This could allow a remote attacker to perform man in the middle attacks on streamed media.

The host is installed with PHP and is prone to security bypass vulnerability. A flaw is present is in the Standard PHP Library (SPL) extension in PHP before 5.3.4, which fails to properly detect symbolic links, i.e. the SplFileInfo::getType() for Symbolic link returns "dir" which in turn should return "link". Successful exploitation allows attackers to conduct symlink attacks by leveraging cross-p ...

The host is installed with PHP and is prone to security bypass vulnerability. A flaw is present is in the extract function in PHP before 5.2.15, which overwrites $GLOBALS and $this when using EXTR_OVERWRITE. Successful exploitation allows context-dependent attackers to bypass intended access restrictions by modifying data structures that are not intended to depend on external input.

The host is installed with PHP and is prone to race condition vulnerability. A flaw is present is in the PCNTL extension in PHP before 5.3.4, when a user-defined signal handler has been defined and many concurrent signals are being delivered to it through ext/pcntl leading to a race condition. Successful exploitation allows context-dependent attackers to cause a denial of service (memory corruptio ...

The host is installed with PHP and is prone to integer overflow vulnerability. A flaw is present is in the mt_rand function in PHP before 5.3.4, which always returns PRN - a number less than 0 whenever min is set to 0 and max is set to anything greater than the mt_ version. Successful exploitation allows context-dependent attackers to predict the return values by leveraging a script's use of a lar ...

Kees Cook discovered that the chfn and chsh utilities do not properly sanitize user input that includes newlines. An attacker could use this to to corrupt passwd entries and may create users or groups in NIS environments. Packages in the oldstable distribution are not affected by this problem.


Pages:      Start    7844    7845    7846    7847    7848    7849    7850    7851    7852    7853    7854    7855    7856    7857    ..   8856

© SecPod Technologies