[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255116

 
 

909

 
 

198683

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 31600 Download | Alert*

The host is installed with PHP 5.3.12 or 5.4.2 and is prone to a security bypass vulnerability. A flaw is present in the application, which fails to properly handle proper interaction between the PHP sapi/cgi/cgi_main.c component and a query string beginning with a +- sequence. Successful exploitation could allow attackers to bypass a protection mechanism.

The host is installed with Quicktime before 7.7.2 and is prone to an uninitialized memory access vulnerability. A flaw is present in the application, which fails to properly handle a crafted MP4 file. Successful exploitation could allow attackers to execute arbitrary code or crash the service.

The host is installed with Quicktime before 7.7.2 and is prone to an off-by-one error vulnerability. A flaw is present in the application, which fails to properly handle a crafted rdrf atom in a movie file. Successful exploitation could allow attackers to execute arbitrary code or crash the service.

The host is installed with Quicktime before 7.7.2 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a crafted PNG file. Successful exploitation could allow attackers to execute arbitrary code or crash the service.

The host is installed with PHP before 5.4.0 and is prone to directory traversal vulnerability. A flaw is present in the application, which fails to properly handle invalid [ (open square bracket) characters in name values. Successful exploitation allows attackers to cause a denial of service or conduct directory traversal attacks during multi-file uploads by leveraging a script that lacks its own ...

The host is installed with Oracle Java SE 7 update 4 or earlier, 6 update 32 or earlier, 5 update 35 or earlier or 1.4.2_37 and is prone to unspecified vulnerability. A flaw is present in the application, which fails to handle vectors related to Security. Successful exploitation allows remote attackers to affect availability.

MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL data home ...

mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not (1) properly handle errors during execution of certain SELECT statements with subqueries, and does not (2) preserve certain null_value flags during execution of statements that use the GeomFromWKB function, which allows remote authenticated users to cause a denial of service (daemon crash) via a crafted statement.

The vio_verify_callback function in viosslfactories.c in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41, when OpenSSL is used, accepts a value of zero for the depth of X.509 certificates, which allows man-in-the-middle attackers to spoof arbitrary SSL-based MySQL servers via a crafted certificate, as demonstrated by a certificate presented by a server linked against the yaSSL library.

The host is installed with Oracle Java 7 Update 17 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation could allow attackers to execute arbitrary code.


Pages:      Start    1581    1582    1583    1584    1585    1586    1587    1588    1589    1590    1591    1592    1593    1594    ..   3159

© SecPod Technologies