Most of the links lead to the corresponding files at CERT or
other organisations. So changes take place immediately,
especially which patches should be installed or which changes
in the configuration should be made to avoid this vulnerability.
Some of the files are transferred by FTP.
By the way: If we're not publishing well-known risks
inheritant in any widely used platform or program that
doesn't mean this particular platform or program is safe
to use!
Here you find our network security search engine!
|
This is some information you send: |
|
|
Your Browser |
CCBot/2.0 |
|
Your IP address |
ec2-107-20-7-65.compute-1.amazonaws.com [107.20.7.65] |
|
Your referer |
(filtered or not existing) |
Last change 21 hours ago | ||||||||
Current month, Last month, Last 10 messages, Last 20 messages (index only) | ||||||||
Chosen the last 10 messages | ||||||||
|
|
||||||||
Due to insufficient permission checks in the virtual memory system, a tracing process (such as a debugger) may be able to modify portions of the traced process's address space to which the traced process itself doesn't have write access. This error can be exploited to allow unauthorized modification of an arbitrary file to which the attacker has read access, but not write access. A patch is available. |
||||||||
|
|
||||||||
HP System Management Homepage contains a command injection vulnerability that may result in arbitrary command execution and privilege escalation. Patches seem to be pending- |
||||||||
|
|
||||||||
It has been reported that HP Insight Diagnostics 9.4.0.4710 and possibly earlier versions contains multiple vulnerabilities that can be exploited by a remote attacker to execute arbitrary PHP code thus arbitrary commands with administrative privileges. Patches seem to be pending- |
||||||||
|
|
||||||||
Under certain conditions that are pointed out in the advisory, users might gain increased privileges on their Smartphone. BlackBerry has issued BlackBerry 10 OS version 10.0.10.648, which resolves this issue on affected versions of BlackBerry Z10 smartphones. |
||||||||
|
|
||||||||
IBM Security AppScan Enterprise is affected by multiple vulnerabilities reported in 3rd party components bundled with the product as well as in proprietary IBM code. These vulnerabilities include session not invalidated, Java components, and weak cipher suites. A fix is available, addressing these issues. |
||||||||
|
|
||||||||
14 new vulnerabilities have been found in the Linux Kernel used by SuSE Linux. Exploiting them might allow local users to access confidential data and to compromise the root account. An update fixes these vulnerabilities. |
||||||||
|
|
||||||||
A vulnerability in the help page of the Cisco Video Surveillance Operations Manager could allow an unauthenticated, remote attacker to load remote web pages on a victim's web browser. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by persuading a user to click a crafted URL. Updates are available via the known support channels. |
||||||||
|
|
||||||||
A vulnerability in the portal page of Cisco Prime Central for Hosted Collaboration Solution could allow an unauthenticated, remote attacker to conduct a Cross-Site Scripting (XSS) attack against a user of the web interface of the affected system. The vulnerability is due to a failure to properly sanitize user-supplied input. Updates are available via the known support channels. |
||||||||
|
|
||||||||
Several vulnerabilities have been found in IBM WebSphere Application Server. Exploiting them might allow remote attackers to access privileged data, to gain unauthorised access, to conduct Cross-Site Scripting (XSS) attacks or even to execute arbitrary code. Fixes are available now. |
||||||||
|
|
||||||||
A parameter path to the Rational Software Architect Design Manager server help documentation causes an error message response from the server with HTTP ERROR 500 debug information displayed in the browser. A fix is available. |