Next Page >>
Advisory Information
IS-2010-002 - Linksys WAP54Gv3 Remote Debug Root Shell
Advisory Information
--------------------
Published:
2010-06-08
Updated:
http://corelabs.coresecurity.com/
HP Data Protector EXEC_CMD Buffer Overflow Vulnerability
1. *Advisory Information*
Title: HP Data Protector EXEC_CMD Buffer Overflow Vulnerability
Advisory ID: CORE-2011-0606
Advisory URL:
http://www.coresecurity.com/content/HP-Data-Protector-EXECCMD-Vulnerability
Internet Explorer Zone Elevation Restrictions Bypass and Security Zone
Restrictions Bypass
*Advisory Information*
Title: Internet Explorer Zone Elevation Restrictions Bypass and Security
Zone Restrictions Bypass
Advisory ID: CORE-2008-0103
Advisory URL:
http://www.coresecurity.com/corelabs/
SILC pkcs_decode buffer overflow
*Advisory Information*
Title: SILC pkcs_decode buffer overflow
Advisory ID: CORE-2007-1212
Advisory URL: http://www.coresecurity.com/?action=item&id=2206
Date published: 2008-03-25
Amaya web editor XML and HTML parser vulnerabilities
1. *Advisory Information*
Title: Amaya web editor XML and HTML parser vulnerabilities
Advisory ID: CORE-2008-1211
Advisory URL: http://www.coresecurity.com/content/amaya-buffer-overflows
Date published: 2009-01-28
exploit vulnerabilities in their systems in order to take control of them.
- - Risk Level: Medium
2. Advisory Information
=======================
- - Public Release Date: 2011-04-19
- - Subscriber Notification Date: 2011-04-14
prevent administrators from using it.
- - Risk Level: High
2. Advisory Information
=======================
- - Public Release Date: 2011-01-12
- - Subscriber Notification Date: 2011-01-04
of the system.
- - Risk Level: Low
2. Advisory Information
=======================
- - Release Date: 2011-04-27
- - Last Revised: 2011-04-27
By exploiting this vulnerability, a remote unauthenticated attacker might be able to access arbitrary files hosted on the ERP system.
This would result in the total compromise of the ERP infrastructure.
2. Advisory Information
=======================
--Release Date: 2012-02-23
--Last Revised: 2012-02-21
HTTP Response Splitting vulnerability in Sun Delegated Administrator
1. *Advisory Information*
Title: HTTP Response Splitting vulnerability in Sun Delegated Administrator
Advisory ID: CORE-2009-0114
Advisory URL:
http://www.coresecurity.com/content/sun-delegated-administrator
http://corelabs.coresecurity.com/
Multiples Vulnerabilities in ManageEngine ServiceDesk Plus
1. *Advisory Information*
Title: Multiples Vulnerabilities in ManageEngine ServiceDesk Plus
Advisory ID: CORE-2011-0506
Advisory URL:
http://www.coresecurity.com/content/multiples-vulnerabilities-manageengine-sdp
Novell iManager Multiple Vulnerabilities
1. *Advisory Information*
Title: Novell iManager Multiple Vulnerabilities
Advisory Id: CORE-2010-0316
Advisory URL:
[http://www.coresecurity.com/content/novell-imanager-buffer-overflow-off-by-one-vulnerabilities]
eFront-learning PHP file inclusion vulnerability
1. *Advisory Information*
Title: eFront-learning PHP file inclusion vulnerability
Advisory Id: CORE-2010-0311
Advisory URL:
http://www.coresecurity.com/content/efront-php-file-inclusion
iPhone Safari JavaScript alert Denial of Service
1. *Advisory Information*
Title: iPhone Safari JavaScript alert Denial of Service
Advisory ID: CORE-2008-0603
Advisory URL:
http://www.coresecurity.com/content/iphone-safari-javascript-alert-denial-of-service
By exploiting this vulnerability, a remote unauthenticated attacker might be able to access or modify all the business information processed by the
ERP system.
This would result in the total compromise of the ERP infrastructure.
2. Advisory Information
=======================
- --Release Date: 2012-02-23
- --Last Revised: 2012-02-21
Autodesk 3DS Max Application Callbacks Arbitrary Command Execution
1. *Advisory Information*
Title: Autodesk 3DS Max Application Callbacks Arbitrary Command Execution
Advisory Id: CORE-2009-0909
Advisory URL:
http://www.coresecurity.com/content/3dsmax-arbitrary-command-execution
http://www.coresecurity.com/corelabs
Multiple vulnerabilities in Google's Android SDK
*Advisory Information*
Title: Multiple vulnerabilities in Google's Android SDK
Advisory ID: CORE-2008-0124
Advisory URL: http://www.coresecurity.com/?action=item&id=2148
Date published: 2008-03-04
-----------------
http://ftp.gfisoftware.com/patches/WebMon2009/20100324/WM2009_PATCH_20100823_01.zip
Advisory Information
---------------------
This: http://www.oliverkarow.de/research/GFIWebMonitor.txt
Blog: http://oliver.greyhat.de/2010/08/25/gfi-webmonitor-admin-ui-remote-script-code-injection/
SecureWorks Security Advisory SWRX-2009-002
McAfee Network Security Manager Authentication Bypass and Session Hijacking Vulnerability
Advisory Information
Title: McAfee Network Security Manager Authentication Bypass and Session Hijacking Vulnerability
Advisory ID: SWRX-2009-002
Advisory URL: http://www.secureworks.com/ctu/advisories/SWRX-2009-002
Date published: Wednesday, November 11, 2009
CVE: CVE-2009-3566
Core Security Technologies - CoreLabs Advisory
http://www.coresecurity.com/corelabs/
Hyperic HQ Multiple XSS
1. *Advisory Information*
Title: Hyperic HQ Multiple XSS
Advisory Id: CORE-2009-0812
Advisory URL:
http://corelabs.coresecurity.com/index.php?module=Wiki&action=view&type=advisory&name=Hyperic_HQ_Multiple_XSS
http://www.coresecurity.com/corelabs/
VLC media player XSPF Memory Corruption
1. *Advisory Information*
Title: VLC media player XSPF Memory Corruption
Advisory ID: CORE-2008-1010
Advisory URL: http://www.coresecurity.com/content/vlc-xspf-memory-corruption
Date published: 2008-10-14
WordPress Privileges Unchecked in admin.php and Multiple Information
Disclosures
1. *Advisory Information*
Title: WordPress Privileges Unchecked in admin.php and Multiple
Information Disclosures
Advisory ID: CORE-2009-0515
Advisory URL:
Core Security Technologies – CoreLabs Advisory
http://www.coresecurity.com/corelabs
Lotus Notes buffer overflow in the Lotus WorkSheet file processor
*Advisory Information*
Title: Lotus Notes buffer overflow in the Lotus WorkSheet file processor
Advisory ID: CORE-2007-0821
Advisory URL: http://www.coresecurity.com/index.php5?action=item&id=2008
Date published: 2007-11-27
Date of last update: 2007-11-27
Linux Kernel 2.6.38 Remote NULL Pointer Dereference
====================================================
[Advisory Information]
Title: Linux kernel 2.6.38: Remote NULL pointer dereference
Release date: 11/05/2011
Last update: 11/05/2011
Credits:
Aristide Fattori, Universit degli Studi di Milano (joystick@security.dico.unimi.it)
By exploiting this vulnerability, a remote unauthenticated attacker might be able to validate user credentials to access the ERP system.
This would represent valuable information to perform more complex attack to the ERP system.
2. Advisory Information
=======================
- --Release Date: 2012-02-23
- --Last Revised: 2012-02-21
By exploiting this vulnerability, a remote unauthenticated attacker might be able to access or modify all the business information processed by the
ERP system.
This would result in the total compromise of the ERP infrastructure.
2. Advisory Information
=======================
- --Release Date: 2012-02-23
- --Last Revised: 2012-02-21
IS-2010-006 - D-Link DAP-1160 formFilter buffer overflow
Advisory Information
--------------------
Published:
2010-07-14
Updated:
http://www.coresecurity.com/corelabs/
Leopard Server Remote Path Traversal
*Advisory Information*
Title: Leopard Server Remote Path Traversal
Advisory ID: CORE-2008-0123
Advisory URL: http://www.coresecurity.com/?action=item&id=2189
Date published: 2008-03-18
Multiple XSS and Injection Vulnerabilities in TestLink Test Management
and Execution System
1. *Advisory Information*
Title: Multiple XSS and Injection Vulnerabilities in TestLink Test
Management and Execution System
Advisory Id: CORE-2009-1013
Advisory URL:
Virtual PC Hypervisor Memory Protection Vulnerability
1. *Advisory Information*
Title: Virtual PC Hypervisor Memory Protection Vulnerability
Advisory Id: CORE-2009-0803
Advisory URL:
http://www.coresecurity.com/content/virtual-pc-2007-hypervisor-memory-protection-bug
Next Page>>
|
