Next Page >>
Digital
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Cisco Digital Media Manager Privilege Escalation Vulnerability
Advisory ID: cisco-sa-20120118-dmm
Revision 1.0
For Public Release 2012 January 18 16:00 UTC (GMT)
Dear Bugtraq,
I would like to clarify a few things with respect to information about
security vulnerabilities in a digital satellite TV platform published
by me on Bugtraq on Jan 03 2012.
The reason for it is that we've been receiving information that the
issues discovered were not clear enough for some audience. Thus, this
post.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Digital
Media Manager
Advisory ID: cisco-sa-20100303-dmm
http://www.cisco.com/warp/public/707/cisco-sa-20100303-dmm.shtml
Digital Security Research Group [DSecRG] Advisory #DSECRG-09-011
Application: HP StorageWorks 1/8 G2 Tape Autoloader
Versions Affected: firmware v 2.30 and earlier
Vendor URL: http://hp.com/
Bug: Privilege escalation
Exploits: YES
Reported: 30.09.2008
Potential Security Impact: Remote Cross Site Scripting (XSS)
Source: Hewlett-Packard Company, HP Software Security Response Team
VULNERABILITY SUMMARY
Potential security vulnerabilities have been identified with certain HP LaserJet printers, HP Color LaserJet printers and HP Digital Senders. The vulnerabilities could be exploited remotely by Cross Site Scripting (XSS).
References: CVE-2009-2684
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.
HP LaserJet printers, HP Color LaserJet printers and HP Digital Senders with the Embedded Web Server (EWS)
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c01623905
Version: 5
HPSBPI02398 SSRT080166 rev.5 - Certain HP LaserJet Printers, HP Color LaserJet Printers, and HP Digital Senders, Remote Unauthorized Access to Files
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2009-02-04
Last Updated: 2010-04-12
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c01623905
Version: 6
HPSBPI02398 SSRT080166 rev.6 - Certain HP LaserJet Printers, HP Color LaserJet Printers, and HP Digital Senders, Remote Unauthorized Access to Files
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2009-02-04
Last Updated: 2010-10-13
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Cisco Security Advisory: Cisco Digital Media Player Remote Display
Unauthorized Content Injection Vulnerability
Advisory ID: cisco-sa-20100303-dmp
http://www.cisco.com/warp/public/707/cisco-sa-20100303-dmp.shtml
Digital Security Research Group [DSecRG] Advisory #DSECRG-09-048
http://dsecrg.ru/pages/vul/show.php?id=148
Application: HP LaserJet printer web interface
Vulnerable: HP LaserJet 2200, 4350, 4600, 5500, and many others
Vendor URL: http://www.hp.com/
Bug: Multiple Stored XSS Vulnerabilities
Exploits: YES
Reported: 07.04.2009
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02161624
Version: 2
HPSBPI02532 SSRT100111 rev.2 - HP MFP Digital Sending Software Running on Windows, Local Unauthorized Access
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2010-05-12
Last Updated: 2010-06-11
Digital Security Research Group [DSecRG] Advisory #DSECRG-09-029
Application: Oracle Business Intelligence Enterprise Edition (10.1.3.4.0)
Versions Affected: Oracle Business Intelligence Enterprise Edition (10.1.3.4.0)
Vendor URL: http://oracle.com
Bugs: Response Splitting/XSS/phishing credentials
Exploits: YES
Reported: 03.03.2009
Vendor response: 04.03.2009
Digital Security Research Group [DSecRG] Advisory #DSECRG-09-032
Application: Oracle BPEL Console version 10.1.3.3.0
Versions Affected: Oracle BPEL Console version 10.1.3.3.0
Vendor URL: http://www.oracle.com
Bugs: XSS
Exploits: YES
ActiveX components contain insecure methods.
Digital Security Research Group [DSecRG] Advisory #DSECRG-00153
Application: Oracle Document Capture
Versions Affected: Release 10gR3
Vendor URL: www.oracle.com
Bugs: insecure method, File overwriting
Digital Security Research Group [DSecRG] Advisory DSECRG-11-007 (Internal #DSECRG-00117)
Application: Oracle Document Capture
Versions Affected: 10.1350.0005
Vendor URL: http://www.oracle.com/technology/software/products/content-management/index_dc.html
Bugs: Insecure READ method
Exploits: YES
Reported: 29.01.2010
ActiveX components contain insecure methods.
Digital Security Research Group [DSecRG] Advisory DSECRG-11-005 (internal #DSECRG-00154)
Application: Oracle Document Capture
Versions Affected: Release 10gR3
Vendor URL: www.oracle.com
Bugs: insecure method, File overwriting, File deleting
Digital Security Research Group [DSecRG] Advisory #DSECRG-11-008
Application: Progress OpenEdge Enterprise RDBMS
Versions Affected: 10.2A and maybe others
Vendor URL: http://web.progress.com
Bug: Authentication bypass, UserID enumerate
Exploits: YES
Reported: 13.10.2009
Vendor response: 13.10.2009
Solution: NONE
[DSECRG-11-009] SAP NetWaver XI SOAP Adapter - XSS
SAP NetWeaver 7.0 application XI SOAP Adapter has linked XSS vulnerability
Digital Security Research Group [DSecRG] Advisory DSecRG-11-009 (Internal DSecRG-00120)
Application: SAP NetWeaver
Versions Affected: SAP NetWeaver XI SOAP Adapter 3.0-7.11
Vendor URL: http://www.sap.com
Bugs: XSS
[DSECRG-11-010] SAP NetWeaver logon.html - XSS
SAP NetWeaver BSP logon page has linked XSS vulnerability.
Digital Security Research Group [DSecRG] Advisory DSecRG-11-010 (Internal DSecRG-00127)
Application: SAP NetWeaver
Versions Affected: SAP NetWeaver SAP_BASIS 620-730
Vendor URL: http://www.sap.com
Bugs: XSS
Exploits: YES
[DSECRG-11-013] SAP NetWeaver Runtime - multiple XSS
SAP NetWeaver Integration Directory has linked XSS vulnerability.
Digital Security Research Group [DSecRG] Advisory DSecRG-11-013 (Internal DSecRG-00163)
Application: SAP NetWeaver Runtime
Versions Affected: SAP NetWeaver Runtime
Vendor URL: http://www.sap.com
Bugs: Linked XSS and Stored XSS
[DSECRG-11-012] SAP NetWeaver Integration Directory - multiple XSS
SAP NetWeaver Integration Directory has multiple linked XSS vulnerabilities.
Digital Security Research Group [DSecRG] Advisory DSecRG-11-012 ( Internal DSecRG-00159)
Application: SAP NetWeaver XI
Versions Affected: SAP NetWeaver XI
Vendor URL: http://www.sap.com
Bugs: XSS
[DSECRG-11-014] SAP GUI (sapgui) - DLL hijacking
SAP Front End applications (SAPGui.exe) are vulnerable to DLL hijacking attacks. It makes possible to remote code execution
Digital Security Research Group [DSecRG] Advisory DSecRG-11-014 (Internal DSecRG-00183)
Application: SAP GUI
Versions Affected: 6.4 - 7.2
Vendor URL: http://www.sap.com
Bugs: DLL hijacking
Digital Security Research Group [DSecRG] Advisory DSECRG-09-053
Application: VMware Remoute Console
Version: e.x.p build-158248
Vendor URL: http://vmware.com
Bugs: Format String Vulnerabilitys
Exploits: YES (PoC)
Reported: 07.08.2009
ActiveX component contains insecure method that can overwrite any file in system
Digital Security Research Group [DSecRG] Advisory #DSECRG-09-065
Application: TVUPlayer
Versions Affected: Tested on v2.4.9beta1[build1797]
Vendor URL: www.tvunetworks.com
Bugs: insecure method, File overwriting
Exploits: YES
Digital Security Research Group [DSecRG] Advisory #DSECRG-09-036
original advisory: http://dsecrg.com/pages/vul/DSECRG-09-036.html
Application: Chance-i DiViS DVR System web-server
Versions Affected: 2.0
Vendor URL: http://www.chance-i.com/
Bug: Directory Traversal File Download
Exploits: YES
Reported: 13.03.2009
Digital Security Research Group [DSecRG] Advisory #DSECRG-09-035
original advisory: http://dsecrg.com/pages/vul/DSECRG-09-035.html
Application: Chance-i DiViS-Web DVR System ActiveX control
Versions Affected: 3,0,0,7
Vendor URL: http://www.chance-i.com/
Bug: Heap Overflow
Exploits: YES
Digital Security Research Group [DSecRG] Advisory #DSECRG-09-030
!!! original advisory !!!
http://dsecrg.com/pages/vul/DSECRG-09-030.html
Application: PrecisionID activeX controls
Versions Affected:
Vendor URL: http://PrecisionID.com
Bugs: Arbitrary File overwriting
Digital Security Research Group [DSecRG] Advisory #DSECRG-08-029
Application: Dokeos E-Learning System
Versions Affected: 1.8.5
Vendor URL: http://dokeos.com/
Bug: Local File Include
Exploits: YES
Reported: 01.07.2008
Digital Security Research Group [DSecRG] Advisory #DSECRG-09-015
Original Advisory: http://dsecrg.com/pages/vul/show.php?id=115
Application: SAP GUI for Windows, EnjoySAP
Versions Affected: Version 6.4
Vendor URL: http://SAP.com
Bugs: Buffer Overflow
Exploits: YES
Original Advisory: http://dsecrg.com/pages/vul/show.php?id=118
Digital Security Research Group [DSecRG] Advisory #DSECRG-09-018
Application: Apache Geronimo Application Server
Versions Affected: 2.1 - 2.1.3
Vendor URL: http://geronimo.apache.org/
Bug: Directory Traversal File Upload
original advisory: http://dsecrg.com/pages/vul/show.php?id=137
Digital Security Research Group [DSecRG] Advisory #DSECRG-09-037
Application: AbleSpace
Versions Affected: 1.0
Vendor URL: http://abk-soft.com/
Bugs: Multiple Blind SQL Injections, Multiple XSS
Next Page>>
|
