Next Page >>
Product description
Reference: http://www.vsecurity.com/resources/advisory/20100702-1/
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Product Description
-------------------
From [1]:
"The Cisco CSS 11500 Series Content Services Switch is a high-performance,
high-availability modular architecture for Web infrastructures. As the
premiere switch for the Cisco Web Network Services Software, the Cisco
Exploit Title: Multiple Vulnerability in "Omnidocs"
Author: Sohil Garg
CVE : CVE-2011-3645
Product Description:
OmniDocs is an Enterprise Document Management (EDM) platform for creating, capturing, managing, delivering and archiving large volumes of documents and
contents. Also integrates seamlessly with other enterprise applications.
Vulnerability Details:
Found by: Wolfgang Neudorfer, Lukas Nothdurfter
Impact: Remote Command Execution with root Privileges
Severity: Critical
Product Description
---------------------------------------
The Barracuda NG Firewall is a family of hardware and virtual appliances designed to protect network infrastructure, improve site-to-site connectivity and simplify administration of network operations. Beyond its powerful network firewall, IPS and VPN technologies, the Barracuda NG Firewall integrates a comprehensive set of next generation firewall technologies, including Layer 7 application control, WAN optimization, Web filtering, anti-virus, anti-spam and network access control enforcement.
[http://www.barracudanetworks.com/ns/products/ng_firewall_overview.php]
Reference: http://www.vsecurity.com/resources/advisory/20110603-1/
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Product Description
- -------------------
- From [1]:
"VMware Tools is a suite of utilities that enhances the performance of the
virtual machine's guest operating system and improves management of the
Reference: http://www.vsecurity.com/resources/advisory/20110126-1/
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Product Description
- -------------------
- From [1]:
"OpenOffice.org 3 is the leading open-source office software suite for word
processing, spreadsheets, presentations, graphics, databases and more. It is
27 May 2011: Vendor releases v1.3.5
27 May 2011: Vendor releases security disclosure to Bugtraq and FD.
30 May 2011: Exploit details released.
--------------------------------------------------------------------
Product Description:
Apache Archiva is an extensible repository management software that
helps taking care of your own personal or enterprise-wide build artifact
repository. It is the perfect companion for build tools such as Maven,
Continuum, and ANT.
27 May 2011: Vendor releases v1.3.5
27 May 2011: Vendor releases security disclosure to Bugtraq and FD.
30 May 2011: Exploit details released.
--------------------------------------------------------------------
Product Description:
Apache Archiva is an extensible repository management software that
helps taking care of your own personal or enterprise-wide build artifact
repository. It is the perfect companion for build tools such as Maven,
Continuum, and ANT.
Reference: http://www.vsecurity.com/resources/advisory/20110322-1/
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Product Description
- -------------------
- From [1]:
"Beneath the appealing, easy-to-use interface of Mac OS X is a rock-solid,
UNIX-based foundation that is engineered for stability, reliability, and
05 December 2010: Public disclosure.
------------------------------------------------------------------------
------------------------------------------------------------------------
--
Product Description:
Openfire is a real time collaboration (RTC) server licensed under the
Open Source GPL. It uses the only widely adopted open protocol for
instant messaging, XMPP (also called Jabber). Openfire is incredibly
easy to setup and administer, but offers rock-solid security and
performance.
05 December 2010: Public disclosure.
------------------------------------------------------------------------
------------------------------------------------------------------------
--
Product Description:
Openfire is a real time collaboration (RTC) server licensed under the
Open Source GPL. It uses the only widely adopted open protocol for
instant messaging, XMPP (also called Jabber). Openfire is incredibly
easy to setup and administer, but offers rock-solid security and
performance.
Reference: http://www.vsecurity.com/resources/advisory/20101221-1/
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Product Description
-------------------
From [1]:
"Citrix(R) Access Gateway(TM) is a secure application access solution that
provides administrators granular application-level control while
Hardware Version : R051.2
Device Name : IMW-C615W
Device Manufacturer : INFOMARK (http://infomark.co.kr
<http://infomark.co.kr/>)
Product Description:
iSpot and ClearSpot 4G are portable 4G devices, that allow users to share
and broadcast their own personal WiFi network. The device connects up to 8
clients at the same time, on the same 4G connection.
Credit: Matthew Jakubowski of Trustwave's SpiderLabs
Reference: http://www.vsecurity.com/resources/advisory/20100816-1/
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Product Description
- -------------------
- From [1]:
"Coda is a distributed filesystem with its origin in AFS2. It has many
features that are very desirable for network filesystems. Currently, Coda has
Vendor: EMC (http://www.emc.com)
Product: Celerra Unified Storage products
(http://www.emc.com/products/family/celerra-family.htm)
Version(s) affected: All
Product Description:
The Celerra Unified Storage Platform provides Network Attached Storage (NAS)
services through a combination of server appliances and software modules.
Credit: Steve Ocepek of Trustwave's SpiderLabs
Vendor: FreePBX (http://www.freepbx.org/)
Product: FreePBX and VOIP solutions (AsteriskNOW, TrixBox, etc) using it
Version(s) affected: 2.8.0 and below
Product Description:
FreePBX is an easy to use GUI (graphical user interface) that controls and
manages Asterisk, the world's most popular open source telephony engine
software. FreePBX has been developed and hardened by thousands of
volunteers,has been downloaded over 5,000,000 times, and is utilized in an
estimated 500,000 active phone systems.
> Reference: http://www.vsecurity.com/resources/advisory/20101019-1/
>
> - -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
>
>
> Product Description
> - -------------------
> - From [1]:
>
> "Linux is a free Unix-type operating system originally created by Linus
> Torvalds with the assistance of developers around the world. Developed under
Reference: http://www.vsecurity.com/resources/advisory/20101019-1/
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Product Description
- -------------------
- From [1]:
"Linux is a free Unix-type operating system originally created by Linus
Torvalds with the assistance of developers around the world. Developed under
Reference: http://www.vsecurity.com/resources/advisory/20100713-1/
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Product Description
- -------------------
The product is best described by Oracle marketing literature in:
"Oracle WebLogic Server Enterprise Edition offers enterprises the ability to
consolidate their applications on a pool of shared servers for both high
EnterpriseDB Advanced Server 8.2 Unitialized Pointer
----------------------------------------------------
Product Description:
EnterpriseDB is a (comercial) relational database management system
based on PostgreSQL.
Vulnerable Versions:
Vendor: Brown Bear Software
Vendor web page: http://brownbearsw.com/
Product: Calcium web calendar
Product web page: http://brownbearsw.com/calcium/WhatIsIt.html
Vendor's Product Description:
Calcium is a Web Calendar application. It will run on nearly any machine with a web server that can run Perl CGI scripts; a web browser is all you need to view, edit, and manage any number of calendars from any network connected computer. All administration is done with your browser - after installation, there's no need to log in to the web server.
Vulnerability class: Cross-Site Scripting
Severity: Medium
* Affected Versions: Up to and including 3322
* Fixed Version: 3333
* CVE IDs: CVE-2008-1106
* CVSS Base Score: 5.53
* Product Description:
The Akamai Client Software is a software layer that securely stores and
transfers files to enhance content delivery.
* Affected Versions: < 2.2.3.6
* Fixed Version: 2.2.3.7
* CVE IDs: CVE-2008-1770
* CVSS Base Score: (AV:R/AC:H/Au:NR/C:C/I:C/A:C/B:N) 8.0
* Product Description:
Akamai Download Manager is a client software application that helps
users download content easily, quickly, and reliably. It is available
as an ActiveX component or Java applet and provides users the ability
to pause, resume downloading at a later time, and automatically
[Product Description]
- ----------------------------------------------------------------------
"From creating new solutions for print, photography, scientific
visualization, and film post-production to enhancing your application's
user interface with innovative and effortless visual effects, Core Image
performs the heavy lifting that enables the next generation of imaging
Reference: http://www.vsecurity.com/bulletins/advisories/2008/JWS-props.txt
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Product Description
- -------------------
- From [1]:
"Using Java Web Start technology, standalone Java software applications
can be deployed with a single click over the network. Java Web Start
* Affected Versions: < 2.2.4.8
* Fixed Version: 2.2.4.8
* CVE IDs: {TBD}
* CVSS Base Score: (AV:R/AC:H/Au:NR/C:C/I:C/A:C/B:N) 8.0
* Product Description:
Akamai Download Manager is a client software application that helps
users download content easily, quickly, and reliably. It is available
as an ActiveX component or Java applet and provides users the ability
to pause, resume downloading at a later time, and automatically
engine version (WinRAR v.3.90) will be patched
CWE Weakness ID: CWE-372: Incomplete Internal State Distinction (1.5)
CVE ID: None provided
Disclosure Policy: http://www.wiretrip.net/rfp/policy.html
Product Description:
====================
(Taken from Wikipedia)
WinRAR is a shareware file archiver and data compression utility
developed by Eugene Roshal, and first released around 1995. It is one
Reference: http://www.vsecurity.com/resources/advisory/20100215-1/
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Product Description
-------------------
"Google Chrome is a web browser that runs web pages and applications with
lightning speed." [1]
Reference: http://www.vsecurity.com/resources/advisory/20100409-1/
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Product Description
- -------------------
- From [1]:
"The Video Communication Server (VCS) is an integral part of the TANDBERG
Total Solution and is the center of the video communications network,
Reference: http://www.vsecurity.com/resources/advisory/20100409-2/
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Product Description
- -------------------
- From [1]:
"The Video Communication Server (VCS) is an integral part of the TANDBERG
Total Solution and is the center of the video communications network,
Reference: http://www.vsecurity.com/resources/advisory/20100409-3/
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Product Description
- -------------------
- From [1]:
"The Video Communication Server (VCS) is an integral part of the TANDBERG
Total Solution and is the center of the video communications network,
Next Page>>
|
