> The maintainer finally replied to the last of my three attempts to
> contact him (very timely, regarding the different timezones we are in):
>
> | I can't do much about it just at the moment. I've had a computer
> | motherboard failure and while I've now got a new computer, I haven't
> | got all my development tools running yet.
> |
> | I will update the DLL in the next release. Yes, I compiled the DLL
> | myself. There wasn't a precompiled version at the time I started using
> | it.
======================================================================
3) Vendor's Description of Software
"AXIS Camera Control (ActiveX component) makes it possible to view
Motion JPEG video streams from an Axis Network Video product directly
in Microsoft Development Tools and Microsoft Internet Explorer."
Product Link:
http://www.axis.com/techsup/software/acc/index.htm
======================================================================
Software:
Squiz - Matrix
http://www.squiz.net/
"Squiz Matrix delivers highly flexible and robust business integration
engine and application development tools. It is an evolution, and the
latest release, of the very successful MySource Matrix content
management system."
Versions tested / affected:
Squiz Matrix 4.6.0
Software:
Squiz - Matrix
http://www.squiz.net/
"Squiz Matrix delivers highly flexible and robust business integration
engine and application development tools. It is an evolution, and the
latest release, of the very successful MySource Matrix content
management system."
Versions tested / affected:
Squiz Matrix 4.0.6 / 4.2.2 and prior.
Credit: Daniel Teixeira
Vulnerability Details:
Common consumer routers Web Management Interface, allows internet access password disclosure simply by inspecting the DSL password <INPUT> field with development tools such as Safari Web Inspector or Firebug.
Demo: http://vimeo.com/16480521
The maintainer finally replied to the last of my three attempts to
contact him (very timely, regarding the different timezones we are in):
| I can't do much about it just at the moment. I've had a computer
| motherboard failure and while I've now got a new computer, I haven't
| got all my development tools running yet.
|
| I will update the DLL in the next release. Yes, I compiled the DLL
| myself. There wasn't a precompiled version at the time I started using
| it.
"GEAR Software has set the standard for professional DVD & CD recording
software for more than twenty years. GEAR develops solutions for
professional premastering, DVD editing and authoring, and is also a
leading provider of development tools that enable software companies to
integrate optical recording technology into their own products. GEAR
technology is integrated into solutions from some of the world's most
prominent technology organizations, including Apple, Symantec, Siemens,
Kodak, Philips and Bosch, among many others"
Original URL:
http://securityreason.com/achievement_securityalert/71
- --- 0.Description ---
The SeaMonkey project is a community effort to develop the SeaMonkey all-in-one internet application suite (see below). Such a software suite was previously made popular by Netscape and Mozilla, and the SeaMonkey project continues to develop and deliver high-quality updates to this concept. Containing an Internet browser, email & newsgroup client with an included web feed reader, HTML editor, IRC chat and web development tools, SeaMonkey is sure to appeal to advanced users, web developers and corporate users.
- --- 1. SeaMonkey 1.1.18 Remote Array Overrun (Arbitrary code execution) ---
The main problem exist in dtoa implementation. SeaMonkey has the same dtoa as a KDE, Opera and all BSD systems. This issue has been fixed in Firefox 3.5.4 and fix
easy-to-use Voice Office applications help increase productivity and
enhance organizational communications - without requiring any
integration work. For the hospitality sector, the Guest Services
applications provide additional services/features, generate revenue from
advertising on the phone screen, and reduce the cost of operations by
enabling guests to self serve. Custom development tools are also
available to end customers for delivery of customized content to IP
phones.
[source: http://www.nortel.com/ag2000]
