This tool enables you to retrieve the plain text password for ColdFusion MX6.
543692f3fd74edd0b41e614f6085c612d94532ddc074cb70c223cfe91e09049etenshi is a log monitoring program, designed to watch one or more log files for lines matching user defined regular expressions and report on the matches. The regular expressions are assigned to queues which have an alert interval and a list of mail recipients. Queues can be set to send a notification as soon as there is a log line assigned to it, or to send periodic reports.
4f875db168ca53249c521ac0b5a1e2b7498613bc3ac2a23de85638e44d0006a7In consequence of an insufficient threat model, ownCloud is storing all user's private RSA keys in clear text in PHP session files. These unencrypted private keys can be accessed by every web application that has the privilege of the web server user. The affected files exposing cryptographic keys will be stored in the PHP session directory for a number of hours until they are removed. All versions of ownCloud since the introduction of the encryption module in version 5.0.7 including version 7.0.0 are affected.
a618a09a68105380a438f404228d67b0045ecb744d155c0bdce6d9697cc0177dIt is possible to re-use a link which includes a non-expiring authentication token in the query string to gain access to the interface of the Barracuda Web Application Firewall (WAF) firmware version 7.8.1.013.
49b95080b97fed1ca7fc8d3aa3dfef41e6c259c643023705114b6de832727218FreeDisk version 1.01 suffers from local file inclusion and remote file upload vulnerabilities.
b13a6259851bd2fc447e8f0e2556cc9bc0769bb1f4312ca47da37f66ee5c4257Video WiFi Transfer version 1.01 suffers from a directory traversal vulnerability.
a1e4345f9f57c640e427b649d6399872f828be3569ea63b0191fe4f95f544b4cGentoo Linux Security Advisory 201408-1 - A vulnerability in Zend Framework could allow a remote attacker to inject SQL commands. Versions less than 1.11.6 are affected.
9c0c283e7d0f28f19d4cf443de50d14d0425f6dffb037bc6186698a42a1f0b97Ubuntu Security Notice 2306-1 - Maksymilian Arciemowicz discovered that the GNU C Library incorrectly handled the getaddrinfo() function. An attacker could use this issue to cause a denial of service. This issue only affected Ubuntu 10.04 LTS. It was discovered that the GNU C Library incorrectly handled the getaddrinfo() function. An attacker could use this issue to cause a denial of service. This issue only affected Ubuntu 10.04 LTS and Ubuntu 12.04 LTS. Various other issues were also addressed.
d3ab72f234d3127e89f898188c884fa871546397dcd29ae63cfb9595750ab3acRed Hat Security Advisory 2014-1002-01 - Red Hat Enterprise Virtualization is a feature-rich server virtualization management system that provides advanced capabilities for managing Red Hat virtualization infrastructure for Servers and Desktops. It was found that the oVirt storage back end did not wipe memory snapshots when VMs were deleted, even if wipe-after-delete was enabled for the VM's disks. A remote attacker with credentials to create a new VM could use this flaw to potentially access the contents of memory snapshots in an uninitialized storage volume, possibly leading to the disclosure of sensitive information.
e2b0bb143c934b487a2077da0836d68548b74cf73eecfbbda32a69f37d9a2a41Debian Linux Security Advisory 2996-1 - Multiple security issues have been found in Icedove, Debian's version of errors and use-after-frees may lead to the execution of arbitrary code or denial of service.
51a454a081f26b9e7f6ccd09d600f777d8fc70d31080869af05545c1ed847c2bDebian Linux Security Advisory 2995-1 - Don A. Bailey from Lab Mouse Security discovered an integer overflow flaw in the way the lzo library decompressed certain archives compressed with the LZO algorithm. An attacker could create a specially crafted LZO-compressed input that, when decompressed by an application using the lzo library, would cause that application to crash or, potentially, execute arbitrary code.
1ead9c8af49a2ce3949b974fafca20251b706d338d7b8b29bd6fb57789bc1b1dSlackware Security Advisory - New dhcpcd packages are available for Slackware 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue.
c2cda06d50c75332ea1743ebb6f843a2f4decb363277cd83b5611ed643fad491Slackware Security Advisory - New samba packages are available for Slackware 14.1 and -current to fix a security issue.
44b8d50a75b2b5a6706aaa08fd9d052bd78665751cd4937c2c3919eb17918b82Ebay Inc Magento ProStore CP suffers from filter validation bypass and persistence vulnerabilities.
80a8f01f130c5d772df8f12f4620bdc219a2c12842f0d13e34821eca2852cdf9
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed