Red Hat Security Advisory 2013-0751-01 - These packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Software Development Kit. Multiple flaws were discovered in the font layout engine in the 2D component. An untrusted Java application or applet could possibly use these flaws to trigger Java Virtual Machine memory corruption. Multiple improper permission check issues were discovered in the Beans, Libraries, JAXP, and RMI components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions.
3dd79f78440b623f915a9d88a18803f2cbd13f584293a3ef010118bc0dbab5b8Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
35a8d392b930b7db1ec9ff0c55bc89d2cfb08d13b8cb7937012dab776c36c89dCisco Security Advisory - Cisco TelePresence multipoint control unit (MCU) and Cisco TelePresence Server contain a vulnerability that could allow an unauthenticated, remote attacker to trigger the reload of an affected system. Cisco has released free software updates that address this vulnerability. Workarounds that mitigate this vulnerability are not available.
119f45014590ba7857394b2b18f4cc8f0f389955b9862b725e9ebc23bf070330Oracle WebCenter Sites Satellite Server versions 7.6.0 Patch1, 7.6.2, 11.1.1.6.0, and 11.1.1.6.1 suffer from HTTP header injection and cache poisoning vulnerabilities.
b211d5ba79c2e4506fc8c437bbb356031d7bc5df5b5dceb6705801d00369973bDrupal elFinder File Mapper third party module versions 6.x and 7.x suffer from a cross site request forgery vulnerability.
1b78014778f58c0e69085bc915cc9663c2fb554fe12306c3d14bff605cae1d2aKrisonAV CMS version 3.0.1 suffers from cross site request forgery and cross site scripting vulnerabilities.
67fef60fe75255a54bdaa421e598033b564c3cd7f9a2ddc60ad14b24dcb74af4Apple Security Advisory 2013-04-16-2 - Java for OS X 2013-003 and Mac OS X v10.6 Update 15 are now available and address many vulnerabilities in 1.6.0_43.
729975cdb6190f6a342d07628259c73bcd3f36b80d4cc898f7e442db272605acThe Java active-x control in Java Web Start Launcher suffers from a memory corruption vulnerability.
bda67853310f31100eb0d7eabe5f41ccba0af48ed6d9d0588dbc627b879ca5c2Sitecom WLM-3500 routers contain an undocumented access backdoor that can be abused to bypass existing authentication mechanisms.
f2ecdb133a910caba3fe823da7e97c6b19b3cd08e31d2581b74733a09d7fc2c9Apple Security Advisory 2013-04-16-1 - Safari 6.0.4 is now available and fixes one vulnerability. Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution Description: An invalid cast issue existed in the handling of SVG files. This issue was addressed through improved type checking.
3a89ff7462c5244bed37bf3530980d2b9d9ba36623eb4725d574dfba20f33962Multiple security issues for Open-Xchange Server 6 and OX AppSuite have been discovered and fixed. These range from cross site scripting to header injection.
e2706921a9718e5f1888014c099073f64e4fae60be06edb06264c9b991a2542eDrupal MP3 Player third party module version 6.x suffers from a cross site scripting vulnerability.
2931075252225a999b92df8d82e9a2f8c28184385f1e001b9b5203c4e7a1ce8fDrupal Autocomplete Widgets for Text and Number Fields third party module versions 6.x and 7.x suffer from an access bypass vulnerability.
f18968b9cd445e48ab19924ba4ec5903416dee4fa2067746d5a3b81b696ee5b6ZPanel suffers from a remote PHP code execution vulnerability.
cb33afd179e83c86b0ed86861357632fc5c668bcaac89201cd95e4351ee00eafSosci Survey versions prior to 2.3.04a suffer from authorization issues, cross site scripting, and remote command execution vulnerabilities.
2688b19fa954cb3f1486c7c46ca8d36690ad27229d60a36c584a5f2d3a45c7aa
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed