Computer Security
[EN] securityvulns.ru no-pyccku


SAP Management Console DoS
Published:05.10.2010
Source:
SecurityVulns ID:11178
Type:remote
Threat Level:
5/10
Description:Multiple DoS conditions.
Affected:SAP : SAP 6.40
 SAP : SAP 7.0
 SAP : SAP 7.10
Original documentdocumentOnapsis Research Labs, [Onapsis Security Advisory 2010-007] SAP Management Console Multiple Denial of Service (05.10.2010)

Qt Creator code execution
Published:05.10.2010
Source:
SecurityVulns ID:11173
Type:local
Threat Level:
4/10
Description:Dynamic libraries are loaded with relative path.
Affected:QTCREATOR : Qt Creator 2.0
CVE:CVE-2010-3374 (Qt Creator before 2.0.1 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.)
Original documentdocumentMANDRIVA, [ MDVSA-2010:193 ] qt-creator (05.10.2010)

Novell iManager directory traversal
Published:05.10.2010
Source:
SecurityVulns ID:11174
Type:remote
Threat Level:
6/10
Description:Directory traversal via nps.jar.
Original documentdocumentZDI, ZDI-10-190: Novell iManager getMultiPartParameters Arbitrary File Upload Remote Code Execution Vulnerability (05.10.2010)

Novell edirectory DoS
Published:05.10.2010
Source:
SecurityVulns ID:11175
Type:remote
Threat Level:
5/10
Description:NCP (TCP/524) DoS.
Original documentdocumentZDI, ZDI-10-189: Novell eDirectory Server Malformed Index Denial of Service Vulnerability (05.10.2010)

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:05.10.2010
Source:
SecurityVulns ID:11176
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:MAILMAN : mailman 2.1
 FGSSTUDIO : WebManager-Pro 7.4
 NETWIN : Surgemail 4.3
 WEBMANAGER : WebManager-Pro 7.0
CVE:CVE-2010-3089 (Multiple cross-site scripting (XSS) vulnerabilities in GNU Mailman before 2.1.14rc1 allow remote authenticated users to inject arbitrary web script or HTML via vectors involving (1) the list information field or (2) the list description field.)
Original documentdocumentMustLive, Уязвимости в CMS WebManager-Pro (05.10.2010)
 documentkerem.kocaer_(at)_bitsec.se, NetWin Surgemail XSS vulnerability (05.10.2010)
 documentinfo_(at)_itdefence.ru, [STANKOINFORMZASCHITA-10-01] Netbiter® webSCADA multiple vulnerabilities (05.10.2010)
 documentMANDRIVA, [ MDVSA-2010:191 ] mailman (05.10.2010)

HP-UX Directory Server / Red Hat Directory Server multiple security vulnerabilities
Published:05.10.2010
Source:
SecurityVulns ID:11177
Type:local
Threat Level:
6/10
Description:Information leak, privilege escalation.
Affected:HP : HP-UX Directory Server 8.10
 HP : Red Hat Directory Server 8.0
CVE:CVE-2010-3282
Original documentdocumentHP, [security bulletin] HPSBUX02587 SSRT100215 rev.1 - HP-UX Directory Server and Red Hat Directory Server for HP-UX, Local Disclosure of Information, Privilege Escalation (05.10.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod