Computer Security
[EN] securityvulns.ru no-pyccku


HP OpenVMS DoS
Published:12.12.2012
Source:
SecurityVulns ID:12774
Type:remote
Threat Level:
5/10
Description:DoS via LOGIN and ACME_LOGIN
Affected:HP : OpenVMS 8.4
CVE:CVE-2012-3277 (HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 7.3-2, 8.2, 8.3, and 8.4 on the Alpha platform does not properly implement the LOGIN and ACME_SERVER ACMELOGIN programs, which allows remote attackers to cause a denial of service via unspecified vectors.)
 CVE-2012-3276 (HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 7.3-2, 8.2, 8.3, and 8.4 on the Alpha platform does not properly implement the LOGIN and ACME_SERVER ACMELOGIN programs, which allows local users to cause a denial of service via unspecified vectors.)
Original documentdocumentHP, [security bulletin] HPSBOV02834 SSRT101055 rev.1 - HP OpenVMS LOGIN or ACMELOGIN, Remote or Local Denial of Service (DoS) (12.12.2012)

Linux kernel IPv6 filterin bypass
Published:12.12.2012
Source:
SecurityVulns ID:12775
Type:remote
Threat Level:
7/10
Description:It's possible to bypass filtering with overlapping fragments.
Affected:LINUX : kernel 2.6
CVE:CVE-2012-4444 (The ip6_frag_queue function in net/ipv6/reassembly.c in the Linux kernel before 2.6.36 allows remote attackers to bypass intended network restrictions via overlapping IPv6 fragments.)
Original documentdocumentUBUNTU, [USN-1660-1] Linux kernel vulnerability (12.12.2012)

Maxthon and Avant browsers multiple security vulnerabilities
Published:12.12.2012
Source:
SecurityVulns ID:12776
Type:client
Threat Level:
6/10
Description:Crossite scripting, information leakage, code execution.
Original documentdocumentRoberto Suggi Liverani, Multiple critical vulnerabilities in Maxthon and Avant browsers (12.12.2012)

Internet Explorer information leakage
Published:12.12.2012
Source:
SecurityVulns ID:12777
Type:client
Threat Level:
5/10
Description:Page can track any mouse movements, even behind the page.
Affected:MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
 MICROSOFT : Windows Vista
 MICROSOFT : Windows 2008 Server
 MICROSOFT : Windows 7
Original documentdocumentNick Johnson, Information disclosure (mouse tracking) vulnerability in Microsoft Internet Explorer versions 6-10 (12.12.2012)

gobofilter buffer overflow
Published:12.12.2012
Source:
SecurityVulns ID:12778
Type:remote
Threat Level:
7/10
Description:Buffer overflow on base64 parsing.
Affected:BOGOFILTER : bogofilter 1.2
CVE:CVE-2012-5468 (Heap-based buffer overflow in iconvert.c in the bogolexer component in Bogofilter before 1.2.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an email containing a base64 string that is decoded to incomplete multibyte characters.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 2585-1] bogofilter security update (12.12.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod