Computer Security
[EN] securityvulns.ru no-pyccku


Visual Tools DVRs multiple security vulnerabilities
Published:17.10.2012
Source:
SecurityVulns ID:12651
Type:remote
Threat Level:
5/10
Description:Information leakage, code execution.
Original documentdocumentAndrea Fabrizi, Visual Tools DVR multiple vulnerabilities (17.10.2012)

Valve Steam multiple security vulnerabilities
Published:17.10.2012
Source:
SecurityVulns ID:12652
Type:client
Threat Level:
6/10
Description:Buffer overflows, code executions and game engines vulnerabilities can be exploited via steam:// URI handler.
Original documentdocumentReVuln, Critical issues affecting Steam users (17.10.2012)
Files:STEAM BROWSER PROTOCOL INSECURITY

Ezhometech EzServer memory corruption
Published:17.10.2012
Source:
SecurityVulns ID:12654
Type:remote
Threat Level:
6/10
Description:Memory corruption on RTMP AMF request parsing
Affected:EZHOMETECH : EzServer 7.0
CVE:CVE-2012-4750
Original documentdocumentlorenzo.cantoni86_(at)_gmail.com, [CVE-2012-4750] Ezhometech EzServer 7.0 Remote Heap Corruption Vulnerability (17.10.2012)

graphicsmagick memory corruption
Published:17.10.2012
Source:
SecurityVulns ID:12655
Type:library
Threat Level:
5/10
Description:Memory corruption on PNG parsing.
Affected:GRAPHICSMAGIC : GraphicsMagick 6.7
CVE:CVE-2012-3438 (The Magick_png_malloc function in coders/png.c in GraphicsMagick 6.7.8-6 does not use the proper variable type for the allocation size, which might allow remote attackers to cause a denial of service (crash) via a crafted PNG file that triggers incorrect memory allocation.)

RSA Adaptive Authentication information leakage
Published:17.10.2012
Source:
SecurityVulns ID:12656
Type:remote
Threat Level:
5/10
Affected:EMC : RSA Adaptive Authentication On-Premise 6.0
CVE:CVE-2012-2286 (Unspecified vulnerability in EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 before SP3 P3 allows remote attackers to obtain sensitive information via unknown vectors.)
Original documentdocumentEMC, ESA-2012-035: RSAR Adaptive Authentication (On-Premise) Information Disclosure Vulnerability (17.10.2012)

Hardcoreview memory corruption
Published:17.10.2012
Source:
SecurityVulns ID:12657
Type:local
Threat Level:
4/10
Description:Memory corruption on GIF parsing
Affected:HARDCOREVIEW : Hardcoreview 6.11
Original documentdocumentpereira_(at)_secbiz.de, Hardcoreview WriteAV Arbitrary Code Execution (17.10.2012)
Files:Hardcoreview WriteAV Arbitrary Code Execution

Samsung Kies ActiveX multiple security vulnerabilities
updated since 17.10.2012
Published:10.01.2013
Source:
SecurityVulns ID:12653
Type:client
Threat Level:
5/10
Description:Code execution, files modification.
Affected:SAMSUNG : Samsung Kies 2.3
 SAMSUNG : Samsung Kies 2.5
CVE:CVE-2012-6429 (Buffer overflow in the PrepareSync method in the SyncService.dll ActiveX control in Samsung Kies before 2.5.1.12123_2_7 allows remote attackers to execute arbitrary code via a long string to the password argument.)
 CVE-2012-3810
 CVE-2012-3809
 CVE-2012-3808
 CVE-2012-3807
 CVE-2012-3806
Original documentdocumentHigh-Tech Bridge Security Research, Remote Buffer Overflow Vulnerability in Samsung Kies (10.01.2013)
 documentHigh-Tech Bridge Security Research, Multiple vulnerabilities in Samsung Kies (17.10.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod