Computer Security

Search:Vulnerability:20.12.2010
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Ecava IntegraXor ActiveX buffer overflow
Published:20.12.2010
Source:JEREMYBROWN
SecurityVulns ID:11315
Type:client
Level:5/10
Description:Buffer overflow in "save" method.
Original documentdocumentJeremy Brown, Ecava IntegraXor Remote ActiveX Buffer Overflow PoC (20.12.2010)
Files:Ecava IntegraXor Remote ActiveX Buffer Overflow PoC
Discuss:Read or add your comments to this news (0 comments)

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:20.12.2010
Source:
SecurityVulns ID:11316
Type:remote
Level:5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:MYBB : MyBB 1.6
Original documentdocumentYGN Ethical Hacker Group, MyBB 1.6 <= Cross Site Scripting (XSS) Vulnerability (20.12.2010)
Discuss:Read or add your comments to this news (0 comments)

HP Insight Management Agents information leak
Published:20.12.2010
Source:BUGTRAQ
SecurityVulns ID:11317
Type:remote
Level:3/10
Description:It's possible to discover installation path.
Affected:HP : HP Insight Management Agents 8.5
CVE:CVE-2010-4112 (HP Insight Management Agents before 8.6 allows remote attackers to obtain sensitive information via an unspecified request that triggers disclosure of the full path.)
Original documentdocumentHP, [security bulletin] HPSBMA02616 SSRT100231 rev.1 - HP Insight Management Agents Running on Linux and Windows, Remote Full Path Disclosure (20.12.2010)
Discuss:Read or add your comments to this news (0 comments)

HP Insight Diagnostics Online Edition crossite scripting
updated since 20.12.2010
Published:25.05.2011
Source:BUGTRAQ
SecurityVulns ID:11318
Type:remote
Level:4/10
Affected:HP : HP Insight Diagnostics Online Edition 8.5
CVE:CVE-2010-4111 (Cross-site scripting (XSS) vulnerability in HP Insight Diagnostics Online Edition before 8.5.1.3712 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.)
Original documentdocumentProCheckUp Research, PR10-11: Multiple XSS injection vulnerabilities and a offsite redirection flaw within HP System Management Homepage (Insight Manager) (25.05.2011)
 documentHP, [security bulletin] HPSBMA02615 SSRT100228 rev.1 - HP Insight Diagnostics Online Edition Running on Linux and Windows, Remote Cross Site Scripting (XSS) (20.12.2010)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru