漏洞类别:Local 漏洞等级: 漏洞信息 HP Operations Orchestration (HP OO) helps reduce operational costs and improve service quality by automating routine IT tasks A potential security vulnerability has been identified with HP Operations Orchestration running Powershell opera…
漏洞类别:Local 漏洞等级: 漏洞信息 HP WebInspect is an automated and configurable web-application security-testing tool that mimics real-world hacking techniques and attacks. A potential security vulnerability has been identified with HP WebInspect software. The vulnerabil…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for jasper to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability could be exploited to gain comple…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for jasper to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Server 12-SP2 SUS…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for php5 to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP1 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Mal…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for util-linux to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Server 12-SP1 SUSE Linux Enterprise Desktop 12-SP1 漏洞危害 This vulner…
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for bind to fix the vulnerabilities. Affected Products: Oracle Linux 7 Oracle Linux 6 漏洞危害 Successful exploitation allows remote attackers to cause a denial of service via malformed optio…
CVE
CVE-2016-2775 HP-UX BIND Service running named Remote Denial of Service Vulnerability (HPSBUX03664)
漏洞类别:HP-UX 漏洞等级: 漏洞信息 Potential security vulnerabilities have been identified in the HP-UX BIND service running named. 漏洞危害 These vulnerabilities could be exploited remotely to create a denial of service. 解决方案 N/A Patch: Following are links for downloading pat…
CVE
CVE-2016-3092 HP-UX Tomcat-based Servlet Engine Remote Denial of Service Vulnerability (HPSBUX03665)
漏洞类别:HP-UX 漏洞等级: 漏洞信息 Potential security vulnerabilities have been identified in the HP-UX Tomcat-based Servlet Engine. Affected Versions:- HP-UX B.11.31 漏洞危害 These vulnerabilities could be exploited remotely to create a Denial of Service and URL Redirection. …
漏洞类别:Local 漏洞等级: 漏洞信息 Privoxy is a non-caching web proxy with advanced filtering capabilities for enhancing privacy, modifying web page data and HTTP headers, controlling access, and removing ads and other obnoxious Internet junk. Privoxy has a flexible config…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for openjdk-7 to fix the vulnerabilities. 漏洞危害 Successful exploitation allows remote attackers to affect integrity via vectors related to Libraries. 解决方案 Refer to Debian security advisory DSA 3707-1 to…
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for bind97 to fix the vulnerabilities. Affected Products: Oracle Linux 5 漏洞危害 Successful exploitation allows remote attackers to cause a denial of service via malformed options data in an…
CVE
CVE-2016-5195 Oracle Enterprise Linux Security Update for Unbreakable Enterprise kernel (ELSA-2016-3633)
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for Unbreakable Enterprise kernel to fix the vulnerabilities. Affected Products: Oracle Linux 7 Oracle Linux 6. 漏洞危害 An unprivileged, local user could use this flaw to gain write access t…
漏洞类别:CGI 漏洞等级: 漏洞信息 sysPass is a password manager that allows to save passwords using bidirectional encryption with a master password to a database. A SQL Injection vulnerability in ajax_search.php allows remote, authenticated users to execute arbitrary SQL qu…
漏洞类别:CGI 漏洞等级: 漏洞信息 X2Engine X2CRM is an open source Customer Relationship Management CRM software. X2CRM is a fast and compact enterprise grade marketing, sales and customer service application designed for small business. The 'FileUploadsFilter' class in 'Fi…
CVE
CVE-2016-8864 ISC BIND DNAME Answer Response Handling Denial of Service Vulnerability (AA-01434)
漏洞类别:DNS and BIND 漏洞等级: 漏洞信息 ISC BIND is open source software that implements the Domain Name System (DNS) protocols for the Internet. The vulnerability exists because of an assertion failure in db.c or resolver.c source files implemented in the affected versi…
漏洞类别:RedHat漏洞等级: 漏洞信息 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * It was found that the Linux kernel's IPv6 implementation mishandled socket options. A local attacker could abuse concurrent access t…
漏洞类别:RedHat 漏洞等级: 漏洞信息 The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers …
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for tar to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3702-1 to address this issue and obtain further det…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for nginx to fix the vulnerabilities. 漏洞危害 A remote attacker could possibly use this issue to obtain root privileges. 解决方案 Refer to Debian security advisory DSA 3701-1 to address this issue and obtain …
漏洞类别:File Transfer Protocol 漏洞等级: 漏洞信息 ProFTPD is an open source FTP server compatible with Unix-like systems and Windows (via Cygwin). It is among one of the most popular FTP servers used today for Unix-like systems. Diffie Hellman is an algorithm used to der…
漏洞类别:Local 漏洞等级: 漏洞信息 RubyGems is a package manager for the Ruby programming language that provides a standard format for distributing Ruby programs and libraries, a tool designed to easily manage the installation of gems, and a server for distributing them. T…
漏洞类别:RedHat 漏洞等级: 漏洞信息 The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update upgrades Flash Player to version 11.2.202.644. Security Fix(es): * This update fixes multiple vulnerabilities in Adobe Fla…
漏洞类别:RedHat 漏洞等级: 漏洞信息 The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain application availability in the event of a failure. Security Fix(es): * An authorization flaw w…
CVE
CVE-2015-6392 Cisco NX-OS Software Crafted DHCPv4 Packet Denial of Service Vulnerability (cisco-sa-20161005-dhcp1)
漏洞类别:Cisco 漏洞等级: 漏洞信息 A vulnerability in the implementation of the DHCPv4 relay agent and smart relay agent in Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerab…