漏洞类别:CGI 漏洞等级: 漏洞信息 IPS Community Suite (previously known as Invision Power Suite) is a Internet community software produced by Invision Power Services, Inc. It is written in PHP and uses MySQL as a database management system. The vulnerability exists because …
漏洞类别:CGI 漏洞等级: 漏洞信息 WebNMS is an industry-leading framework for building network management applications. Multiple vulnerabilities including Remote Code Execution, File Download and Weak Encryption have been identified in WebNMS Framework. Affected Versions: W…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for libidn to fix the vulnerabilities. 漏洞危害 Successful exploitation allows context-dependent attackers to cause a denial of service via crafted UTF-8 data. 解决方案 Refer to Debian security advisory DSA 36…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for libarchive to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3657-1 to address this issue and obtain furt…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for tryton-server to fix the vulnerabilities. 漏洞危害 Successful exploitation allow remote authenticated users with certain permissions to read arbitrary files via the name parameter or unspecified other …
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for mupdf to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3655-1 to address this issue and obtain further d…
漏洞类别:Local 漏洞等级: 漏洞信息 FortiClient is a comprehensive endpoint security solution. An Information Disclosure vulnerability has been identified in FortiClient which reveals SSL-VPN credentials. Affected Versions: FortiClient version 5.4 and earlier 漏洞危害 A local a…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for flex to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3653-1 to address this issue and obtain further de…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for imagemagick to fix the vulnerabilities. 漏洞危害 Successful exploitation allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other …
漏洞类别:Local 漏洞等级: 漏洞信息 EMC NetWorker is a suite of enterprise level data protection software that unifies and automates backup to tape, disk-based, and flash-based storage media across physical and virtual environments for granular and disaster recovery. A remo…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for hawk to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise High Availability Extension 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP4 漏洞危害 An attacker can exploit these issues to affect c…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for mariadb to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Server for SAP 12 SUSE Linux Enterprise Server 12-LTSS 漏洞危害 This vulnerability could be exploited to gain complete access to…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for perl to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP4 漏洞危害 This vulnerabil…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for the linux kernel to fix the vulnerabilities. Affected Products: SUSE OpenStack Cloud 5 SUSE Manager Proxy 2.1 SUSE Manager 2.1 SUSE Linux Enterprise Server 11-SP3-LTSS SUSE Linux Enterprise Server 11-E…
漏洞类别:RedHat 漏洞等级: 漏洞信息 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * It was found that the RFC 5961 challenge ACK rate limiting as implemented in the Linux kernel's networking subsystem allowed an off…
漏洞类别:Local 漏洞等级: 漏洞信息 EMC Documentum Content Server is an embedded platform for application development. The Server is exposed to a local privilege escalation vulnerability. Affected Products: EMC Documentum Content Server 6.0, 6.5 before SP2 P02, 6.5 SP3 befo…
CVE
Kaspersky Internet Security and Anti-virus Access Violation and Memory Leak Vulnerability漏洞银行丨0DAY BANK
漏洞类别:Local 漏洞等级: 漏洞信息 Antivirus and Internet Security software for home or business. Several vulnerabilities were reported in Kaspersky Internet Security and Anti-virus. A local user can cause denial of service conditions on the target system. A local user can…
漏洞类别:Local 漏洞等级: 漏洞信息 Google Chrome is a web browser for multiple platforms developed by Google. This Google Chrome update fixes the following vulnerabilities: CVE-2016-5147: Universal XSS in Blink. CVE-2016-5148: Universal XSS in Blink. CVE-2016-5149: Script …
漏洞类别:Local 漏洞等级: 漏洞信息 Adobe ColdFusion is an application for developing Web sites. Adobe has released a security hotfix for ColdFusion versions 11 and 10. This hotfix resolves a vulnerability that could lead to information disclosure. Affected Versions: ColdFu…
漏洞类别:Local 漏洞等级: 漏洞信息 Cisco WebEx Player is used to play recorded meetings in the ".wrf" file format. A remote code execution vulnerability has been identified in Cisco WebEx Player for WRF files. Affected Versions: Cisco WebEx Player for WRF Files version T29…
CVE
VMware Workstation Pro, VMware Workstation Player and VMware Fusion DLL Hijacking Vulnerability (VMSA-2016-0010)漏洞银行丨0DAY BANK
漏洞类别:Local 漏洞等级: 漏洞信息 VMware Workstation is a hosted hypervisor that runs on x64 versions of Windows and Linux operating systems. A DLL hijacking vulnerability is present in the VMware Tools "Shared Folders" (HGFS) feature running on Microsoft Windows. Affecte…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for tomcat6 to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Malicious users co…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for wget to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Server 12-SP1 SUSE Linux Enterprise Desktop 12-SP1 漏洞危害 This vulnerability could be exploited to gain partial access to sensiti…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for mariadb to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Workstation Extension 12-SP1 SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Server 12-SP1 SUSE …
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for wireshark to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP4 漏洞危害 This vulne…