漏洞类别:Windows 漏洞等级: 漏洞信息 KB3080079 provides support for Transport Layer Security (TLS) 1.1 and TLS 1.2 in Windows 7 Service Pack 1 (SP1) or Windows Server 2008 R2 SP1 for Remote Desktop Services (RDS). 漏洞危害 TLS 1.1 and TLS 1.2 support will not be available for …
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for libdbd-mysql-perl to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3684-1 to address this issue and obta…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for chromium-browser to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3683-1 to address this issue and obtai…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for wordpress to fix the vulnerabilities. 漏洞危害 Cross-site request forgery (CSRF) vulnerability in the wp_ajax_wp_compression_test function in wp-admin/includes/ajax-actions.php in WordPress allows remo…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for c-ares to fix the vulnerabilities. 漏洞危害 Heap-based buffer overflow in the ares_create_query function in c-ares allows remote attackers to cause a denial of service (out-of-bounds write) or possibly…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for pdns to fix the vulnerability. Affected OS: Fedora 23 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerability. Updat…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for curl to fix the vulnerability. Affected OS: Fedora 23 漏洞危害 An attacker can exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will like…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for mariadb to fix the vulnerability. Affected OS: Fedora 23 漏洞危害 Successful exploitation allows local users to create arbitrary configurations and bypass certain protection mechanisms by setting gener…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for nodejs-tough-cookie to fix the vulnerability. Affected OS: Fedora 23 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulne…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for mongodb to fix the vulnerability. Affected OS: Fedora 23 漏洞危害 The client in MongoDB uses world-readable permissions on .dbshell history files, which might allow local users to obtain sensitive info…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for community-mysql to fix the vulnerability. Affected OS: Fedora 23 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerabi…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for openjpeg2 to fix the vulnerability. Affected OS: Fedora 24 漏洞危害 convert.c in OpenJPEG allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vecto…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for bind to fix the vulnerability. Affected OS: Fedora 24 漏洞危害 A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS request packet…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for bind99 to fix the vulnerability. Affected OS: Fedora 24 漏洞危害 A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS request pack…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for systemd to fix the vulnerability. Affected OS: Fedora 24 漏洞危害 A flaw was found in the way systemd handled empty notification messages. A local attacker could use this flaw to make systemd freeze it…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for bash to fix the vulnerability. Affected OS: Fedora 24 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerability. Updat…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for openssh to fix the vulnerability. Affected OS: Fedora 24 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerability. Up…
漏洞类别:CGI 漏洞等级: 漏洞信息 Splunk is a log monitoring and reporting tool with search capabilities. Splunk Enterprise and Splunk Light are exposed to following vulnerabilities: Multiple vulnerabilities in OpenSSL before 1.0.1t and 1.0.2h (SPL-119440) Multiple vulnerab…
漏洞类别:CGI 漏洞等级: 漏洞信息 Kerio Control (previously Kerio WinRoute Firewall) is a Unified Threat Management (UTM) system that protects your network from viruses, malware and malicious activity. Kerio Control brings together next-generation firewall capabilities -- i…
漏洞类别:CGI 漏洞等级: 漏洞信息 Sugar is a complete CRM solution that automates core sales, customer service and marketing processes, with a focus on the individual. SugarCRM contains a flaw that could allow a remote attacker to execute arbitrary code on the system due to…
漏洞类别:RedHat 漏洞等级: 漏洞信息 In accordance with the Red Hat Enterprise Linux Errata Support Policy, support for Red Hat Enterprise Linux 5 will be retired on March 31, 2017, at the end of Production Phase 3. Until that date, customers will continue to receive Critic…
漏洞类别:RedHat 漏洞等级: 漏洞信息 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 45.4.0. Security Fix(es): * Multiple flaws were found in the processing of malformed web content. A web page containing malicious …
漏洞类别:AIX 漏洞等级: 漏洞信息 A directory traversal vulnerability in the Eclipse Help component shipped by the Tivoli Lightweight Infrastructure (LWI) allows remote attackers to read arbitrary files via a crafted URL. This vulnerability affects IBM System Director Conso…
CVE
Cisco Wireless LAN Controller Management Interface Denial of Service Vulnerability (cisco-sa-20160420-wlc)
漏洞类别:General remote services 漏洞等级: 漏洞信息 A vulnerability in the web-based management interface of Cisco Wireless LAN Controller (WLC) devices running Cisco AireOS Software could allow an unauthenticated, remote attacker to cause an affected device to reload, re…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 it was discovered that Systemd improperly handled zero-length notification messages. 漏洞危害 A local unprivileged attacker could use this to cause a denial of service (init crash leading to system unavailability). 解决方案 Refer to Ubuntu advis…