漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for phpmyadmin to fix the vulnerabilities. Affected Products: openSUSE Leap 42.1 openSUSE 13.2 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages whi…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for typo3-cms-4_5 to fix the vulnerabilities. Affected Products: openSUSE Leap 42.1 openSUSE 13.2 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages …
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for phpmyadmin to fix the vulnerabilities. Affected Products: openSUSE 13.1 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages which contain a patch.…
CVE
OpenSuSE Security Update for MozillaFirefox, mozilla-nss (openSUSE-SU-2016:2182-1)漏洞银行丨0DAY BANK
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for mozillafirefox, mozilla-nss to fix the vulnerabilities. Affected Products: openSUSE Leap 42.1 openSUSE 13.2 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the la…
漏洞类别:RedHat 漏洞等级: 漏洞信息 The java-1.6.0-openjdk packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Java Software Development Kit. Security Fix(es): * An insufficient bytecode verification flaw was discovered in the Hotspot component in Ope…
漏洞类别:Local 漏洞等级: 漏洞信息 Citrix NetScaler Gateway provides secure access control management solution. A login for hijacking vulnerability has been identified in Citrix NetScaler Gateway which allows a remote attacker to steal user credentials. Affected Systems: C…
漏洞类别:AIX 漏洞等级: 漏洞信息 AIX is prone to the following vulnerabilities: OpenSSL could allow a remote attacker to obtain sensitive information, by sending an overly long ASN.1 string to the X509_NAME_oneline() function. (CVE-2016-2176) OpenSSL could allow a remote a…
漏洞类别:AIX 漏洞等级: 漏洞信息 IBM AIX Adapter FC5899 / FC1763 with "jumbo_frames" disabled could allow a remote attacker to send specially crafted packets that would crash the adapter. Affected Platforms: AIX 5.3, AIX 6.1, AIX 7.1, AIX 7.2 Note:The detection requires ro…
漏洞类别:AIX 漏洞等级: 漏洞信息 There are multiple vulnerabilities in IBM SDK Java Technology Edition, Versions 6, 7, 7.1, 8 that are used by AIX. AIX is prone to the following vulnerabilities: An unspecified vulnerability in Oracle Java SE and Java SE Embedded related to…
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for python to fix the vulnerabilities. Affected Products: Oracle Linux 7 Oracle Linux 6 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Malicio…
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for kernel to fix the vulnerabilities. Affected Products: Oracle Linux 7 漏洞危害 net/ipv4/tcp_input.c in the Linux kernel does not properly determine the rate of challenge ACK segments, whic…
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for kernel to fix the vulnerabilities. Affected Products: Oracle Linux 6 漏洞危害 net/ipv4/tcp_input.c in the Linux kernel does not properly determine the rate of challenge ACK segments, whic…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for dosfstools to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Server 12-SP1 SUSE Linux Enterprise Desktop 12-SP1 漏洞危害 This vulnerability can also be used to cause a limited denial of …
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for dosfstools to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Server 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP4 漏洞危害 This vulnerability can also be used to cause a limited denial o…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for squid to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Server 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP4 漏洞危害 This vulnerability could be exploited to gain partial access to sens…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for rsync to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Server 12-SP1 SUSE Linux Enterprise Desktop 12-SP1 漏洞危害 Malicious users could use this vulnerability to change partial content…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for xerces-c to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Server 12-SP1 SUSE Linux Enterprise Desktop 12-SP1 漏洞危害 This vulnerab…
漏洞类别:CGI 漏洞等级: 漏洞信息 IBM Integrated Management Module (IMM), that provides a service-processor control, monitoring, and an alerting function was detected on the targeted host. 0day
CVE
Mediawiki Multiple Vulnerabilities (MediaWiki Security Release: 1.27.1, 1.26.4, 1.23.15)漏洞银行丨0DAY BANK
漏洞类别:CGI 漏洞等级: 漏洞信息 MediaWiki is free and open source wiki software developed by the Wikimedia. It's used to power wiki web sites such as Wikipedia, Wiktionary and Commons. These releases fix five security issues in core and one for the extension PdfHandler: (…
漏洞类别:Security Policy 漏洞等级: 漏洞信息 The host is running Ubuntu 15.10. Support for Ubuntu 15.10 ended on July 28, 2016. No further updates, including security updates, are available for Ubuntu 15.10. 漏洞危害 The system is at high risk of being exposed to security vuln…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that HarfBuzz incorrectly handled memory. It was discovered that HarfBuzz incorrectly handled certain length checks. 漏洞危害 A remote attacker could use this issue to cause HarfBuzz to crash, resulting in a denial of servi…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that Libidn incorrectly handled invalid UTF-8 characters. It was discovered that Libidn incorrectly handled certain input. 漏洞危害 A remote attacker could use this issue to cause Libidn to crash, resulting in a denial of s…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that Eye of GNOME incorrectly handled certain invalid UTF-8 strings. 漏洞危害 If a user were tricked into opening a specially-crafted image, a remote attacker could use this issue to cause Eye of GNOME to crash, resulting i…
漏洞类别:Local 漏洞等级: 漏洞信息 Cisco AnyConnect is a VPN Client for multiple platforms. A vulnerability in Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to install and execute an arbitrary executable file with privileg…
漏洞类别:Local 漏洞等级: 漏洞信息 ownCloud is a suite of client-server software for creating file hosting services and using them. ownCloud Windows Client is vulnerable to local code injection attack wherein a malicious local user could load a specially crafted DLL to inj…