漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for python-wikitcms to fix the vulnerability. Affected OS: Fedora 25 Fedora 24 漏洞危害 Successful exploitation of the vulnerability may allow an attacker to cause remote code execution 解决方案 Fedora has iss…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for freeipa to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Successful exploitation may allow an attacker to cause a denial of service. 解决方案 Fedora has issued updated packages to fix this vulnera…
漏洞类别:Local 漏洞等级: 漏洞信息 Citrix has released hotfixes to address multiple vulnerabilities affecting Citrix XenServer. CVE-2016-9932- emulation on x86 CMPXCHG8B fails to disregard operand size override CVE-2016-10024- mask interrupts may be possible on x86 PV gues…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for nagios-plugins to fix the vulnerability. Affected OS: Fedora 24 Fedora 25 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this …
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for community-mysql to fix the vulnerability. Affected OS: Fedora 24 Fedora 25 漏洞危害 Exploitation of the vulnerabilities could allow an unauthenticated, remote attacker to access sensitive information, …
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for openjpeg2 to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Successful exploitation may allow an attacker to cause a heap-buffer overflow. 解决方案 Fedora has issued updated packages to fix this vu…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for samba to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Successful exploitation may cause privilege escalation. 解决方案 Fedora has issued updated packages to fix this vulnerability. Updates can be…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for gdk-pixbuf2 to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Successful exploitation may lead to memory leakage and buffer overflow. 解决方案 Fedora has issued updated packages to fix this vulnera…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for js-jquery to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Exploitation of the vulnerabilities may cause Cross-site scripting attacks via cross-domain ajax requests. 解决方案 Fedora has issued upd…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for httpd to fix the vulnerability. Affected OS: Fedora 24 Fedora 25 漏洞危害 Successful exploitation may cause Denial of service attacks. 解决方案 Fedora has issued updated packages to fix this vulnerability.…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for hdf5 to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Successful exploitation may cause an attacker to cause heap buffer overflows. 解决方案 Fedora has issued updated packages to fix this vulnerab…
漏洞类别:Fedora. 漏洞等级: 漏洞信息 Fedora has released security update for xen to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Successful exploitation may result in a code execution and/or cause a denial of servie. 解决方案 Fedora has issued updated packages to fix thi…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for curl to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Sucessful exploitation may cause buffer overflows. 解决方案 Fedora has issued updated packages to fix this vulnerability. Updates can be insta…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for kernel to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Sucessful exploitation of the vulnerabilities may allow an attacker to cause a buffer over and leak informattion. 解决方案 Fedora has issued…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for kernel to fix the vulnerability. Affected OS: Fedora 24 漏洞危害 Sucessful exploitation of the vulnerabilities may allow an attacker to cause a buffer over and leak informattion. 解决方案 Fedora has issued…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for kernel to fix the vulnerability. Affected OS: Fedora 23 漏洞危害 Sucessful exploitation of the vulnerabilities may allow an attacker to cause a buffer over and leak informattion. 解决方案 Fedora has issued…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for gstreamer1-plugins-base to fix the vulnerability. Affected OS: Fedora 24 漏洞危害 Sucessful exploitation may cause a denial of Service. 解决方案 Fedora has issued updated packages to fix this vulnerability…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for gstreamer-plugins-base to fix the vulnerability. Affected OS: Fedora 25 Fedora 24 漏洞危害 Sucessful exploitation may cause a denial of Service. 解决方案 Fedora has issued updated packages to fix this vuln…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for gstreamer1-plugins-bad-free to fix the vulnerability. Affected OS: Fedora 24 漏洞危害 Sucessful exploitation may cause an Heap Overflow. 解决方案 Fedora has issued updated packages to fix this vulnerabilit…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for openjpeg2 to fix the vulnerability. Affected OS: Fedora 24 Fedora 25 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulne…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for cracklib to fix the vulnerability. Affected OS: Fedora 24 Fedora 25 漏洞危害 Successful exploitation can allow an attacker to cause a buffer overflow. 解决方案 Fedora has issued updated packages to fix thi…
漏洞类别:Web Application 漏洞等级: 漏洞信息 Session cookie set over Non-HTTPS connection 漏洞危害 Session cookie set over Non-HTTPS connection can lead to a Man in the Middle attack and cookie data can be stolen. Cookie values can be sniffed by an attacker. This later can be …
漏洞类别:Web Application 洞等级: 漏洞信息 The session cookie does not contain the "secure" attribute 漏洞危害 Session Cookies with "secure" attribute are only permitted to be sent via HTTPS. Session cookies sent via HTTP expose users to sniffing attacks that could lead to us…
绿盟科技发布了本周安全通告,周报编号NSFOCUS-16-38,绿盟科技漏洞库本周新增46条,其中高危18条。本次周报建议大家关注 OpenSSH存在多个安全漏洞 ,目前,厂商已发布漏洞修复程序,用户可将程序升级至7.4版本。 焦点漏洞 OpenSSH存在多个安全漏洞 NSFOCUS ID 35665、35666、35667、356658 CVE ID CVE-2016-10009、CVE-2016-10010、CVE-2016-10011、CVE-2016-10012 受影响版本 OpenSSH < 7.4…
思科提醒用户Cisco CloudCenter Orchestrator系统存在提权漏洞——CVE-2016-9223,可能已经被用于网络攻击。 Cisco CloudCenter是由CloudCenter Manager和CloudCenter Orchestrator组成的混合云管理平台。CloudCenter Manager是用户和管理员使用的界面,而CloudCenter Orchestrator允许建模,部署、管理现有的以及新加入的应用程序。 CVE-2016-9223概述 Cisco CloudCent…