漏洞类别:CGI 漏洞等级: 漏洞信息 Splunk is a log monitoring and reporting tool with search capabilities. Splunk Enterprise and Splunk Light are exposed to following vulnerabilities: Multiple vulnerabilities in OpenSSL before 1.0.1t and 1.0.2h (SPL-119440) Multiple vulnerab…
漏洞类别:CGI 漏洞等级: 漏洞信息 Kerio Control (previously Kerio WinRoute Firewall) is a Unified Threat Management (UTM) system that protects your network from viruses, malware and malicious activity. Kerio Control brings together next-generation firewall capabilities -- i…
漏洞类别:CGI 漏洞等级: 漏洞信息 Sugar is a complete CRM solution that automates core sales, customer service and marketing processes, with a focus on the individual. SugarCRM contains a flaw that could allow a remote attacker to execute arbitrary code on the system due to…
漏洞类别:RedHat 漏洞等级: 漏洞信息 In accordance with the Red Hat Enterprise Linux Errata Support Policy, support for Red Hat Enterprise Linux 5 will be retired on March 31, 2017, at the end of Production Phase 3. Until that date, customers will continue to receive Critic…
漏洞类别:RedHat 漏洞等级: 漏洞信息 Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 45.4.0. Security Fix(es): * Multiple flaws were found in the processing of malformed web content. A web page containing malicious …
漏洞类别:AIX 漏洞等级: 漏洞信息 A directory traversal vulnerability in the Eclipse Help component shipped by the Tivoli Lightweight Infrastructure (LWI) allows remote attackers to read arbitrary files via a crafted URL. This vulnerability affects IBM System Director Conso…
CVE
Cisco Wireless LAN Controller Management Interface Denial of Service Vulnerability (cisco-sa-20160420-wlc)
漏洞类别:General remote services 漏洞等级: 漏洞信息 A vulnerability in the web-based management interface of Cisco Wireless LAN Controller (WLC) devices running Cisco AireOS Software could allow an unauthenticated, remote attacker to cause an affected device to reload, re…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 it was discovered that Systemd improperly handled zero-length notification messages. 漏洞危害 A local unprivileged attacker could use this to cause a denial of service (init crash leading to system unavailability). 解决方案 Refer to Ubuntu advis…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that ClamAV incorrectly handled certain malformed files. In the default installation, attackers would be isolated by the ClamAV AppArmor profile. 漏洞危害 A remote attacker could use this issue to cause ClamAV to crash, res…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that Samba incorrectly handled certain flags in SMB2/3 client connections. Samba has been updated to 4.3.11 in Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. In addition to the security fix, the updated packages contain bug fix…
漏洞类别:Web server 漏洞等级: 漏洞信息 Apache, the open source web server software that is developed and maintained by Apache Software Foundation is detected on the host. 漏洞危害 解决方案 0day
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for community-mysql to fix the vulnerability. Affected OS: Fedora 25 Fedora 24 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Malicious users could also use…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for mongodb to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerability. Up…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for php-adodb to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerability. …
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for kernel.rc7.git0 to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerabi…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for bash to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 A local attacker can exploit these issues to execute arbitrary code in the context of the user running the affected application. 解决方案 Fedo…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for bash to fix the vulnerability. Affected OS: Fedora 23 漏洞危害 A local attacker can exploit these issues to execute arbitrary code in the context of the user running the affected application. 解决方案 Fedo…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for irssi to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Successful exploitation allows remote attackers to cause a denial of service via vectors involving the length of a string. 解决方案 Fedora ha…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for firefox to fix the vulnerability. Affected OS: Fedora 25 Fedora 23 Fedora 24 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix th…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for jansson to fix the vulnerability. Affected OS: Fedora 25 Fedora 23 Fedora 24 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix th…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for links to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerability. Upda…
漏洞类别:Cisco 漏洞等级: 漏洞信息 A vulnerability in Cisco IronPort AsyncOS for Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote attacker to obtain complete control of an affected device. The vulnerability is due to the presence of a Cisco inte…
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for bind97 to fix the vulnerabilities. Affected Products: Oracle Linux 5 漏洞危害 A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a special…
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for bind to fix the vulnerabilities. Affected Products: Oracle Linux 7 Oracle Linux 6 Oracle Linux 5 漏洞危害 A remote attacker could use this flaw to make named exit unexpectedly with an ass…
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for python-twisted-web to fix the vulnerabilities. Affected Products: Oracle Linux 7 Oracle Linux 6 漏洞危害 A remote attacker could possibly use this flaw to redirect HTTP requests performed…