Информационная безопасность
[RU] switch to English


Выполнение кода в HP SiteScope
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13246
Тип:удаленная
Уровень опасности:
5/10
Описание:Выполнение кода при использовании SOAP.
Затронутые продукты:HP : SiteScope 11.21
CVE:CVE-2013-2367 (Multiple unspecified vulnerabilities in HP SiteScope 11.20 and 11.21, when SOAP is used, allow remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1678.)
Оригинальный текстdocumentHP, [security bulletin] HPSBGN02904 rev.1 - HP SiteScope running SOAP, Remote Code Execution (12.08.2013)

Уязвимости безопасности в IP-камерах TP-Link
дополнено с 5 июня 2013 г.
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13117
Тип:удаленная
Уровень опасности:
6/10
Описание:Выполнение кода, обход защиты.
Затронутые продукты:TPLINK : TP-Link TL-SC 3130
 TPLINK : TP-Link TL-SC 3130G
 TPLINK : TP-Link TL-SC 3171G
 TPLINK : TP-Link TL-SC 4171G
CVE:CVE-2013-2573
 CVE-2013-2572
Оригинальный текстdocumentadvisories_(at)_coresecurity.com, CORE-2013-0618 - Multiple Vulnerabilities in TP-Link TL-SC3171 IP Cameras (12.08.2013)
 documentCORE SECURITY TECHNOLOGIES ADVISORIES, CORE-2013-0318 - TP-Link IP Cameras Multiple Vulnerabilities (05.06.2013)

Обход аутентификации в HP Integrated Lights-Out
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13247
Тип:удаленная
Уровень опасности:
5/10
Затронутые продукты:HP : Integrated Lights-Out 3
 HP : Integrated Lights-Out 4
CVE:CVE-2013-4805 (Unspecified vulnerability in HP Integrated Lights-Out 3 (aka iLO3) firmware before 1.60 and 4 (aka iLO4) firmware before 1.30 allows remote attackers to bypass authentication via unknown vectors.)
Оригинальный текстdocumentHP, [security bulletin] HPSBMU02902 rev.1 - HP Integrated Lights-Out iLO3, iLO4 IPMI Cipher Suite 0 Authentication Bypass Vulnerability (12.08.2013)

Выполнение кода в Cisco Wide Area Application Services, CDS, VDS, CDM
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13248
Тип:удаленная
Уровень опасности:
7/10
Описание:Выполнение кода через HTTP POST запрос, повышение привилегий.
Затронутые продукты:CISCO : Cisco WAAS
 CISCO : Cisco ACNS
 CISCO : Cisco ECDS
 CISCO : Cisco CDS-IS
 CISCO : Cisco VDS-IS
 CISCO : Cisco VDS-SB
 CISCO : Cisco VDS-OE
 CISCO : Cisco VDS-OS
CVE:CVE-2013-3444 (The web framework in Cisco WAAS Software before 4.x and 5.x before 5.0.3e, 5.1.x before 5.1.1c, and 5.2.x before 5.2.1; Cisco ACNS Software 4.x and 5.x before 5.5.29.2; Cisco ECDS Software 2.x before 2.5.6; Cisco CDS-IS Software 2.x before 2.6.3.b50 and 3.1.x before 3.1.2b54; Cisco VDS-IS Software 3.2.x before 3.2.1.b9; Cisco VDS-SB Software 1.x before 1.1.0-b96; Cisco VDS-OE Software 1.x before 1.0.1; and Cisco VDS-OS Software 1.x in central-management mode allows remote authenticated users to execute arbitrary commands by appending crafted strings to values in GUI fields, aka Bug IDs CSCug40609, CSCug48855, CSCug48921, CSCug48872, CSCuh21103, CSCuh21020, and CSCug56790.)
 CVE-2013-3443 (The web service framework in Cisco WAAS Software 4.x and 5.x before 5.0.3e, 5.1.x before 5.1.1c, and 5.2.x before 5.2.1 in a Central Manager (CM) configuration allows remote attackers to execute arbitrary code via a crafted POST request, aka Bug ID CSCuh26626.)
Файлы:Cisco WAAS Central Manager Remote Code Execution Vulnerability
 Authenticated Command Injection Vulnerability in Multiple Cisco Content Network and Video Delivery Products

Уязвимости протокола OSPF в Cisco IOS / ASA / FWSM / NX-OS / StarOS
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13249
Тип:удаленная
Уровень опасности:
7/10
Описание:Манипуляция марщрутами через LSA
CVE:CVE-2013-0149 (The OSPF implementation in Cisco IOS 12.0 through 12.4 and 15.0 through 15.3, IOS-XE 2.x through 3.9.xS, ASA and PIX 7.x through 9.1, FWSM, NX-OS, and StarOS before 14.0.50488 does not properly validate Link State Advertisement (LSA) type 1 packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a (1) unicast or (2) multicast packet, aka Bug IDs CSCug34485, CSCug34469, CSCug39762, CSCug63304, and CSCug39795.)
Файлы:OSPF LSA Manipulation Vulnerability in Multiple Cisco Products

Уязвимости безопасности в Netresec NetworkMiner
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13237
Тип:удаленная
Уровень опасности:
5/10
Описание:Выполнение кода, обратный путь в каталогах.
Затронутые продукты:NETRESEC : NetworkMiner 1.4
Оригинальный текстdocumentErik Hjelmvik, Two Vulnerabilities in NetworkMiner : DLL Hijacking + Directory Traversal (12.08.2013)

Уязвимости безопасности в Apache suexec
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13238
Тип:локальная
Уровень опасности:
5/10
Описание:Повышение привилегий, обход защиты.
Затронутые продукты:APACHE : Apache 2.2
Оригинальный текстdocumentHI-TECH ., Apache suEXEC privilege elevation / information disclosure (12.08.2013)

Уязвимости безопасности в Cisco TelePresence
дополнено с 19 июля 2013 г.
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13209
Тип:удаленная
Уровень опасности:
7/10
Описание:DoS, обратный путь в каталогах, неотключаемая скрытая учетная запись.
CVE:CVE-2013-3454 (Cisco TelePresence System Software 1.10.1 and earlier on 500, 13X0, 1X00, 30X0, and 3X00 devices, and 6.0.3 and earlier on TX 9X00 devices, has a default password for the pwrecovery account, which makes it easier for remote attackers to modify the configuration or perform arbitrary actions via HTTPS requests, aka Bug ID CSCui43128.)
 CVE-2013-3379 (The firewall subsystem in Cisco TelePresence TC Software before 4.2 does not properly implement rules that grant access to hosts, which allows remote attackers to obtain shell access with root privileges by leveraging connectivity to the management network, aka Bug ID CSCts37781.)
 CVE-2013-3378 (Cisco TelePresence TC Software before 6.1 and TE Software before 4.1.3 allow remote attackers to cause a denial of service (temporary device hang) via crafted SIP packets, aka Bug ID CSCuf89557.)
 CVE-2013-3377 (Cisco TelePresence TC Software before 5.1.7 and TE Software before 4.1.3 allow remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCue01743.)
Файлы:Multiple Vulnerabilities in Cisco TelePresence TC and TE Software
 Cisco TelePresence System Default Credentials Vulnerability

Многочисленные уязвимости безопасности в Wireshark
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13240
Тип:удаленная
Уровень опасности:
5/10
Описание:Многочисленные уязвимости в различных диссекторах.
Затронутые продукты:WIRESHARK : Wireshark 1.8
 WIRESHARK : Wireshark 1.10
CVE:CVE-2013-4935 (The dissect_per_length_determinant function in epan/dissectors/packet-per.c in the ASN.1 PER dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not initialize a length field in certain abnormal situations, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.)
 CVE-2013-4934 (The netmon_open function in wiretap/netmon.c in the Netmon file parser in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not initialize certain structure members, which allows remote attackers to cause a denial of service (application crash) via a crafted packet-trace file.)
 CVE-2013-4933 (The netmon_open function in wiretap/netmon.c in the Netmon file parser in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) via a crafted packet-trace file.)
 CVE-2013-4932 (Multiple array index errors in epan/dissectors/packet-gsm_a_common.c in the GSM A Common dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allow remote attackers to cause a denial of service (application crash) via a crafted packet.)
 CVE-2013-4931 (epan/proto.c in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (loop) via a crafted packet that is not properly handled by the GSM RR dissector.)
 CVE-2013-4930 (The dissect_dvbci_tpdu_hdr function in epan/dissectors/packet-dvbci.c in the DVB-CI dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not validate a certain length value before decrementing it, which allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted packet.)
 CVE-2013-4929 (The parseFields function in epan/dissectors/packet-dis-pdus.c in the DIS dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not terminate packet-data processing after finding zero remaining bytes, which allows remote attackers to cause a denial of service (loop) via a crafted packet.)
 CVE-2013-4927 (Integer signedness error in the get_type_length function in epan/dissectors/packet-btsdp.c in the Bluetooth SDP dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (loop and CPU consumption) via a crafted packet.)
Оригинальный текстdocumentDEBIAN, [SECURITY] [DSA 2734-1] wireshark security update (12.08.2013)

Утечка информации в маршрутизаторах Huawei B153
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13241
Тип:удаленная
Уровень опасности:
5/10
Описание:Утечка ключа WPA2 беспроводной сети без авторизации.
Затронутые продукты:HUAWEI : Huawei B153
Оригинальный текстdocumentroberto.paleari_(at)_emaze.net, Huawei B153 3G/UMTS router WPS weakness (12.08.2013)

Слабый PWS PIN в Vodafone EasyBox
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13242
Тип:удаленная
Уровень опасности:
5/10
Описание:PIN генерируется на основе публично доступных данных.
Затронутые продукты:VODAFON : EasyBox 802
 VODAFON : EasyBox 803
Оригинальный текстdocumentSEC Consult Vulnerability Lab, SEC Consult SA-20130805-0 :: Vodafone EasyBox Default WPS PIN Algorithm Weakness (12.08.2013)

Уязвимости безопасности в различных Ruby Gem
дополнено с 6 мая 2013 г.
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13063
Тип:библиотека
Уровень опасности:
5/10
Описание:Уязвимости в различных библиотеках
Затронутые продукты:RUBY : Ruby Gem kelredd-pruview 0.3
 RUBY : Ruby Gem ldoce 0.0
 RUBY : Ruby Gem fastreader 1.0
 RUBY : Ruby Gem ftpd 0.2
 RUBY : Ruby gem Rgpg 0.2
CVE:CVE-2013-4203 (The self.run_gpg function in lib/rgpg/gpg_helper.rb in the rgpg gem before 0.2.3 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors.)
Оригинальный текстdocumentlarry0_(at)_me.com, Rgpg 0.2.2 Ruby Gem Remote Command Injection (12.08.2013)
 documentlarry0_(at)_me.com, Remote command execution for Ruby Gem ftpd-0.2.1 (06.05.2013)
 documentlarry0_(at)_me.com, Curl Ruby Gem Remote command execution (06.05.2013)
 documentlarry0_(at)_me.com, MiniMagic ruby gem remote code execution (06.05.2013)
 documentlarry0_(at)_me.com, Remote command execution in fastreader ruby gem (06.05.2013)
 documentlarry0_(at)_me.com, Remote command execution in Ruby Gem Command Wrap (06.05.2013)
 documentlarry0_(at)_me.com, Remote command execution in Ruby Gem ldoce 0.0.2 (06.05.2013)
 documentlarry0_(at)_me.com, Remote command injection in Ruby Gem kelredd-pruview 0.3.8 (06.05.2013)

Тайминг-атаки flush+reload против RSA в gnupg / libcrypt
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13243
Тип:локальная
Уровень опасности:
5/10
Описание:Восстановление приватного ключа с использованием особенностей кэша третьего уровня.
Затронутые продукты:GNU : GnuPG 1.4
 LIBCRYPT : libcrypt 1.5
CVE:CVE-2013-4242 (GnuPG before 1.4.14, and Libgcrypt before 1.5.3 as used in GnuPG 2.0.x and possibly other products, allows local users to obtain private RSA keys via a cache side-channel attack involving the L3 cache, aka Flush+Reload.)
Оригинальный текстdocumentSLACKWARE, [slackware-security] gnupg / libgcrypt (SSA:2013-215-01) (12.08.2013)

Многочисленные уязвимости безопасности в Chromium / Google Chrome
дополнено с 19 июля 2013 г.
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13200
Тип:клиент
Уровень опасности:
8/10
Описание:Обход защиты, повышение привилегий, DoS, использование памяти после освобождения, утечка информации, повреждения памяти.
Затронутые продукты:GOOGLE : Chrome 27.0
CVE:CVE-2013-2886 (Multiple unspecified vulnerabilities in Google Chrome before 28.0.1500.95 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.)
 CVE-2013-2885 (Use-after-free vulnerability in Google Chrome before 28.0.1500.95 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to not properly considering focus during the processing of JavaScript events in the presence of a multiple-fields input type.)
 CVE-2013-2884 (Use-after-free vulnerability in the DOM implementation in Google Chrome before 28.0.1500.95 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to improper tracking of which document owns an Attr object.)
 CVE-2013-2883 (Use-after-free vulnerability in Google Chrome before 28.0.1500.95 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to deleting the registration of a MutationObserver object.)
 CVE-2013-2882 (Google V8, as used in Google Chrome before 28.0.1500.95, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage "type confusion.")
 CVE-2013-2881 (Google Chrome before 28.0.1500.95 does not properly handle frames, which allows remote attackers to bypass the Same Origin Policy via a crafted web site.)
 CVE-2013-2880 (Multiple unspecified vulnerabilities in Google Chrome before 28.0.1500.71 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.)
 CVE-2013-2879 (Google Chrome before 28.0.1500.71 does not properly determine the circumstances in which a renderer process can be considered a trusted process for sign-in and subsequent sync operations, which makes it easier for remote attackers to conduct phishing attacks via a crafted web site.)
 CVE-2013-2878 (Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the handling of text.)
 CVE-2013-2877 (parser.c in libxml2 before 2.9.0, as used in Google Chrome before 28.0.1500.71 and other products, allows remote attackers to cause a denial of service (out-of-bounds read) via a document that ends abruptly, related to the lack of certain checks for the XML_PARSER_EOF state.)
 CVE-2013-2876 (browser/extensions/api/tabs/tabs_api.cc in Google Chrome before 28.0.1500.71 does not properly enforce restrictions on the capture of screenshots by extensions, which allows remote attackers to obtain sensitive information about the content of a previous page via vectors involving an interstitial page.)
 CVE-2013-2875 (core/rendering/svg/SVGInlineTextBox.cpp in the SVG implementation in Blink, as used in Google Chrome before 28.0.1500.71, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.)
 CVE-2013-2873 (Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a 404 HTTP status code during the loading of resources.)
 CVE-2013-2871 (Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of input.)
 CVE-2013-2870 (Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote servers to execute arbitrary code via crafted response traffic after a URL request.)
 CVE-2013-2869 (Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted JPEG2000 image.)
 CVE-2013-2868 (common/extensions/sync_helper.cc in Google Chrome before 28.0.1500.71 proceeds with sync operations for NPAPI extensions without checking for a certain plugin permission setting, which might allow remote attackers to trigger unwanted extension changes via unspecified vectors.)
 CVE-2013-2867 (Google Chrome before 28.0.1500.71 does not properly prevent pop-under windows, which allows remote attackers to have an unspecified impact via a crafted web site.)
 CVE-2013-2853 (The HTTPS implementation in Google Chrome before 28.0.1500.71 does not ensure that headers are terminated by \r\n\r\n (carriage return, newline, carriage return, newline), which allows man-in-the-middle attackers to have an unspecified impact via vectors that trigger header truncation.)
Оригинальный текстdocumentDEBIAN, [SECURITY] [DSA 2732-1] chromium-browser security update (12.08.2013)
 documentDEBIAN, [SECURITY] [DSA 2724-1] chromium-browser security update (19.07.2013)

Несанкционированный доступ к D-Link DIR-645
дополнено с 2 марта 2013 г.
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:12916
Тип:удаленная
Уровень опасности:
5/10
Описание:Возможно получить пароль администратора без авторизации, межсайтовый скриптинг, переполнение буфера.
Затронутые продукты:DLINK : D-Link DIR-645
Оригинальный текстdocumentRoberto Paleari, Multiple vulnerabilities on D-Link DIR-645 devices (12.08.2013)
 documentRoberto Paleari, Unauthenticated remote access to D-Link DIR-645 devices (02.03.2013)

Уязвимости безопасности в WD My Net
дополнено с 19 июля 2013 г.
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13199
Тип:удаленная
Уровень опасности:
5/10
Описание:Несанкционированный доступ, утечка информации.
Затронутые продукты:WD : My Net N600
 WD : My Net N750
 WD : My Net N900
CVE:CVE-2013-5006 (main_internet.php on the Western Digital My Net N600 and N750 with firmware 1.03.12 and 1.04.16, and the N900 and N900C with firmware 1.05.12, 1.06.18, and 1.06.28, allows remote attackers to discover the cleartext administrative password by reading the "var pass=" line within the HTML source code.)
Оригинальный текстdocumentkyle Lovett, Update: Full Disclosure - WD My Net N600, N750, N900, N900C - Plain Text Disclosure of Admin Credentials (12.08.2013)
 documentkyle Lovett, Full Disclosure - WD My Net N600, N750, N900, N900C - Plain Text Disclosure of Admin Credentials (29.07.2013)
 documentkyle Lovett, Western Digital My Net N600, N750, N900 and N900C - Plain text disclosure of administrative credentials (19.07.2013)

Многочисленные уязвимости безопасности в IP камерах Hikvision
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13244
Тип:удаленная
Уровень опасности:
5/10
Описание:Выполнение кода, обход защиты, утечка информации.
CVE:CVE-2013-4977 (Buffer overflow in the RTSP Packet Handler in Hikvision DS-2CD7153-E IP camera with firmware 4.1.0 b130111 (Jan 2013), and possibly other devices, allows remote attackers to cause a denial of service (device crash and reboot) and possibly execute arbitrary code via a long string in the Range header field in an RTSP transaction.)
 CVE-2013-4976
 CVE-2013-4975
Оригинальный текстdocumentCORE SECURITY TECHNOLOGIES ADVISORIES, CORE-2013-0708 - Hikvision IP Cameras Multiple Vulnerabilities (12.08.2013)

DoS против Apache mod_dav_svn
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13245
Тип:удаленная
Уровень опасности:
5/10
Описание:Отказ при обработке команд COPY, DELETE, MOVE.
CVE:CVE-2013-4131 (The mod_dav_svn Apache HTTPD server module in Subversion 1.7.0 through 1.7.10 and 1.8.x before 1.8.1 allows remote authenticated users to cause a denial of service (assertion failure or out-of-bounds read) via a certain (1) COPY, (2) DELETE, or (3) MOVE request against a revision root.)
Оригинальный текстdocumentMANDRIVA, [ MDVSA-2013:209 ] subversion (12.08.2013)

Многочисленные уязвимости безопасности в продуктах Oracle / Sun / MySQL / PeopleSoft
дополнено с 29 июля 2013 г.
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13214
Тип:удаленная
Уровень опасности:
8/10
Описание:89 различных фиксов в ежеквартальном обновлении.
Затронутые продукты:ORACLE : Solaris 8
 ORACLE : Solaris 9
 ORACLE : Solaris 10
 ORACLE : Oracle 10g
 ORACLE : Oracle E-Business Suite 11i
 ORACLE : Oracle 11g
 ORACLE : PeopleSoft Enterprise Portal 9.1
 ORACLE : Enterprise Manager Grid Control 11g
 ORACLE : Enterprise Manager Grid Control 10g
 ORACLE : Enterprise Manager Plugin for Database 12c
 ORACLE : Outside In Technology 8.4
 ORACLE : Oracle E-Business Suite 12i
 ORACLE : PeopleSoft HRMS 9.1
 ORACLE : PeopleSoft PeopleTools 8.53
 ORACLE : MySQL 5.6
 ORACLE : Oracle Access Manager 11.1
 ORACLE : Endeca Server 7.5
 ORACLE : Oracle HTTP Server 10.1
 ORACLE : JRockit 27.7
 ORACLE : JRockit 28.2
 ORACLE : Oracle WebCenter Content 11.1
 ORACLE : Hyperion BI 11.1
 ORACLE : Agile Collaboration Framework 9.3
 ORACLE : Agile PLM Framework 9.3
 ORACLE : Agile Product Framework 9.3
 ORACLE : iLearning 5.2
 ORACLE : iLearning 6.0
 ORACLE : Oracle Policy Automation 10.4
 ORACLE : Solaris 11.1
 ORACLE : Solaris Cluster 3.3
 ORACLE : Solaris Cluster 4.1
 ORACLE : SPARC Enterprise M
 ORACLE : Oracle Secure Global Desktop 4.7
CVE:CVE-2013-3825 (Unspecified vulnerability in the Oracle Agile Product Collaboration component in Oracle Supply Chain Products Suite 9.3.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Folders & Files Attachment.)
 CVE-2013-3824 (Unspecified vulnerability in the Oracle Agile Collaboration Framework component in Oracle Supply Chain Products Suite 9.3.1 allows remote authenticated users to affect integrity via unknown vectors related to Manufacturing/Mfg Parts.)
 CVE-2013-3823 (Unspecified vulnerability in the Oracle Agile PLM Framework component in Oracle Supply Chain Products Suite 9.3.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Security.)
 CVE-2013-3822 (Unspecified vulnerability in the Oracle Agile PLM Framework component in Oracle Supply Chain Products Suite 9.3.1 allows remote attackers to affect integrity via unknown vectors related to Web Client (CS).)
 CVE-2013-3821 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.51, 8.52, and 8.53 allows remote attackers to affect confidentiality and availability via unknown vectors related to Integration Broker.)
 CVE-2013-3820 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.51, 8.52, and 8.53 allows remote attackers to affect availability via unknown vectors related to Business Interlink.)
 CVE-2013-3819 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.51, 8.52, and 8.53 allows remote attackers to affect confidentiality and availability via unknown vectors related to Mobile Applications.)
 CVE-2013-3818 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.51, 8.52, and 8.53 allows remote attackers to affect integrity via unknown vectors related to Portal.)
 CVE-2013-3816 (Unspecified vulnerability in the Oracle Policy Automation component in Oracle Industry Applications 10.2.0, 10.3.0, 10.3.1, 10.4.0, 10.4.1, and 10.4.2 allows remote authenticated users to affect confidentiality via unknown vectors related to Determinations Engine.)
 CVE-2013-3813 (Unspecified vulnerability in Oracle Solaris 10 allows remote attackers to affect confidentiality and integrity via vectors related to Libraries/PAM-Unix.)
 CVE-2013-3812 (Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Replication.)
 CVE-2013-3811 (Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB, a different vulnerability than CVE-2013-3806.)
 CVE-2013-3810 (Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to XA Transactions.)
 CVE-2013-3809 (Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Audit Log.)
 CVE-2013-3808 (Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.68 and earlier, 5.5.30 and earlier, and 5.6.10 allows remote authenticated users to affect availability via unknown vectors related to Server Options.)
 CVE-2013-3807 (Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.11 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Server Privileges.)
 CVE-2013-3806 (Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB, a different vulnerability than CVE-2013-3811.)
 CVE-2013-3805 (Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.30 and earlier and 5.6.10 allows remote authenticated users to affect availability via unknown vectors related to Prepared Statements.)
 CVE-2013-3804 (Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer.)
 CVE-2013-3803 (Unspecified vulnerability in the Hyperion BI+ component in Oracle Hyperion 11.1.1.3, 11.1.1.4.107 and earlier, 11.1.2.1.129 and earlier, and 11.1.2.2.305 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Intelligence Service.)
 CVE-2013-3802 (Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Full Text Search.)
 CVE-2013-3801 (Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.30 and earlier and 5.6.10 allows remote authenticated users to affect availability via unknown vectors related to Server Options.)
 CVE-2013-3800 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.51, 8.52, and 8.53 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Business Interlinks.)
 CVE-2013-3799 (Unspecified vulnerability in Oracle Solaris 10 and 11, when running on AMD64, allows local users to affect availability via unknown vectors related to Kernel.)
 CVE-2013-3798 (Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.11 and earlier allows remote attackers to affect integrity and availability via unknown vectors related to MemCached.)
 CVE-2013-3797 (Unspecified vulnerability in Oracle Solaris 11 allows local users to affect availability via unknown vectors related to Filesystem/DevFS.)
 CVE-2013-3796 (Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer.)
 CVE-2013-3795 (Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Data Manipulation Language.)
 CVE-2013-3794 (Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.30 and earlier and 5.6.10 allows remote authenticated users to affect availability via unknown vectors related to Server Partition.)
 CVE-2013-3793 (Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Data Manipulation Language.)
 CVE-2013-3791 (Unspecified vulnerability in Enterprise Manager (EM) Base Platform 10.2.0.5 and EM DB Control 11.1.0.7 in Oracle Enterprise Manager Grid Control allows remote attackers to affect integrity via unknown vectors related to User Interface Framework.)
 CVE-2013-3790 (Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote authenticated users to affect integrity via unknown vectors related to Privileged Account.)
 CVE-2013-3789 (Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.)
 CVE-2013-3788 (Unspecified vulnerability in the Oracle iSupplier Portal component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect integrity via unknown vectors related to Supplier Management.)
 CVE-2013-3787 (Unspecified vulnerability in Oracle Solaris 10 and 11 allows remote attackers to affect availability via unknown vectors related to Kernel.)
 CVE-2013-3786 (Unspecified vulnerability in Oracle Solaris 9, 10, and 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Kernel.)
 CVE-2013-3784 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Products 9.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors Time and Labor.)
 CVE-2013-3783 (Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Parser.)
 CVE-2013-3782 (Unspecified vulnerability in the Secure Global Desktop component in Oracle Virtualization 4.6 prior to 4.63 and 4.7 prior to 4.71 allows remote attackers to affect integrity via unknown vectors related to Web UI.)
 CVE-2013-3781 (Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7, 8.4.0, and 8.4.1 allows context-dependent to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-3776.)
 CVE-2013-3780 (Unspecified vulnerability in the PeopleSoft Enterprise Portal component in Oracle PeopleSoft Products 9.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Saved Search.)
 CVE-2013-3779 (Unspecified vulnerability in the Secure Global Desktop component in Oracle Virtualization All 4.6 releases including 4.63 and 4.7 prior to 4.71 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Web UI.)
 CVE-2013-3778 (Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.0.6 and 12.1.3 allows remote attackers to affect integrity via unknown vectors related to Help.)
 CVE-2013-3777 (Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote attackers to affect integrity via unknown vectors related to Signon.)
 CVE-2013-3776 (Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7, 8.4.0, and 8.4.1 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-3781.)
 CVE-2013-3775 (Unspecified vulnerability in the Oracle iLearning component in Oracle iLearning 5.2.1 and 6.0 allows remote attackers to affect integrity via unknown vectors related to Learner Pages.)
 CVE-2013-3774 (Unspecified vulnerability in the Network Layer component in Oracle Database Server 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.)
 CVE-2013-3773 (Unspecified vulnerability in the SPARC Enterprise M Series Servers component in Oracle and Sun Systems Products Suite XCP 1114 and earlier allows remote attackers to affect availability via vectors related to XSCF Control Package (XCP).)
 CVE-2013-3772 (Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, and 11.1.1.7.0 allows remote attackers to affect integrity via unknown vectors related to Web Forms.)
 CVE-2013-3771 (Unspecified vulnerability in the Oracle executable component in Oracle Database Server 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows local users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2013-3760.)
 CVE-2013-3770 (Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, and 11.1.1.7.0 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Content Server.)
 CVE-2013-3769 (Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, and 11.1.1.7.0 allows remote attackers to affect integrity via unknown vectors related to Site Studio.)
 CVE-2013-3768 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.51, 8.52, and 8.53 allows remote attackers to affect integrity via unknown vectors related to Rich Text Editor.)
 CVE-2013-3767 (Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite Access Gate 1.2.1 allows remote attackers to affect integrity via unknown vectors.)
 CVE-2013-3765 (Unspecified vulnerability in Oracle Solaris 11 allows local users to affect availability via unknown vectors related to Kernel/VM.)
 CVE-2013-3764 (Unspecified vulnerability in the Oracle Endeca Server component in Oracle Fusion Middleware 7.4.0 and 7.5.1.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2013-3763.)
 CVE-2013-3763 (Unspecified vulnerability in the Oracle Endeca Server component in Oracle Fusion Middleware 7.4.0 and 7.5.1.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2013-3764.)
 CVE-2013-3761 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products Portal 9.1 and PeopleTools 8.52 allows remote attackers to affect integrity via vectors related to PIA Core Technology.)
 CVE-2013-3760 (Unspecified vulnerability in the Oracle executable component in Oracle Database Server 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows local users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2013-3771.)
 CVE-2013-3759 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.52 and 8.53 allows remote attackers to affect integrity via vectors related to PIA Search Functionality.)
 CVE-2013-3758 (Unspecified vulnerability in the Enterprise Manager (EM) Base Platform 10.2.0.5 and 11.1.0.1; EM DB Control 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3; and EM Plugin for DB 12.1.0.2 and 12.1.0.3 in Oracle Enterprise Manager Grid Control allows remote attackers to affect integrity via unknown vectors related to Schema Management.)
 CVE-2013-3757 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 allows remote attackers to affect integrity and availability via vectors related to SMF/File Locking Services.)
 CVE-2013-3756 (Unspecified vulnerability in the Oracle Landed Cost Management component in Oracle E-Business Suite 12.1.1, 12.1.2, and 12.1.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Shipment Workbench.)
 CVE-2013-3755 (Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1.1.5.0, 11.1.1.7.0, and 11.1.2.0.0 allows remote attackers to affect integrity via vectors related to SSO Engine.)
 CVE-2013-3754 (Unspecified vulnerability in the Solaris Cluster component in Oracle and Sun Systems Products Suite 3.3 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to HA for TimesTen.)
 CVE-2013-3753 (Unspecified vulnerability in Oracle Solaris 11 allows remote attackers to affect availability via vectors related to Kernel/STREAMS framework.)
 CVE-2013-3752 (Unspecified vulnerability in Oracle Solaris 11 allows remote attackers to affect integrity via vectors related to Service Management Facility (SMF).)
 CVE-2013-3751 (Unspecified vulnerability in the XML Parser component in Oracle Database Server 11.2.0.2 and 11.2.0.3 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.)
 CVE-2013-3750 (Unspecified vulnerability in Oracle Solaris 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Kernel/VM)
 CVE-2013-3749 (Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote authenticated users to affect confidentiality via unknown vectors related to Logging. NOTE: the previous information is from the July 2013 CPU. Oracle has not commented on claims from a third party that the issue is due to storage of credentials in the (1) FND_LOG_MESSAGES database table or (2) log files.)
 CVE-2013-3748 (Unspecified vulnerability in Oracle Solaris 11 allows remote attackers to affect availability via vectors related to Driver/IDM (iSCSI Data Mover).)
 CVE-2013-3747 (Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote authenticated users to affect confidentiality via unknown vectors related to Client System Analyzer.)
 CVE-2013-3746 (Unspecified vulnerability in the Solaris Cluster component in Oracle and Sun Systems Products Suite 3.2, 3.3, and 4 prior to 4.1 SRU 3 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Zone Cluster Infrastructure.)
 CVE-2013-3745 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 allows local users to affect availability via unknown vectors related to Libraries/Libc.)
 CVE-2013-2461 (Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a "Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.")
 CVE-2013-1861 (MariaDB 5.5.x before 5.5.30, 5.3.x before 5.3.13, 5.2.x before 5.2.15, and 5.1.x before 5.1.68, and Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier allows remote attackers to cause a denial of service (crash) via a crafted geometry feature that specifies a large number of points, which is not properly handled when processing the binary representation of this feature, related to a numeric calculation error.)
 CVE-2013-0398 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 allows remote attackers to affect confidentiality via unknown vectors related to Utility/Remote Execution Server (in.rexecd).)
 CVE-2012-2687 (Multiple cross-site scripting (XSS) vulnerabilities in the make_variant_list function in mod_negotiation.c in the mod_negotiation module in the Apache HTTP Server 2.4.x before 2.4.3, when the MultiViews option is enabled, allow remote attackers to inject arbitrary web script or HTML via a crafted filename that is not properly handled during construction of a variant list.)
 CVE-2011-3348 (The mod_proxy_ajp module in the Apache HTTP Server before 2.2.21, when used with mod_proxy_balancer in certain configurations, allows remote attackers to cause a denial of service (temporary "error state" in the backend server) via a malformed HTTP request.)
 CVE-2011-0419 (Stack consumption vulnerability in the fnmatch implementation in apr_fnmatch.c in the Apache Portable Runtime (APR) library before 1.4.3 and the Apache HTTP Server before 2.2.18, and in fnmatch.c in libc in NetBSD 5.1, OpenBSD 4.8, FreeBSD, Apple Mac OS X 10.6, Oracle Solaris 10, and Android, allows context-dependent attackers to cause a denial of service (CPU and memory consumption) via *? sequences in the first argument, as demonstrated by attacks against mod_autoindex in httpd.)
 CVE-2010-2068 (mod_proxy_http.c in mod_proxy_http in the Apache HTTP Server 2.2.9 through 2.2.15, 2.3.4-alpha, and 2.3.5-alpha on Windows, NetWare, and OS/2, in certain configurations involving proxy worker pools, does not properly detect timeouts, which allows remote attackers to obtain a potentially sensitive response intended for a different client in opportunistic circumstances via a normal HTTP request.)
 CVE-2010-0434 (The ap_read_request function in server/protocol.c in the Apache HTTP Server 2.2.x before 2.2.15, when a multithreaded MPM is used, does not properly handle headers in subrequests in certain circumstances involving a parent request that has a body, which might allow remote attackers to obtain sensitive information via a crafted request that triggers access to memory locations associated with an earlier request.)
 CVE-2010-0425 (modules/arch/win32/mod_isapi.c in mod_isapi in the Apache HTTP Server 2.0.37 through 2.0.63, 2.2.0 through 2.2.14, and 2.3.x before 2.3.7, when running on Windows, does not ensure that request processing is complete before calling isapi_unload for an ISAPI .dll module, which allows remote attackers to execute arbitrary code via unspecified vectors related to a crafted request, a reset packet, and "orphaned callback pointers.")
 CVE-2008-2364 (The ap_proxy_http_process_response function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server 2.0.63 and 2.2.8 does not limit the number of forwarded interim responses, which allows remote HTTP servers to cause a denial of service (memory consumption) via a large number of interim responses.)
 CVE-2007-6388 (Cross-site scripting (XSS) vulnerability in mod_status in the Apache HTTP Server 2.2.0 through 2.2.6, 2.0.35 through 2.0.61, and 1.3.2 through 1.3.39, when the server-status page is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.)
 CVE-2007-5000 (Cross-site scripting (XSS) vulnerability in the (1) mod_imap module in the Apache HTTP Server 1.3.0 through 1.3.39 and 2.0.35 through 2.0.61 and the (2) mod_imagemap module in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.)
 CVE-2007-3847 (The date handling code in modules/proxy/proxy_util.c (mod_proxy) in Apache 2.3.0, when using a threaded MPM, allows remote origin servers to cause a denial of service (caching forward proxy process crash) via crafted date headers that trigger a buffer over-read.)
 CVE-2006-5752 (Cross-site scripting (XSS) vulnerability in mod_status.c in the mod_status module in Apache HTTP Server (httpd), when ExtendedStatus is enabled and a public server-status page is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving charsets with browsers that perform "charset detection" when the content-type is not specified.)
 CVE-2005-3352 (Cross-site scripting (XSS) vulnerability in the mod_imap module of Apache httpd before 1.3.35-dev and Apache httpd 2.0.x before 2.0.56-dev allows remote attackers to inject arbitrary web script or HTML via the Referer when using image maps.)
Оригинальный текстdocumentNCC Group Research, NGS00434 Technical Advisory: Oracle Hyperion 11 Directory Traversal (12.08.2013)
Файлы:Oracle Critical Patch Update Advisory - July 2013

Уязвимости безопасности в коммутаторах HP / 3COM / H3C
дополнено с 15 июля 2013 г.
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13183
Тип:удаленная
Уровень опасности:
5/10
Описание:Утечка информации, выполнение кода.
CVE:CVE-2013-4806 (The OSPF implementation on HP JD9##A routers; HP J4###A, J484#B, J8###A, JD3##A, JE###A, and JF55#A switches; HP 3COM routers and switches; and HP H3C routers and switches does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote authenticated users to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149.)
 CVE-2013-2341 (Unspecified vulnerability on the HP ProCurve JC###A, JC###B, JD###A, JD###B, JE###A, JF###A, JF###B, JF###C, JG###A, 658250-B21, and 658247-B21; HP 3COM routers and switches; and HP H3C routers and switches allows remote authenticated users to execute arbitrary code or obtain sensitive information via unknown vectors.)
 CVE-2013-2340 (Unspecified vulnerability on the HP ProCurve JC###A, JC###B, JD###A, JD###B, JE###A, JF###A, JF###B, JF###C, JG###A, 658250-B21, and 658247-B21; HP 3COM routers and switches; and HP H3C routers and switches allows remote attackers to execute arbitrary code or obtain sensitive information via unknown vectors.)
Оригинальный текстdocumentHP, [security bulletin] HPSBHF02912 rev.1 - HP Networking Products including H3C and 3COM Routers and Switches, OSPF Remote Information Disclosure and Denial of Service (12.08.2013)
 documentHP, [security bulletin] HPSBPV02891 rev.1 - HP ProCurve Switches, Remote Unauthorized Information Disclosure (16.07.2013)
 documentHP, [security bulletin] HPSBHF02888 rev.1 - HP ProCurve, H3C, 3COM Routers and Switches, Remote Information Disclosure and Code Execution (15.07.2013)

Многочисленные уязвимости безопасности в Mozilla Firefox / Thunderbird / Seamonkey
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13235
Тип:клиент
Уровень опасности:
9/10
Описание:Повреждения памяти, переполнения буфера, межсайтовый доступ к данным, подмена информации, межсайтовый скриптинг, повышение привилегий, обход защиты, DoS, выполнение кода, утечка информации.
Затронутые продукты:MOZILLA : Thunderbird 17.0
 MOZILLA : Firefox ESR 17.0
 MOZILLA : Firefox 22.0
 MOZILLA : Thunderbird ESR 17.0
 MOZILLA : Seamonkey 2.19
CVE:CVE-2013-1717 (Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, Thunderbird ESR 17.x before 17.0.8, and SeaMonkey before 2.20 do not properly restrict local-filesystem access by Java applets, which allows user-assisted remote attackers to read arbitrary files by leveraging a download to a fixed pathname or other predictable pathname.)
 CVE-2013-1716
 CVE-2013-1715 (Multiple untrusted search path vulnerabilities in the (1) full installer and (2) stub installer in Mozilla Firefox before 23.0 on Windows allow local users to gain privileges via a Trojan horse DLL in the default downloads directory. NOTE: this issue exists because of an incomplete fix for CVE-2012-4206.)
 CVE-2013-1714 (The Web Workers implementation in Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, Thunderbird ESR 17.x before 17.0.8, and SeaMonkey before 2.20 does not properly restrict XMLHttpRequest calls, which allows remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via unspecified vectors.)
 CVE-2013-1713 (Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, Thunderbird ESR 17.x before 17.0.8, and SeaMonkey before 2.20 use an incorrect URI within unspecified comparisons during enforcement of the Same Origin Policy, which allows remote attackers to conduct cross-site scripting (XSS) attacks or install arbitrary add-ons via a crafted web site.)
 CVE-2013-1712 (Multiple untrusted search path vulnerabilities in updater.exe in Mozilla Updater in Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, and Thunderbird ESR 17.x before 17.0.8 on Windows 7, Windows Server 2008 R2, Windows 8, and Windows Server 2012 allow local users to gain privileges via a Trojan horse DLL in (1) the update directory or (2) the current working directory.)
 CVE-2013-1711 (The XrayWrapper implementation in Mozilla Firefox before 23.0 and SeaMonkey before 2.20 does not properly address the possibility of an XBL scope bypass resulting from non-native arguments in XBL function calls, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks by leveraging access to an unprivileged object.)
 CVE-2013-1710 (The crypto.generateCRMFRequest function in Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, Thunderbird ESR 17.x before 17.0.8, and SeaMonkey before 2.20 allows remote attackers to execute arbitrary JavaScript code or conduct cross-site scripting (XSS) attacks via vectors related to Certificate Request Message Format (CRMF) request generation.)
 CVE-2013-1709 (Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, Thunderbird ESR 17.x before 17.0.8, and SeaMonkey before 2.20 do not properly handle the interaction between FRAME elements and history, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors involving spoofing a relative location in a previously visited document.)
 CVE-2013-1708 (Mozilla Firefox before 23.0 and SeaMonkey before 2.20 allow remote attackers to cause a denial of service (application crash) via a crafted WAV file that is not properly handled by the nsCString::CharAt function.)
 CVE-2013-1707 (Stack-based buffer overflow in Mozilla Updater in Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, and Thunderbird ESR 17.x before 17.0.8 allows local users to gain privileges via a long pathname on the command line to the Mozilla Maintenance Service.)
 CVE-2013-1706 (Stack-based buffer overflow in maintenanceservice.exe in the Mozilla Maintenance Service in Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, and Thunderbird ESR 17.x before 17.0.8 allows local users to gain privileges via a long pathname on the command line.)
 CVE-2013-1705 (Heap-based buffer underflow in the cryptojs_interpret_key_gen_type function in Mozilla Firefox before 23.0 and SeaMonkey before 2.20 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Certificate Request Message Format (CRMF) request.)
 CVE-2013-1704 (Use-after-free vulnerability in the nsINode::GetParentNode function in Mozilla Firefox before 23.0 and SeaMonkey before 2.20 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption and application crash) via vectors involving a DOM modification at the time of a SetBody mutation event.)
 CVE-2013-1702 (Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 23.0 and SeaMonkey before 2.20 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.)
 CVE-2013-1701 (Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, Thunderbird ESR 17.x before 17.0.8, and SeaMonkey before 2.20 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.)
Файлы:Mozilla Foundation Security Advisory 2013-63
 Mozilla Foundation Security Advisory 2013-64
 Mozilla Foundation Security Advisory 2013-65
 Mozilla Foundation Security Advisory 2013-66
 Mozilla Foundation Security Advisory 2013-67
 Mozilla Foundation Security Advisory 2013-68
 Mozilla Foundation Security Advisory 2013-69
 Mozilla Foundation Security Advisory 2013-70
 Mozilla Foundation Security Advisory 2013-71
 Mozilla Foundation Security Advisory 2013-72
 Mozilla Foundation Security Advisory 2013-73
 Mozilla Foundation Security Advisory 2013-74
 Mozilla Foundation Security Advisory 2013-75

Выполнение кода в HP Data Protector
Опубликовано:12 августа 2013 г.
Источник:
SecurityVulns ID:13236
Тип:удаленная
Уровень опасности:
6/10
Описание:Выполнение сценариев perl без авторизации.
Затронутые продукты:HP : HP Data Protector A.06.20
CVE:CVE-2011-0923 (The client in HP Data Protector does not properly validate EXEC_CMD arguments, which allows remote attackers to execute arbitrary Perl code via a crafted command, related to the "local bin directory.")
Оригинальный текстdocumentalessandro.dipinto_(at)_artificialstudios.org, HP Data Protector Arbitrary Remote Command Execution (12.08.2013)
Файлы:HP Data Protector Arbitrary Remote Command Execution exploit

DoS против Samba
дополнено с 12 августа 2013 г.
Опубликовано:28 августа 2013 г.
Источник:
SecurityVulns ID:13239
Тип:удаленная
Уровень опасности:
5/10
Описание:Исчерпание памяти на обработке запоса nttrans.
Затронутые продукты:SAMBA : Samba 3.6
 SAMBA : Samba 4.0
CVE:CVE-2013-4124 (Integer overflow in the read_nttrans_ea_list function in nttrans.c in smbd in Samba 3.x before 3.5.22, 3.6.x before 3.6.17, and 4.x before 4.0.8 allows remote attackers to cause a denial of service (memory consumption) via a malformed packet.)
Оригинальный текстdocumentgeinblues_(at)_gmail.com, CVE-2013-4124 samba nttrans dos private exploit (28.08.2013)
 documentMANDRIVA, [ MDVSA-2013:207 ] samba (12.08.2013)
Файлы:samba nttrans reply exploit
 samba nttrans reply exploit

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород