| Page(s) : 1 ... 204 205 206 207 208 209 210 211 212 213 [214] 215 216 217 218 219 220 221 222 223 224 ... | Result(s) : 9841 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.1 | 2015-03-29 | CVE-2015-0996 | cve | Schneider Electric InduSoft Web Studio before 7.1.3.4 SP3 Patch 4 and InTouch Machine Edition 2014 before 7.1.3.4 SP3 Patch 4 rely on a hardcoded cleartext password to control r... |
| 2.1 | 2015-03-29 | MDVSA-2015:136 | Mandriva | Updated perl package fixes security vulnerability: The Dumper method in Data::Dumper before 2.154, as used in Perl 5.20.1 and earlier, allows context-dependent attackers to c... |
| 2.9 | 2015-03-29 | MDVSA-2015:134 | Mandriva | Updated pulseaudio package fixes RTP remote crash vulnerability: PulseAudio versions shipped in mbs2 were vulnerable to a remote RTP attack which could crash the PulseAudio s... |
| 3.3 | 2015-03-29 | MDVSA-2015:132 | Mandriva | Updated readline packages fix security vulnerability: Steve Kemp discovered the _rl_tropen() function in readline insecurely handled a temporary file. This could allow a loca... |
| 1.9 | 2015-03-29 | MDVSA-2015:128 | Mandriva | Updated sendmail packages fix security vulnerability: Sendmail before 8.14.9 does not properly closing file descriptors before executing programs. This bug could enable local... |
| 3.3 | 2015-03-29 | MDVSA-2015:117 | Mandriva | Updated emacs packages fix security vulnerabilities: Steve Kemp discovered multiple temporary file handling issues in Emacs. A local attacker could use these flaws to perform... |
| 3.5 | 2015-03-27 | CVE-2015-2760 | cve | Cross-site scripting (XSS) vulnerability in the ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3 Patch 4 Hotfix 16 (9.3.416.4) allows remote authenticated... |
| 2.1 | 2015-03-27 | CVE-2015-2157 | cve | The (1) ssh2_load_userkey and (2) ssh2_save_userkey functions in PuTTY 0.51 through 0.63 do not properly wipe SSH-2 private keys from memory, which allows local users to obtain ... |
| 3.5 | 2015-03-27 | MDVSA-2015:070 | Mandriva | Updated libvirt packages fixes security vulnerabilities: The qemuDomainMigratePerform and qemuDomainMigrateFinish2 functions in qemu/qemu_driver.c in libvirt do not unlock th... |
| 1.9 | 2015-03-27 | MDVSA-2015:066 | Mandriva | Updated cpio package fixes security vulnerability: In GNU Cpio 2.11, the --no-absolute-filenames option limits extracting contents of an archive to be strictly inside a curre... |
| 3.5 | 2015-03-25 | CVE-2015-2559 | cve | Drupal 6.x before 6.35 and 7.x before 7.35 allows remote authenticated users to reset the password of other accounts by leveraging an account with the same password hash as anot... |
| 1.9 | 2015-03-24 | CVE-2014-8923 | cve | The (1) IBM Tivoli Identity Manager Active Directory adapter before 5.1.24 and (2) IBM Security Identity Manager Active Directory adapter before 6.0.14 for IBM Security Identity... |
| 1.2 | 2015-03-24 | CVE-2014-6134 | cve | IBM Rational ClearCase 8.0.0 before 8.0.0.14 and 8.0.1 before 8.0.1.7, when Installation Manager before 1.8.2 is used, retains cleartext server passwords in process memory throu... |
| 3.5 | 2015-03-23 | CVE-2015-2289 | cve | Cross-site scripting (XSS) vulnerability in templates/2k11/admin/entries.tpl in Serendipity before 2.0.1 allows remote authenticated editors to inject arbitrary web script or HT... |
| 3.5 | 2015-03-23 | CVE-2015-2677 | cve | Multiple cross-site scripting (XSS) vulnerabilities in ocPortal before 9.0.17 allow remote authenticated users to inject arbitrary web script or HTML via the (1) title or (2) te... |
| 3.5 | 2015-03-23 | CVE-2015-0103 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the Process Portal in IBM Business Process Manager (BPM) 8.0 through 8.0.1.3, 8.5.0 through 8.5.0.1, and 8.5.5 through 8.5... |
| 2.1 | 2015-03-23 | CVE-2015-0527 | cve | EMC Documentum xCelerated Management System (xMS) 1.1 before P14 stores cleartext Windows Service credentials in a batch file during Documentum Platform and xCelerated Compositi... |
| 2.1 | 2015-03-23 | CVE-2015-0136 | cve | powervc-iso-import in IBM PowerVC 1.2.0.x before 1.2.0.4 and 1.2.1.x before 1.2.2 places an access token on the command line during IVM and PowerKVM management, which allows loc... |
| 2.6 | 2015-03-19 | CVE-2015-1787 | cve | The ssl3_get_client_key_exchange function in s3_srvr.c in OpenSSL 1.0.2 before 1.0.2a, when client authentication and an ephemeral Diffie-Hellman ciphersuite are enabled, allows... |
| 3.5 | 2015-03-18 | CVE-2015-0125 | cve | Cross-site scripting (XSS) vulnerability in IBM Rational DOORS Next Generation 4.x before 4.0.7 iFix3 and 5.x before 5.0.2 and Rational Requirements Composer 4.x before 4.0.7 iF... |
| Page(s) : 1 ... 204 205 206 207 208 209 210 211 212 213 [214] 215 216 217 218 219 220 221 222 223 224 ... | Result(s) : 9841 |
