History of vulnerabilities analyzed by Vigil@nce:

2	Vulnerability Cisco IOS XR: memory leak via SNMP An attacker can send SNMP packets to Cisco IOS XR, to create a memory leak, in order to trigger a denial of service... CSCug80345, CVE-2013-1204, VIGILANCE-VUL-12857
2	Vulnerability WordPress: Cross Site Scripting of Events Manager An attacker can trigger a Cross Site Scripting in Events Manager of WordPress, in order to execute JavaScript code in the context of the web site... BID-60078, VIGILANCE-VUL-12856
4	Vulnerability QuickTime: multiple vulnerabilities An attacker can invite the victim to display malicious documents with QuickTime, in order to execute code on his computer... BID-60086, CVE-2013-0986, CVE-2013-0987, CVE-2013-0988, CVE-2013-0989, CVE-2013-1015, CVE-2013-1016, CVE-2013-1017, CVE-2013-1018, CVE-2013-1019, CVE-2013-1020, CVE-2013-1021, CVE-2013-1022, HT5770, VIGILANCE-VUL-12853
2	Vulnerability WordPress: SQL injection of Grand Flagallery An attacker can use a SQL injection in Grand Flagallery of WordPress, in order to read or alter data... VIGILANCE-VUL-12852
2	Vulnerability OTRS: ticket reading via AgentTicketPhone An authenticated attacker can change the url of the ticket split mechanism of OTRS, in order to read tickets of other users, which can contain sensitive information... CVE-2013-3551, VIGILANCE-VUL-12851
2	Vulnerability WordPress: SQL injection of ProPlayer An attacker can use a SQL injection in ProPlayer of WordPress, in order to read or alter data... BID-60019, VIGILANCE-VUL-12850
2	Vulnerability Windows: privilege escalation via pprFlattenRec An attacker can use a PATHRECORD object, to corrupt the memory of the Windows win32k!EPATHOBJ::pprFlattenRec() function, in order to escalate his privileges... BID-60051, VIGILANCE-VUL-12849
2	Vulnerability Joomla: SQL injection of S5 Clan Roster An attacker can use a SQL injection in S5 Clan Roster of Joomla, in order to read or alter data... BID-59993, VIGILANCE-VUL-12848
2	Vulnerability WordPress: Cross Site Request Forgery of Digg Digg An attacker can trigger a Cross Site Request Forgery in Digg Digg of WordPress, in order to force the victim to perform operations... BID-60046, CVE-2013-3258, VIGILANCE-VUL-12847
2	Vulnerability Xen: buffer overflow of pyxc_vcpu_setaffinity When the system uses the Python libxc Toolstack, a guest administrator can generate a buffer overflow in pyxc_vcpu_setaffinity() of Xen, in order to trigger a denial of service, and possibly to execute code... BID-59982, CERTA-2013-AVI-316, CVE-2013-2072, VIGILANCE-VUL-12845, XSA-56
1	Vulnerability Wireshark: multiple vulnerabilities Several vulnerabilities of Wireshark can be used by a remote attacker to create a denial of service... BID-59992, BID-59994, BID-59995, BID-59996, BID-59997, BID-59998, BID-59999, BID-6000, BID-60000, BID-60001, BID-60002, BID-60021, CVE-2013-2486, CVE-2013-2487, CVE-2013-3555, CVE-2013-3556, CVE-2013-3557, CVE-2013-3558, CVE-2013-3559, CVE-2013-3560, CVE-2013-3561, CVE-2013-3562, VIGILANCE-VUL-12844, wnpa-sec-2013-23, wnpa-sec-2013-24, wnpa-sec-2013-25, wnpa-sec-2013-26, wnpa-sec-2013-27, wnpa-sec-2013-28, wnpa-sec-2013-29, wnpa-sec-2013-30, wnpa-sec-2013-31
2	Vulnerability Bintec R, X: infinite loop of A-MPDU An attacker can send a malformed A-MPDU (Aggregated MAC Protocol Data Unit) packet, to generate an infinite loop in Bintec R/X, in order to trigger a denial of service... VIGILANCE-VUL-12843
2	Vulnerability WordPress: Cross Site Request Forgery of WP CleanFix An attacker can trigger a Cross Site Request Forgery in WP CleanFix of WordPress, in order to force the victim to perform operations... BID-59940, BID-59983, CVE-2013-2108, CVE-2013-2109, VIGILANCE-VUL-12842
1	Vulnerability EMC VNX/Celerra Control Station: privilege escalation via nasadmin An attacker, who is member of the nasadmin group, can alter scripts of EMC VNX/Celerra Control Station, in order to escalate his privileges... CERTA-2013-AVI-320, CVE-2013-3270, ESA-2013-041, VIGILANCE-VUL-12841
1	Vulnerability RSA SecurID: obsolete algorithm Several products related to RSA SecurID use an obsolete encryption algorithm, and a short key size... BID-59938, CERTA-2013-AVI-319, CVE-2013-0941, ESA-2013-029, VIGILANCE-VUL-12840
2	Vulnerability WordPress: Cross Site Request Forgery of Mail On Update An attacker can trigger a Cross Site Request Forgery in Mail On Update of WordPress, in order to force the victim to perform operations... BID-59932, CVE-2013-2107, VIGILANCE-VUL-12839
2	Vulnerability libvirt: descriptor leak via PoolListAllVolumes An attacker can create a file descriptor leak in the remoteDispatchStoragePoolListAllVolumes() function of libvirt, in order to trigger a denial of service... BID-59937, CVE-2013-1962, RHSA-2013:0831-01, VIGILANCE-VUL-12838
2	Vulnerability Cisco Secure ACS: session replay An attacker can capture the session identifier of Cisco Secure ACS, in order to reuse it to access to user's space... BID-59943, CSCud95787, CVE-2013-1200, VIGILANCE-VUL-12837
2	Vulnerability Cisco ACE: denial of service via SSL Logs An attacker can open numerous SSL sessions, to fill in the Cisco ACE log files, in order to trigger a denial of service... BID-59942, CSCug78957, CVE-2013-1175-ERROR, CVE-2013-1202, VIGILANCE-VUL-12836
2	Vulnerability Drupal: two vulnerabilities of Google Authenticator login An attacker can use two vulnerabilities of the Google Authenticator login module of Drupal, in order to bypass the authentication... BID-59884, SA-CONTRIB-2013-047, VIGILANCE-VUL-12835

   Next page

Direct access to page 1 21 41 61 81 101 121 141 161 181 201 221 241 261 281 301 321 341 361 381 401 421 441 461 481 501 521 541 561 581 601 609 610 611 612 613 614 615 616 617 618 619