The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.
History of vulnerabilities analyzed by Vigil@nce:
Java JRE: file access via XML entities
An attacker can provide XML data using an external entity, in order to access to the content of a file or to create a denial of service...
OpenBSD: Cross Site Scripting of bgplg
An attacker can create a Cross Site Scripting attack via the cmd parameter of the web interface of BGPD...
AIX: privilege elevation via piox25
A local attacker can create a buffer overflow in piox25 tools...
Informix Dynamic Server: several overflows
Under Windows, several overflows of Informix Dynamic Server permit an attacker to obtain administrator privileges...
Tripwire Enterprise: Cross Site Scripting
An attacker can create a Cross Site Scripting on the authentication page of Tripwire Enterprise/Server...
xine-lib: buffer overflow via ASF
An attacker can create an ASF header indicating a long size in order to execute code in applications linked to xine-lib...
Yarssr: command execution
An attacker can provide a malicious RSS feed in order to execute commands on computer of victims aggregating them with Yarssr...
PulseAudio: privilege elevation
The PulseAudio program does not correctly lose its privileges, which can permit a local attacker to obtain root privileges...
ICU: denial of service via a regular expression
When attacker can change the regular expression used by a ICU program, he can create a denial of service...
GNOME screensaver: bypass with Compiz
When GNOME screensaver is enabled with Compiz, an attacker can execute commands with privileges of user who locked his session...
AIX 5.2, 5.3: several vulnerabilties
Several vulnerabilities of AIX 5.2 and 5.3 permit a local attacker to elevate his privileges or to obtain information...
AIX 6.1: two vulnerabilities
Two vulnerabilities of AIX 6.1 permit a local attacker to elevate his privileges or to obtain information...
Cisco PIX, ASA: denial of service via TTL
When "decrement-ttl" is enabled, an attacker can send a malicious packet in order to stop the product...
HP-UX: denial of service of ARPA
A remote attacker can generate a denial of service by using the ARPA (TCP/IP) protocol...
PHP: file reading with cURL
A local attacker can use cURL functions to read files by bypassing safe mode restrictions...
Firefox: chrome execution
An attacker can use a "chrome://" uri in order to access to Javascript files located on computer of victim...
Apache httpd: vulnerabilities of mod_negotiation
An attacker can create a Cross Site Scripting attack and a Http Response Splitting in mod_negotiation...
Boost: denial of service via a regular expression
When attacker can change the regular expression used by a Boost program, he can create a denial of service...
WebSphere AS: vulnerability of serveServletsByClassnameEnabled
A vulnerability affects applications configured with serveServletsByClassnameEnabled...
WebSphere AS 6.0.2: several vulnerabilities
Several vulnerabilities of WebSphere AS permit an attacker to obtain information, to create denial of service or to attack the service...
WebSphere AS 5.1.1: several vulnerabilities
Several vulnerabilities of WebSphere AS permit an attacker to obtain information or to create a Cross Site Scripting attack...
fsplib: several vulnerabilities
Several vulnerabilities affect fsplib, the worst one leading to code execution...
scponly: configuration change
An authenticated attacker can alter scp behavior via scponly...
Apache Tomcat: cookie reading
The cookie used for single-sign-on authentication is not encrypted by Apache Tomcat...
Xorg, XFree: several vulnerabilities
Several vulnerabilities of Xorg and XFree permit a local attacker to elevate his privileges or to detect a file...

   

Direct access to page 1 21 41 61 81 101 121 141 161 181 198 199 200 201 202 203 204 205 206 208 210 211 212 213 214 215 216 217 218 221 241 261 281 301 321 341 361 381 401 421 441 461 481 501 521 541 561 581 601 621 641 661 681 701 721 741 761 781 801 821 841 861 881 901 921 941 961 981 1001 1012