-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
CVE-2010-1157: Apache Tomcat information disclosure vulnerability
Severity: Low
Vendor: The Apache Software Foundation
Versions Affected:
- - Tomcat 6.0.0 to 6.0.26
- - Tomcat 5.5.0 to 5.5.29
Note: The unsupported Tomcat 3.x, 4.x and 5.0.x versions
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02031621
Version: 1
HPSBMA02494 SSRT090168 rev.1 - HP Virtual Machine Manager (VMM) for Windows,
Remote Unauthorized Access, Privilege Elevation
NOTICE: The information in this Security
(, ) (,
. `.' ) ('.',
). , ('. ( ) (
(_,) .`), ) _ _,
/ _/ / _ \ _
\ \==/ /_\ \ _/ ___\/ _ \ / \
/ \/ |\\ \__( _ ) Y Y \
/__ /\___|__ / \___ /|__|_| /
\/ \/.-.\/ \/:wq
On 20/04/2010 8.42, Ansgar Wiechers wrote:
Perhaps I'm missing something, but how is this a security flaw? A user
who is allowed to run sudoedit can edit /etc/sudoers, and thus allow
himself to run any command anyway.
Regards
Ansgar Wiechers
In the configuration file (sudoers) you can
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02029444
Version: 1
HPSBMA02492 SSRT100079 rev.1 - HP System Management Homepage (SMH) for Linux
and Windows, Remote Cross Site Scripting (XSS), Denial of Service (DoS),
Execution of
Windows 2000/XP/2003 win32k.sys SfnLOGONNOTIFY local kernel Denial of Service
Vulnerability
Effect : Microsoft Windows 2000/XP/2003 full patch
Author:MJ0011
Published: 2010-04-22
Vulnerability Details:
Win32k.sys in DispatchMessage when the last call to xxxDefWindowProc, this
Highlights:
- GameSec 2010 is now in-cooperation with ACM SIGSAC
- Paper submission deadline is 3 weeks away (May 15)
CALL FOR PAPERS
GameSec 2010 - Conference on Decision and Game Theory for Security
22-23 November 2010, Berlin, Germany
www.gamesec-conf.org
***
Important Dates
Windows 2000/XP/2003 win32k.sys SfnINSTRING local kernel Denial of Service
Vulnerability
Effect : Microsoft Windows 2000/XP/2003 full patch
Author:MJ0011
Published: 2010-04-22
Vulnerability Details:
Win32k.sys in DispatchMessage when the last call to xxxDefWindowProc, this
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02097674
Version: 1
HPSBUX02519 SSRT14 rev.1 - HP-UX Running BIND, Remote Compromise of
NXDOMAIN Responses
NOTICE: The information in this Security Bulletin should be acted upon as soon
##
Apache ActiveMQ Source Code Disclosure Vulnerability
SecPod Technologies (www.secpod.com)
Author Veerendra G.G
###
SecPod ID: 1002
Hello Bugtraq!
I want to warn you about security vulnerabilities in system NovaBoard.
In this advisory I'm continue to inform readers of mailing lists about
vulnerable web applications which are using CaptchaSecurityImages.php. If
you read Bugtraq you can saw the letter which was posted last
--
XSS and Content Injection in HTC Windows Mobile SMS Preview PopUp
Date: 22.04.2010
---
- Description
Windows Mobile shows message previews if configured to do
12 matches
Mail list logo