Re: re: Real player resource exhaustion Vulnerability

Please find below updated Impact information ### CVSS Severity (version 2.0): CVSS v2 Base Score:4.3 (MEDIUM) (AV:N/AC:M/Au:N/C:N/I:N/A:P) (legend) Impact Subscore: 2.9 Exploitability Subscore: 8.6 CVSS Version 2 Metrics:

[HITB-Announce] REMINDER: #HITB2013KUL CFP Closes 25th July

Hi everyone, Just a gentle reminder that the Call for Papers for the 11th annual HITB Security Conference in Malaysia, #HITB2013KUL, closes on the 25th of July at 23:59 MYT! As always, we're looking for talks that are highly technical, but most importantly, material which is new, cutting edge

SEC Consult SA-20130709-0 :: Denial of service vulnerability in Apache CXF

SEC Consult Vulnerability Lab Security Advisory 20130709-0 === title: Denial of service vulnerability product: Apache CXF vulnerable version: Apache CXF prior to 2.5.10, 2.6.7 and 2.7.4 fixed

Re: re: Real player resource exhaustion Vulnerability

On Tue, Jul 09, 2013 at 07:17:35AM +, akshay.vagh...@cyberoam.com wrote: Impact Type:Allows disruption of serviceUnknown Unknown? --- Henri Salo signature.asc Description: Digital signature

Zoom X4/X5 ADSL Modem and Router -Unauthenticated Remote Root Command Execution

Vulnerable Products - Zoom X4 ADSL Modem and Router running Nucleus/4.3 UPnP/1.0Virata-EmWeb/R6_2_0 Server All GS Firmware versions Zoom X5 ADSL Modem and Router running Nucleus/4.3 UPnP/1.0Virata-EmWeb/R6_2_0 Server All GS Firmware versions Note: A similar vulnerability was reported several