月度存档: 8月 2013

Pligg CMS 2.0.0rc2 – CSRF File Creation Vulnerability

DotNetNuke DNNArticle Module 10.0 – SQL Injection Vulnerability

Alibaba Clone Tritanium Version (news_desc.html) – SQL Injection Vulnerability

VLC Player 2.0.8 (.m3u) – Local Crash PoC

Quack Chat 1.0 – Multiple Vulnerabilities

Mozilla Firefox 3.5.4 – Local Color Map Exploit

Mozilla Firefox 3.6 – Integer Overflow Exploit

Kingsoft Writer 2012 WPS字体名称缓冲区溢出漏洞

Juniper Junos Space 多个漏洞

Linux Kernel内存破坏漏洞(CVE-2013-4247)

Google Android PRNG熵漏洞

Oracle Java BytePackedRaster.verify() 签名整数溢出

Linux Kernel ‘armpmu_event_init()’函数本地拒绝服务漏洞

Microsoft Windows异步RPC请求处理远程代码执行漏洞(MS13-062)

PHP SSL Module “subjectAltNames”空字节处理安全绕过漏洞

Mac’s CMS多个安全漏洞

IBM Platform HPC XML解析器拒绝服务漏洞

Red Hat Enterprise Virtualization Hypervisor不完整修复拒绝服务漏洞

Gentoo Linux nullmailer Package ‘/etc/nullmailer/remotes’不安全文件权限漏洞

cPanel多个安全漏洞

ASPCMS未明SQL注入漏洞

KCFinder 2.51 – Local File Disclosure

Oracle Java storeImageArray() Invalid Array Indexing

Ruby on Rails Known Secret Session Cookie Remote Code Execution

HP StorageWorks P4000 Virtual SAN Appliance Login Buffer Overflow

IBM Informix Open Admin Tool跨站脚本漏洞

Drupal Authenticated User Page Caching模块信息泄漏漏洞

Joomla! redSHOP组件”pid” SQL注入漏洞