月度存档: 9月 2013

WordPress Zoom In/Out Slider Plugin “name”跨站脚本漏洞

TYPO3 ICS AWStats扩展未明跨站脚本漏洞

TYPO3 Formhandler扩展未明SQL注入漏洞

TYPO3 Direct Mail扩展验证代码检查安全绕过漏洞

TYPO3 Apache Solr扩展PHP代码执行漏洞

Apache Struts “Dynamic Method Invocation”机制任意代码执行漏洞

Apple iPhone 5s TouchID指纹重放验证绕过漏洞

Apple iOS SIRI个人语音助手验证绕过漏洞

Android FTP Server任意文件访问漏洞

WordPress NOSpamPTI Plugin – Blind SQL Injection

IBM AIX 6.1 / 7.1 – Local root Privilege Escalation

CA BrightStor ARCserve Tape Engine 0x8A Buffer Overflow

Apache Struts 远程代码执行漏洞(CVE-2013-4316)

Ubuntu ‘apt-xapian-index’ UID检查竞争条件特权提升漏洞

Apple Xcode GIT “git-imap-send” SSL证书校验安全漏洞

WordPress Lazy SEO plugin Shell Upload Vulnerability

Apple iTunes ActiveX 控件内存破坏漏洞(CVE-2013-1035)

Mozilla Firefox/Thunderbird/SeaMonkey 缓冲区溢出漏洞(CVE-2013-1732)

Apple Mac OS X Server多个跨站脚本漏洞(CVE-2013-1034)

WebKit 内存破坏漏洞(CVE-2013-1039)

Adobe Acrobat/Reader缓冲区溢出漏洞(CVE-2013-3356)

Synology DiskStation Manager (DSM) 4.3-3776 – Multiple Vulnerabilities

Microsoft SharePoint 2013 (Cloud) – Persistent Exception Handling Vulnerability MS13-067

WordPress Plugin Complete Gallery Manager 3.3.3 – Arbitrary File Upload Vulnerability

VMWare Setuid vmware-mount Unsafe popen(3)

MS13-059 Microsoft Internet Explorer CFlatMarkupPointer Use-After-Free

Apple Safari 6.0.1 for iOS 6.0 and OS X 10.7/8 – Heap Buffer Overflow

freeFTPd 1.0.10 PASS Command SEH Overflow (msf)