Archiv pro měsíc: Září 2016

SecuritTeam.com: Canonical Openstack Ironic 4.2.4 Obtain Information Vulnerability

The ironic-api service in OpenStack Ironic before 4.2.5 (Liberty) and 5.x before 5.1.2 (Mitaka) allows remote attackers to obtain sensitive information about a registered node by leveraging knowledge of the MAC address of a network card belonging to that node and sending a crafted POST request to the v1/drivers/$DRIVER_NAME/vendor_passthru resource.

SecuritTeam.com: Adobe Acrobat 15.016.20045 Denial Of Service Execute Code Overflow Memory corruption Vulnerability

Adobe has released security updates for Adobe Acrobat and Reader for Windows and Macintosh. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system.

SecuritTeam.com: Adobe Flash Player 11.2.202.626 Linux Macintosh Execute Code Vulnerability

Adobe has released security updates for Adobe Flash Player for Windows, Macintosh, Linux and ChromeOS. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system.

SecuritTeam.com: Oracle Agile Engineering Data Management 6.1.3.0 Remote Code Execution Vulnerability

Oracle Agile Engineering Data Management is prone to a remote code-execution vulnerability.This allows a remote attacker to exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts may result in a denial-of-service condition.

SecuritTeam.com: Adobe Flash Player Macintosh Denial Of Service Execute Code Overflow Memory corruption Vulnerability

Adobe has released security updates for Adobe Flash Player for Windows, Macintosh, Linux and ChromeOS. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system.

SecuritTeam.com: Oracle Enterprise Communications Broker PCz Remote Code Execution Vulnerability

Oracle Enterprise Communications Broker is prone to a remote code-execution vulnerability.This allows a remote attacker to exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts may result in a denial-of-service condition.

SecuritTeam.com: Apple Mac Os X 10.11.5 Denial Of Service Gain privileges Obtain Information Vulnerability

Apple Mac Os X is prone to a denial of service (DoS) vulnerability.This allow a remote attacker to cause a denial of service (DoS) condition due to high consumption of system resources via certain vulnerable vectors.

SecuritTeam.com: Oracle Outside In Technology 8.5.2 Project Portfolio Remote Code Execution Vulnerability

Oracle Outside In Technology is prone to a remote code-execution vulnerability.This allows a remote attacker to exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts may result in a denial-of-service condition.