CVE-2008-2370: Apache CouchDB Timing Attack Vulnerability
Severity: Important
Vendor:
The Apache Software Foundation
Versions Affected:
Apache CouchDB 0.8.0 to 0.10.1
Description:
Apache CouchDB versions prior to version 0.11.0 are vulnerable to
timing attacks, also known as side-channel
==
Secunia Research 31/03/2010
- Sun Java JDK/JRE Soundbank Resource Parsing Buffer Overflow -
==
Table of Contents
Affected
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
-
Debian Security Advisory DSA-2025-1 secur...@debian.org
http://www.debian.org/security/ Steffen Joeris
March 31, 2010
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
-
Debian Security Advisory DSA-2024-1 secur...@debian.org
http://www.debian.org/security/Giuseppe Iuculano
March 31, 2010
#!/usr/bin/python
#
# OpenDcHub 0.8.1 Remote Code Execution Exploit
# Pierre Nogues - http://www.indahax.com
#
# Description:
# OpenDcHub is a direct connect hub for Linux
#
# OpenDcHub doesn't handle specially crafted MyINFO message which lead to a
stack overflow.
#
# Affected versions
==
Secunia Research 31/03/2010
- Sun Java JDK/JRE Soundbank Resource Name Buffer Overflow -
==
Table of Contents
Affected
Hello Bugtraq!
I want to warn you about security vulnerabilities in NoCMS (in both versions
for work with Ascent and Mangos).
-
Advisory: Vulnerabilities in NoCMS
-
URL: http://websecurity.com.ua/4065/
-
iDefense Security Advisory 03.30.10
http://labs.idefense.com/intelligence/vulnerabilities/
Mar 30, 2010
I. BACKGROUND
The Java Runtime Environment (JRE) is the Sun Microsystems
implementation of the Java run-time. For more information, visit the
link shown below.
http://www.sun.com/java/
II.
#!/bin/sh
#
# BitComet = 1.19 Remote DOS Exploit
# Pierre Nogues - http://www.indahax.com/
#
# Description:
# BitComet is a torrent client
#
# BitComet doesn't handle malicious DHT packet with an invalid bencoded
message.
#
# Affected versions :
# BitComet = 1.19
#
# Plateforms :
#
My sincere apologies, I mixed up the CVE number. Here is the update report.
Cheers
Jan
--
CVE-2010-0009: Apache CouchDB Timing Attack Vulnerability
Severity: Important
Vendor:
The Apache Software Foundation
Versions Affected:
Apache CouchDB 0.8.0 to 0.10.1
Description:
Apache CouchDB
10 matches
Mail list logo