Re: Multiple vulnerabilities in several ATEN IP KVM Switches

This is Technical Support Team from ATEN. Firstly, we appreciate all suggestions from Germany TUB LAB. Undoubtedly, guaranteeing our KVM products with robust security mechanism is our responsibility. After discussing with Germany TUB LAB, we believe all security issues could be fixed by

[PT-2008-09] Microsoft Windows MSMQ Privilege Escalation Vulnerability

-- (PT-2008-09) Positive Technologies Security Advisory Microsoft Windows MSMQ Privilege Escalation Vulnerability -- ---[ Affected Software ]

Chavoosh CMS SQL Injection Vulnerability

= IUT-CERT = Title: Chavoosh CMS SQL Injection Vulnerability Vendor: www.chavoosh.com Dork: Design by chavoosh Co Type: Input.Validation.Vulnerability (SQL Injection) Fix: N/A == nsec.ir = Description:

[DSECRG-09-033] SAP Netweaver UDDI - XSS Security Vulnerability

http://www.dsecrg.com/pages/vul/show.php?id=133 Digital Security Research Group [DSecRG] Advisory #DSECRG-09-033 Application:SAP NetWeaver Application Server (Java) Versions Affected: Version 7.0 Vendor URL: http://SAP.com

Hijacking Safari 4 Top Sites with Phish Bombs

= SECURETHOUGHTS.COM ADVISORY - CVE-ID: CVE-2009-2196 - Release Date  : August 11, 2009 - Discovered by : Inferno = I. TITLE - Hijacking Safari 4 Top Sites with Phish Bombs

[security bulletin] HPSBUX02437 SSRT090038 rev.2 - HP-UX Running XNTP, Remote Execution of Arbitrary Code

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01763606 Version: 2 HPSBUX02437 SSRT090038 rev.2 - HP-UX Running XNTP, Remote Execution of Arbitrary Code NOTICE: The information in this Security Bulletin should be acted upon as soon as

Plume CMS Multiple SQL Injection Vulnerabilities - Security Advisory - SOS-09-006

Plume CMS Multiple SQL Injection Vulnerabilities - Security Advisory - SOS-09-006 Release Date. 12-Aug-2009 Vendor Notification Date. 16-Jun-2009 Product. Plume CMS Platform. Independent Affected versions. 1.2.3 (verified), possibly others Severity Rating. High Impact. Manipulation of data

2WIRE Gateway Authentication Bypass Password Reset

2WIRE GATEWAY AUTHENTICATION BYPASS PASSWORD RESET DESCRIPTION - There is an authentication bypass vulnerability in page=CD35_SETUP_01 that allows you to set a new password even if the password was previously set. By

[ MDVSA-2009:200 ] libxml

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2009:200 http://www.mandriva.com/security/

Microsoft Wordpad Memory Exhaustion (msftedit)

Affected Software: Microsoft Wordpad on Windows XP SP3 Description of Vulnerability: Microsoft Wordpad (on Windows XP SP3) contains a vulnerability that can allow an attacker to cause a denial of service. The vulnerability is due to a memory exhaustion error when a user tries to view a

[ MDVSA-2009:201 ] fetchmail

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2009:201 http://www.mandriva.com/security/