Cisco Security Advisory: Cisco Unified Presence Server Denial of Service Vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Cisco Security Advisory: Cisco Unified Presence Server Denial of Service Vulnerability Advisory ID: cisco-sa-20130227-cups Revision 1.0 For Public Release 2013 February 27 16:00 UTC (GMT) +

Cisco Security Advisory: Cisco Prime Central for Hosted Collaboration Solution Assurance Excessive CPU Utilization Vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Cisco Security Advisory: Cisco Prime Central for Hosted Collaboration Solution Assurance Excessive CPU Utilization Vulnerability Advisory ID: cisco-sa-20130227-hcs Revision 1.0 For Public Release 2013 February 27 16:00 UTC (GMT) +---

Cisco Security Advisory: Cisco Unified Communications Manager Multiple Denial of Service Vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Cisco Security Advisory: Cisco Unified Communications Manager Multiple Denial of Service Vulnerabilities Advisory ID: cisco-sa-20130227-cucm Revision 1.0 For Public Release 2013 February 27 16:00 UTC (GMT) +--

[ MDVSA-2013:016 ] php

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2013:016 http://www.mandriva.com/security/ _

[waraxe-2013-SA#097] - Multiple Vulnerabilities in PHP-Fusion 7.02.05

[waraxe-2013-SA#097] - Multiple Vulnerabilities in PHP-Fusion 7.02.05 === Author: Janek Vind "waraxe" Date: 27. February 2013 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-97.html Description of vulnerable

Unauthenticated remote access to D-Link DIR-645 devices

Unauthenticated remote access to D-Link DIR-645 devices === [ADVISORY INFORMATION] Title: Unauthenticated remote access to D-Link DIR-645 devices Discovery date: 20/02/2013 Release date: 27/02/2013 Credits:Roberto Paleari (robe

[KIS-2013-03] Joomla! <= 3.0.2 (highlight.php) PHP Object Injection Vulnerability

--- Joomla! <= 3.0.2 (highlight.php) PHP Object Injection Vulnerability --- [-] Software Link: http://www.joomla.org/ [-] Affected Versions: Version 3.0.2 and earli

Cross-Site Scripting (XSS) in Geeklog

Advisory ID: HTB23143 Product: Geeklog Vendor: http://www.geeklog.net Vulnerable Version(s): 1.8.2 and probably prior Tested Version: 1.8.2 Vendor Notification: February 6, 2013 Vendor Patch: February 20, 2013 Public Disclosure: February 27, 2013 Vulnerability Type: Cross-Site Scripting [CWE-79

Stored Cross-site Scripting ('XSS') in Airvana HubBub C1-600-RT Femtocell

Advisory ID: NEOCAN-2013-002 Advisory Title: Stored XSS ('cross-site scripting') in Airvana HubBub C1-600-RT router Author: Scott Behrens / scott.behr...@neohapsis.com Release Date: 02/27/2013 Vendor: Airvana Application: Airrave 2.5 router administration page Platfor

Fileutils ruby gem possible remote command execution and insecure file handling in /tmp

Fileutils ruby gem possible remote command execution and insecure file handling in /tmp 2/23/2013 Hi list, I was looking at some gem files and noticed a few issues with fileutils-0.7 http://rubygems.org/gems/fileutils "A set of utility classes to extract meta data from different file types".