[Full-disclosure] SEC Consult SA-20120104-0 :: Multiple critical vulnerabilities in Apache Struts2

SEC Consult Vulnerability Lab Security Advisory < 20120104-0 > === title: Multiple critical vulnerabilities in Apache Struts2 product: Apache Struts2 * OpenSymphony XWork

[Full-disclosure] ZDI-12-001 : HP Managed Printing Administration img_id Multiple Vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ZDI-12-001 : HP Managed Printing Administration img_id Multiple Vulnerabilities http://www.zerodayinitiative.com/advisories/ZDI-12-001 January 5, 2012 - -- CVE ID: CVE-2011-4169 - -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C - -- Affected Vendors: Hewle

[Full-disclosure] ZDI-12-002 : HP OpenView NNM ov.dll _OVBuildPath Remote Code Execution Vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ZDI-12-002 : HP OpenView NNM ov.dll _OVBuildPath Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-002 January 5, 2012 - -- CVE ID: CVE-2011-3167 - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected Vendors:

[Full-disclosure] ZDI-12-003 : HP OpenView NNM webappmon.exe parameter Remote Code Execution Vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ZDI-12-003 : HP OpenView NNM webappmon.exe parameter Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-003 January 5, 2012 - -- CVE ID: CVE-2011-3166 - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected Vendo

[Full-disclosure] ZDI-12-004 : Apple Quicktime JPEG2000 COD Remote Code Execution Vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ZDI-12-004 : Apple Quicktime JPEG2000 COD Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-004 January 5, 2012 - -- CVE ID: CVE-2011-3250 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected Vendors: Apple

[Full-disclosure] ZDI-12-005 : Apple Quicktime RLE BGRA Decoding Remote Code Execution Vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ZDI-12-005 : Apple Quicktime RLE BGRA Decoding Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-005 January 5, 2012 - -- CVE ID: CVE-2011-3248 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected Vendors:

[Full-disclosure] ZDI-12-006 : Novell Netware XNFS.NLM NFS Rename Remote Code Execution Vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ZDI-12-006 : Novell Netware XNFS.NLM NFS Rename Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-006 January 5, 2012 - -- CVE ID: - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected Vendors: Novell - -

[Full-disclosure] ZDI-12-007 : Novell Netware XNFS.NLM STAT Notify Remote Code Execution Vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ZDI-12-007 : Novell Netware XNFS.NLM STAT Notify Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-007 January 5, 2012 - -- CVE ID: - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected Vendors: Novell -

[Full-disclosure] [ GLSA 201201-02 ] MySQL: Multiple vulnerabilities

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201201-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - -