You are here

JC3 Bulletin Archive

June 4, 2013
V-170: Apache Subversion Hook Scripts Arbitrary Command Injection Vulnerability

A vulnerability has been reported in Apache Subversion.

June 3, 2013
V-169: Linux Kernel "iscsi_add_notunderstood_response()" Buffer Overflow Vulnerability

A vulnerability has been reported in Linux Kernel.

May 31, 2013
V-168: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks

A reflected cross-site scripting vulnerability was identified in Splunk Web

May 30, 2013
V-167: GnuTLS TLS Record Decoding Denial of Service Vulnerability

A vulnerability has been reported in GnuTLS, which can be exploited by malicious people to cause a DoS (Denial of Service)

May 29, 2013
V-166: HP-UX Directory Server Discloses Passwords to Remote Authenticated and Local Users

Two vulnerabilities were reported in HP-UX Directory Server.

May 28, 2013
V-165: Cisco WebEx for iOS Certificate Validation Flaw Lets Remote Users Spoof the Server

A vulnerability was reported in Cisco WebEx for iOS.

May 27, 2013
V-164: Apple QuickTime Multiple Flaws Let Remote Users Execute Arbitrary Code

Apple QuickTime Multiple Vulnerabilities

May 24, 2013
V-163: Red Hat Network Satellite Server Inter-Satellite Sync Remote Authentication Bypass

The system does not properly validate all Inter-Satellite Sync operations

May 23, 2013
V-162: Apache Struts "ParameterInterceptor" Security Bypass Vulnerability

A vulnerability has been reported in Apache Struts, which can be exploited by malicious people to bypass certain security restrictions.