You are here

JC3 Bulletin Archive

RSS
July 31, 2013
V-207: Wireshark Multiple Denial of Service Vulnerabilities

Successful exploitation of this vulnerability may allow execution of arbitrary code.

July 30, 2013
V-206: Apache HTTP Server mod_rewrite and "httpOnly" Cookie Disclosure Vulnerabilities

Two vulnerabilities have been reported in Apache HTTP Server

July 29, 2013
V-205: IBM Tivoli System Automation for Multiplatforms Java Multiple Vulnerabilities

The weakness and the vulnerabilities are caused due to a bundled vulnerable version of Java.

July 27, 2013
V-204: A specially crafted query can cause BIND to terminate abnormally

A specially crafted query sent to a BIND nameserver can cause it to crash (terminate abnormally).

July 26, 2013
V-203: HP LoadRunner Multiple Bugs Let Remote Users Deny Service and Execute Arbitrary Code

Multiple vulnerabilities were reported in HP LoadRunner.

July 25, 2013
V-202: Cisco Video Surveillance Manager Bugs Let Remote Users Obtain Potentially Sensitive Information

Two vulnerabilities were reported in Cisco Video Surveillance Manager.

July 19, 2013
V-201: Cisco Intrusion Prevention System SSP Fragmented Traffic Denial of Service Vulnerability

A vulnerability in the implementation of the code that processes fragmented traffic could allow an unauthenticated, remote attacker to cause the Analysis Engine process to become unresponsive or cause the affected system to reload.

July 18, 2013
V-200: Apache Struts DefaultActionMapper Redirection and OGNL Security Bypass Vulnerabilities

The vulnerabilities can be exploited by malicious people to conduct spoofing attacks and bypass certain security restrictions

July 12, 2013
V-198: Red Hat Enterprise MRG Messaging Qpid Python Certificate Validation Flaw Lets Remote Users Conduct Man-in-the-Middle Attacks

A remote user can conduct a man-in-the-middle attack to access potentially sensitive information