Posts Tagged ‘Disclosure of sensitive data’

Wordpress VulnerabilityVulnerability: Multiple vulnerabilities in WordPress

Danger: Average
Patch: Yes
Number of vulnerabilities: 3

Vector of operation: Remote
Impact: Cross Site Scripting, Disclosure of sensitive data

Affected products: WordPress 3.x

Affected versions: WordPress version to 3.5.1. (more…)

Vulnerability

Vulnerabilities in Microsoft IIS

Vulnerability: Multiple vulnerabilities in Microsoft Internet Information Services (IIS)

Danger: Low
Patch: Yes
Number of vulnerabilities: 2
CVE ID: CVE-2012-2531
CVE-2012-2532

Vector of operation: Remote
Impact: Disclosure of sensitive data

Affected Products: Microsoft Internet Information Services (IIS) 7.x

Affected versions: Microsoft Internet Information Services (IIS) 7.x

Description:

Which can be exploited by malicious people to disclose sensitive data on the target system. (more…)

Vulnerability

Vulnerabilities in .NET Framework

Vulnerabilities in .NET Framework could allow remote code execution.

five privately reported vulnerabilities. NET Framework. The most severe of these vulnerabilities could allow remote code execution if an attacker to convince a user of the target system use autotune malicious file a proxy server, and then make a code in the currently running application.

1. System compromise in Microsoft .NET Framework

Danger: High
Patch: Yes
Number of vulnerabilities: 1

Vector of operation: Remote
Impact: System Compromise

Affected Products: Microsoft .NET Framework 2.x, Microsoft. NET Framework 3.x, Microsoft. NET Framework 4.x

Affected versions: Microsoft .NET Framework 2.0, Microsoft .NET Framework 3.5, Microsoft .NET Framework 3.5.1, Microsoft .NET Framework 4, Microsoft .NET Framework 4.5, Server Core installation option (more…)

Firefox logo

Vulnerability in Firefox

In the browser, eliminated two XSS vulnerability attacks and one vulnerability disclosure of sensitive data.

Mozilla Foundation has released a security update Firefox 16.0.2, which eliminated three vulnerabilities.

The second in the last two weeks fix in Firefox resolves two vulnerabilities that can make XSS attack, and one vulnerability disclosure of sensitive data, which allows you to bypass security restrictions and implement a cross-domain object reading Location. (more…)

Firefox logo

Vulnerabilities in Mozilla products

Vulnerability: multiple vulnerabilities in Mozilla products

Danger: Low
Patch: Yes
Number of vulnerabilities: 3

CVE ID: CVE-2012-4194
CVE-2012-4195
CVE-2012-4196

Impact: Cross Site Scripting
Disclosure of sensitive data

Affected products:

  • Mozilla Thunderbird 16.x
  • Mozilla Firefox 16.x
  • Mozilla Firefox 10.x
  • Mozilla Thunderbird 10.x
  • Mozilla SeaMonkey 2.x
Affected versions:

  • Firefox 16.0.2
  • Mozilla Firefox ESR 10.0.10
  • Mozilla Thunderbird 16.0.2
  • Mozilla Thunderbird ESR 10.0.10
  • Mozilla SeaMonkey 2.13.2

(more…)