AegisLab - Safely exploring the world!

AegisLab HomePressNews

SN-2011-27012 HP OpenView Storage Data Protector Remote Buffer Oveflow_Vulnerability
HP Data Protector is an automated backup and recovery software for singleserver to enterprise environments, supporting disk storage or tape storage targets. Potential security vulnerabilities have been identified with HP OpenView Storage Data Protector. These vulnerabilities could be remotely exploited by executing arbitrary code...
2011-26011 Cisco AnyConnect VPN Client ActiveX URL Property Vulnerability
The Cisco AnyConnect Secure Mobility Client, previously known as the Cisco AnyConnect VPN Client, is affected by the following vulnerabilities: Arbitrary Program Execution Vulnerability and Local Privilege Escalation Vulnerability...
2011-25010 Gogago YouTube Video Converter ActiveX Control Buffer Overflow Vulnerability
Gogago YouTube Video Converter is a tool for converting videos. It allows you to convert videos to any format for any device. A buffer overflow vulnerability has been reported in Gogago YouTube Video Converter ActiveX control...
2011-24009 Aastra IP Phone Web Interface Data Disclosure Vulnerability
The Aastra 9480i is equipped with XML browser capabilities and an extra large display with dynamic softkeys to easily access customized services and applications. A data disclosure vulnerability have been reported in Aastra IP Phone 9480i web interface. The vulnerability allows an unprivileged attacker to read the sip details including password...
2011-23008 MODACOM URoad-5000 Remote Command Execution Vulnerability
URoad-5000 is a pocket sized and battery powered Wi-Fi router that seamlessly connects up to 10 Wi-Fi devices to the internet via Mobile WiMAX network. A remote command execution vulnerability has been reported in URoad-5000 v1450...
2011-22007 Adobe Audition Session File Handling Buffer Overflow Vulnerability
A buffer overflow vulnerability has been identified in Adobe Audition 3.0.1 and earlier versions for Windows. This flaw allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Audition Session (aka .ses) file...
2011-21006 Cisco Unified Operations Manager Multiple Vulnerabilities
Multiple vulnerabilities have been reported in Cisco Unified Operations Manager (CUOM), which can be exploited by remote attacker to conduct cross-site scripting and SQL injection attacks...
SN-2011-20005 IBM Tivoli Directory Server SASL Bind Request Remote Code Execution Vulnerability
This flaw is caused by improper bounds checking by ibmslapd.exe. When the process receives an LDAP CRAM-MD5 packet, it uses libibmldap.dll to handle the allocation of a buffer for the packet data. A specially crafted LDAP request could cause a buffer overrun in ber_get_int function. This can be leveraged by a remote attacker to execute arbitrary code under the context of the SYSTEM user...
SN-2011-19004 Microsoft Windows MHTML Cross-Site Scripting Vulnerability
This flaw is caused due to an error in the way the MHTML (MIME Encapsulation of Aggregate HTML) protocol handler interprets MIME-formatted requests for content blocks within a document...
TN-2011-18003 Lionic App-Guard can block UltraSurf 10.08
Please enable blocking UltraSurf in App-Guard and setting firewall rule. For more details, please check this document...
prev 1 2 3 4 5 next

About Solutions Support Press Contact
Copyright © AegisLab. All rights reserved.  
Add. 1F.-C6,No.1,Lising 1st Rd.,Science-Based Industrial Park, Hsinchu City 30078,Taiwan Tel. 886-3-5789399 Fax. 886-3-5789595