[papers] – Abusing, Exploiting and Pwning with Firefox Add-ons
Abusing, Exploiting and Pwning with Firefox Add-ons
Apple Security Advisory 2013-02-19-1
Apple Security Advisory 2013-02-19-1 - Multiple vulnerabilities existed in Java 1.6.0_37, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues were addressed by updating to Java version 1.6.0_41.
[local] – Photodex ProShow Producer v5.0.3297 (.pxs) Memory Corruption Exploit
Photodex ProShow Producer v5.0.3297 (.pxs) Memory Corruption Exploit
Transferable Remote 1.1 XSS / LFI / Command Injection
Transferable Remote version 1.1 for iPad and iPhone suffers from cross site scripting, remote command injection, and local file inclusion vulnerabilities.
Transferable Remote 1.1 XSS / LFI / Command Injection
Transferable Remote version 1.1 for iPad and iPhone suffers from cross site scripting, remote command injection, and local file inclusion vulnerabilities.
Air Disk Wireless 1.9 LFI / Command Injection
Air Disk Wireless version 1.9 for iPad and iPhone suffers from local file inclusion and command injection vulnerabilities.
Apple Security Advisory 2013-02-04-1
Apple Security Advisory 2013-02-04-1 - OS X Server version 2.2.1 is now available and addresses security issues in Profile Manager and Wiki Server.