Directory traversal vulnerability in delivery-dev/al.php in Revive Adserver before 3.2.2 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the layerstyle parameter.
Monthly Archives: October 2015
CVE-2015-7373
Cross-site scripting (XSS) vulnerability in the “magic-macros” feature in Revive Adserver before 3.2.2 allows remote attackers to inject arbitrary web script or HTML via a GET parameter, which is not properly handled in a banner.
Boxoft WAV To MP3 COnverter 1.1 Buffer Overflow
Boxoft WAV to MP3 Converter version 1.1 SEH buffer overflow exploit.
Google Patches Chrome, Changes Mixed Content Warnings
Google has changed the way it presents HTTPS Mixed Content warnings in Chrome.
JScript 5.7 RegExpBase::FBadHeader Use-After-Free
Recompiling the regular expression pattern during a replace in JScript version 5.7 (MSIE 8) can cause the code to reuse a freed string, but only if the string is freed from the cache by allocating and freeing a number of strings of certain size.
Typo3 4.2 / 4.5 Information Disclosure
Typo3 versions 4.2 and 4.5 suffer from information disclosure vulnerabilities.
It’s Cybersecurity Month in Europe!
This month is Cybersecurity Month in Europe – which means that there is no better time to talk about the internet and what you can do to stay secure while enjoying everything it has to offer than now.
The post It’s Cybersecurity Month in Europe! appeared first on Avira Blog.
MC Inventory Manager SQL Injection
MC Inventory Manager suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Big things are in store: Become a beta tester for Avast Mobile Security!
Become one of our beta testers for Avast Mobile Security today!
Have you ever served as a beta tester for one of our mobile apps? The release of the latest and greatest Avast Mobile Security is right around the corner, and we want YOU to help us make our mobile security app the very best it can be.
It’s important to emphasize that the beta version of Avast Mobile Security isn’t available to everyone quite yet – the latest version of the app will make its way onto your device as soon as it’s released.
Becoming a beta tester for Avast Mobile Security now only requires three easy steps
Getting the latest news and updates about our app is easy as pie. Here’s what you need to do:
1. Visit this link.
2. Click the “BECOME A BETA TESTER” button. Avast Mobile Security will automatically update itself upon its imminent launch. You simply have to wait until the new design appears on your phone.
3. Once you receive the update, we’d love it if you could share your thoughts about the app with us in our Google+ community.
Once you’ve opted to become a tester using the link above, you’re all set to go! Thanks for becoming one of our valued beta testers.
Follow Avast on Facebook, Twitter, YouTube, and Google+ where we keep you updated on cybersecurity news every day.
MC Inventory Manager Cross Site Scripting
MC Inventory Manager suffers from a stored cross site scripting vulnerability.