virtualenv.py in virtualenv before 1.5 allows local users to overwrite arbitrary files via a symlink attack on a certain file in /tmp/. (CVSS:1.2) (Last Update:2012-01-31)
Monthly Archives: December 2011
CVE-2011-4362
Integer signedness error in the base64_decode function in the HTTP authentication functionality (http_auth.c) in lighttpd 1.4 before 1.4.30 and 1.5 before SVN revision 2806 allows remote attackers to cause a denial of service (segmentation fault) via crafted base64 input that triggers an out-of-bounds read with a negative index. (CVSS:5.0) (Last Update:2012-11-06)
WatchGuard Enhances Security for Virtualized and Cloud Infrastructures
XTMv Line of Virtualized Firewalls Now Shipping to Beta Customers
WatchGuard Leads Small & Midsize Security Market
Latest Analyst Market Data Shows WatchGuard as the #1 Multifunction Security Appliance Vendor for 15 Consecutive Quarters; Leads with 18.8 Percent Market Share
WatchGuard Receives ICSA Certification for Network Firewalls
WatchGuard XTM OS Certified for Unified Threat Management (UTM) Appliances and Next-Generation Firewalls
WatchGuard Unveils Top 10 Security Predictions for 2012
CVE-2011-4315
Heap-based buffer overflow in compression-pointer processing in core/ngx_resolver.c in nginx before 1.0.10 allows remote resolvers to cause a denial of service (daemon crash) or possibly have unspecified other impact via a long response. (CVSS:5.0) (Last Update:2012-06-08)