Advisories

Advisories

2013

28.11.2013 CVE-2013-6224

 

Cross Site Scripting in LiveZilla

Various components of the LiveZilla application are vulnerable to cross site scripting. An attacker can hijack an operator with cross site scripting.

(Cure-2013-1006)

28.11..2013 CVE-2013-6223

 

Local Password Disclosure in LiveZilla

An 1click file that allows an admin to log into LiveZilla using a mouse click is saved in a xml representation. This xml file includes the admin username and password in plaintext.

(Cure-2013-1008)

27.11.2013 CVE-2013-6271

 

Design Error in AndroidOS 4.3 / com.android.settings

This vulnerability enables any rouge app at any time to remove all existing device locks activated by a user.

(Cure-2013-1011)

15.11.2013 CVE-2013-6225

 

Remote Code Execution in LiveZilla

On Windows systems with PHP versions installed that allow null bytes in the URL it is possible to turn a local file inclusion vulnerability to a full remote code execution vulnerability.

(Cure-2013-1007)

24.07.2013 CVE-2013-6274

 

Schwachstelle in WhatsApp, Phishing Google Wallet and Paypal Accounts

This vulnerability can be used to get payment credentials for Google Wallet and Paypal by abusing the popular application Whatsapp.

(Cure-2013-1005)

callus
Tel.: +49(0)30/ 9860 - 6397
xingcontact
Besuchen Sie unser Xing-Profil
twittercontact
Folgen Sie uns auf Twitter
contactus
Email: Diese E-Mail-Adresse ist vor Spambots geschützt! Zur Anzeige muss JavaScript eingeschaltet sein!