SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

Tuesday
October 21 2014



Try our Premium Alert Service
 
View All
View a Listing of All Recent Vulnerabilities
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com




Headline releases on this page are delayed.




SecurityTracker is compliant with the new new Common Vulnerabilities and Exposures (CVE) Identifier numbering format

Asterisk SSL 3.0 Protocol Downgrade Flaw Lets Remote Users Decrypt SSL Traffic
A vulnerability was reported in Asterisk. A remote user can decrypt SSL sessions in certain cases.
Impact: Disclosure of system information, Disclosure of user information
Apple iOS Bugs Let Users Obtain Potentially Sensitive Information
Three vulnerabilities were reported in Apple iOS. A remote or local user can obtain potentially sensitive information.
Impact: Disclosure of system information, Disclosure of user information
Drupal Input Validation Flaw in Database Abstraction API Lets Remote Users Inject SQL Commands
A vulnerability was reported in Drupal. A remote user can inject SQL commands.
Impact: Disclosure of system information, Disclosure of user information, User access via network
Apple OS X Server Lets Local Users Access Passwords and Remote Users Bypass Access Control Settings
Two vulnerabilities were reported in Apple OS X Server. A local user can view passwords. The system may not properly enforce group SACL settings for Mail.
Impact: Disclosure of authentication information, Host/resource access via network
Apple QuickTime Buffer Overflow in Processing Audio Samples Lets Remote Users Execute Arbitrary Code
A vulnerability was reported in QuickTime. A remote user can cause arbitrary code to be executed on the target user's system.
Impact: Execution of arbitrary code via network, User access via network


Previous Headlines Are Available:
See Our Summary Listing of the SecurityTracker Archives.
SecurityTracker Logo 




Home   |    View Topics   |    Search   |    Contact Us

Copyright 2001 - 2014, SecurityGlobal.net LLC