Powered by Deep Web Technologies
Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


1

V-026: RSA Data Protection Manager Bugs Permit Cross-Site Scripting...  

Energy Savers [EERE]

V-026: RSA Data Protection Manager Bugs Permit Cross-Site Scripting Attacks and Let Local Users Bypass Security Restrictions V-026: RSA Data Protection Manager Bugs Permit...

2

U-129: RSA enVision Bugs Permit Cross-Site Scripting, SQL Injection, and  

Broader source: Energy.gov (indexed) [DOE]

9: RSA enVision Bugs Permit Cross-Site Scripting, SQL 9: RSA enVision Bugs Permit Cross-Site Scripting, SQL Injection, and Directory Traversal Attacks U-129: RSA enVision Bugs Permit Cross-Site Scripting, SQL Injection, and Directory Traversal Attacks March 20, 2012 - 7:00am Addthis PROBLEM: RSA enVision Bugs Permit Cross-Site Scripting, SQL Injection, and Directory Traversal Attacks PLATFORM: 4.x, prior to 4.1 Patch 4 ABSTRACT: Several vulnerabilities were reported in RSA enVision. A remote user can access the system. A remote authenticated user can conduct cross-site scripting attacks. A remote authenticated user can inject SQL commands. A remote authenticated user can view files on the target system. Reference LINKS: SecurityTracker Alert ID: 1026819 CVE-2012-0403 IMPACT ASSESSMENT: High Discussion: The system does not properly filter HTML code from user-supplied input

3

V-146: HP Service Manager Bugs Permit Cross-Site Scripting and Information  

Broader source: Energy.gov (indexed) [DOE]

6: HP Service Manager Bugs Permit Cross-Site Scripting and 6: HP Service Manager Bugs Permit Cross-Site Scripting and Information Disclosure Attacks V-146: HP Service Manager Bugs Permit Cross-Site Scripting and Information Disclosure Attacks May 1, 2013 - 12:43am Addthis PROBLEM: HP Service Manager Bugs Permit Cross-Site Scripting and Information Disclosure Attacks PLATFORM: Service Manager v9.31 Web Tier ABSTRACT: Two vulnerabilities were reported in HP Service Manager REFERENCE LINKS: HP Document ID: c03748875 SecurityTracker Alert ID: 1028496 CVE-2012-5222 CVE-2013-2321 IMPACT ASSESSMENT: Medium DISCUSSION: A remote user can obtain potentially sensitive information [CVE-2012-5222]. Service Manager Web Tier does not properly filter HTML code from user-supplied input before displaying the input [CVE-2013-2321]. A remote

4

V-012: Mozilla Firefox 'window.location' Bugs Permit Cross-Site Scripting  

Broader source: Energy.gov (indexed) [DOE]

2: Mozilla Firefox 'window.location' Bugs Permit Cross-Site 2: Mozilla Firefox 'window.location' Bugs Permit Cross-Site Scripting Attacks and May Let Remote Users Execute Arbitrary Code V-012: Mozilla Firefox 'window.location' Bugs Permit Cross-Site Scripting Attacks and May Let Remote Users Execute Arbitrary Code October 29, 2012 - 6:00am Addthis PROBLEM: Mozilla Firefox 'window.location' Bugs Permit Cross-Site Scripting Attacks and May Let Remote Users Execute Arbitrary Code PLATFORM: Firefox, Thunderbird, SeaMonkey ABSTRACT: Three vulnerabilities were reported in Mozilla Firefox. REFERENCE LINKS: Mozilla Foundation Security Advisory 2012-90 SecurityTracker Alert ID: 1027701 SecurityTracker Alert ID: 1027702 Advisory: RHSA-2012:1407-1 CVE-2012-4194 CVE-2012-4195 CVE-2012-4196 IMPACT ASSESSMENT: High DISCUSSION: A remote user can exploit the valueOf() method of window.location to, in

5

V-026: RSA Data Protection Manager Bugs Permit Cross-Site Scripting Attacks  

Broader source: Energy.gov (indexed) [DOE]

6: RSA Data Protection Manager Bugs Permit Cross-Site Scripting 6: RSA Data Protection Manager Bugs Permit Cross-Site Scripting Attacks and Let Local Users Bypass Security Restrictions V-026: RSA Data Protection Manager Bugs Permit Cross-Site Scripting Attacks and Let Local Users Bypass Security Restrictions November 16, 2012 - 6:00am Addthis PROBLEM: RSA Data Protection Manager Bugs Permit Cross-Site Scripting Attacks and Let Local Users Bypass Security Restrictions. PLATFORM: RSA Data Protection Manager Appliance versions 2.7.x and 3.x ABSTRACT: Two vulnerabilities were reported in RSA Data Protection Manager. REFERENCE LINKS: SecurityTracker Alert ID: 1027781 EMC Identifier: ESA-2012-055 RSA Worldwide Customer Support CVE-2012-4612 CVE-2012-4613 IMPACT ASSESSMENT: Medium DISCUSSION: Two vulnerabilities were reported in RSA Data Protection Manager. A remote

6

V-078: WordPress Bugs Permit Cross-Site Scripting and Port Scanning Attacks  

Broader source: Energy.gov (indexed) [DOE]

8: WordPress Bugs Permit Cross-Site Scripting and Port Scanning 8: WordPress Bugs Permit Cross-Site Scripting and Port Scanning Attacks V-078: WordPress Bugs Permit Cross-Site Scripting and Port Scanning Attacks January 28, 2013 - 12:32am Addthis PROBLEM: WordPress Bugs Permit Cross-Site Scripting and Port Scanning Attacks PLATFORM: WordPress all versions are affected prior to 3.5.1 ABSTRACT: WordPress 3.5.1 Maintenance and Security Release REFERENCE LINKS: WordPress News SecurityTracker Alert ID: 1028045 Secunia Advisory SA51967 IMPACT ASSESSMENT: Medium DISCUSSION: Several scripts do not properly filter HTML code from user-supplied input before displaying the input. A remote user can cause arbitrary scripting code to be executed by the target user's browser. The code will originate from the site running the WordPress software and will run in the security

7

V-012: Mozilla Firefox 'window.location' Bugs Permit Cross-Site Scripting  

Broader source: Energy.gov (indexed) [DOE]

2: Mozilla Firefox 'window.location' Bugs Permit Cross-Site 2: Mozilla Firefox 'window.location' Bugs Permit Cross-Site Scripting Attacks and May Let Remote Users Execute Arbitrary Code V-012: Mozilla Firefox 'window.location' Bugs Permit Cross-Site Scripting Attacks and May Let Remote Users Execute Arbitrary Code October 29, 2012 - 6:00am Addthis PROBLEM: Mozilla Firefox 'window.location' Bugs Permit Cross-Site Scripting Attacks and May Let Remote Users Execute Arbitrary Code PLATFORM: Firefox, Thunderbird, SeaMonkey ABSTRACT: Three vulnerabilities were reported in Mozilla Firefox. REFERENCE LINKS: Mozilla Foundation Security Advisory 2012-90 SecurityTracker Alert ID: 1027701 SecurityTracker Alert ID: 1027702 Advisory: RHSA-2012:1407-1 CVE-2012-4194 CVE-2012-4195 CVE-2012-4196 IMPACT ASSESSMENT: High DISCUSSION: A remote user can exploit the valueOf() method of window.location to, in

8

V-146: HP Service Manager Bugs Permit Cross-Site Scripting and...  

Broader source: Energy.gov (indexed) [DOE]

the update from The HP Software Support Online (SSO). Addthis Related Articles V-171: Apple Safari Bugs Let Remote Users Execute Arbitrary Code and Conduct Cross-Site Scripting...

9

V-140: Apache ActiveMQ Bugs Let Remote Users Conduct Cross-Site...  

Broader source: Energy.gov (indexed) [DOE]

U-255: Apache Wicket Input Validation Flaw Permits Cross-Site Scripting Attacks U-121: Apple iOS Bugs Let Remote Users Execute Arbitrary Code, Conduct Cross-Site Scripting...

10

U-073: Bugzilla Flaws Permit Cross-Site Scripting and Cross-Site Request  

Broader source: Energy.gov (indexed) [DOE]

73: Bugzilla Flaws Permit Cross-Site Scripting and Cross-Site 73: Bugzilla Flaws Permit Cross-Site Scripting and Cross-Site Request Forgery Attacks U-073: Bugzilla Flaws Permit Cross-Site Scripting and Cross-Site Request Forgery Attacks January 3, 2012 - 10:30am Addthis PROBLEM: Bugzilla Flaws Permit Cross-Site Scripting and Cross-Site Request Forgery Attacks PLATFORM: Version(s): prior to 3.4.13, 3.6.7, 4.0.3, 4.2rc1 ABSTRACT: Several vulnerabilities were reported in Bugzilla. A remote user can conduct cross-site scripting attacks. reverence LINKS: SecurityTracker Alert ID: 1026480 3.4.12 Security Advisory Bug 697699 Bug 703975 Bug 703983 IMPACT ASSESSMENT: Medium Discussion: Tabular and graphical reports, as well as new charts have a debug mode which displays raw data as plain text. This text is not correctly escaped and a crafted URL could use this vulnerability to inject code leading to

11

U-206: WordPress Flaws Permit Cross-Site Scripting, Cross-Site Request  

Broader source: Energy.gov (indexed) [DOE]

6: WordPress Flaws Permit Cross-Site Scripting, Cross-Site 6: WordPress Flaws Permit Cross-Site Scripting, Cross-Site Request Forgery, and Information Disclosure Attacks U-206: WordPress Flaws Permit Cross-Site Scripting, Cross-Site Request Forgery, and Information Disclosure Attacks July 6, 2012 - 7:00am Addthis PROBLEM: WordPress Flaws Permit Cross-Site Scripting, Cross-Site Request Forgery, and Information Disclosure Attacks PLATFORM: Version(s): prior to 3.4.1 ABSTRACT: Several vulnerabilities were reported in WordPress. A remote authenticated user can conduct cross-site scripting attacks. A remote user can conduct cross-site request forgery attacks. A remote authenticated user can obtain potentially sensitive information. reference LINKS: The Vendor's Advisory WordPress 3.4.1 Maintenance and Security Release SecurityTracker Alert ID: 1027219

12

T-568: Mozilla Firefox Bugs Let Remote Users Conduct Cross-Site...  

Broader source: Energy.gov (indexed) [DOE]

Let Remote Users Conduct Cross-Site Request Forgery Attacks and Execute Arbitrary Code T-568: Mozilla Firefox Bugs Let Remote Users Conduct Cross-Site Request Forgery Attacks...

13

T-568: Mozilla Firefox Bugs Let Remote Users Conduct Cross-Site Request  

Broader source: Energy.gov (indexed) [DOE]

68: Mozilla Firefox Bugs Let Remote Users Conduct Cross-Site 68: Mozilla Firefox Bugs Let Remote Users Conduct Cross-Site Request Forgery Attacks and Execute Arbitrary Code T-568: Mozilla Firefox Bugs Let Remote Users Conduct Cross-Site Request Forgery Attacks and Execute Arbitrary Code March 2, 2011 - 3:05pm Addthis PROBLEM: Mozilla Firefox Bugs Let Remote Users Conduct Cross-Site Request Forgery Attacks and Execute Arbitrary Code. PLATFORM: Firefox, Thunderbird, SeaMonkey ABSTRACT: Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain circumstances, and Mozilla presume that with enough effort at least some of these could be exploited to run arbitrary code. reference LINKS:

14

U-217: Red Hat Certificate System Bugs Let Remote Users Conduct Cross-Site  

Broader source: Energy.gov (indexed) [DOE]

7: Red Hat Certificate System Bugs Let Remote Users Conduct 7: Red Hat Certificate System Bugs Let Remote Users Conduct Cross-Site Scripting and Denial of Service Attacks U-217: Red Hat Certificate System Bugs Let Remote Users Conduct Cross-Site Scripting and Denial of Service Attacks July 20, 2012 - 7:00am Addthis PROBLEM: Red Hat Certificate System Bugs Let Remote Users Conduct Cross-Site Scripting and Denial of Service Attacks PLATFORM: Red Hat Certificate System v8 ABSTRACT: Two vulnerabilities were reported in Red Hat Certificate System. A remote user can conduct cross-site scripting attacks. A remote authenticated user can revoke the CA certificate. reference LINKS: Advisory: RHSA-2012:1103-1 SecurityTracker Alert ID: 1027284 CVE-2012-2662 CVE-2012-3367 IMPACT ASSESSMENT: Medium Discussion: The Agent and End Entity pages do not properly filter HTML code from

15

V-140: Apache ActiveMQ Bugs Let Remote Users Conduct Cross-Site Scripting  

Broader source: Energy.gov (indexed) [DOE]

0: Apache ActiveMQ Bugs Let Remote Users Conduct Cross-Site 0: Apache ActiveMQ Bugs Let Remote Users Conduct Cross-Site Scripting Attacks, Deny Service, and Obtain Potentially Sensitive Information V-140: Apache ActiveMQ Bugs Let Remote Users Conduct Cross-Site Scripting Attacks, Deny Service, and Obtain Potentially Sensitive Information April 23, 2013 - 12:26am Addthis PROBLEM: Apache ActiveMQ Bugs Let Remote Users Conduct Cross-Site Scripting Attacks, Deny Service, and Obtain Potentially Sensitive Information PLATFORM: Apache ActiveMQ versions prior to 5.8.0 ABSTRACT: Several vulnerabilities were reported in Apache ActiveMQ. REFERENCE LINKS: Apache ActiveMQ SecurityTracker Alert ID: 1028457 CVE-2012-6092 CVE-2012-6551 CVE-2013-3060 IMPACT ASSESSMENT: High DISCUSSION: Several web demos do not properly filter HTML code from user-supplied input

16

V-140: Apache ActiveMQ Bugs Let Remote Users Conduct Cross-Site Scripting  

Broader source: Energy.gov (indexed) [DOE]

0: Apache ActiveMQ Bugs Let Remote Users Conduct Cross-Site 0: Apache ActiveMQ Bugs Let Remote Users Conduct Cross-Site Scripting Attacks, Deny Service, and Obtain Potentially Sensitive Information V-140: Apache ActiveMQ Bugs Let Remote Users Conduct Cross-Site Scripting Attacks, Deny Service, and Obtain Potentially Sensitive Information April 23, 2013 - 12:26am Addthis PROBLEM: Apache ActiveMQ Bugs Let Remote Users Conduct Cross-Site Scripting Attacks, Deny Service, and Obtain Potentially Sensitive Information PLATFORM: Apache ActiveMQ versions prior to 5.8.0 ABSTRACT: Several vulnerabilities were reported in Apache ActiveMQ. REFERENCE LINKS: Apache ActiveMQ SecurityTracker Alert ID: 1028457 CVE-2012-6092 CVE-2012-6551 CVE-2013-3060 IMPACT ASSESSMENT: High DISCUSSION: Several web demos do not properly filter HTML code from user-supplied input

17

V-168: Splunk Web Input Validation Flaw Permits Cross-Site Scripting...  

Broader source: Energy.gov (indexed) [DOE]

8: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks V-168: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks May 31, 2013 - 6:00am Addthis...

18

V-124: Splunk Web Input Validation Flaw Permits Cross-Site Scripting...  

Broader source: Energy.gov (indexed) [DOE]

4: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks V-124: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks April 2, 2013 - 1:13am Addthis...

19

U-263: Trend Micro InterScan Messaging Security Flaws Permit Cross-Site  

Broader source: Energy.gov (indexed) [DOE]

3: Trend Micro InterScan Messaging Security Flaws Permit 3: Trend Micro InterScan Messaging Security Flaws Permit Cross-Site Scripting and Cross-Site Request Forgery Attacks U-263: Trend Micro InterScan Messaging Security Flaws Permit Cross-Site Scripting and Cross-Site Request Forgery Attacks September 19, 2012 - 6:00am Addthis PROBLEM: Trend Micro InterScan Messaging Security Flaws Permit Cross-Site Scripting and Cross-Site Request Forgery Attacks PLATFORM: 7.1-Build_Win32_1394; possibly other versions ABSTRACT: A vulnerability was reported in Trend Micro InterScan Messaging Security. reference LINKS: US CERT Vulnerability Note VU#471364 SecurityTracker Alert ID: 1027544 CVE-2012-2995 CVE-2012-2996 Micro Trend IMPACT ASSESSMENT: Medium Discussion: Several scripts do not properly filter HTML code from user-supplied input

20

U-238: HP Service Manager Input Validation Flaw Permits Cross-Site  

Broader source: Energy.gov (indexed) [DOE]

8: HP Service Manager Input Validation Flaw Permits Cross-Site 8: HP Service Manager Input Validation Flaw Permits Cross-Site Scripting Attacks U-238: HP Service Manager Input Validation Flaw Permits Cross-Site Scripting Attacks August 17, 2012 - 7:00am Addthis PROBLEM: HP Service Manager Input Validation Flaw Permits Cross-Site Scripting Attacks PLATFORM: Version(s): 7.11, 9.21, 9.30 ABSTRACT: Cross-site scripting (XSS) vulnerability in HP Service Manager Web Tier 7.11, 9.21, and 9.30, and HP Service Center Web Tier 6.28, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. REFERENCE LINKS: www2.hp.com http://www.securitytracker.com/id/1027399 CVE-2012-3251 IMPACT ASSESSMENT: Moderate Discussion: A vulnerability was reported in HP Service Manager. A remote user can conduct cross-site scripting attacks. The software does not properly filter

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


21

U-238: HP Service Manager Input Validation Flaw Permits Cross-Site  

Broader source: Energy.gov (indexed) [DOE]

38: HP Service Manager Input Validation Flaw Permits Cross-Site 38: HP Service Manager Input Validation Flaw Permits Cross-Site Scripting Attacks U-238: HP Service Manager Input Validation Flaw Permits Cross-Site Scripting Attacks August 17, 2012 - 7:00am Addthis PROBLEM: HP Service Manager Input Validation Flaw Permits Cross-Site Scripting Attacks PLATFORM: Version(s): 7.11, 9.21, 9.30 ABSTRACT: Cross-site scripting (XSS) vulnerability in HP Service Manager Web Tier 7.11, 9.21, and 9.30, and HP Service Center Web Tier 6.28, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. REFERENCE LINKS: www2.hp.com http://www.securitytracker.com/id/1027399 CVE-2012-3251 IMPACT ASSESSMENT: Moderate Discussion: A vulnerability was reported in HP Service Manager. A remote user can conduct cross-site scripting attacks. The software does not properly filter

22

U-050: Adobe Flex SDK Input Validation Flaw Permits Cross-Site...  

Broader source: Energy.gov (indexed) [DOE]

Attacks U-050: Adobe Flex SDK Input Validation Flaw Permits Cross-Site Scripting Attacks December 2, 2011 - 5:24am Addthis PROBLEM: Adobe Flex SDK Input Validation Flaw Permits...

23

T-720: Blue Coat Director HTTP Trace Processing Flaw Permits Cross-Site  

Broader source: Energy.gov (indexed) [DOE]

0: Blue Coat Director HTTP Trace Processing Flaw Permits 0: Blue Coat Director HTTP Trace Processing Flaw Permits Cross-Site Scripting Attacks T-720: Blue Coat Director HTTP Trace Processing Flaw Permits Cross-Site Scripting Attacks September 19, 2011 - 8:45am Addthis PROBLEM Blue Coat Director HTTP Trace Processing Flaw Permits Cross-Site Scripting Attacks. PLATFORM: All versions of Director prior to 5.5.2.3 are vulnerable. ABSTRACT: A vulnerability was reported in Blue Coat Director. A remote user can conduct cross-site scripting attacks. reference LINKS: Blue Coat Advisories ID: SA62 SecurityTracker Alert ID: 1026061 Blue Coat Director 510 Blue Coat SGME 5 IMPACT ASSESSMENT: Medium Discussion: An attacker can use the HTTP TRACE method to echo malicious script back to the client as part of a Cross Site Scripting (XSS) attack. No

24

T-546: Microsoft MHTML Input Validation Hole May Permit Cross-Site  

Broader source: Energy.gov (indexed) [DOE]

6: Microsoft MHTML Input Validation Hole May Permit Cross-Site 6: Microsoft MHTML Input Validation Hole May Permit Cross-Site Scripting Attacks Arbitrary Code T-546: Microsoft MHTML Input Validation Hole May Permit Cross-Site Scripting Attacks Arbitrary Code January 31, 2011 - 7:00am Addthis PROBLEM: Microsoft MHTML Input Validation Hole May Permit Cross-Site Scripting Attacks Arbitrary Code. PLATFORM: Microsoft 2003 SP2, Vista SP2, 2008 SP2, XP SP3, 7; and prior service packs ABSTRACT: A vulnerability was reported in Microsoft MHTML. A remote user can conduct cross-site scripting attacks. reference LINKS: Microsoft Security Advisory 2501696 Microsoft Support Security Tracker Alert CVE-2011-0096 IMPACT ASSESSMENT: Medium Discussion: The vulnerability exists due to the way MHTML interprets MIME-formatted requests for content blocks within a document. It is possible for this

25

T-590: HP Diagnostics Input Validation Hole Permits Cross-Site Scripting  

Broader source: Energy.gov (indexed) [DOE]

0: HP Diagnostics Input Validation Hole Permits Cross-Site 0: HP Diagnostics Input Validation Hole Permits Cross-Site Scripting Attacks T-590: HP Diagnostics Input Validation Hole Permits Cross-Site Scripting Attacks March 29, 2011 - 3:05pm Addthis PROBLEM: HP Diagnostics Input Validation Hole Permits Cross-Site Scripting Attacks in ActiveSync Lets Remote Users Execute Arbitrary Code. PLATFORM: HP Diagnostics software: version(s) 7.5, 8.0 prior to 8.05.54.225 ABSTRACT: A potential security vulnerability has been identified in HP Diagnostics. The vulnerability could be exploited remotely resulting in cross site scripting (XSS). reference LINKS: HP Document ID: c02770512 SecurityTracker Alert ID: 1025255 CVE-2011-0892 Security Focus Document ID: c02770512 IMPACT ASSESSMENT: High Discussion: A vulnerability was reported in HP Diagnostics. A remote user can conduct

26

T-546: Microsoft MHTML Input Validation Hole May Permit Cross-Site  

Broader source: Energy.gov (indexed) [DOE]

6: Microsoft MHTML Input Validation Hole May Permit Cross-Site 6: Microsoft MHTML Input Validation Hole May Permit Cross-Site Scripting Attacks Arbitrary Code T-546: Microsoft MHTML Input Validation Hole May Permit Cross-Site Scripting Attacks Arbitrary Code January 31, 2011 - 7:00am Addthis PROBLEM: Microsoft MHTML Input Validation Hole May Permit Cross-Site Scripting Attacks Arbitrary Code. PLATFORM: Microsoft 2003 SP2, Vista SP2, 2008 SP2, XP SP3, 7; and prior service packs ABSTRACT: A vulnerability was reported in Microsoft MHTML. A remote user can conduct cross-site scripting attacks. reference LINKS: Microsoft Security Advisory 2501696 Microsoft Support Security Tracker Alert CVE-2011-0096 IMPACT ASSESSMENT: Medium Discussion: The vulnerability exists due to the way MHTML interprets MIME-formatted requests for content blocks within a document. It is possible for this

27

T-715: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting  

Broader source: Energy.gov (indexed) [DOE]

15: Microsoft SharePoint Multiple Flaws Permit Cross-Site 15: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting Attacks T-715: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting Attacks September 13, 2011 - 12:35pm Addthis PROBLEM: Multiple vulnerabilities were reported in Microsoft SharePoint. A remote user can conduct cross-site scripting attacks. PLATFORM: Version(s): SharePoint software ABSTRACT: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting Attacks. reference LINKS: MS11-074: Article ID: 2552998 SecurityTracker Alert ID: 1026040 CVE-2011-1893 CVE-2011-1892 CVE-2011-1891 CVE-2011-1890 CVE-2011-0653 IMPACT ASSESSMENT: High Discussion: A remote user can create a specially crafted URL or web site that, when loaded by a target user, will cause arbitrary scripting code to be executed

28

T-590: HP Diagnostics Input Validation Hole Permits Cross-Site Scripting  

Broader source: Energy.gov (indexed) [DOE]

0: HP Diagnostics Input Validation Hole Permits Cross-Site 0: HP Diagnostics Input Validation Hole Permits Cross-Site Scripting Attacks T-590: HP Diagnostics Input Validation Hole Permits Cross-Site Scripting Attacks March 29, 2011 - 3:05pm Addthis PROBLEM: HP Diagnostics Input Validation Hole Permits Cross-Site Scripting Attacks in ActiveSync Lets Remote Users Execute Arbitrary Code. PLATFORM: HP Diagnostics software: version(s) 7.5, 8.0 prior to 8.05.54.225 ABSTRACT: A potential security vulnerability has been identified in HP Diagnostics. The vulnerability could be exploited remotely resulting in cross site scripting (XSS). reference LINKS: HP Document ID: c02770512 SecurityTracker Alert ID: 1025255 CVE-2011-0892 Security Focus Document ID: c02770512 IMPACT ASSESSMENT: High Discussion: A vulnerability was reported in HP Diagnostics. A remote user can conduct

29

T-715: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting  

Broader source: Energy.gov (indexed) [DOE]

5: Microsoft SharePoint Multiple Flaws Permit Cross-Site 5: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting Attacks T-715: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting Attacks September 13, 2011 - 12:35pm Addthis PROBLEM: Multiple vulnerabilities were reported in Microsoft SharePoint. A remote user can conduct cross-site scripting attacks. PLATFORM: Version(s): SharePoint software ABSTRACT: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting Attacks. reference LINKS: MS11-074: Article ID: 2552998 SecurityTracker Alert ID: 1026040 CVE-2011-1893 CVE-2011-1892 CVE-2011-1891 CVE-2011-1890 CVE-2011-0653 IMPACT ASSESSMENT: High Discussion: A remote user can create a specially crafted URL or web site that, when loaded by a target user, will cause arbitrary scripting code to be executed

30

V-085: Cisco Unity Express Input Validation Hole Permits Cross-Site Request  

Broader source: Energy.gov (indexed) [DOE]

5: Cisco Unity Express Input Validation Hole Permits Cross-Site 5: Cisco Unity Express Input Validation Hole Permits Cross-Site Request Forgery Attacks V-085: Cisco Unity Express Input Validation Hole Permits Cross-Site Request Forgery Attacks February 6, 2013 - 1:06am Addthis PROBLEM: Cisco Unity Express Input Validation Hole Permits Cross-Site Request Forgery Attacks PLATFORM: Cisco Unity Express prior to 8.0 ABSTRACT: A vulnerability was reported in Cisco Unity Express. REFERENCE LINKS: Cisco Security Notice SecurityTracker Alert ID: 1028075 CVE-2013-1120 IMPACT ASSESSMENT: Medium DISCUSSION: Cisco Unity Express software prior to version 8.0 contains vulnerabilities that could allow an unauthenticated, remote attacker to conduct cross site request forgery attacks. The vulnerabilities are due to insufficient input validation. An attacker could exploit these vulnerabilities by

31

V-124: Splunk Web Input Validation Flaw Permits Cross-Site Scripting  

Broader source: Energy.gov (indexed) [DOE]

4: Splunk Web Input Validation Flaw Permits Cross-Site 4: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks V-124: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks April 2, 2013 - 1:13am Addthis PROBLEM: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks PLATFORM: Version(s): 4.3.0 through 4.3.5 ABSTRACT: A vulnerability was reported in Splunk Web. REFERENCE LINKS: SecurityTracker Alert ID: 1028371 Splunk IMPACT ASSESSMENT: High DISCUSSION: Splunk Web does not properly filter HTML code from user-supplied input before displaying the input. A remote user can cause arbitrary scripting code to be executed by the target user's browser. The code will originate from the site running the Splunk Web software and will run in the security context of that site. As a result, the code will be able to access the

32

U-204: HP Network Node Manager i Input Validation Hole Permits Cross-Site  

Broader source: Energy.gov (indexed) [DOE]

4: HP Network Node Manager i Input Validation Hole Permits 4: HP Network Node Manager i Input Validation Hole Permits Cross-Site Scripting Attacks U-204: HP Network Node Manager i Input Validation Hole Permits Cross-Site Scripting Attacks July 3, 2012 - 7:00am Addthis PROBLEM: HP Network Node Manager i Input Validation Hole Permits Cross-Site Scripting Attacks PLATFORM: Version(s): 8.x, 9.0x, 9.1x ABSTRACT: Potential security vulnerabilities have been identified with HP Network Node Manager I (NNMi) for HP-UX, Linux, Solaris, and Windows. The vulnerabilities could be remotely exploited resulting in cross site scripting (XSS). reference LINKS: The Vendor's Advisory SecurityTracker Alert ID: 1027215 CVE-2012-2018 IMPACT ASSESSMENT: Medium Discussion: A vulnerability was reported in HP Network Node Manager i. The software does not properly filter HTML code from user-supplied input before

33

U-212: RSA Authentication Manager Flaws Permit Cross-Site and Cross-Frame  

Broader source: Energy.gov (indexed) [DOE]

2: RSA Authentication Manager Flaws Permit Cross-Site and 2: RSA Authentication Manager Flaws Permit Cross-Site and Cross-Frame Scripting and URL Redirection Attacks U-212: RSA Authentication Manager Flaws Permit Cross-Site and Cross-Frame Scripting and URL Redirection Attacks July 13, 2012 - 7:00am Addthis PROBLEM: RSA Authentication Manager Flaws Permit Cross-Site and Cross-Frame Scripting and URL Redirection Attacks PLATFORM: RSA Authentication Manager 7.1 is vulnerable; other versions may also be affected. ABSTRACT: RSA Authentication Manager is prone to multiple security vulnerabilities because it fails to properly sanitize user-supplied input. Attackers can exploit these issues to execute arbitrary script or HTML code, steal cookie-based authentication credentials, and conduct phishing attacks. Other attacks may also be possible.

34

U-229: HP Network Node Manager i Input Validation Flaw Permits Cross-Site  

Broader source: Energy.gov (indexed) [DOE]

9: HP Network Node Manager i Input Validation Flaw Permits 9: HP Network Node Manager i Input Validation Flaw Permits Cross-Site Scripting Attacks U-229: HP Network Node Manager i Input Validation Flaw Permits Cross-Site Scripting Attacks August 7, 2012 - 7:00am Addthis PROBLEM: HP Network Node Manager i Input Validation Flaw Permits Cross-Site Scripting Attacks PLATFORM: HP Network Node Manager I (NNMi) v8.x, v9.0x, v9.1x, v9.20 for HP-UX, Linux, Solaris, and Windows ABSTRACT: Potential security vulnerabilities have been identified with HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows. The vulnerabilities could be remotely exploited resulting in cross site scripting (XSS). Reference LINKS: HP Document ID: c03405705 SecurityTracker Alert ID: 1027345 Bugtraq ID: 54815 CVE-2012-2022 IMPACT ASSESSMENT:

35

U-050: Adobe Flex SDK Input Validation Flaw Permits Cross-Site Scripting  

Broader source: Energy.gov (indexed) [DOE]

0: Adobe Flex SDK Input Validation Flaw Permits Cross-Site 0: Adobe Flex SDK Input Validation Flaw Permits Cross-Site Scripting Attacks U-050: Adobe Flex SDK Input Validation Flaw Permits Cross-Site Scripting Attacks December 2, 2011 - 5:24am Addthis PROBLEM: Adobe Flex SDK Input Validation Flaw Permits Cross-Site Scripting Attacks. PLATFORM: Adobe Flex SDK 4.5.1 and earlier 4.x versions for Windows, Macintosh and Linux Adobe Flex SDK 3.6 and earlier 3.x versions for Windows, Macintosh and Linux ABSTRACT: Flex applications created using the Flex SDK may not properly filter HTML code from user-supplied input before displaying the input. reference LINKS: Adobe Security Bulletin CVE-2011-2461 SecurityTracker Alert ID: 1026361 IMPACT ASSESSMENT: High Discussion: A remote user may be able to cause arbitrary scripting code to be executed

36

U-255: Apache Wicket Input Validation Flaw Permits Cross-Site Scripting  

Broader source: Energy.gov (indexed) [DOE]

5: Apache Wicket Input Validation Flaw Permits Cross-Site 5: Apache Wicket Input Validation Flaw Permits Cross-Site Scripting Attacks U-255: Apache Wicket Input Validation Flaw Permits Cross-Site Scripting Attacks September 11, 2012 - 6:00am Addthis PROBLEM: Apache Wicket Input Validation Flaw Permits Cross-Site Scripting Attacks PLATFORM: Apache Software Foundation Apache Wicket 1.5.5 Apache Software Foundation Apache Wicket 1.5-RC5.1 Apache Software Foundation Apache Wicket 1.4.20 Apache Software Foundation Apache Wicket 1.4.18 Apache Software Foundation Apache Wicket 1.4.17 Apache Software Foundation Apache Wicket 1.4.16 ABSTRACT: A vulnerability was reported in Apache Wicket reference LINKS: Apache Wicket SecurityTracker Alert ID: 1027508 Bugtraq ID: 55445 CVE-2012-3373 IMPACT ASSESSMENT: Medium Discussion: The software does not properly filter HTML code from user-supplied input in

37

U-204: HP Network Node Manager i Input Validation Hole Permits Cross-Site  

Broader source: Energy.gov (indexed) [DOE]

204: HP Network Node Manager i Input Validation Hole Permits 204: HP Network Node Manager i Input Validation Hole Permits Cross-Site Scripting Attacks U-204: HP Network Node Manager i Input Validation Hole Permits Cross-Site Scripting Attacks July 3, 2012 - 7:00am Addthis PROBLEM: HP Network Node Manager i Input Validation Hole Permits Cross-Site Scripting Attacks PLATFORM: Version(s): 8.x, 9.0x, 9.1x ABSTRACT: Potential security vulnerabilities have been identified with HP Network Node Manager I (NNMi) for HP-UX, Linux, Solaris, and Windows. The vulnerabilities could be remotely exploited resulting in cross site scripting (XSS). reference LINKS: The Vendor's Advisory SecurityTracker Alert ID: 1027215 CVE-2012-2018 IMPACT ASSESSMENT: Medium Discussion: A vulnerability was reported in HP Network Node Manager i. The software does not properly filter HTML code from user-supplied input before

38

U-255: Apache Wicket Input Validation Flaw Permits Cross-Site...  

Broader source: Energy.gov (indexed) [DOE]

Input Validation Flaw Permits Cross-Site Scripting Attacks PLATFORM: Apache Software Foundation Apache Wicket 1.5.5 Apache Software Foundation Apache Wicket 1.5-RC5.1 Apache...

39

V-168: Splunk Web Input Validation Flaw Permits Cross-Site Scripting  

Broader source: Energy.gov (indexed) [DOE]

8: Splunk Web Input Validation Flaw Permits Cross-Site 8: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks V-168: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks May 31, 2013 - 6:00am Addthis PROBLEM: A vulnerability was reported in Splunk Web PLATFORM: Version(s) prior to 5.0.3 ABSTRACT: A reflected cross-site scripting vulnerability was identified in Splunk Web REFERENCE LINKS: SecurityTracker Alert ID: 1028605 Splunk Security Advisory SPL-59895 CVE-2012-6447 IMPACT ASSESSMENT: Medium DISCUSSION: The web interface does not properly filter HTML code from user-supplied input before displaying the input. A remote user can create a specially crafted URL that, when loaded by a target user, will cause arbitrary scripting code to be executed by the target user's browser. The code will

40

U-195: PHPlist Input Validation Flaws Permit Cross-Site Scripting and SQL  

Broader source: Energy.gov (indexed) [DOE]

5: PHPlist Input Validation Flaws Permit Cross-Site Scripting 5: PHPlist Input Validation Flaws Permit Cross-Site Scripting and SQL Injection Attacks U-195: PHPlist Input Validation Flaws Permit Cross-Site Scripting and SQL Injection Attacks June 20, 2012 - 7:00am Addthis PROBLEM: Two vulnerabilities were reported in PHPlist. A remote user can conduct cross-site scripting attacks. A remote authenticated user can inject SQL commands. PLATFORM: Version(s): prior to 2.10.18 ABSTRACT: The 'public_html/lists/admin' pages do not properly validate user-supplied input in the 'sortby' parameter [CVE-2012-2740]. A remote authenticated administrative user can supply a specially crafted parameter value to execute SQL commands on the underlying database. REFERENCE LINKS: Vendor Advisory Security Tracker ID 1027181 CVE-2012-2740, CVE-2012-2741

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


41

V-229: IBM Lotus iNotes Input Validation Flaws Permit Cross-Site Scripting  

Broader source: Energy.gov (indexed) [DOE]

V-229: IBM Lotus iNotes Input Validation Flaws Permit Cross-Site V-229: IBM Lotus iNotes Input Validation Flaws Permit Cross-Site Scripting Attacks V-229: IBM Lotus iNotes Input Validation Flaws Permit Cross-Site Scripting Attacks August 28, 2013 - 6:00am Addthis PROBLEM: Several vulnerabilities were reported in IBM Lotus iNotes PLATFORM: IBM Lotus iNotes 8.5.x ABSTRACT: IBM Lotus iNotes 8.5.x contains four cross-site scripting vulnerabilities REFERENCE LINKS: Security Tracker Alert ID 1028954 IBM Security Bulletin 1647740 Seclist.org CVE-2013-0590 CVE-2013-0591 CVE-2013-0595 IMPACT ASSESSMENT: Medium DISCUSSION: The software does not properly filter HTML code from user-supplied input before displaying the input. A remote user can cause arbitrary scripting code to be executed by the target user's browser. The code will originate

42

V-168: Splunk Web Input Validation Flaw Permits Cross-Site Scripting  

Broader source: Energy.gov (indexed) [DOE]

68: Splunk Web Input Validation Flaw Permits Cross-Site 68: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks V-168: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks May 31, 2013 - 6:00am Addthis PROBLEM: A vulnerability was reported in Splunk Web PLATFORM: Version(s) prior to 5.0.3 ABSTRACT: A reflected cross-site scripting vulnerability was identified in Splunk Web REFERENCE LINKS: SecurityTracker Alert ID: 1028605 Splunk Security Advisory SPL-59895 CVE-2012-6447 IMPACT ASSESSMENT: Medium DISCUSSION: The web interface does not properly filter HTML code from user-supplied input before displaying the input. A remote user can create a specially crafted URL that, when loaded by a target user, will cause arbitrary scripting code to be executed by the target user's browser. The code will

43

U-252: Barracuda Web Filter Input Validation Flaws Permit Cross-Site  

Broader source: Energy.gov (indexed) [DOE]

2: Barracuda Web Filter Input Validation Flaws Permit 2: Barracuda Web Filter Input Validation Flaws Permit Cross-Site Scripting Attacks U-252: Barracuda Web Filter Input Validation Flaws Permit Cross-Site Scripting Attacks September 6, 2012 - 6:00am Addthis PROBLEM: Barracuda Web Filter Input Validation Flaws Permit Cross-Site Scripting Attacks PLATFORM: Barracuda Web Filter 5.0.015 is vulnerable; other versions may also be affected. ABSTRACT: Barracuda Web Filter Authentication Module Multiple HTML Injection Vulnerabilities reference LINKS: Barracuda Networks Barracuda Networks Security ID: BNSEC-279/BNYF-5533 SecurityTracker Alert ID: 1027500 Bugtraq ID: 55394 seclists.org IMPACT ASSESSMENT: Medium Discussion: Two scripts not properly filter HTML code from user-supplied input before displaying the input. A remote user can cause arbitrary scripting code to

44

U-144:Juniper Secure Access Input Validation Flaw Permits Cross-Site  

Broader source: Energy.gov (indexed) [DOE]

4:Juniper Secure Access Input Validation Flaw Permits 4:Juniper Secure Access Input Validation Flaw Permits Cross-Site Scripting Attacks U-144:Juniper Secure Access Input Validation Flaw Permits Cross-Site Scripting Attacks April 10, 2012 - 7:30am Addthis PROBLEM: A vulnerability was reported in Juniper Secure Access/Instant Virtual Extranet (IVE). A remote user can conduct cross-site scripting attacks. PLATFORM: Version(s): prior to 7.0R9 and 7.1R ABSTRACT: The VPN management interface does not properly filter HTML code from user-supplied input before displaying the input. A remote user can cause arbitrary scripting code to be executed by the target user's browser. reference LINKS: Vendor URL SecurityTracker Alert ID: 1026893 IMPACT ASSESSMENT: High Discussion: The code will originate from the interface and will run in the security

45

V-193: Barracuda SSL VPN Input Validation Hole Permits Cross-Site Scripting  

Broader source: Energy.gov (indexed) [DOE]

93: Barracuda SSL VPN Input Validation Hole Permits Cross-Site 93: Barracuda SSL VPN Input Validation Hole Permits Cross-Site Scripting Attacks V-193: Barracuda SSL VPN Input Validation Hole Permits Cross-Site Scripting Attacks July 5, 2013 - 6:00am Addthis PROBLEM: A vulnerability was reported in Barracuda SSL VPN PLATFORM: Version(s) prior to 2.3.3.216 ABSTRACT: Several scripts do not properly filter HTML code from user-supplied input before displaying the input via several parameters REFERENCE LINKS: SecurityTracker Alert ID: 1028736 Barracuda SSL VPN Release Notes Zero Science Lab IMPACT ASSESSMENT: Medium DISCUSSION: The code will originate from the Barracuda SSL VPN interface and will run in the security context of that site. As a result, the code will be able to access the target user's cookies (including authentication cookies), if

46

V-153: Symantec Brightmail Gateway Input Validation Flaw Permits Cross-Site  

Broader source: Energy.gov (indexed) [DOE]

3: Symantec Brightmail Gateway Input Validation Flaw Permits 3: Symantec Brightmail Gateway Input Validation Flaw Permits Cross-Site Scripting Attacks V-153: Symantec Brightmail Gateway Input Validation Flaw Permits Cross-Site Scripting Attacks May 10, 2013 - 6:00am Addthis PROBLEM: A vulnerability was reported in Symantec Brightmail Gateway PLATFORM: The vulnerabilities are reported in versions prior to 9.5.x ABSTRACT: Symantec's Brightmail Gateway management console is susceptible to stored cross-site scripting (XSS) issues found in some of the administrative interface pages. REFERENCE LINKS: Security Tracker Alert ID: 1028530 Symantec Security Advisory CVE-2013-1611 IMPACT ASSESSMENT: Medium DISCUSSION: The administrative interface does not properly filter HTML code from user-supplied input before displaying the input. A remote user can cause

47

V-084: RSA Archer eGRC Permits Cross-Site Scripting, Cross-Domain Access,  

Broader source: Energy.gov (indexed) [DOE]

84: RSA Archer eGRC Permits Cross-Site Scripting, Cross-Domain 84: RSA Archer eGRC Permits Cross-Site Scripting, Cross-Domain Access, Clickjacking, and File Upload Attacks V-084: RSA Archer eGRC Permits Cross-Site Scripting, Cross-Domain Access, Clickjacking, and File Upload Attacks February 5, 2013 - 12:01am Addthis PROBLEM: RSA Archer eGRC Permits Cross-Site Scripting, Cross-Domain Access, Clickjacking, and File Upload Attacks PLATFORM: RSA Archer SmartSuite Framework version 4.x RSA Archer GRC version 5.x ABSTRACT: Several vulnerabilities were reported in RSA Archer eGRC. REFERENCE LINKS: Security Alert: ESA-2013-002 SecurityTracker Alert ID: 1028073 CVE-2012-1064 CVE-2012-2292 CVE-2012-2293 CVE-2012-2294 IMPACT ASSESSMENT: Medium DISCUSSION: A remote user can cause arbitrary scripting code to be executed by the target user's browser [CVE-2012-1064]. The code will originate from the

48

V-112: Microsoft SharePoint Input Validation Flaws Permit Cross-Site  

Broader source: Energy.gov (indexed) [DOE]

2: Microsoft SharePoint Input Validation Flaws Permit 2: Microsoft SharePoint Input Validation Flaws Permit Cross-Site Scripting and Denial of Service Attacks V-112: Microsoft SharePoint Input Validation Flaws Permit Cross-Site Scripting and Denial of Service Attacks March 15, 2013 - 6:00am Addthis PROBLEM: Several vulnerabilities were reported in Microsoft SharePoint PLATFORM: Microsoft SharePoint 2010 SP1 ABSTRACT: This security update resolves four reported vulnerabilities in Microsoft SharePoint and Microsoft SharePoint Foundation. REFERENCE LINKS: Security Tracker Alert ID 1028278 MS Security Bulletin MS13-024 CVE-2013-0080 CVE-2013-0083 CVE-2013-0084 CVE-2013-0085 IMPACT ASSESSMENT: High DISCUSSION: The security update addresses the vulnerabilities correcting the way that Microsoft SharePoint Server validates URLs and user input.

49

V-112: Microsoft SharePoint Input Validation Flaws Permit Cross-Site  

Broader source: Energy.gov (indexed) [DOE]

2: Microsoft SharePoint Input Validation Flaws Permit 2: Microsoft SharePoint Input Validation Flaws Permit Cross-Site Scripting and Denial of Service Attacks V-112: Microsoft SharePoint Input Validation Flaws Permit Cross-Site Scripting and Denial of Service Attacks March 15, 2013 - 6:00am Addthis PROBLEM: Several vulnerabilities were reported in Microsoft SharePoint PLATFORM: Microsoft SharePoint 2010 SP1 ABSTRACT: This security update resolves four reported vulnerabilities in Microsoft SharePoint and Microsoft SharePoint Foundation. REFERENCE LINKS: Security Tracker Alert ID 1028278 MS Security Bulletin MS13-024 CVE-2013-0080 CVE-2013-0083 CVE-2013-0084 CVE-2013-0085 IMPACT ASSESSMENT: High DISCUSSION: The security update addresses the vulnerabilities correcting the way that Microsoft SharePoint Server validates URLs and user input.

50

U-067:WebSVN Input Validation Flaw in getLog() Permits Cross-Site Scripting  

Broader source: Energy.gov (indexed) [DOE]

7:WebSVN Input Validation Flaw in getLog() Permits Cross-Site 7:WebSVN Input Validation Flaw in getLog() Permits Cross-Site Scripting Attacks U-067:WebSVN Input Validation Flaw in getLog() Permits Cross-Site Scripting Attacks December 22, 2011 - 8:15am Addthis PROBLEM: WebSVN Input Validation Flaw in getLog() Permits Cross-Site Scripting Attacks PLATFORM: WebSVN 2.3.0 and prior versions ABSTRACT: A remote user can access the target user's cookies (including authentication cookies), if any, associated with the site running the WebSVN software, access data recently submitted by the target user via web form to the site, or take actions on the site acting as the target user. reference LINKS: SecurityTracker Alert ID: 1026438 WebSVN version update WebSVN News IMPACT ASSESSMENT: Medium Discussion: The getLog() function does not properly filter HTML code from user-supplied

51

U-129: RSA enVision Bugs Permit Cross-Site Scripting, SQL Injection...  

Broader source: Energy.gov (indexed) [DOE]

Scripting, SQL Injection, and Directory Traversal Attacks PLATFORM: 4.x, prior to 4.1 Patch 4 ABSTRACT: Several vulnerabilities were reported in RSA enVision. A remote user can...

52

U-121: Apple iOS Bugs Let Remote Users Execute Arbitrary Code...  

Broader source: Energy.gov (indexed) [DOE]

21: Apple iOS Bugs Let Remote Users Execute Arbitrary Code, Conduct Cross-Site Scripting Attacks, and Obtain Potentially Sensitive Information U-121: Apple iOS Bugs Let Remote...

53

T-723:Adobe Flash Player Multiple Bugs Let Remote Users Obtain...  

Broader source: Energy.gov (indexed) [DOE]

Obtain Information, Conduct Cross-Site Scripting Attacks, and Execute Arbitrary Code T-723:Adobe Flash Player Multiple Bugs Let Remote Users Obtain Information, Conduct...

54

U-252: Barracuda Web Filter Input Validation Flaws Permit Cross...  

Broader source: Energy.gov (indexed) [DOE]

2: Barracuda Web Filter Input Validation Flaws Permit Cross-Site Scripting Attacks U-252: Barracuda Web Filter Input Validation Flaws Permit Cross-Site Scripting Attacks September...

55

U-151: Bugzilla Cross-Site Request Forgery Vulnerability | Department of  

Broader source: Energy.gov (indexed) [DOE]

51: Bugzilla Cross-Site Request Forgery Vulnerability 51: Bugzilla Cross-Site Request Forgery Vulnerability U-151: Bugzilla Cross-Site Request Forgery Vulnerability April 19, 2012 - 8:15am Addthis PROBLEM: A vulnerability has been reported in Bugzilla, which can be exploited by malicious people to conduct cross-site request forgery attacks. PLATFORM: Bugzilla 2.x Bugzilla 3.x Bugzilla 4.x ABSTRACT: The application allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. reference LINKS: Vendor Advisory Secunia Advisory 48835 CVE-2012-0465 CVE-2012-0466 IMPACT ASSESSMENT: Medium Discussion: When abusing the X-FORWARDED-FOR header, an attacker could bypass the lockout policy allowing a possible brute-force discovery of a valid user password. An attacker can get access to some bug information using the victim's

56

Water Bugs  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

Bugs Bugs Nature Bulletin No. 221-A March 12, 1966 Forest Preserve District of Cook County Seymour Simon, President Roland F. Eisenbeis, Supt. of Conservation WATER BUGS It is fascinating to lie in a boat or on a log at the edge of the water and watch the drama that unfolds among the small water animals. Among the star performers in small streams and ponds are the Water Bugs. These are aquatic members of that large group of insects called the "true bugs", most of which live on land. Moreover, unlike many other types of water insects, they do not have gills but get their oxygen directly from the air. Those that do go beneath the surface usually carry an oxygen supply with them in the form of a shiny glistening sheath of air imprisoned among a covering of fine waterproof hairs. The common water insect known to small boys at the "Whirligig Bug" is not a water bug but a beetle.

57

U-265: HP SiteScope Bugs in SiteScope SOAP Feature Let Remote...  

Broader source: Energy.gov (indexed) [DOE]

information. Solution: The vendor has issued a fix. Addthis Related Articles U-121: Apple iOS Bugs Let Remote Users Execute Arbitrary Code, Conduct Cross-Site Scripting...

58

T-720: Blue Coat Director HTTP Trace Processing Flaw Permits...  

Broader source: Energy.gov (indexed) [DOE]

0: Blue Coat Director HTTP Trace Processing Flaw Permits Cross-Site Scripting Attacks T-720: Blue Coat Director HTTP Trace Processing Flaw Permits Cross-Site Scripting Attacks...

59

U-141: Sourcefire Defense Center Bugs | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

1: Sourcefire Defense Center Bugs 1: Sourcefire Defense Center Bugs U-141: Sourcefire Defense Center Bugs April 5, 2012 - 8:30am Addthis PROBLEM: Sourcefire Defense Center Bugs Let Remote Users Traverse the Directory, Access the Database, and Conduct Cross-Site Scripting Attacks PLATFORM: Version(s): prior to 4.10.2.3 ABSTRACT: Several vulnerabilities were reported in Sourcefire Defense Center. A remote user can conduct cross-site scripting attacks. A remote user can access the database. A remote user can view files on the target system reference LINKS: Original Advisory Security Tracker ID 1026890 Secunia Advisory 48667 IMPACT ASSESSMENT: Medium Discussion: A remote user can cause arbitrary scripting code to be executed by the target user's browser. The code will originate from the Sourcefire Defense

60

U-141: Sourcefire Defense Center Bugs | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

1: Sourcefire Defense Center Bugs 1: Sourcefire Defense Center Bugs U-141: Sourcefire Defense Center Bugs April 5, 2012 - 8:30am Addthis PROBLEM: Sourcefire Defense Center Bugs Let Remote Users Traverse the Directory, Access the Database, and Conduct Cross-Site Scripting Attacks PLATFORM: Version(s): prior to 4.10.2.3 ABSTRACT: Several vulnerabilities were reported in Sourcefire Defense Center. A remote user can conduct cross-site scripting attacks. A remote user can access the database. A remote user can view files on the target system reference LINKS: Original Advisory Security Tracker ID 1026890 Secunia Advisory 48667 IMPACT ASSESSMENT: Medium Discussion: A remote user can cause arbitrary scripting code to be executed by the target user's browser. The code will originate from the Sourcefire Defense

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


61

U-121: Apple iOS Bugs Let Remote Users Execute Arbitrary Code, Conduct  

Broader source: Energy.gov (indexed) [DOE]

21: Apple iOS Bugs Let Remote Users Execute Arbitrary Code, 21: Apple iOS Bugs Let Remote Users Execute Arbitrary Code, Conduct Cross-Site Scripting Attacks, and Obtain Potentially Sensitive Information U-121: Apple iOS Bugs Let Remote Users Execute Arbitrary Code, Conduct Cross-Site Scripting Attacks, and Obtain Potentially Sensitive Information March 9, 2012 - 7:00am Addthis PROBLEM: Apple iOS Bugs Let Remote Users Execute Arbitrary Code, Conduct Cross-Site Scripting Attacks, and Obtain Potentially Sensitive Information PLATFORM: Apple iOS Version(s): prior to 5.1 ABSTRACT: Multiple vulnerabilities were reported in Apple iOS. reference LINKS: SecurityTracker Alert ID: 1026774 Apple Security Updates About the security content of iOS 5.1 Software Update CVE-2012-0641, CVE-2012-0642, CVE-2012-0643, CVE-2011-3453, CVE-2012-0644,

62

T-723:Adobe Flash Player Multiple Bugs Let Remote Users Obtain Information,  

Broader source: Energy.gov (indexed) [DOE]

3:Adobe Flash Player Multiple Bugs Let Remote Users Obtain 3:Adobe Flash Player Multiple Bugs Let Remote Users Obtain Information, Conduct Cross-Site Scripting Attacks, and Execute Arbitrary Code T-723:Adobe Flash Player Multiple Bugs Let Remote Users Obtain Information, Conduct Cross-Site Scripting Attacks, and Execute Arbitrary Code September 22, 2011 - 8:00am Addthis PROBLEM: Adobe Flash Player Multiple Bugs Let Remote Users Obtain Information, Conduct Cross-Site Scripting Attacks, and Execute Arbitrary Code. PLATFORM: Adobe Flash Player 10.3.183.7 and earlier versions for Windows, Macintosh, Linux and Solaris. Adobe Flash Player 10.3.186.6 and earlier versions for Android. ABSTRACT: An attacker can exploit this issue by enticing an unsuspecting victim into visiting a malicious website. reference LINKS: Adobe Security Bulletin

63

V-171: Apple Safari Bugs Let Remote Users Execute Arbitrary Code and  

Broader source: Energy.gov (indexed) [DOE]

1: Apple Safari Bugs Let Remote Users Execute Arbitrary Code 1: Apple Safari Bugs Let Remote Users Execute Arbitrary Code and Conduct Cross-Site Scripting Attacks V-171: Apple Safari Bugs Let Remote Users Execute Arbitrary Code and Conduct Cross-Site Scripting Attacks June 5, 2013 - 1:05am Addthis PROBLEM: Apple Safari Bugs Let Remote Users Execute Arbitrary Code and Conduct Cross-Site Scripting Attacks PLATFORM: Apple Safari prior to 6.0.5 ABSTRACT: Several vulnerabilities were reported in Apple Safari. REFERENCE LINKS: Apple Article: HT5785 SecurityTracker Alert ID: 1028627 CVE-2013-0926 CVE-2013-1009 CVE-2013-1012 CVE-2013-1013 CVE-2013-1023 IMPACT ASSESSMENT: Medium DISCUSSION: A remote user can create specially crafted HTML that, when loaded by the target user, will trigger a memory corruption error and execute arbitrary

64

U-222: Apple Safari Bugs Let Remote Users Execute Arbitrary Code, Spoof the  

Broader source: Energy.gov (indexed) [DOE]

2: Apple Safari Bugs Let Remote Users Execute Arbitrary Code, 2: Apple Safari Bugs Let Remote Users Execute Arbitrary Code, Spoof the URL Address Bar, Conduct Cross-Site Scripting Attacks, and Obtain Potentially Sensitive Information U-222: Apple Safari Bugs Let Remote Users Execute Arbitrary Code, Spoof the URL Address Bar, Conduct Cross-Site Scripting Attacks, and Obtain Potentially Sensitive Information July 27, 2012 - 7:00am Addthis PROBLEM: Apple Safari Bugs Let Remote Users Execute Arbitrary Code, Spoof the URL Address Bar, Conduct Cross-Site Scripting Attacks, and Obtain Potentially Sensitive Information PLATFORM: Version(s):Apple Safari prior to 6.0 ABSTRACT: Multiple vulnerabilities were reported in Apple Safari. reference LINKS: The Vendor's Advisory Bugtraq ID: 54683 SecurityTracker Alert ID: 1027307 IMPACT ASSESSMENT:

65

U-222: Apple Safari Bugs Let Remote Users Execute Arbitrary Code, Spoof the  

Broader source: Energy.gov (indexed) [DOE]

2: Apple Safari Bugs Let Remote Users Execute Arbitrary Code, 2: Apple Safari Bugs Let Remote Users Execute Arbitrary Code, Spoof the URL Address Bar, Conduct Cross-Site Scripting Attacks, and Obtain Potentially Sensitive Information U-222: Apple Safari Bugs Let Remote Users Execute Arbitrary Code, Spoof the URL Address Bar, Conduct Cross-Site Scripting Attacks, and Obtain Potentially Sensitive Information July 27, 2012 - 7:00am Addthis PROBLEM: Apple Safari Bugs Let Remote Users Execute Arbitrary Code, Spoof the URL Address Bar, Conduct Cross-Site Scripting Attacks, and Obtain Potentially Sensitive Information PLATFORM: Version(s):Apple Safari prior to 6.0 ABSTRACT: Multiple vulnerabilities were reported in Apple Safari. reference LINKS: The Vendor's Advisory Bugtraq ID: 54683 SecurityTracker Alert ID: 1027307 IMPACT ASSESSMENT:

66

T-693: Symantec Endpoint Protection Manager Input Validation Hole Permits  

Broader source: Energy.gov (indexed) [DOE]

3: Symantec Endpoint Protection Manager Input Validation Hole 3: Symantec Endpoint Protection Manager Input Validation Hole Permits Cross-Site Scripting and Cross-Site Request Forgery Attacks T-693: Symantec Endpoint Protection Manager Input Validation Hole Permits Cross-Site Scripting and Cross-Site Request Forgery Attacks August 15, 2011 - 3:42pm Addthis PROBLEM: Two vulnerabilities were reported in Symantec Endpoint Protection Manager. A remote user can conduct cross-site scripting attacks. A remote user can conduct cross-site request forgery attacks. PLATFORM: Version(s): 11.0 RU6(11.0.600x), 11.0 RU6-MP1(11.0.6100), 11.0 RU6-MP2(11.0.6200), 11.0 RU6-MP3(11.0.6300) ABSTRACT: Symantec Endpoint Protection Manager Input Validation Hole Permits Cross-Site Scripting and Cross-Site Request Forgery Attacks. reference LINKS:

67

T-680:Samba SWAT 'user' Field Cross Site Scripting Vulnerability |  

Broader source: Energy.gov (indexed) [DOE]

0:Samba SWAT 'user' Field Cross Site Scripting Vulnerability 0:Samba SWAT 'user' Field Cross Site Scripting Vulnerability T-680:Samba SWAT 'user' Field Cross Site Scripting Vulnerability August 1, 2011 - 2:10pm Addthis PROBLEM: Samba SWAT 'user' Field Cross Site Scripting Vulnerability PLATFORM: All Linux ABSTRACT: It was found that the 'Change Password' page / screen of the Samba Web Administration Tool did not properly sanitize content of the user-provided "user" field, prior printing it back to the page content. A remote attacker could provide a specially-crafted URL, which once visited by an authenticated Samba SWAT user could allow the attacker to conduct cross-site scripting attacks (execute arbitrary HTML or script code). reference LINKS: SecurityFocus - Bugtraq ID: 48901 Secunia CVE Reference: CVE-2011-2694

68

T-680:Samba SWAT 'user' Field Cross Site Scripting Vulnerability |  

Broader source: Energy.gov (indexed) [DOE]

80:Samba SWAT 'user' Field Cross Site Scripting Vulnerability 80:Samba SWAT 'user' Field Cross Site Scripting Vulnerability T-680:Samba SWAT 'user' Field Cross Site Scripting Vulnerability August 1, 2011 - 2:10pm Addthis PROBLEM: Samba SWAT 'user' Field Cross Site Scripting Vulnerability PLATFORM: All Linux ABSTRACT: It was found that the 'Change Password' page / screen of the Samba Web Administration Tool did not properly sanitize content of the user-provided "user" field, prior printing it back to the page content. A remote attacker could provide a specially-crafted URL, which once visited by an authenticated Samba SWAT user could allow the attacker to conduct cross-site scripting attacks (execute arbitrary HTML or script code). reference LINKS: SecurityFocus - Bugtraq ID: 48901 Secunia CVE Reference: CVE-2011-2694

69

A bug's leaf | EMSL  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

A bug's leaf A bug's leaf Leaf-cutter ant fungus gardens give bioenergy-relevant information Leafcutter ants cultivate gardens of fungi and bacteria. Photo courtesy of Alejandro...

70

V-025: Bugzilla Multiple Cross Site Scripting and Information...  

Broader source: Energy.gov (indexed) [DOE]

to version 3.6.12, 4.0.9, or 4.2.4 or apply patches. Addthis Related Articles V-080: Apple iOS Multiple Vulnerabilities T-568: Mozilla Firefox Bugs Let Remote Users Conduct...

71

V-029: Mozilla Firefox Multiple Bugs Let Remote Users Execute Arbitrary  

Broader source: Energy.gov (indexed) [DOE]

29: Mozilla Firefox Multiple Bugs Let Remote Users Execute 29: Mozilla Firefox Multiple Bugs Let Remote Users Execute Arbitrary Code and Conduct Cross-Site Scripting Attacks V-029: Mozilla Firefox Multiple Bugs Let Remote Users Execute Arbitrary Code and Conduct Cross-Site Scripting Attacks November 21, 2012 - 2:00am Addthis PROBLEM: Mozilla Firefox Multiple Bugs Let Remote Users Execute Arbitrary Code and Conduct Cross-Site Scripting Attacks PLATFORM: Version(s): prior to 17.0 ABSTRACT: Multiple vulnerabilities were reported in Mozilla Firefox REFERENCE LINKS: Mozilla Foundation Security Advisories Bugtraq ID: 55260 SecurityTracker Alert ID: 1027791 CVE-2012-4201, CVE-2012-4202, CVE-2012-4203, CVE-2012-4204, CVE-2012-4205, CVE-2012-4206, CVE-2012-4207,CVE-2012-4208, CVE-2012-4209, CVE-2012-4210, CVE-2012-4212, CVE-2012-4213, CVE-2012-4214, CVE-2012-4215, CVE-2012-4216,

72

Massive June Bug Emergence  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

Massive June Bug Emergence Massive June Bug Emergence Name: Cordell Location: N/A Country: N/A Date: N/A Question: We are infested with june bugs next to the street light near the end of my driveway. They have burrowed into the ground and underneath my driveway. Yesterday we shoveled 2/3 of a 33-gallon trash bag of just bugs. What can we spray or do to kill these june bugs? Replies: Not knowing which part of the country you are from and I could be wrong because of this fact buy this does not sound like June Bugs. This has to be a Circadia outbreak which are relatives to the June Bug. They run in 13, 17 or other year cycles and this depends upon the part of the country you are from. Ask a local garden center or naturalist and you'll probably see that this won't happen again for a number of years to come.

73

U-020: McAfee Web Gateway Web Access Cross Site Scripting Vulnerabilit...  

Broader source: Energy.gov (indexed) [DOE]

U-020: McAfee Web Gateway Web Access Cross Site Scripting Vulnerability U-020: McAfee Web Gateway Web Access Cross Site Scripting Vulnerability October 26, 2011 - 9:00am Addthis...

74

V-084: RSA Archer eGRC Permits Cross-Site Scripting, Cross-Domain...  

Energy Savers [EERE]

An insecure permission on Silverlight allows a remote user to bypass domain origin policy CVE-2012-2292. A remote user can conduct clickjacking attacks...

75

U-212: RSA Authentication Manager Flaws Permit Cross-Site and...  

Broader source: Energy.gov (indexed) [DOE]

actions on the site acting as the target user. Solution: The vendor has issued a fix (Patch 14 (P14) for RSA Authentication Manager 7.1 SP4 and Appliance 3.0 SP4). Addthis...

76

T-590: HP Diagnostics Input Validation Hole Permits Cross-Site...  

Broader source: Energy.gov (indexed) [DOE]

actions on the site acting as the target user. Solution: HP has provided HP Diagnostics patch version 8.05.54.225 to resolve the vulnerability. This patch can be obtained by...

77

T-715: Microsoft SharePoint Multiple Flaws Permit Cross-Site...  

Energy Savers [EERE]

IMPACT ASSESSMENT: High Discussion: A remote user can create a specially crafted URL or web site that, when loaded by a target user, will cause arbitrary scripting code to be...

78

U-184: Mozilla Firefox Multiple Bugs Let Remote Users Execute Arbitrary  

Broader source: Energy.gov (indexed) [DOE]

U-184: Mozilla Firefox Multiple Bugs Let Remote Users Execute U-184: Mozilla Firefox Multiple Bugs Let Remote Users Execute Arbitrary Code U-184: Mozilla Firefox Multiple Bugs Let Remote Users Execute Arbitrary Code June 6, 2012 - 7:00am Addthis PROBLEM: Multiple vulnerabilities were reported in Mozilla Firefox. PLATFORM: Version(s): prior to 13.0 ABSTRACT: A remote user can cause arbitrary code to be executed on the target user's system. A remote user can conduct cross-site scripting attacks. A remote user can obtain potentially sensitive information. Reference Links: Security Tracker ID 1027120 CVE-2012-0441,CVE-2012-1937 Vendor URL IMPACT ASSESSMENT: High Discussion: A remote user can create specially crafted content that, when loaded by the target user, will trigger a memory corruption error and execute arbitrary code on the target system [CVE-2012-1937 , CVE-2012-1938, CVE-2012-1939 ].

79

Method-level bug prediction  

Science Journals Connector (OSTI)

Researchers proposed a wide range of approaches to build effective bug prediction models that take into account multiple aspects of the software development process. Such models achieved good prediction performance, guiding developers towards those parts ... Keywords: code metrics, fine-grained source code changes, method-level bug prediction

Emanuel Giger; Marco D'Ambros; Martin Pinzger; Harald C. Gall

2012-09-01T23:59:59.000Z

80

V-230: IBM TRIRIGA Application Platform Multiple Cross-Site Scripting  

Broader source: Energy.gov (indexed) [DOE]

0: IBM TRIRIGA Application Platform Multiple Cross-Site 0: IBM TRIRIGA Application Platform Multiple Cross-Site Scripting Vulnerabilities V-230: IBM TRIRIGA Application Platform Multiple Cross-Site Scripting Vulnerabilities August 29, 2013 - 4:10am Addthis PROBLEM: Multiple vulnerabilities have been reported in IBM TRIRIGA Application Platform, which can be exploited by malicious people to conduct cross-site scripting attacks. PLATFORM: IBM TRIRIGA Application Platform 2.x ABSTRACT: The vulnerabilities are reported in versions 2.1, 2.5, 2.6, and 2.7. REFERENCE LINKS: Secunia Advisory SA54641 CVE-2013-4003 IBM Security Bulletin IMPACT ASSESSMENT: Low DISCUSSION: Multiple vulnerabilities have been reported in IBM TRIRIGA Application Platform, which can be exploited by malicious people to conduct cross-site scripting attacks.

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


81

V-048: Cisco Wireless Lan Controller Cross-Site Request Forgery  

Broader source: Energy.gov (indexed) [DOE]

8: Cisco Wireless Lan Controller Cross-Site Request Forgery 8: Cisco Wireless Lan Controller Cross-Site Request Forgery Vulnerability V-048: Cisco Wireless Lan Controller Cross-Site Request Forgery Vulnerability December 17, 2012 - 1:00am Addthis PROBLEM: Cisco Wireless Lan Controller Cross-Site Request Forgery Vulnerability PLATFORM: Cisco Wireless LAN Controller (WLC) ABSTRACT: A vulnerability was reported in Cisco Wireless LAN Controller. REFERENCE LINKS: SecurityTracker Alert ID: 1027886 Secunia Advisory SA51546 CVE-2012-5991 CVE-2012-5992 CVE-2012-6007 IMPACT ASSESSMENT: Medium DISCUSSION: A vulnerability was reported in Cisco Wireless LAN Controller. A remote user can conduct cross-site request forgery attacks. A remote user can create specially crafted HTML that, when loaded by a target user, will cause arbitrary scripting code to be executed by the

82

V-028: Splunk Multiple Cross-Site Scripting and Denial of Service  

Broader source: Energy.gov (indexed) [DOE]

8: Splunk Multiple Cross-Site Scripting and Denial of Service 8: Splunk Multiple Cross-Site Scripting and Denial of Service Vulnerabilities V-028: Splunk Multiple Cross-Site Scripting and Denial of Service Vulnerabilities November 20, 2012 - 2:00am Addthis PROBLEM: Splunk Multiple Cross-Site Scripting and Denial of Service Vulnerabilities PLATFORM: Splunk versions 4.3.5 and 5.0 ABSTRACT: Splunk is prone to multiple vulnerabilities REFERENCE LINKS: SecurityTracker Alert ID: 1027785 SecurityTracker Alert ID: 1027784 Bugtraq ID: 56581 Secunia Advisory SA51337 Secunia Advisory SA51351 Splunk Vulnerability Descriptions IMPACT ASSESSMENT: Medium DISCUSSION: Splunk is prone to multiple cross-site scripting vulnerabilities and a denial-of-service vulnerability because it fails to properly handle user-supplied input. An attacker may leverage these issues to cause denial-of-service conditions

83

U-020: McAfee Web Gateway Web Access Cross Site Scripting Vulnerability |  

Broader source: Energy.gov (indexed) [DOE]

0: McAfee Web Gateway Web Access Cross Site Scripting 0: McAfee Web Gateway Web Access Cross Site Scripting Vulnerability U-020: McAfee Web Gateway Web Access Cross Site Scripting Vulnerability October 26, 2011 - 9:00am Addthis PROBLEM: McAfee Web Gateway Web Access Cross Site Scripting Vulnerability. PLATFORM: The vulnerability is reported in versions prior to 7.1.5.2. ABSTRACT: Cross-Site Scripting vulnerabilities allow a third party to manipulate the content or behavior of a web application in a user's browser, without compromising the underlying system. Attackers can exploit this issue by enticing an unsuspecting user to follow a malicious URI. reference LINKS: McAfee Web Gateway Release Notes Bugtraq ID: 50341 Secunia Advisory: SA46570 IMPACT ASSESSMENT: Medium Discussion: A vulnerability has been reported in McAfee Web Gateway, which can be

84

U-276: VMware vCenter Operations Cross-Site Scripting Vulnerability |  

Broader source: Energy.gov (indexed) [DOE]

76: VMware vCenter Operations Cross-Site Scripting Vulnerability 76: VMware vCenter Operations Cross-Site Scripting Vulnerability U-276: VMware vCenter Operations Cross-Site Scripting Vulnerability October 8, 2012 - 7:00am Addthis PROBLEM: VMware vCenter Operations Cross-Site Scripting Vulnerability PLATFORM: VMware vCenter Operations 1.x ABSTRACT: A vulnerability has been reported in VMware vCenter Operations, which can be exploited by malicious people to conduct cross-site scripting attacks. reference LINKS: Original Advisory Secunia Advisory SA50795 CVE-2012-5050 IMPACT ASSESSMENT: Medium Discussion: Certain unspecified input is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. Impact: A vulnerability in VMware vCenter Operations, which can be exploited to

85

U-093: Mozilla Firefox Multiple Flaws Permit Remote Code Execution,  

Broader source: Energy.gov (indexed) [DOE]

3: Mozilla Firefox Multiple Flaws Permit Remote Code Execution, 3: Mozilla Firefox Multiple Flaws Permit Remote Code Execution, Information Disclosure, and Cross-Site Scripting Attacks U-093: Mozilla Firefox Multiple Flaws Permit Remote Code Execution, Information Disclosure, and Cross-Site Scripting Attacks February 1, 2012 - 5:51am Addthis PROBLEM: Multiple vulnerabilities were reported in Mozilla Firefox. PLATFORM: Linux (Any), UNIX (Any), Windows (Any) Version(s): prior to 3.2.26; prior to 10.0 ABSTRACT: Mozilla Firefox Multiple Flaws Permit Remote Code Execution, Information Disclosure, and Cross-Site Scripting. reference LINKS: SecurityTracker Alert ID: 1026605 CVE-2011-3659, CVE-2012-0442 CVE-2012-0443, CVE-2012-0444 CVE-2012-0445, CVE-2012-0446 CVE-2012-0447, CVE-2012-0449 CVE-2012-0450 Vendor Site IMPACT ASSESSMENT:

86

bug | OpenEI Community  

Open Energy Info (EERE)

bug bug Home Rmckeel's picture Submitted by Rmckeel(297) Contributor 20 July, 2012 - 07:55 Image upload with broken thumbnail image bug images wiki OpenEI users can upload images to the wiki by typing a new file name http://en.openei.org/wiki/File:My_new_file.jpg However, due to a caching timing issue, right after upload, the 120px-wide thumbnail has not yet been created by the time the fetier cache goes after it. Thus, the thumbnail appears broken. Is anyone up for debugging? For users uploading images, this can be fixed by forcing a reload of the page: Rmckeel's picture Submitted by Rmckeel(297) Contributor 19 June, 2012 - 08:04 "Ghost" entries bug utility rate There is an issue that Illinois State University has come across. From Nick B: Syndicate content 429 Throttled (bot load)

87

U-149: Apache OFBiz Cross-Site Scripting and Code Execution Vulnerabilities  

Broader source: Energy.gov (indexed) [DOE]

9: Apache OFBiz Cross-Site Scripting and Code Execution 9: Apache OFBiz Cross-Site Scripting and Code Execution Vulnerabilities U-149: Apache OFBiz Cross-Site Scripting and Code Execution Vulnerabilities April 17, 2012 - 8:00am Addthis PROBLEM: Multiple vulnerabilities have been reported in Apache OFBiz, which can be exploited by malicious people to conduct cross-site scripting attacks and compromise a vulnerable system. PLATFORM: Apache OFBiz 10.x ABSTRACT: The vulnerabilities are reported in version 10.04.01. Prior versions may also be affected. references LINKS: Vendor Advisory Secunia Advisory 48800 CVE-2012-1621 IMPACT ASSESSMENT: High Discussion: 1) Certain unspecified input is not properly sanitised within the "getServerError()" function in checkoutProcess.js before being returned to the user. This can be exploited to execute arbitrary HTML and script code

88

V-033: ownCloud Cross-Site Scripting and File Upload Vulnerabilities |  

Broader source: Energy.gov (indexed) [DOE]

3: ownCloud Cross-Site Scripting and File Upload 3: ownCloud Cross-Site Scripting and File Upload Vulnerabilities V-033: ownCloud Cross-Site Scripting and File Upload Vulnerabilities November 26, 2012 - 2:00am Addthis PROBLEM: ownCloud Cross-Site Scripting and File Upload Vulnerabilities PLATFORM: ownCloud 4.5.2, 4.5.1, 4.0.9 ABSTRACT: Multiple vulnerabilities have been reported in ownCloud REFERENCE LINKS: ownCloud Server Advisories Secunia Advisory SA51357 IMPACT ASSESSMENT: Medium DISCUSSION: 1) Input passed via the filename to apps/files_versions/js/versions.js and apps/files/js/filelist.js and event title to 3rdparty/fullcalendar/js/fullcalendar.js is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

89

Chinch Bugs in St. Augustine Lawns  

E-Print Network [OSTI]

Chinch bugs can be extremely damaging to home lawns. Their feeding causes small yellow or brown areas in lawns. Chinch bugs can usually be seen on careful inspection of the soil surface. Insecticides provide effective control....

Merchant, Michael E.; Mott, Dale

2006-10-17T23:59:59.000Z

90

Team Bug Bag Biogas For Nicaragua  

E-Print Network [OSTI]

Team Bug Bag Biogas For Nicaragua Project Recap The task for Team Bug Bag was to create for under $100 (USD), and be able to produce biogas that could boil water for a thirty minute time period

Demirel, Melik C.

91

Summary of Bugs Database Jeremy Kepner  

E-Print Network [OSTI]

written to create the current version of the bugs database. 1.2 Brief Project History Development1 Summary of Bugs Database Jeremy Kepner September, 1993 1. Introduction 1.1 Document Purpose of the Bugs database began in May of 1992. Initially, a very simple database model was used. By July

Kepner, Jeremy

92

Preoperational test report, cross-site transfer water flush system (POTP-001)  

SciTech Connect (OSTI)

This report documents the results of the testing performed per POTP-001, for the Cross-Site Transfer Water Flush System. (HNF-1552, Rev. 0) The Flush System consists of a 47,000 gallon tank (302C), a 20 hp pump, two 498kW heaters, a caustic addition pump, various valves, instruments, and piping. The purpose of this system is to provide flush water at 140 F, 140gpm, and pH 11-12 for the Cross-Site Transfer System operation.

Parsons, G.L.

1998-02-20T23:59:59.000Z

93

T-698: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' Permits  

Broader source: Energy.gov (indexed) [DOE]

8: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' 8: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' Permits Cross-Site Scripting Attacks T-698: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' Permits Cross-Site Scripting Attacks August 22, 2011 - 3:54pm Addthis PROBLEM: A vulnerability was reported in Adobe ColdFusion. A remote user can conduct cross-site scripting attacks. PLATFORM: Adobe ColdFusion 9.x ABSTRACT: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' Permits Cross-Site Scripting Attacks. reference LINKS: Adobe Vulnerability Report Adobe Security Bulletin ColdFusion Support SecurityTracker Alert ID: 1025957 IMPACT ASSESSMENT: Medium Discussion: The 'probe.cfm' script does not properly filter HTML code from user-supplied input in the 'name' parameter before displaying the input. A remote user can create a specially crafted URL that, when loaded by a

94

T-698: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' Permits  

Broader source: Energy.gov (indexed) [DOE]

8: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' 8: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' Permits Cross-Site Scripting Attacks T-698: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' Permits Cross-Site Scripting Attacks August 22, 2011 - 3:54pm Addthis PROBLEM: A vulnerability was reported in Adobe ColdFusion. A remote user can conduct cross-site scripting attacks. PLATFORM: Adobe ColdFusion 9.x ABSTRACT: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' Permits Cross-Site Scripting Attacks. reference LINKS: Adobe Vulnerability Report Adobe Security Bulletin ColdFusion Support SecurityTracker Alert ID: 1025957 IMPACT ASSESSMENT: Medium Discussion: The 'probe.cfm' script does not properly filter HTML code from user-supplied input in the 'name' parameter before displaying the input. A remote user can create a specially crafted URL that, when loaded by a

95

T-623: HP Business Availability Center Input Validation Hole Permits  

Broader source: Energy.gov (indexed) [DOE]

3: HP Business Availability Center Input Validation Hole 3: HP Business Availability Center Input Validation Hole Permits Cross-Site Scripting Attacks T-623: HP Business Availability Center Input Validation Hole Permits Cross-Site Scripting Attacks May 16, 2011 - 3:05pm Addthis PROBLEM: A vulnerability was reported in HP Business Availability Center. A remote user can conduct cross-site scripting attacks. PLATFORM: HP Business Availability Center software 8.06 and prior versions ABSTRACT: The software does not properly filter HTML code from user-supplied input before displaying the input. reference LINKS: SecurityTracker Alert ID:1025535 HP Knowledge Base CVE-2011-1856 Secunia ID: SA44569 HP Document ID:c02823184 | ESB-2011.0525 IMPACT ASSESSMENT: High Discussion: A remote user can cause arbitrary scripting code to be executed by the

96

V-202: Cisco Video Surveillance Manager Bugs Let Remote Users...  

Broader source: Energy.gov (indexed) [DOE]

2: Cisco Video Surveillance Manager Bugs Let Remote Users Obtain Potentially Sensitive Information V-202: Cisco Video Surveillance Manager Bugs Let Remote Users Obtain Potentially...

97

U-047: Siemens Automation License Manager Bugs Let Remote Users...  

Broader source: Energy.gov (indexed) [DOE]

7: Siemens Automation License Manager Bugs Let Remote Users Deny Service or Execute Arbitrary Code U-047: Siemens Automation License Manager Bugs Let Remote Users Deny Service or...

98

U-012: BlackBerry Enterprise Server Collaboration Service Bug...  

Broader source: Energy.gov (indexed) [DOE]

12: BlackBerry Enterprise Server Collaboration Service Bug Lets Remote Users Impersonate Intra-organization Messages U-012: BlackBerry Enterprise Server Collaboration Service Bug...

99

V-127: Samba Bug Lets Remote Authenticated Users Modify Files | Department  

Broader source: Energy.gov (indexed) [DOE]

7: Samba Bug Lets Remote Authenticated Users Modify Files 7: Samba Bug Lets Remote Authenticated Users Modify Files V-127: Samba Bug Lets Remote Authenticated Users Modify Files April 5, 2013 - 6:00am Addthis PROBLEM: A vulnerability was reported in Samba. PLATFORM: The vulnerabilities are reported in version(s): 3.6.0 - 3.6.5 ABSTRACT: A remote authenticated user can modify files on the target share REFERENCE LINKS: SecurityTracker Alert ID: 1028389 Samba Security Announcement CVE-2013-0454 IMPACT ASSESSMENT: Medium DISCUSSION: A remote authenticated user can perform operations on the target CIFS export that are not permitted by the CIFS share access control settings. This may include writing to read-only shares. IMPACT: Modification of user information SOLUTION: Update to 3.6.6 and higher or apply the following patch Addthis

100

V-127: Samba Bug Lets Remote Authenticated Users Modify Files | Department  

Broader source: Energy.gov (indexed) [DOE]

7: Samba Bug Lets Remote Authenticated Users Modify Files 7: Samba Bug Lets Remote Authenticated Users Modify Files V-127: Samba Bug Lets Remote Authenticated Users Modify Files April 5, 2013 - 6:00am Addthis PROBLEM: A vulnerability was reported in Samba. PLATFORM: The vulnerabilities are reported in version(s): 3.6.0 - 3.6.5 ABSTRACT: A remote authenticated user can modify files on the target share REFERENCE LINKS: SecurityTracker Alert ID: 1028389 Samba Security Announcement CVE-2013-0454 IMPACT ASSESSMENT: Medium DISCUSSION: A remote authenticated user can perform operations on the target CIFS export that are not permitted by the CIFS share access control settings. This may include writing to read-only shares. IMPACT: Modification of user information SOLUTION: Update to 3.6.6 and higher or apply the following patch Addthis

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


101

Scale Insects and Mealy Bugs  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

Scale Insects and Mealy Bugs Scale Insects and Mealy Bugs Nature Bulletin No. 404-A January 30, 1971 Forest Preserve District of Cook County George W. Dunne, President Roland F. Eisenbeis, Supt. of Conservation SCALE INSECTS AND MEALY BUGS The insect world contains an enormous number and variety of species but, of them all, the Scale Insects and Mealy Bugs come nearest to being vegetables. Most insects are active animals that fly, hop, scamper, crawl or burrow, but these queer creatures spend most of their lives merely sitting in one spot, sucking plant juices from a branch, twig, leaf, or fruit. Some of our most destructive pests are included among the several hundred kinds of these highly specialized insects. They are so small that the average person seldom realizes that they are responsible for the sickly or dying condition of a tree or shrub. Adult scale insects are extremely variable in shape, and range in size from that of a pinhead up to forms which are a quarter of an inch long. Each hides under a hard protective shell, or scale, of wax secreted by pores on its body, and are frequently so numerous that they form a dense crust. The females molt a few times, and usually discard their legs and wings, before they mature. She lays eggs under the scale and then dies. These hatch into young (called "crawlers") which move around for a period varying from a few hours to a day or two before they settle down and build scales. Unlike the female, the male -always the smaller of the two -- goes through a cocoon stage from which he emerges with a pair of wings but with no means of taking food. He merely mates and dies. Males are scarce In most kinds and in many species have never been seen.

102

T-670: Skype Input Validation Flaw in 'mobile phone' Profile Entry Permits  

Broader source: Energy.gov (indexed) [DOE]

70: Skype Input Validation Flaw in 'mobile phone' Profile Entry 70: Skype Input Validation Flaw in 'mobile phone' Profile Entry Permits Cross-Site Scripting Attacks T-670: Skype Input Validation Flaw in 'mobile phone' Profile Entry Permits Cross-Site Scripting Attacks July 18, 2011 - 7:09am Addthis PROBLEM: A vulnerability was reported in Skype. A remote user can conduct cross-site scripting attacks. PLATFORM: 5.3.0.120 and prior versions ABSTRACT: The software does not properly filter HTML code from user-supplied input in the The "mobile phone" profile entry before displaying the input. reference LINKS: SecurityTracker Alert ID: 1025789 Skype Security Advisory KoreSecure News H Security ID: 1279864 IMPACT ASSESSMENT: High Discussion: Skype suffers from a persistent Cross-Site Scripting vulnerability due to a lack of input validation and output sanitization of the "mobile phone"

103

T-670: Skype Input Validation Flaw in 'mobile phone' Profile Entry Permits  

Broader source: Energy.gov (indexed) [DOE]

0: Skype Input Validation Flaw in 'mobile phone' Profile Entry 0: Skype Input Validation Flaw in 'mobile phone' Profile Entry Permits Cross-Site Scripting Attacks T-670: Skype Input Validation Flaw in 'mobile phone' Profile Entry Permits Cross-Site Scripting Attacks July 18, 2011 - 7:09am Addthis PROBLEM: A vulnerability was reported in Skype. A remote user can conduct cross-site scripting attacks. PLATFORM: 5.3.0.120 and prior versions ABSTRACT: The software does not properly filter HTML code from user-supplied input in the The "mobile phone" profile entry before displaying the input. reference LINKS: SecurityTracker Alert ID: 1025789 Skype Security Advisory KoreSecure News H Security ID: 1279864 IMPACT ASSESSMENT: High Discussion: Skype suffers from a persistent Cross-Site Scripting vulnerability due to a lack of input validation and output sanitization of the "mobile phone"

104

T-722: IBM WebSphere Commerce Edition Input Validation Holes Permit  

Broader source: Energy.gov (indexed) [DOE]

2: IBM WebSphere Commerce Edition Input Validation Holes Permit 2: IBM WebSphere Commerce Edition Input Validation Holes Permit Cross-Site Scripting Attacks T-722: IBM WebSphere Commerce Edition Input Validation Holes Permit Cross-Site Scripting Attacks September 21, 2011 - 8:15am Addthis PROBLEM: IBM WebSphere Commerce Edition Input Validation Holes Permit Cross-Site Scripting Attacks. PLATFORM: WebSphere Commerce Edition V7.0 ABSTRACT: A remote user can access the target user's cookies (including authentication cookies), if any, associated with the site running the IBM WebSphere software, access data recently submitted by the target user via web form to the site, or take actions on the site acting as the target user. reference LINKS: IBM Recommended Fixes for WebSphere Commerce IBM Support SecurityTracker Alert ID: 1026074

105

Dynamically fighting bugs : prevention, detection and elimination  

E-Print Network [OSTI]

This dissertation presents three test-generation techniques that are used to improve software quality. Each of our techniques targets bugs that are found by different stake-holders: developers, testers, and maintainers. ...

Artzi, Shay

2009-01-01T23:59:59.000Z

106

Bed Bugs: Clinical Relevance and Control Options  

Science Journals Connector (OSTI)

...most do not come with quality efficacy data; an industry standard can review these...Anonymous. 2010. Bedbug bites becoming bigger battle. CMAJ 182 : 1606. 19. Anonymous...bug (Hemiptera: Cimicidae) by static electricity and air currents. J. Entomol. Sci...

Stephen L. Doggett; Dominic E. Dwyer; Pablo F. Peas; Richard C. Russell

2012-01-01T23:59:59.000Z

107

U-153: EMC Data Protection Advisor Server and Collector Bugs...  

Broader source: Energy.gov (indexed) [DOE]

53: EMC Data Protection Advisor Server and Collector Bugs Let Remote Users Deny Service U-153: EMC Data Protection Advisor Server and Collector Bugs Let Remote Users Deny Service...

108

V-192: Symantec Security Information Manager Input Validation Flaws Permit  

Broader source: Energy.gov (indexed) [DOE]

92: Symantec Security Information Manager Input Validation Flaws 92: Symantec Security Information Manager Input Validation Flaws Permit Cross-Site Scripting, SQL Injection, and Information Disclosure Attacks V-192: Symantec Security Information Manager Input Validation Flaws Permit Cross-Site Scripting, SQL Injection, and Information Disclosure Attacks July 4, 2013 - 6:00am Addthis PROBLEM: Several vulnerabilities were reported in Symantec Security Information Manager PLATFORM: Symantec Security Information Manager Appliance Version 4.7.x and 4.8.0 ABSTRACT: Symantec was notified of multiple security issues impacting the SSIM management console REFERENCE LINKS: SecurityTracker Alert ID: 1028727 Symantec Security Advisory SYM13-006 CVE-2013-1613 CVE-2013-1614 CVE-2013-1615 IMPACT ASSESSMENT: Medium DISCUSSION: The console does not properly filter HTML code from user-supplied input

109

U-102: Cisco IronPort Encryption Appliance Input Validation Flaw Permits  

Broader source: Energy.gov (indexed) [DOE]

2: Cisco IronPort Encryption Appliance Input Validation Flaw 2: Cisco IronPort Encryption Appliance Input Validation Flaw Permits Cross-Site Scripting Attacks U-102: Cisco IronPort Encryption Appliance Input Validation Flaw Permits Cross-Site Scripting Attacks February 14, 2012 - 8:00am Addthis PROBLEM: A vulnerability was reported in Cisco IronPort Encryption Appliance. PLATFORM: Version(s): prior to 6.5.3 ABSTRACT: A remote user can conduct cross-site scripting reference LINKS: Vendor URL CVE-2012-0340 Security Tracker ID:1026669 IMPACT ASSESSMENT: Medium Discussion: The interface does not properly filter HTML code from user-supplied input before displaying the input. A remote user can create a specially crafted URL that, when loaded by a target user, will cause arbitrary scripting code to be executed by the target user's browser. The code will originate from

110

T-649: Red Hat Network Satellite Server Request Validation Flaw Permits  

Broader source: Energy.gov (indexed) [DOE]

9: Red Hat Network Satellite Server Request Validation Flaw 9: Red Hat Network Satellite Server Request Validation Flaw Permits Cross-Site Request Forgery Attacks T-649: Red Hat Network Satellite Server Request Validation Flaw Permits Cross-Site Request Forgery Attacks June 17, 2011 - 3:43pm Addthis PROBLEM: A vulnerability was reported in Red Hat Network Satellite Server. A remote user can conduct cross-site request forgery attacks. PLATFORM: Versions 5.4.x ABSTRACT: The Red Hat Network (RHN) Satellite and Spacewalk services do not properly validate user-supplied. A remote user can create specially crafted HTML that, when loaded by a target authenticated user, will take actions on the target site acting as the target user. reference LINKS: SecurityTracker Alert ID: 1025674 RHSA-2011:0879-1 RHN Support CVE-2009-4139 IMPACT ASSESSMENT:

111

Bed Bugs: Clinical Relevance and Control Options  

Science Journals Connector (OSTI)

...assist those who cannot pay the high price of control, bed bugs are set to...antigen and bronchial asthma in Egypt. J. Egypt. Soc. Parasitol. 21 : 735-746...Doggett, SL . 2009. Identification natural history, p 13-22. InSL Doggett...

Stephen L. Doggett; Dominic E. Dwyer; Pablo F. Peas; Richard C. Russell

2012-01-01T23:59:59.000Z

112

Water Permits (Louisiana)  

Broader source: Energy.gov [DOE]

The Water Permits Division authorizes permits administered under the Water Quality Regulations. Louisiana's Water Quality Regulations require permits for the discharge of pollutants from any point...

113

V-141: HP ElitePad 900 Secure Boot Bug Lets Local Users Boot...  

Broader source: Energy.gov (indexed) [DOE]

Bug Lets Local Users Deny Service V-098: Linux Kernel Extended Verification Module Bug Lets Local Users Deny Service U-036: Apple iOS Bugs Let Remote Users Execute Arbitrary Code...

114

U-159: Red Hat Enterprise MRG Messaging Qpid Bug Lets Certain...  

Broader source: Energy.gov (indexed) [DOE]

9: Red Hat Enterprise MRG Messaging Qpid Bug Lets Certain Remote Users Bypass Authentication U-159: Red Hat Enterprise MRG Messaging Qpid Bug Lets Certain Remote Users Bypass...

115

U-163: PHP Command Parameter Bug Lets Remote Users Obtain Potentially...  

Broader source: Energy.gov (indexed) [DOE]

63: PHP Command Parameter Bug Lets Remote Users Obtain Potentially Sensitive Information and Execute Arbitrary Code U-163: PHP Command Parameter Bug Lets Remote Users Obtain...

116

Microsoft Word - Final BUGS article final.docx  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

of a good peak resource (Figure 1). Characteristics of a Good Peak Resource Demand Response Program Central- Station Peaker BUGS for Peaks Close to the Load ...

117

U-052: HP Protect Tools Device Access Manager Unspecified Bug...  

Broader source: Energy.gov (indexed) [DOE]

Flaw Lets Remote Users Update Firmware with Arbitrary Code U-047: Siemens Automation License Manager Bugs Let Remote Users Deny Service or Execute Arbitrary Code U-049:...

118

Class 1 Permit Modification Notification  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

Class 1 Permit Modification to the Hazardous Waste Facility Permit, Permit Number: NM4890139088-TSDF Dear Mr. Kieling : Enclosed is a Class 1 Permit Modification Notification 1 0:...

119

History's Worst Software Bugs By Simson Garfinkel Story location: http://www.wired.com/news/technology/bugs/0,2924,69355,00.html  

E-Print Network [OSTI]

they lurk within our cell phones and our pacemakers, our power plants and medical equipment. And now, in our working for the U.S. Central Intelligence Agency allegedly (.pdf) plant a bug in a Canadian computer: "first actual case of a bug being found." Sixty years later, computer bugs are still with us, and show

Overstreet, C. Michael

120

V-098: Linux Kernel Extended Verification Module Bug Lets Local...  

Broader source: Energy.gov (indexed) [DOE]

reported in the Linux Kernel. REFERENCE LINKS: The Linux Kernel Archives Linux Kernel Red Hat Bugzilla - Bug 913266 SecurityTracker Alert ID: 1028196 CVE-2013-0313 IMPACT...

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


121

V-149: Microsoft Internet Explorer Object Access Bug Lets Remote...  

Broader source: Energy.gov (indexed) [DOE]

CDwnBindInfo Object Reuse Flaw Lets Remote Users Execute Arbitrary Code U-047: Siemens Automation License Manager Bugs Let Remote Users Deny Service or Execute Arbitrary Code...

122

V-128: Xen Event Channel Tracking Pointer Bug Local Privilege...  

Broader source: Energy.gov (indexed) [DOE]

privileges on the target host system. SOLUTION: The vendor has issued a fix (xsa47-4.1.patch, xsa47-4.2-unstable.patch). Addthis Related Articles U-232: Xen p2mteardown() Bug...

123

Zoning and Permitting Resources  

Broader source: Energy.gov [DOE]

Zoning and permitting is commonly controlled by local governments and may be applicable to both residential and commercial properties.

124

T-633: BIND RRSIG RRsets Negative Caching Off-by-one Bug Lets...  

Broader source: Energy.gov (indexed) [DOE]

33: BIND RRSIG RRsets Negative Caching Off-by-one Bug Lets Remote Users Deny Service T-633: BIND RRSIG RRsets Negative Caching Off-by-one Bug Lets Remote Users Deny Service May 31,...

125

T-579: BlackBerry Device Software Bug in WebKit Lets Remote Users...  

Broader source: Energy.gov (indexed) [DOE]

79: BlackBerry Device Software Bug in WebKit Lets Remote Users Execute Code T-579: BlackBerry Device Software Bug in WebKit Lets Remote Users Execute Code March 15, 2011 - 5:05pm...

126

T-563: Red Hat Directory Server Bugs Let Local Users Gain Elevated...  

Office of Environmental Management (EM)

T-563: Red Hat Directory Server Bugs Let Local Users Gain Elevated Privileges and Remote and Local Users Deny Service T-563: Red Hat Directory Server Bugs Let Local Users Gain...

127

U-201: HP System Management Homepage Bugs Let Remote Users Deny...  

Broader source: Energy.gov (indexed) [DOE]

01: HP System Management Homepage Bugs Let Remote Users Deny Service U-201: HP System Management Homepage Bugs Let Remote Users Deny Service June 28, 2012 - 7:00am Addthis PROBLEM:...

128

U-053: Linux kexec Bugs Let Local and Remote Users Obtain Potentially...  

Energy Savers [EERE]

and enhancement update U-068:Linux Kernel SGIO ioctl Bug Lets Local Users Gain Elevated Privileges T-712: Red Hat Enterprise MRG Grid 2.0 security, bug fix and enhancement update...

129

V-071: Cisco ASA 1000V Cloud Firewall H.323 Inspection Bug Lets...  

Office of Environmental Management (EM)

71: Cisco ASA 1000V Cloud Firewall H.323 Inspection Bug Lets Remote Users Deny Service V-071: Cisco ASA 1000V Cloud Firewall H.323 Inspection Bug Lets Remote Users Deny Service...

130

V-015: Apple iOS Bugs Let Remote Users Execute Arbitrary Code...  

Broader source: Energy.gov (indexed) [DOE]

5: Apple iOS Bugs Let Remote Users Execute Arbitrary Code, Local Users Bypass the Screen Lock, and Applications Obtain Kernel Address Information V-015: Apple iOS Bugs Let Remote...

131

V-203: HP LoadRunner Multiple Bugs Let Remote Users Deny Service...  

Office of Energy Efficiency and Renewable Energy (EERE) Indexed Site

system. SOLUTION: The vendor has issued a fix(11.52) Addthis Related Articles V-113: Apple Safari Bugs Let Remote Users Execute Arbitrary Code V-171: Apple Safari Bugs Let...

132

Permitting Guides | Department of Energy  

Energy Savers [EERE]

Permitting Guides Permitting Guides Standardized procedures for permitting hydrogen technologies and systems are not yet well established. As a first step, DOE sponsored...

133

Stormwater Permits (Vermont)  

Broader source: Energy.gov [DOE]

Stormwater permits are required for the construction of a new generation facility, the reconstruction or expansion of a facility, the operation of a generation facility which discharges stormwater...

134

Hanford Dangerous Waste Permit  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

training, security) * Closure plan Tank-Related Permit Units New * 149 single-shell tanks (SSTs) * 28 double-shell tanks (DSTs) Existing * 242-A Evaporator * Waste Treatment...

135

Microsoft Word - Final BUGS article final.docx  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

October 18, 2010 DOE/NETL-2010/1435 BUGS: The Next Smart Grid Peak Resource? BUGS: The Next Smart Grid Peak Resource? 2 Prepared by: Booz Allen Hamilton (BAH) Steve Pullins Horizon Energy Group DOE Contract number: DE-FE000400 BUGS: The Next Smart Grid Peak Resource? 3 Acknowledgements This report was prepared by Booz Allen Hamilton, Inc. (BAH) for the United States Department of Energy's National Energy Technology Laboratory. This work was completed under DOE NETL Contract Number DE-FE000400, and performed under BAH Task 430.04. The authors wish to acknowledge the excellent guidance, contributions, and cooperation of the NETL staff, particularly: Steven Bossart, Integrated Electric Power Systems Division Director Keith Dodrill, Integrated Electric Power Systems Division NETL Technical Monitor

136

Direct Discharge Permit (Vermont)  

Broader source: Energy.gov [DOE]

A direct discharge permit is required if a project involves the discharge of pollutants to state waters. For generation purposes, this involves the withdrawal of surface water for cooling purposes...

137

Presidential Permits- Procedures  

Broader source: Energy.gov [DOE]

Executive Order 12038 states that, before a Presidential permit may be issued, the action must be found to be consistent with the public interest. The two criteria used by DOE to determine if a...

138

Lockout: Efficient Testing for Deadlock Bugs Ali Kheradmand  

E-Print Network [OSTI]

Lockout: Efficient Testing for Deadlock Bugs Ali Kheradmand School of Computer and Communication introduce Lockout, a technique and a tool that increases the proba- bility of deadlock manifestation and the testing infrastructure. Lockout produces binaries that are more prone to deadlock compared to native

Candea, George

139

Foiling the Flu Bug Global Partnerships for Nuclear Energy  

E-Print Network [OSTI]

1 1663 Foiling the Flu Bug Global Partnerships for Nuclear Energy Dark Universe Mysteries WILL NOT NEED TESTING Expanding Nuclear Energy the Right Way GLOBAL PARTNERSHIPS AND AN ADVANCED FUEL CYCLE sense.The Laboratory is operated by Los Alamos National Security, LLC, for the Department of Energy

140

U-061: RSA Adaptive Authentication Bugs Let Remote Users Bypass...  

Broader source: Energy.gov (indexed) [DOE]

Bugs Let Remote Users Bypass Certain Security Controls. PLATFORM: 6.0.2.1 SP1 Patch 2 and SP1 Patch 3 6.0.2.1 SP2 and SP2 Patch 1 6.0.2.1 SP3 ABSTRACT: A remote user may...

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


141

Hanford Facility RCRA permit handbook  

SciTech Connect (OSTI)

Purpose of this Hanford Facility (HF) RCRA Permit Handbook is to provide, in one document, information to be used for clarification of permit conditions and guidance for implementing the HF RCRA Permit.

NONE

1996-03-01T23:59:59.000Z

142

Page not found | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

11 - 9520 of 28,905 results. 11 - 9520 of 28,905 results. Article V-012: Mozilla Firefox 'window.location' Bugs Permit Cross-Site Scripting Attacks and May Let Remote Users Execute Arbitrary Code PROBLEM: Mozilla Firefox 'window.location' Bugs Permit Cross-Site Scripting Attacks and May Let Remote Users Execute Arbitrary Code http://energy.gov/cio/articles/v-012-mozilla-firefox-windowlocation-bugs-permit-cross-site-scripting-attacks-and-may Download Letter: Transition of Closure Sites from the Office of Environmental Management to other DOE Organizations From: Deputy Secretary of Energy, Kyle E. McSlarrow (DS-1) To: Todd Martin, Chair, Hanford Advisory Board http://energy.gov/em/downloads/letter-transition-closure-sites-office-environmental-management-other Rebate Georgia Hazardous Site Response Act (Georgia)

143

Page not found | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

71 - 1280 of 29,416 results. 71 - 1280 of 29,416 results. Article V-012: Mozilla Firefox 'window.location' Bugs Permit Cross-Site Scripting Attacks and May Let Remote Users Execute Arbitrary Code PROBLEM: Mozilla Firefox 'window.location' Bugs Permit Cross-Site Scripting Attacks and May Let Remote Users Execute Arbitrary Code http://energy.gov/cio/articles/v-012-mozilla-firefox-windowlocation-bugs-permit-cross-site-scripting-attacks-and-may Article Agencies Decide to Dig Up Contaminated Soil at Hanford Site- Federal and state agencies determine cleanup plans for four areas near central Hanford RICHLAND, Wash. -The Department of Energy (DOE) and the U.S. Environmental Protection Agency (EPA), in coordination with the Washington Department of Ecology, have made plans for remediating contaminated soil at

144

"Mobile money" services permit  

E-Print Network [OSTI]

"Mobile money" services permit cell phone users to send small amounts of money via text message to their friends and relatives. There are over 90 mobile money services in the world today, mainly in emergingTure oF Money october 2012 - April 2013 Muriel Ansley reynolds exhibit GAllery For the full exhibit checklist

Loudon, Catherine

145

U-049: IBM Tivoli Netcool Reporter CGI Bug Lets Remote Users...  

Energy Savers [EERE]

Netcool Reporter Support and Downloads . Addthis Related Articles U-047: Siemens Automation License Manager Bugs Let Remote Users Deny Service or Execute Arbitrary Code U-048:...

146

U-045: Windows Win32k.sys Keyboard Layout Bug Lets Local Users...  

Broader source: Energy.gov (indexed) [DOE]

Restrict access to trusted users only. Addthis Related Articles U-047: Siemens Automation License Manager Bugs Let Remote Users Deny Service or Execute Arbitrary Code U-046:...

147

Montana Water Quality Permit Application, Nondegradation Authorization...  

Open Energy Info (EERE)

LibraryAdd to library PermittingRegulatory Guidance - Supplemental Material: Montana Water Quality Permit Application, Nondegradation Authorization, and Permit FeesPermitting...

148

OpenEI/URDB Bug? | OpenEI Community  

Open Energy Info (EERE)

OpenEI/URDB Bug? OpenEI/URDB Bug? Home > Groups > Utility Rate Clarknd's picture Submitted by Clarknd(20) Member 26 November, 2012 - 07:39 I ran into a problem today on the Utility Rate Database (URDB). Every time I select the "Assume net metering (buy = sell)" box and go to save the page for some reason it doesn't save that change and reverts back to "No" rather than "Yes". Groups: Utility Rate Login to post comments Latest discussions Rmckeel New page curation tool Posted: 7 May 2013 - 08:16 by Rmckeel Rmckeel Considering removing "Show Preview" button on utility rate form edit Posted: 22 Apr 2013 - 13:55 by Rmckeel 5 comment(s) 1 of 10 ›› Groups Menu You must login in order to post into this group. Latest discussion comments NickL

149

Permit application handbook  

SciTech Connect (OSTI)

The objective of this handbook is to explain how to prepare a mining permit application which will satisfy the requirements of the Federal Surface Mining Control and Reclamation Act of 1977 (SMCRA) (Public Law 95-87). The requirements described in this Handbook come from the permanent program regulations issued by the Office of Surface Mining (OSM) on March 13, 1979 and the court decisions and regulatory changes up until June 1981. This Handbook was developed to provide mine operators, particularly operators of small Appalachian mines, with an explanation of the Federal permit application requirements and the work which will be entailed in satisfying these requirements. Requirement explanations in the following areas are presented: site description; surface waters; ground waters; cultural resources; road; topsoil handling; blasting plans; water quality control; excess spoil disposal; reclamation plan; and special mining conditions. (DMC)

Not Available

1981-06-23T23:59:59.000Z

150

Entrapment of bed bugs by leaf trichomes inspires microfabrication of biomimetic surfaces  

Science Journals Connector (OSTI)

...18 h; the total area impacted by 60 bug feet with eight locomotory cycles per minute...generally occurred on the underside of the foot. The same legs that appeared irreversibly...potential to harness the bed bug-entrapping power of natural leaf surfaces using purely physical...

2013-01-01T23:59:59.000Z

151

Using Combinatorial Benchmark Construction to Improve the Assessment of Concurrency Bug Detection Tools  

E-Print Network [OSTI]

of performance measures. The inclusion of performance measures ensure that we can assess the fitnessUsing Combinatorial Benchmark Construction to Improve the Assessment of Concurrency Bug Detection, it is difficult to assess the fitness of a particular con- currency bug detection method and to compare

Bradbury, Jeremy S.

152

U-027: RSA Key Manager Appliance Session Logout Bug Fails to Terminate  

Broader source: Energy.gov (indexed) [DOE]

7: RSA Key Manager Appliance Session Logout Bug Fails to 7: RSA Key Manager Appliance Session Logout Bug Fails to Terminate Sessions U-027: RSA Key Manager Appliance Session Logout Bug Fails to Terminate Sessions November 4, 2011 - 8:00am Addthis PROBLEM: RSA Key Manager Appliance Session Logout Bug Fails to Terminate Sessions. PLATFORM: RSA Key Manager Appliance 2.7 Service Pack 1 ABSTRACT: A remote authenticated user session may not terminate properly. reference LINKS: SecurityTracker Alert ID: 1026276 SecurityFocus Bug Traq Seclists: ESA-2011-035 CVE-2011-2740 IMPACT ASSESSMENT: Medium Discussion: A vulnerability was reported in RSA Key Manager Appliance. A remote authenticated user session may not terminate properly. When using Firefox 4 and 5, an authenticated user session is not terminated properly when logging out.

153

V-098: Linux Kernel Extended Verification Module Bug Lets Local Users Deny  

Broader source: Energy.gov (indexed) [DOE]

8: Linux Kernel Extended Verification Module Bug Lets Local 8: Linux Kernel Extended Verification Module Bug Lets Local Users Deny Service V-098: Linux Kernel Extended Verification Module Bug Lets Local Users Deny Service February 25, 2013 - 12:12am Addthis PROBLEM: Linux Kernel Extended Verification Module Bug Lets Local Users Deny Service PLATFORM: The Linux Kernel prior to 3.7.5 ABSTRACT: A vulnerability was reported in the Linux Kernel. REFERENCE LINKS: The Linux Kernel Archives Linux Kernel Red Hat Bugzilla - Bug 913266 SecurityTracker Alert ID: 1028196 CVE-2013-0313 IMPACT ASSESSMENT: Medium DISCUSSION: A local user can exploit a null pointer dereference in the evm_update_evmxattr() function in 'security/integrity/evm/evm_crypto.c' to cause the target system to crash. IMPACT: A local user can cause denial of service conditions.

154

U-068:Linux Kernel SG_IO ioctl Bug Lets Local Users Gain Elevated  

Broader source: Energy.gov (indexed) [DOE]

8:Linux Kernel SG_IO ioctl Bug Lets Local Users Gain Elevated 8:Linux Kernel SG_IO ioctl Bug Lets Local Users Gain Elevated Privileges U-068:Linux Kernel SG_IO ioctl Bug Lets Local Users Gain Elevated Privileges December 23, 2011 - 8:45am Addthis PROBLEM: Linux Kernel SG_IO ioctl Bug Lets Local Users Gain Elevated Privileges PLATFORM: Red Hat Enterprise Linux Desktop (v. 6) Red Hat Enterprise Linux HPC Node (v. 6) Red Hat Enterprise Linux Server (v. 6) Red Hat Enterprise Linux Server AUS (v. 6.2) Red Hat Enterprise Linux Server EUS (v. 6.2.z) Red Hat Enterprise Linux Workstation (v. 6) ABSTRACT: A local privileged user on the guest operating system can obtain elevated privileges on the target system. reference LINKS: Red Hat kernel security and bug fix update SecurityTracker Alert ID: 1026453 SecurityTracker Alert ID: 1026454

155

T-700:Red Hat: kernel security, bug fix, and enhancement update |  

Broader source: Energy.gov (indexed) [DOE]

700:Red Hat: kernel security, bug fix, and enhancement update 700:Red Hat: kernel security, bug fix, and enhancement update T-700:Red Hat: kernel security, bug fix, and enhancement update August 24, 2011 - 3:45pm Addthis PROBLEM: Updated kernel packages that fix several security issues, various bugs, and add two enhancements are now available for Red Hat Enterprise Linux 6. PLATFORM: Red Hat Enterprise Linux Desktop (v. 6) Red Hat Enterprise Linux HPC Node (v. 6) Red Hat Enterprise Linux Server (v. 6) Red Hat Enterprise Linux Server EUS (v. 6.1.z) Red Hat Enterprise Linux Workstation (v. 6) ABSTRACT: Red Hat: kernel security, bug fix, and enhancement update. reference LINKS: RHSA-2011: 1189-1 Secunia Advisory: SA45746 Red Hat Download CVE-2011-1182 , CVE-2011-1576 CVE-2011-1593 , CVE-2011-1776 CVE-2011-1898 , CVE-2011-2183

156

V-040: Apache Tomcat Bug Lets Remote Users Bypass Security Constraints |  

Broader source: Energy.gov (indexed) [DOE]

0: Apache Tomcat Bug Lets Remote Users Bypass Security 0: Apache Tomcat Bug Lets Remote Users Bypass Security Constraints V-040: Apache Tomcat Bug Lets Remote Users Bypass Security Constraints December 5, 2012 - 1:00am Addthis PROBLEM: Apache Tomcat Bug Lets Remote Users Bypass Security Constraints PLATFORM: Version(s): 6.0.0 - 6.0.35, 7.0.0 - 7.0.29 ABSTRACT: A vulnerability was reported in Apache Tomcat. REFERENCE LINKS: Apache Tomcat Red Hat Bugzilla - Bug 883634 SecurityTracker Alert ID: 1027833 CVE-2012-3546 IMPACT ASSESSMENT: High DISCUSSION: When using FORM authentication it was possible to bypass the security constraint checks in the FORM authenticator by appending /j_security_check to the end of the URL if some other component (such as the Single-Sign-On valve) had called request.setUserPrincipal() before the call to

157

Individual Permit for Storm Water  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

Individual Permit Individual Permit Individual Permit for Storm Water The Individual Permit authorizes the discharge of storm water associated with historical industrial activities at LANL from specified solid waste management units and areas of concern, collectively referred to as Sites. October 15, 2012 Sandia Canyon Wetlands Sandia Canyon Wetlands in the early morning looking north. Get Expertise Environmental Communications & Public Involvement Email In the Individual Permit, to 'minimize' means to reduce and/or eliminate discharges of pollutants in storm water to the extent achievable. What is the Individual Permit for Storm Water? The Permit - NPDES No. NM0030759 - was issued by the U.S. Environmental Protection Agency, Region 6, on September 30, 2010 to Los Alamos National

158

Microsoft Word - Groundwater Discharge Permit  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

State Renews Groundwater Discharge Permit for WIPP CARLSBAD, N.M., September 11, 2008 - The New Mexico Environment Department (NMED) has renewed the U.S. Department of Energy's (DOE) Waste Isolation Pilot Plant (WIPP) groundwater discharge permit until 2013. The permit regulates the discharge of water from WIPP facilities and operations to lined ponds, which protect groundwater resources. The permit allows WIPP to discharge domestic wastewater, non-hazardous wastewater and storm water into 13 on-site, synthetically-lined ponds. The new permit also provides for increased daily discharge volumes to allow more flexibility in plant operations. "This permit is the result of a positive year-long effort with the New Mexico Groundwater Quality Bureau," said Jody Plum, DOE Carlsbad Field Office Permitting and

159

Presidential Permits - Procedures | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

Permits - Procedures Presidential Permits - Procedures Executive Order 12038 states that, before a Presidential permit may be issued, the action must be found to be consistent with...

160

SWRCB General NPDES Permits | Open Energy Information  

Open Energy Info (EERE)

SWRCB General NPDES Permits Jump to: navigation, search OpenEI Reference LibraryAdd to library Legal Document- Permit ApplicationPermit Application: SWRCB General NPDES...

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


161

Washington Joint Aquatic Resources Permit Application | Open...  

Open Energy Info (EERE)

Permit Application Jump to: navigation, search OpenEI Reference LibraryAdd to library Legal Document- Permit ApplicationPermit Application: Washington Joint Aquatic...

162

Caltrans Encroachment Permit Application Guide | Open Energy...  

Open Energy Info (EERE)

Permit Application Guide Jump to: navigation, search OpenEI Reference LibraryAdd to library PermittingRegulatory Guidance - GuideHandbook: Caltrans Encroachment Permit...

163

CDPHE Industrial Individual Wastewater Discharge Permit Application...  

Open Energy Info (EERE)

Legal Document- Permit ApplicationPermit Application: CDPHE Industrial Individual Wastewater Discharge Permit ApplicationLegal Abstract Application provided by the Colorado...

164

Hawaii Individual Wastewater Management Permit Packet | Open...  

Open Energy Info (EERE)

to library PermittingRegulatory Guidance - Supplemental Material: Hawaii Individual Wastewater Management Permit PacketPermittingRegulatory GuidanceSupplemental Material Author...

165

U-210: Linux Kernel epoll_ctl() Bug Lets Local Users Deny Service |  

Broader source: Energy.gov (indexed) [DOE]

10: Linux Kernel epoll_ctl() Bug Lets Local Users Deny Service 10: Linux Kernel epoll_ctl() Bug Lets Local Users Deny Service U-210: Linux Kernel epoll_ctl() Bug Lets Local Users Deny Service July 11, 2012 - 7:00am Addthis PROBLEM: Linux Kernel epoll_ctl() Bug Lets Local Users Deny Service PLATFORM: Version(s): 2.6.x ABSTRACT: A vulnerability was reported in the Linux Kernel. A local user can cause denial of service conditions. reference LINKS: The Vendor's Advisory SecurityTracker Alert ID: 1027237 SecurityTracker Alert ID: 1027240 Red Hat advisory CVE-2012-3375 IMPACT ASSESSMENT: Medium Discussion: The Linux kernel's Event Poll (epoll) subsystem does not properly handle resource clean up when an ELOOP error code is returned. A local user can exploit this to cause the target system to crash. Impact: A local user can cause the target system to crash.

166

U-008: Symantec Data Loss Prevention Bugs in KeyView Filter Lets Remote  

Broader source: Energy.gov (indexed) [DOE]

08: Symantec Data Loss Prevention Bugs in KeyView Filter Lets 08: Symantec Data Loss Prevention Bugs in KeyView Filter Lets Remote Users Deny Service U-008: Symantec Data Loss Prevention Bugs in KeyView Filter Lets Remote Users Deny Service October 11, 2011 - 8:00am Addthis PROBLEM: Symantec Data Loss Prevention Bugs in KeyView Filter Lets Remote Users Deny Service PLATFORM: Symantec Data Loss Prevention Enforce/Detection Servers for Windows 10.x, 11.x ABSTRACT: A remote user can create a file that, when processed by the target filter, will cause partial denial of service conditions. reference LINKS: Symantec Security Advisory SYM11-013 SecurityTracker Alert ID: 1026157 IMPACT ASSESSMENT: Medium Discussion: Multiple vulnerabilities were reported in Symantec Data Loss Prevention. A remote user can cause denial of service conditions on the target system.A

167

U-168: EMC Documentum Information Rights Management Server Bugs Let Remote  

Broader source: Energy.gov (indexed) [DOE]

168: EMC Documentum Information Rights Management Server Bugs Let 168: EMC Documentum Information Rights Management Server Bugs Let Remote Authenticated Users Deny Service U-168: EMC Documentum Information Rights Management Server Bugs Let Remote Authenticated Users Deny Service May 14, 2012 - 7:00am Addthis PROBLEM: EMC Documentum Information Rights Management Server Bugs Let Remote Authenticated Users Deny Service PLATFORM: Information Rights Management Server 4.x, 5.x ABSTRACT: Two vulnerabilities were reported in EMC Documentum Information Rights Management Server. A remote authenticated user can cause denial of service conditions. Reference links: SecurityTracker Alert ID: 1027058 CVE-2012-2276 CVE-2012-2277 IMPACT ASSESSMENT: High Discussion: A remote authenticated user can send specially crafted data to trigger a NULL pointer dereference and cause the target service to crash. A remote

168

U-130: JBoss Operations Network LDAP Authentication Bug Lets Remote Users  

Broader source: Energy.gov (indexed) [DOE]

0: JBoss Operations Network LDAP Authentication Bug Lets Remote 0: JBoss Operations Network LDAP Authentication Bug Lets Remote Users Bypass Authentication U-130: JBoss Operations Network LDAP Authentication Bug Lets Remote Users Bypass Authentication March 21, 2012 - 7:00am Addthis PROBLEM: JBoss Operations Network LDAP Authentication Bug Lets Remote Users Bypass Authentication PLATFORM: JBoss Operations Network 2.x ABSTRACT: A vulnerability was reported in JBoss Operations Network. A remote user can login with an arbitrary password in certain cases. reference LINKS: SecurityTracker Alert ID: 1026826 Secunia Advisory SA48471 CVE-2012-1100 IMPACT ASSESSMENT: Medium Discussion: The vulnerability is caused due to an error within the Lightweight Directory Access Protocol (LDAP) authentication when handling invalid bind account credentials, which can be exploited to log-in to LDAP-based

169

V-110: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code |  

Broader source: Energy.gov (indexed) [DOE]

10: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary 10: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code V-110: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code March 13, 2013 - 12:04am Addthis PROBLEM: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code PLATFORM: Version(s): 1.6.602.171 and prior for Windows/Mac; other versions on other platforms ABSTRACT: Several vulnerabilities were reported in Adobe Flash Player. REFERENCE LINKS: Adobe Vulnerability identifier: APSB13-09 SecurityTracker Alert ID: 1028277 CVE-2013-0646 CVE-2013-0650 CVE-2013-1371 CVE-2013-1375 IMPACT ASSESSMENT: High DISCUSSION: A remote user can create specially crafted content that, when loaded by the target user, will execute arbitrary code on the target user's system. The code will run with the privileges of the target user.

170

U-074: Microsoft .NET Bugs Let Remote Users Execute Arbitrary Commands,  

Broader source: Energy.gov (indexed) [DOE]

4: Microsoft .NET Bugs Let Remote Users Execute Arbitrary 4: Microsoft .NET Bugs Let Remote Users Execute Arbitrary Commands, Access User Accounts, and Redirect Users U-074: Microsoft .NET Bugs Let Remote Users Execute Arbitrary Commands, Access User Accounts, and Redirect Users January 4, 2012 - 8:00am Addthis PROBLEM: Microsoft .NET Bugs Let Remote Users Execute Arbitrary Commands, Access User Accounts, and Redirect Users . PLATFORM: Windows XP Service Pack 3 Windows XP Professional x64 Edition Service Pack 2 Windows Server 2003 Service Pack 2 Windows Server 2003 x64 Edition Service Pack 2 Windows Server 2003 with SP2 for Itanium-based Systems Windows Vista Service Pack 2 Windows Vista x64 Edition Service Pack 2 Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2

171

U-159: Red Hat Enterprise MRG Messaging Qpid Bug Lets Certain Remote Users  

Broader source: Energy.gov (indexed) [DOE]

9: Red Hat Enterprise MRG Messaging Qpid Bug Lets Certain 9: Red Hat Enterprise MRG Messaging Qpid Bug Lets Certain Remote Users Bypass Authentication U-159: Red Hat Enterprise MRG Messaging Qpid Bug Lets Certain Remote Users Bypass Authentication May 1, 2012 - 7:00am Addthis PROBLEM: Red Hat Enterprise MRG Messaging Qpid Bug Lets Certain Remote Users Bypass Authentication PLATFORM: Red Hat Enterprise MRG v2 for Red Hat Enterprise Linux (version 6) ABSTRACT: A vulnerability was reported in Red Hat Enterprise MRG Messaging. A remote user can access cluster messages and view the internal configuration. reference LINKS: SecurityTracker Alert ID: 1026990 CVE-2011-3620 Red Hat advisory IMPACT ASSESSMENT: High Discussion: Qpid may accept arbitrary passwords and SASL mechanims. A remote user on the local private interconnect network with knowledge of a valid cluster

172

V-016: HP Performance Insight Bugs with Sybase Database Let Remote Users  

Broader source: Energy.gov (indexed) [DOE]

6: HP Performance Insight Bugs with Sybase Database Let Remote 6: HP Performance Insight Bugs with Sybase Database Let Remote Users Deny Service and Take Full Control of the Target System V-016: HP Performance Insight Bugs with Sybase Database Let Remote Users Deny Service and Take Full Control of the Target System November 5, 2012 - 6:00am Addthis PROBLEM: HP Performance Insight Bugs with Sybase Database Let Remote Users Deny Service and Take Full Control of the Target System PLATFORM: HP Performance Insight v5.31, v5.40 and v5.41 running on HP-UX, Solaris, Linux, and Windows and using Sybase as the database ABSTRACT: Two vulnerabilities were reported in HP Performance Insight. REFERENCE LINKS: HP Support Document ID: c03555488 SecurityTracker Alert ID: 1027719 CVE-2012-3269 CVE-2012-3270 IMPACT ASSESSMENT: High DISCUSSION:

173

U-257: Adobe ColdFusion Unspecified Bug Lets Remote Users Deny Service |  

Broader source: Energy.gov (indexed) [DOE]

57: Adobe ColdFusion Unspecified Bug Lets Remote Users Deny 57: Adobe ColdFusion Unspecified Bug Lets Remote Users Deny Service U-257: Adobe ColdFusion Unspecified Bug Lets Remote Users Deny Service September 12, 2012 - 6:00am Addthis PROBLEM: Adobe ColdFusion Unspecified Bug Lets Remote Users Deny Service PLATFORM: ColdFusion 10, 9.0.2, 9.0.1, 9.0, 8.0.1, and 8.0 for Windows, Macintosh and UNIX ABSTRACT: Adobe ColdFusion is prone to a remote denial-of-service vulnerability. reference LINKS: Adobe Security bulletins and advisories Adobe Vulnerability identifier: APSB12-21 SecurityTracker Alert ID: 1027516 Bugtraq ID: 55499 CVE-2012-2048 IMPACT ASSESSMENT: Medium Discussion: Adobe has released a security hotfix for ColdFusion 10 and earlier versions for Windows, Macintosh and UNIX. This update resolves a vulnerability which

174

U-079: Adobe Acrobat/Reader Multiple Bugs Let Remote Users Execute  

Broader source: Energy.gov (indexed) [DOE]

79: Adobe Acrobat/Reader Multiple Bugs Let Remote Users Execute 79: Adobe Acrobat/Reader Multiple Bugs Let Remote Users Execute Arbitrary Code U-079: Adobe Acrobat/Reader Multiple Bugs Let Remote Users Execute Arbitrary Code January 11, 2012 - 8:00am Addthis PROBLEM: Adobe Acrobat/Reader Multiple Bugs Let Remote Users Execute Arbitrary Code. PLATFORM: Adobe Acrobat/Reader Version(s): 9.x prior to 9.5, 10.x prior to 10.1.2 ABSTRACT: A remote user can create a file that, when loaded by the target user, will execute arbitrary code on the target user's system. reference LINKS: SecurityTracker Alert ID: 1026496 Adobe Security Bulletin APSB12-01 CVE-2011-2462, CVE-2011-4369, CVE-2011-4370, CVE-2011-4371, CVE-2011-4372, CVE-2011-4373. IMPACT ASSESSMENT: High Discussion: Several vulnerabilities were reported in Adobe Acrobat/Reader. A remote

175

U-233: Oracle Database INDEXTYPE CTXSYS.CONTEXT Bug Lets Remote  

Broader source: Energy.gov (indexed) [DOE]

3: Oracle Database INDEXTYPE CTXSYS.CONTEXT Bug Lets Remote 3: Oracle Database INDEXTYPE CTXSYS.CONTEXT Bug Lets Remote Authenticated Users Gain Elevated Privileges U-233: Oracle Database INDEXTYPE CTXSYS.CONTEXT Bug Lets Remote Authenticated Users Gain Elevated Privileges August 13, 2012 - 7:00am Addthis PROBLEM: Oracle Database INDEXTYPE CTXSYS.CONTEXT Bug Lets Remote Authenticated Users Gain Elevated Privileges PLATFORM: Oracle Database Server versions 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, 11.2.0.3 ABSTRACT: A remote authenticated user with 'Create Table' privileges can gain 'SYS' privileges on the target system. Reference LINKS: Oracle Security Alert Oracle Security Alert - CVE-2012-3132 Risk Matrices SecurityTracker Alert ID: 1027367 CVE-2012-3132 IMPACT ASSESSMENT: Medium Discussion: A vulnerability was reported in Oracle Database. This vulnerability is not

176

U-026: Cisco Small Business SRP500 Series Bug Lets Remote Users Inject  

Broader source: Energy.gov (indexed) [DOE]

6: Cisco Small Business SRP500 Series Bug Lets Remote Users 6: Cisco Small Business SRP500 Series Bug Lets Remote Users Inject Commands U-026: Cisco Small Business SRP500 Series Bug Lets Remote Users Inject Commands November 3, 2011 - 8:15am Addthis PROBLEM: Cisco Small Business SRP500 Series Bug Lets Remote Users Inject Commands. PLATFORM: The following models are affected when running firmware prior to version 1.1.24: Cisco SRP521W Cisco SRP526W Cisco SRP527W The following models are affected when running firmware prior to version 1.2.1: Cisco SRP541W Cisco SRP546W Cisco SRP547W ABSTRACT: A remote user can create a URL that, when loaded by the target authenticated administrative user, will execute arbitrary commands on the target system. reference LINKS: Advisory ID: cisco-sa-20111102-srp500 SecurityTracker Alert ID: 1026266

177

U-155: WebCalendar Access Control and File Inclusion Bugs Let Remote Users  

Broader source: Energy.gov (indexed) [DOE]

5: WebCalendar Access Control and File Inclusion Bugs Let 5: WebCalendar Access Control and File Inclusion Bugs Let Remote Users Potentially Execute Arbitrary Code U-155: WebCalendar Access Control and File Inclusion Bugs Let Remote Users Potentially Execute Arbitrary Code April 25, 2012 - 7:00am Addthis PROBLEM: WebCalendar Access Control and File Inclusion Bugs Let Remote Users Potentially Execute Arbitrary Code PLATFORM: 1.2.4 and prior versions ABSTRACT: Two vulnerabilities were reported in WebCalendar. A remote user may be able to execute arbitrary PHP code on the target system. reference links: SecurityTracker Alert ID: 1026966 CVE-2012-1495 CVE-2012-1496 IMPACT ASSESSMENT: Medium Discussion: A remote user can access '/install/index.php' to potentially modify '/includes/settings/' with arbitrary values or PHP code. A remote

178

V-037: Wireshark Multiple Bugs Let Remote Users Deny Service | Department  

Broader source: Energy.gov (indexed) [DOE]

7: Wireshark Multiple Bugs Let Remote Users Deny Service 7: Wireshark Multiple Bugs Let Remote Users Deny Service V-037: Wireshark Multiple Bugs Let Remote Users Deny Service November 30, 2012 - 3:30am Addthis PROBLEM: Wireshark Multiple Bugs Let Remote Users Deny Service PLATFORM: Version(s): prior to 1.6.12, 1.8.4 ABSTRACT: Several vulnerabilities were reported in Wireshark. REFERENCE LINKS: Wireshark Security Advisories Secunia Advisory SA51422 Seclists SecurityTracker Alert ID: 1027822 CVE-2012-5592 CVE-2012-5593 CVE-2012-5594 CVE-2012-5595 CVE-2012-5596 CVE-2012-5597 CVE-2012-5598 CVE-2012-5599 CVE-2012-5600 CVE-2012-5601 CVE-2012-5602 IMPACT ASSESSMENT: Medium DISCUSSION: Several vulnerabilities were reported in Wireshark. A remote user can cause denial of service conditions. A user can obtain potentially sensitive information.

179

U-163: PHP Command Parameter Bug Lets Remote Users Obtain Potentially  

Broader source: Energy.gov (indexed) [DOE]

3: PHP Command Parameter Bug Lets Remote Users Obtain 3: PHP Command Parameter Bug Lets Remote Users Obtain Potentially Sensitive Information and Execute Arbitrary Code U-163: PHP Command Parameter Bug Lets Remote Users Obtain Potentially Sensitive Information and Execute Arbitrary Code May 7, 2012 - 7:00am Addthis PROBLEM: PHP Command Parameter Bug Lets Remote Users Obtain Potentially Sensitive Information and Execute Arbitrary Code PLATFORM: Prior to 5.3.12 and 5.4.2 ABSTRACT: A vulnerability was reported in PHP. A remote user can obtain potentially sensitive information. A remote user can execute arbitrary code on the target system. reference LINKS: SecurityTracker Alert ID: 1027022 CVE-2012-1823 CVE-2012-2311 IMPACT ASSESSMENT: High Discussion: A remote user can submit a specially crafted request containing a command

180

U-076: OpenSSL Bugs Let Remote Users Deny Service, Obtain Information, and  

Broader source: Energy.gov (indexed) [DOE]

76: OpenSSL Bugs Let Remote Users Deny Service, Obtain 76: OpenSSL Bugs Let Remote Users Deny Service, Obtain Information, and Potentially Execute Arbitrary Code U-076: OpenSSL Bugs Let Remote Users Deny Service, Obtain Information, and Potentially Execute Arbitrary Code January 6, 2012 - 8:15am Addthis PROBLEM: OpenSSL Bugs Let Remote Users Deny Service, Obtain Information, and Potentially Execute Arbitrary Code PLATFORM: OpenSSL prior to 0.9.8s; 1.x prior to 1.0.0f ABSTRACT: A remote user may be able to execute arbitrary code on the target system. reference LINKS: SecurityTracker Alert ID: 1026485 OpenSSL Security Advisory IMPACT ASSESSMENT: High Discussion: Several vulnerabilities were reported in OpenSSL. A remote user can cause denial of service conditions. A remote user can obtain sensitive information. A remote user may be able to execute arbitrary code on the

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


181

V-135: Cisco ASA Multiple Bugs Let Remote Users Deny Service | Department  

Broader source: Energy.gov (indexed) [DOE]

5: Cisco ASA Multiple Bugs Let Remote Users Deny Service 5: Cisco ASA Multiple Bugs Let Remote Users Deny Service V-135: Cisco ASA Multiple Bugs Let Remote Users Deny Service April 16, 2013 - 12:21am Addthis PROBLEM: Cisco ASA Multiple Bugs Let Remote Users Deny Service PLATFORM: Cisco ASA Software for Cisco ASA 5500 Series Adaptive Security Appliances, Cisco ASA Services Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers, and Cisco ASA 1000V Cloud Firewall are affected by multiple vulnerabilities. Affected versions of Cisco ASA Software will vary depending on the specific vulnerability. ABSTRACT: Several vulnerabilities were reported in Cisco ASA. REFERENCE LINKS: Cisco Security Advisory Secunia Advisory SA52989 SecurityTracker Alert ID: 1028415 CVE-2013-1149 CVE-2013-1150 CVE-2013-1151 CVE-2013-1152

182

T-589: Citrix XenApp and Citrix Presentation Server Bug | Department of  

Broader source: Energy.gov (indexed) [DOE]

9: Citrix XenApp and Citrix Presentation Server Bug 9: Citrix XenApp and Citrix Presentation Server Bug T-589: Citrix XenApp and Citrix Presentation Server Bug March 28, 2011 - 3:05pm Addthis PROBLEM: Citrix XenApp and Citrix Presentation Server Bug in ActiveSync Lets Remote Users Execute Arbitrary Code. PLATFORM: Citrix XenApp Presentation versions 4.5, 5 ABSTRACT: A vulnerability was reported in Citrix XenApp (Presentation Server). A remote user can execute arbitrary code on the target system. -------------------------------------------------------------------------------- LINKS: DOE-CIRC BULLETIN: http://www.doecirc.energy.gov/bulletins/t-589.shtml OTHER LINKS: Citrix Document: CTX128366 SecurityTracker Alert ID: 1025254 Citrix Support Technical Support Downloads --------------------------------------------------------------------------------

183

U-257: Adobe ColdFusion Unspecified Bug Lets Remote Users Deny Service |  

Broader source: Energy.gov (indexed) [DOE]

7: Adobe ColdFusion Unspecified Bug Lets Remote Users Deny 7: Adobe ColdFusion Unspecified Bug Lets Remote Users Deny Service U-257: Adobe ColdFusion Unspecified Bug Lets Remote Users Deny Service September 12, 2012 - 6:00am Addthis PROBLEM: Adobe ColdFusion Unspecified Bug Lets Remote Users Deny Service PLATFORM: ColdFusion 10, 9.0.2, 9.0.1, 9.0, 8.0.1, and 8.0 for Windows, Macintosh and UNIX ABSTRACT: Adobe ColdFusion is prone to a remote denial-of-service vulnerability. reference LINKS: Adobe Security bulletins and advisories Adobe Vulnerability identifier: APSB12-21 SecurityTracker Alert ID: 1027516 Bugtraq ID: 55499 CVE-2012-2048 IMPACT ASSESSMENT: Medium Discussion: Adobe has released a security hotfix for ColdFusion 10 and earlier versions for Windows, Macintosh and UNIX. This update resolves a vulnerability which

184

V-046: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code |  

Broader source: Energy.gov (indexed) [DOE]

46: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary 46: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code V-046: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code December 13, 2012 - 3:30am Addthis PROBLEM: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code PLATFORM: Version(s): 11.5.502.110 and prior for Windows/Mac; 11.2.202.251 and prior for Linux ABSTRACT: Several vulnerabilities were reported in Adobe Flash Player. REFERENCE LINKS: Adobe Vulnerability identifier: APSB12-27 SecurityTracker Alert ID: 1027854 Secunia Advisory SA51560 RHSA-2012:1569-1 CVE-2012-5676 CVE-2012-5677 CVE-2012-5678 IMPACT ASSESSMENT: High DISCUSSION: A buffer overflow can trigger code execution [CVE-2012-5676]. An integer overflow can trigger code execution [CVE-2012-5677]. A memory corruption flaw can trigger code execution [CVE-2012-5678].

185

V-071: Cisco ASA 1000V Cloud Firewall H.323 Inspection Bug Lets Remote  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

71: Cisco ASA 1000V Cloud Firewall H.323 Inspection Bug Lets 71: Cisco ASA 1000V Cloud Firewall H.323 Inspection Bug Lets Remote Users Deny Service V-071: Cisco ASA 1000V Cloud Firewall H.323 Inspection Bug Lets Remote Users Deny Service January 17, 2013 - 12:00am Addthis PROBLEM: Cisco ASA 1000V Cloud Firewall H.323 Inspection Bug Lets Remote Users Deny Service PLATFORM: The vulnerability is reported in versions 8.7.1 and 8.7.1.1. ABSTRACT: A vulnerability has been reported in Cisco ASA 1000V Cloud Firewall REFERENCE LINKS: Cisco Advisory ID: cisco-sa-20130116-asa1000v SecurityTracker Alert ID: 1028005 Secunia Advisory SA51897 CVE-2012-5419 IMPACT ASSESSMENT: Medium DISCUSSION: A vulnerability has been reported in Cisco ASA 1000V Cloud Firewall, which can be exploited by malicious people to cause a DoS (Denial of Service).

186

T-708:Pidgin Bugs Let Remote Users Deny Service and Potentially Execute  

Broader source: Energy.gov (indexed) [DOE]

T-708:Pidgin Bugs Let Remote Users Deny Service and Potentially T-708:Pidgin Bugs Let Remote Users Deny Service and Potentially Execute Arbitrary Code T-708:Pidgin Bugs Let Remote Users Deny Service and Potentially Execute Arbitrary Code September 1, 2011 - 12:00pm Addthis PROBLEM: gtkutils.c in Pidgin before 2.10.0 on Windows allows user-assisted remote attackers to execute arbitrary programs via a file: URL in a message. PLATFORM: Pidgin before 2.10.0 on Windows ABSTRACT: Pidgin bugs let remote users deny service and potentially execute arbitrary code. reference LINKS: CVE-2011-3185 CVE-2011-2943 CVE-2011-3184 SecurityTracker Alert ID: 1025961 Pidgin Security Advisories IMPACT ASSESSMENT: High Discussion: Several vulnerabilities were reported in Pidgin. A remote user can cause denial of service conditions. A remote user can cause arbitrary code to be

187

U-047: Siemens Automation License Manager Bugs Let Remote Users Deny  

Broader source: Energy.gov (indexed) [DOE]

7: Siemens Automation License Manager Bugs Let Remote Users 7: Siemens Automation License Manager Bugs Let Remote Users Deny Service or Execute Arbitrary Code U-047: Siemens Automation License Manager Bugs Let Remote Users Deny Service or Execute Arbitrary Code November 29, 2011 - 9:00am Addthis PROBLEM: Siemens Automation License Manager Bugs Let Remote Users Deny Service or Execute Arbitrary Code. PLATFORM: Siemens Automation License Manager 500.0.122.1 ABSTRACT: Several vulnerabilities were reported in Siemens Automation License Manager. reference LINKS: SecurityTracker Alert ID: 1026354 Bugtraq Siemens Advisory Services IMPACT ASSESSMENT: Medium Discussion: A remote user can execute arbitrary code on the target system. A remote user can cause denial of service conditions. A remote user can send specially crafted *_licensekey commands to trigger a

188

T-667: Red Hat Enterprise Linux kernel security and bug fix update |  

Broader source: Energy.gov (indexed) [DOE]

7: Red Hat Enterprise Linux kernel security and bug fix update 7: Red Hat Enterprise Linux kernel security and bug fix update T-667: Red Hat Enterprise Linux kernel security and bug fix update July 13, 2011 - 7:24am Addthis PROBLEM: Red Hat Enterprise Linux kernel security and bug fix update PLATFORM: Vulnerable Linux Kernels; Red Hat Enterprise Linux Desktop (v. 6), Red Hat Enterprise Linux HPC Node (v. 6), Red Hat Enterprise Linux Server (v. 6), Red Hat Enterprise Linux Server EUS (v. 6.1.z), Red Hat Enterprise Linux Workstation (v. 6) ABSTRACT: It was found that the receive hook in the ipip_init() function in the ipip module, and in the ipgre_init() function in the ip_gre module, could be called before network namespaces setup is complete. If packets were received at the time the ipip or ip_gre module was still being loaded into

189

U-075: Apache Struts Bug Lets Remote Users Overwrite Files and Execute  

Broader source: Energy.gov (indexed) [DOE]

075: Apache Struts Bug Lets Remote Users Overwrite Files and 075: Apache Struts Bug Lets Remote Users Overwrite Files and Execute Arbitrary Code U-075: Apache Struts Bug Lets Remote Users Overwrite Files and Execute Arbitrary Code January 5, 2012 - 8:15am Addthis PROBLEM: Apache Struts Bug Lets Remote Users Overwrite Files and Execute Arbitrary Code PLATFORM: Version(s): 2.1.0 - 2.3.1 ABSTRACT: A remote user can execute arbitrary Java code on the target system. reference LINKS: SecurityTracker Alert ID: 1026484 Secunia Advisory SA47393 Bugtraq ID: 51257 Apache Struts 2 Documentation S2-008 IMPACT ASSESSMENT: High Discussion: A vulnerability was reported in Apache Struts. A remote user can execute arbitrary Java code on the target system. A remote user can overwrite arbitrary files on the target system. A remote user can send specially

190

V-030: Adobe ColdFusion Unspecified Bug Lets Remote Users Deny Service |  

Broader source: Energy.gov (indexed) [DOE]

30: Adobe ColdFusion Unspecified Bug Lets Remote Users Deny 30: Adobe ColdFusion Unspecified Bug Lets Remote Users Deny Service V-030: Adobe ColdFusion Unspecified Bug Lets Remote Users Deny Service November 21, 2012 - 3:00am Addthis PROBLEM: Adobe ColdFusion Unspecified Bug Lets Remote Users Deny Service PLATFORM: ColdFusion 10 Update 1 and above for Windows ABSTRACT: Adobe ColdFusion Denial of Service Vulnerability REFERENCE LINKS: Adobe Vulnerability identifier: APSB12-25 SecurityTracker Alert ID: 1027787 Secunia Advisory SA51335 CVE-2012-5674 IMPACT ASSESSMENT: High DISCUSSION: A vulnerability was reported in Adobe ColdFusion. A remote user can cause denial of service conditions. A remote user can send specially crafted data to cause unspecified denial of service conditions on the target ColdFusion service on Windows Internet

191

U-045: Windows Win32k.sys Keyboard Layout Bug Lets Local Users Deny Service  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

5: Windows Win32k.sys Keyboard Layout Bug Lets Local Users Deny 5: Windows Win32k.sys Keyboard Layout Bug Lets Local Users Deny Service U-045: Windows Win32k.sys Keyboard Layout Bug Lets Local Users Deny Service November 25, 2011 - 9:00am Addthis PROBLEM: A vulnerability was reported in the Windows Kernel. A local user can cause denial of service conditions. PLATFORM: Windows Win32k.sys ABSTRACT: Windows Win32k.sys Keyboard Layout Bug Lets Local Users Deny reference LINKS: SecurityTracker Alert ID: 1026347 Secunia ID: SA46919 IMPACT ASSESSMENT: Low Discussion: A vulnerability has been discovered in Microsoft Windows, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability is caused due to an indexing error in the win32k.sys driver when loading a keyboard layout file. This can be exploited to access

192

V-091: Adobe Acrobat/Reader Bug Lets Remote Users Execute Arbitrary Code |  

Broader source: Energy.gov (indexed) [DOE]

1: Adobe Acrobat/Reader Bug Lets Remote Users Execute Arbitrary 1: Adobe Acrobat/Reader Bug Lets Remote Users Execute Arbitrary Code V-091: Adobe Acrobat/Reader Bug Lets Remote Users Execute Arbitrary Code February 14, 2013 - 12:22am Addthis PROBLEM: Adobe Acrobat/Reader Bug Lets Remote Users Execute Arbitrary Code PLATFORM: Adobe Reader XI (11.0.01 and earlier) for Windows and Macintosh Adobe Reader X (10.1.5 and earlier) for Windows and Macintosh Adobe Reader 9.5.3 and earlier 9.x versions for Windows and Macintosh Adobe Acrobat XI (11.0.01 and earlier) for Windows and Macintosh Adobe Acrobat X (10.1.5 and earlier) for Windows and Macintosh Adobe Acrobat 9.5.3 and earlier 9.x versions for Windows and Macintosh ABSTRACT: Adobe has identified critical vulnerabilities in Adobe Reader and Acrobat REFERENCE LINKS: Adobe Reader and Acrobat Vulnerability Report

193

V-113: Apple Safari Bugs Let Remote Users Execute Arbitrary Code |  

Broader source: Energy.gov (indexed) [DOE]

3: Apple Safari Bugs Let Remote Users Execute Arbitrary Code 3: Apple Safari Bugs Let Remote Users Execute Arbitrary Code V-113: Apple Safari Bugs Let Remote Users Execute Arbitrary Code March 18, 2013 - 1:53am Addthis PROBLEM: Apple Safari Bugs Let Remote Users Execute Arbitrary Code PLATFORM: Version(s): prior to 6.0.3 ABSTRACT: Two vulnerabilities were reported in Apple Safari. REFERENCE LINKS: Apple security update, Article: HT1222 SecurityTracker Alert ID: 1028292 CVE-2013-0960 CVE-2013-0961 IMPACT ASSESSMENT: Medium DISCUSSION: A remote user can create specially crafted HTML that, when loaded by the target user, will execute arbitrary code on the target system. The code will run with the privileges of the target user. IMPACT: A remote user can create HTML that, when loaded by the target user, will execute arbitrary code on the target user's system.

194

T-563: Red Hat Directory Server Bugs Let Local Users Gain Elevated  

Broader source: Energy.gov (indexed) [DOE]

3: Red Hat Directory Server Bugs Let Local Users Gain Elevated 3: Red Hat Directory Server Bugs Let Local Users Gain Elevated Privileges and Remote and Local Users Deny Service T-563: Red Hat Directory Server Bugs Let Local Users Gain Elevated Privileges and Remote and Local Users Deny Service February 23, 2011 - 7:00am Addthis PROBLEM: Red Hat Directory Server Bugs Let Local Users Gain Elevated Privileges and Remote and Local Users Deny Service. PLATFORM: Red Hat Directory Server v8 EL4, Red Hat Directory Server v8 EL5 ABSTRACT: Several vulnerabilities were reported in Red Hat Directory Server. A local user can obtain elevated privileges on the target system. A remote user can cause denial of service conditions. A local user can cause denial of service conditions. A remote user can send multiple simple paged search requests to cause the

195

U-053: Linux kexec Bugs Let Local and Remote Users Obtain Potentially  

Broader source: Energy.gov (indexed) [DOE]

53: Linux kexec Bugs Let Local and Remote Users Obtain 53: Linux kexec Bugs Let Local and Remote Users Obtain Potentially Sensitive Information U-053: Linux kexec Bugs Let Local and Remote Users Obtain Potentially Sensitive Information December 7, 2011 - 7:30am Addthis PROBLEM: Linux kexec Bugs Let Local and Remote Users Obtain Potentially Sensitive Information . PLATFORM: Red Hat Enterprise Linux Desktop (v. 6) Red Hat Enterprise Linux HPC Node (v. 6) Red Hat Enterprise Linux Server (v. 6) Red Hat Enterprise Linux Workstation (v. 6) ABSTRACT: Several vulnerabilities were reported in Linux kexec. A remote or local user can obtain potentially sensitive information. reference LINKS: Red Hat Security Advisory: RHSA-2011:1532-3 SecurityTracker Alert ID: 1026375 IMPACT ASSESSMENT: Medium Discussion: Kdump uses the SSH "StrictHostKeyChecking=no" option when dumping to SSH

196

U-208: HP Operations Agent Bugs Let Remote Users Execute Arbitrary Code |  

Broader source: Energy.gov (indexed) [DOE]

208: HP Operations Agent Bugs Let Remote Users Execute Arbitrary 208: HP Operations Agent Bugs Let Remote Users Execute Arbitrary Code U-208: HP Operations Agent Bugs Let Remote Users Execute Arbitrary Code July 10, 2012 - 7:00am Addthis PROBLEM: HP Operations Agent Bugs Let Remote Users Execute Arbitrary Code PLATFORM: HP Operations Agent for AIX, HP-UX, Linux, Solaris, and Windows prior to v11.03.12. ABSTRACT: Two vulnerabilities were reported in HP Operations Agent. A remote user can execute arbitrary code on the target system reference LINKS: The Vendor's Advisory SecurityTracker Alert ID: 1027225 CVE-2012-2019 CVE-2012-2020 IMPACT ASSESSMENT: High Discussion: Potential security vulnerabilities have been identified with HP Operations Agent for AIX, HP-UX, Linux, Solaris, and Windows. The vulnerabilities could be remotely exploited resulting in the execution of arbitrary code.

197

U-072:Apache Tomcat Hash Table Collision Bug Lets Remote Users Deny Service  

Broader source: Energy.gov (indexed) [DOE]

72:Apache Tomcat Hash Table Collision Bug Lets Remote Users Deny 72:Apache Tomcat Hash Table Collision Bug Lets Remote Users Deny Service U-072:Apache Tomcat Hash Table Collision Bug Lets Remote Users Deny Service December 30, 2011 - 9:15am Addthis PROBLEM: Apache Tomcat Hash Table Collision Bug Lets Remote Users Deny Service PLATFORM: apache Tomcat 5.5.34, 6.0.34, 7.0.22; and prior versions aBSTRACT: A remote user can cause performance to degrade on the target server. reference LINKS: Apache Tomcat Security Alert SecurityTracker Alert ID: 1026477 nruns Advisory SA-2011.004 Secunia Advisory SA47411 CVE-2011-4084 IMPACT ASSESSMENT: Medium Discussion: A vulnerability was reported in Apache Tomcat. A remote user can cause denial of service conditions. A remote user can send specially crafted POST request values to trigger hash collisions and cause significant performance

198

T-538: HP OpenView Storage Data Protector Bug Lets Remote Users Execute  

Broader source: Energy.gov (indexed) [DOE]

T-538: HP OpenView Storage Data Protector Bug Lets Remote Users T-538: HP OpenView Storage Data Protector Bug Lets Remote Users Execute Arbitrary Code T-538: HP OpenView Storage Data Protector Bug Lets Remote Users Execute Arbitrary Code January 20, 2011 - 6:39am Addthis PROBLEM: HP OpenView Storage Data Protector Bug Lets Remote Users Execute Arbitrary Code. PLATFORM: HP OpenView Storage Data Protector v6.11 ABSTRACT: A vulnerability was reported in HP OpenView Storage Data Protector. A remote user can execute arbitrary code on the target system. reference LINKS: HP Security Bulletin SecurityTracker Alert ID: 1024983 CVE-2011-0273 IMPACT ASSESSMENT: High Discussion: A potential security vulnerability has been identified with HP OpenView Storage Data Protector. The vulnerability could be remotely exploited to execute arbitrary code.

199

U-279: Cisco Firewall Services Module Bugs Let Remote Users Execute  

Broader source: Energy.gov (indexed) [DOE]

9: Cisco Firewall Services Module Bugs Let Remote Users Execute 9: Cisco Firewall Services Module Bugs Let Remote Users Execute Arbitrary Code and Deny Service U-279: Cisco Firewall Services Module Bugs Let Remote Users Execute Arbitrary Code and Deny Service October 11, 2012 - 6:00am Addthis PROBLEM: Cisco Firewall Services Module Bugs Let Remote Users Execute Arbitrary Code and Deny Service PLATFORM: Version(s): prior to 4.1(9) ABSTRACT: Several vulnerabilities were reported in Cisco Firewall Services Module. reference LINKS: Cisco Advisory ID: cisco-sa-20121010-fwsm SecurityTracker Alert ID: 1027640 CVE-2012-4661 CVE-2012-4662 CVE-2012-4663 IMPACT ASSESSMENT: High Discussion: A remote user can send specially crafted DCERPC data through the target device to trigger a stack overflow in the DCERPC inspection engine and execute arbitrary code on the target device or cause the target device to

200

U-142: HP Onboard Administrator Bugs Let Remote Users Gain Access, Obtain  

Broader source: Energy.gov (indexed) [DOE]

42: HP Onboard Administrator Bugs Let Remote Users Gain Access, 42: HP Onboard Administrator Bugs Let Remote Users Gain Access, Obtain Information, and Conduct URL Redirection Attacks U-142: HP Onboard Administrator Bugs Let Remote Users Gain Access, Obtain Information, and Conduct URL Redirection Attacks April 6, 2012 - 7:00am Addthis PROBLEM: HP Onboard Administrator Bugs Let Remote Users Gain Access, Obtain Information, and Conduct URL Redirection Attacks PLATFORM: HP Onboard Administrator (OA) up to and including v3.32 ABSTRACT: A remote user can obtain potentially sensitive information. reference LINKS: HP Support Document ID: c03263573 SecurityTracker Alert ID: 1026889 CVE-2012-0128, CVE-2012-0129, CVE-2012-0130 IMPACT ASSESSMENT: High Discussion: Several vulnerabilities were reported in HP Onboard Administrator. A remote

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


201

V-189: Oracle VirtualBox 'tracepath' Bug Lets Local Guest Users Deny  

Broader source: Energy.gov (indexed) [DOE]

9: Oracle VirtualBox 'tracepath' Bug Lets Local Guest Users 9: Oracle VirtualBox 'tracepath' Bug Lets Local Guest Users Deny Service on the Target Host V-189: Oracle VirtualBox 'tracepath' Bug Lets Local Guest Users Deny Service on the Target Host July 1, 2013 - 12:48am Addthis PROBLEM: Oracle VirtualBox 'tracepath' Bug Lets Local Guest Users Deny Service on the Target Host PLATFORM: VirtualBox 4.2.12 ABSTRACT: A vulnerability was reported in Oracle VirtualBox. REFERENCE LINKS: VirtualBox ticket: 11863 SecurityTracker Alert ID: 1028712 IMPACT ASSESSMENT: Medium DISCUSSION: A local user on the guest operating system can issue a 'tracepath' command to cause the network on the target host system to become unavailable. IMPACT: A local user on a guest operating system can cause denial of service conditions on the target host system.

202

U-137: HP Performance Manager Unspecified Bug Lets Remote Users Execute  

Broader source: Energy.gov (indexed) [DOE]

7: HP Performance Manager Unspecified Bug Lets Remote Users 7: HP Performance Manager Unspecified Bug Lets Remote Users Execute Arbitrary Codes U-137: HP Performance Manager Unspecified Bug Lets Remote Users Execute Arbitrary Codes March 30, 2012 - 9:15am Addthis PROBLEM: HP Performance Manager Unspecified Bug Lets Remote Users Execute Arbitrary Codes PLATFORM: HP-UX B.11.31 HP-UX B.11.23 ABSTRACT: A remote user can execute arbitrary code on the target system. REFERENCE LINKS: HP Support Document ID: c03255321 SecurityTracker Alert ID: 1026869 CVE-2012-0127 IMPACT ASSESSMENT: High Discussion: A potential security vulnerability has been identified with HP Performance Manager running on HP-UX, Linux, Solaris, and Windows. The vulnerability could be exploited remotely to execute arbitrary code and to create a Denial of Service (DoS).

203

V-063: Adobe ColdFusion Bugs Let Remote Users Gain Access and Obtain  

Broader source: Energy.gov (indexed) [DOE]

3: Adobe ColdFusion Bugs Let Remote Users Gain Access and 3: Adobe ColdFusion Bugs Let Remote Users Gain Access and Obtain Information V-063: Adobe ColdFusion Bugs Let Remote Users Gain Access and Obtain Information January 7, 2013 - 1:00am Addthis PROBLEM: Adobe ColdFusion Bugs Let Remote Users Gain Access and Obtain Information PLATFORM: ColdFusion 10, 9.0.2, 9.0.1 and 9.0 for Windows, Macintosh and UNIX ABSTRACT: Adobe has identified three vulnerabilities affecting ColdFusion for Windows, Macintosh and UNIX REFERENCE LINKS: Adobe Security Bulletin APSA13-01 SecurityTracker Alert ID: 1027938 CVE-2013-0625 CVE-2013-0629 CVE-2013-0631 IMPACT ASSESSMENT: High DISCUSSION: A remote user can bypass authentication and take control of the target system [CVE-2013-0625]. Systems with password protection disabled or with no password set are affected.

204

U-142: HP Onboard Administrator Bugs Let Remote Users Gain Access, Obtain  

Broader source: Energy.gov (indexed) [DOE]

2: HP Onboard Administrator Bugs Let Remote Users Gain Access, 2: HP Onboard Administrator Bugs Let Remote Users Gain Access, Obtain Information, and Conduct URL Redirection Attacks U-142: HP Onboard Administrator Bugs Let Remote Users Gain Access, Obtain Information, and Conduct URL Redirection Attacks April 6, 2012 - 7:00am Addthis PROBLEM: HP Onboard Administrator Bugs Let Remote Users Gain Access, Obtain Information, and Conduct URL Redirection Attacks PLATFORM: HP Onboard Administrator (OA) up to and including v3.32 ABSTRACT: A remote user can obtain potentially sensitive information. reference LINKS: HP Support Document ID: c03263573 SecurityTracker Alert ID: 1026889 CVE-2012-0128, CVE-2012-0129, CVE-2012-0130 IMPACT ASSESSMENT: High Discussion: Several vulnerabilities were reported in HP Onboard Administrator. A remote

205

U-052: HP Protect Tools Device Access Manager Unspecified Bug Lets Remote  

Broader source: Energy.gov (indexed) [DOE]

2: HP Protect Tools Device Access Manager Unspecified Bug Lets 2: HP Protect Tools Device Access Manager Unspecified Bug Lets Remote Users Deny Service and Execute Arbitrary Code U-052: HP Protect Tools Device Access Manager Unspecified Bug Lets Remote Users Deny Service and Execute Arbitrary Code December 6, 2011 - 7:00am Addthis PROBLEM: HP Protect Tools Device Access Manager Unspecified Bug Lets Remote Users Deny Service and Execute Arbitrary Code. PLATFORM: HP Protect Tools Device Access Manager for Windows earlier than v.6.1.0.1 running on the following HP PCs: HP EliteBook 2560p Notebook PC HP EliteBook 2760p Notebook PC HP EliteBook 8460p Notebook PC HP EliteBook 8460w Mobile Workstation HP EliteBook 8560p Notebook PC HP EliteBook 8560w Mobile Workstation HP EliteBook 8760w Mobile Workstation HP ProBook 4230s Notebook PC

206

U-269: Cisco IOS Intrusion Prevention System DNS Processing Bug Lets Remote  

Broader source: Energy.gov (indexed) [DOE]

9: Cisco IOS Intrusion Prevention System DNS Processing Bug 9: Cisco IOS Intrusion Prevention System DNS Processing Bug Lets Remote Users Deny Service U-269: Cisco IOS Intrusion Prevention System DNS Processing Bug Lets Remote Users Deny Service September 27, 2012 - 4:07am Addthis PROBLEM: Cisco IOS Intrusion Prevention System DNS Processing Bug Lets Remote Users Deny Service PLATFORM: Devices configured with Cisco IOS IPS are affected ABSTRACT: A vulnerability was reported in Cisco IOS. reference LINKS: SecurityTracker Alert ID: 1027580 Cisco Security Advisory CVE-2012-3950 IMPACT ASSESSMENT: Medium Discussion: A vulnerability was reported in Cisco IOS. A remote user can cause denial of service conditions. A remote user can send specially crafted (but legitimate) DNS packets through the target device to cause the device to

207

U-203: HP Photosmart Bug Lets Remote Users Deny Service | Department of  

Broader source: Energy.gov (indexed) [DOE]

03: HP Photosmart Bug Lets Remote Users Deny Service 03: HP Photosmart Bug Lets Remote Users Deny Service U-203: HP Photosmart Bug Lets Remote Users Deny Service July 2, 2012 - 8:00am Addthis PROBLEM: HP Photosmart Bug Lets Remote Users Deny Service PLATFORM: HP Photosmart Wireless e-All-in-One Printer series - B110 HP Photosmart e-All-in-One Printer series - D110 HP Photosmart Plus e-All-in-One Printer series - B210 HP Photosmart eStation All-in-One Printer series - C510 HP Photosmart Ink Advantage e-All-in-One Printer series - K510 HP Photosmart Premium Fax e-All-in-One Printer series - C410 ABSTRACT: A vulnerability was reported in HP Photosmart. A remote user can cause denial of service conditions. Reference LINKS: The Vendor's Advisory SecurityTracker Alert ID: 1027213 CVE-2012-2017 IMPACT ASSESSMENT: High Discussion:

208

U-231: Cisco ASA SIP and WebVPN Bugs Let Remote Users Deny Service |  

Broader source: Energy.gov (indexed) [DOE]

31: Cisco ASA SIP and WebVPN Bugs Let Remote Users Deny Service 31: Cisco ASA SIP and WebVPN Bugs Let Remote Users Deny Service U-231: Cisco ASA SIP and WebVPN Bugs Let Remote Users Deny Service August 9, 2012 - 7:00am Addthis PROBLEM: Cisco ASA SIP and WebVPN Bugs Let Remote Users Deny Service PLATFORM: Version(s): ASA 5500 Series; 8.2 - 8.4 ABSTRACT: Two vulnerabilities were reported in Cisco ASA. A remote or remote authenticated user can cause denial of service conditions. reference LINKS: Release Notes for the Cisco ASA 5500 Series, 8.4(x) SecurityTracker Alert ID: 1027355 CVE-2012-2472 CVE-2012-2474 IMPACT ASSESSMENT: Medium Discussion: Two vulnerabilities were reported in Cisco ASA. 1. On systems with SIP inspection enabled, a remote user can send specially crafted SIP traffic to cause the target device to create many identical

209

U-241: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code and  

Broader source: Energy.gov (indexed) [DOE]

41: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary 41: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code and Obtain Information U-241: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code and Obtain Information August 22, 2012 - 7:00am Addthis PROBLEM: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code and Obtain Information PLATFORM: Adobe Flash Player 11.3.300.271 and earlier versions for Windows, Macintosh and Linux operating systems Adobe Flash Player 11.1.115.11 and earlier versions for Android 4.x Adobe Flash Player 11.1.111.10 and earlier versions for Android 3.x and 2.x Adobe AIR 3.3.0.3670 and earlier versions for Windows and Macintosh Adobe AIR 3.3.0.3690 SDK (includes AIR for iOS) and earlier versions Adobe AIR 3.3.0.3650 and earlier versions for Android ABSTRACT:

210

T-712: Red Hat Enterprise MRG Grid 2.0 security, bug fix and enhancement  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

712: Red Hat Enterprise MRG Grid 2.0 security, bug fix and 712: Red Hat Enterprise MRG Grid 2.0 security, bug fix and enhancement update T-712: Red Hat Enterprise MRG Grid 2.0 security, bug fix and enhancement update September 8, 2011 - 10:30am Addthis PROBLEM: A flaw was discovered in Cumin where it would log broker authentication credentials to the Cumin log file. A vulnerability was reported in Red Hat Enterprise MRG Grid. A local user can access the broker password. PLATFORM: Red Hat Enterprise MRG v2 for Red Hat Enterprise Linux (version 5) ABSTRACT: Red Hat Enterprise MRG Grid 2.0 security, bug fix and enhancement update. reference LINKS: RHSA-2011:1249-1 SecurityTracker Alert ID: 1026021 CVE-2011-2925 IMPACT ASSESSMENT: Medium Discussion: A local user exploiting this flaw could connect to the broker outside of Cumin's control and perform certain operations such as scheduling jobs,

211

T-707: Apache Tomcat AJP Protocol Processing Bug Lets Remote Users Bypass  

Broader source: Energy.gov (indexed) [DOE]

7: Apache Tomcat AJP Protocol Processing Bug Lets Remote Users 7: Apache Tomcat AJP Protocol Processing Bug Lets Remote Users Bypass Authentication or Obtain Information T-707: Apache Tomcat AJP Protocol Processing Bug Lets Remote Users Bypass Authentication or Obtain Information August 31, 2011 - 12:00pm Addthis PROBLEM: A vulnerability was reported in Apache Tomcat. A remote user can bypass authentication or obtain potentially sensitive information. PLATFORM: Apache Tomcat 5.5.0 to 5.5.33, 6.0.0 to 6.0.33, 7.0.0 to 7.0.20 ABSTRACT: Apache Tomcat AJP protocol processing bug lets remote users bypass authentication or obtain information. reference LINKS: SecurityTracker Alert ID: 1025993 CVE-2011-3190 (under review) Apache Tomcat Security Updates IMPACT ASSESSMENT: Medium Discussion: A vulnerability was reported in Apache Tomcat. A remote user can bypass

212

T-589: Citrix XenApp and Citrix Presentation Server Bug | Department of  

Broader source: Energy.gov (indexed) [DOE]

89: Citrix XenApp and Citrix Presentation Server Bug 89: Citrix XenApp and Citrix Presentation Server Bug T-589: Citrix XenApp and Citrix Presentation Server Bug March 28, 2011 - 3:05pm Addthis PROBLEM: Citrix XenApp and Citrix Presentation Server Bug in ActiveSync Lets Remote Users Execute Arbitrary Code. PLATFORM: Citrix XenApp Presentation versions 4.5, 5 ABSTRACT: A vulnerability was reported in Citrix XenApp (Presentation Server). A remote user can execute arbitrary code on the target system. -------------------------------------------------------------------------------- LINKS: DOE-CIRC BULLETIN: http://www.doecirc.energy.gov/bulletins/t-589.shtml OTHER LINKS: Citrix Document: CTX128366 SecurityTracker Alert ID: 1025254 Citrix Support Technical Support Downloads --------------------------------------------------------------------------------

213

U-055: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code |  

Broader source: Energy.gov (indexed) [DOE]

5: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary 5: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code U-055: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code December 8, 2011 - 8:30am Addthis PROBLEM: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code . PLATFORM: Adobe Flash Player 11.1.102.55 on Windows and Mac OS X and prior versions ABSTRACT: Two vulnerabilities exploited by the Intevydis vd_adobe_fp module in VulnDisco Step Ahead were reported in Adobe Flash Player. reference LINKS: Secunia Advisory: SA47161 SecurityTracker Alert ID: 1026392 CVE-2011-4693 CVE-2011-4694 IMPACT ASSESSMENT: High Discussion: A remote or local user can obtain potentially sensitive information. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can create a specially crafted SWF file that, when

214

U-025: HP OpenView Network Node Manager Bugs Let Remote Users Execute  

Broader source: Energy.gov (indexed) [DOE]

U-025: HP OpenView Network Node Manager Bugs Let Remote Users U-025: HP OpenView Network Node Manager Bugs Let Remote Users Execute Arbitrary Code U-025: HP OpenView Network Node Manager Bugs Let Remote Users Execute Arbitrary Code November 2, 2011 - 8:00am Addthis PROBLEM: HP OpenView Network Node Manager Bugs Let Remote Users Execute Arbitrary Code. PLATFORM: HP OpenView Network Node Manager (OV NNM) v7.51, v7.53 running on HP-UX, Linux, Solaris, and Windows ABSTRACT: A remote user can execute arbitrary code on the target system. reference LINKS: HP Support Center Document ID: c03054052 SecurityTracker Alert ID: 1026260 CVE-2011-1365 CVE-2011-1366 CVE-2011-1367 IMPACT ASSESSMENT: Medium Discussion: Several vulnerabilities were reported in HP OpenView Network Node Manager. A remote user can execute arbitrary code on the target system.

215

U-052: HP Protect Tools Device Access Manager Unspecified Bug Lets Remote  

Broader source: Energy.gov (indexed) [DOE]

2: HP Protect Tools Device Access Manager Unspecified Bug Lets 2: HP Protect Tools Device Access Manager Unspecified Bug Lets Remote Users Deny Service and Execute Arbitrary Code U-052: HP Protect Tools Device Access Manager Unspecified Bug Lets Remote Users Deny Service and Execute Arbitrary Code December 6, 2011 - 7:00am Addthis PROBLEM: HP Protect Tools Device Access Manager Unspecified Bug Lets Remote Users Deny Service and Execute Arbitrary Code. PLATFORM: HP Protect Tools Device Access Manager for Windows earlier than v.6.1.0.1 running on the following HP PCs: HP EliteBook 2560p Notebook PC HP EliteBook 2760p Notebook PC HP EliteBook 8460p Notebook PC HP EliteBook 8460w Mobile Workstation HP EliteBook 8560p Notebook PC HP EliteBook 8560w Mobile Workstation HP EliteBook 8760w Mobile Workstation HP ProBook 4230s Notebook PC

216

U-071:HP Database Archiving Software Bugs Let Remote Users Execute  

Broader source: Energy.gov (indexed) [DOE]

1:HP Database Archiving Software Bugs Let Remote Users Execute 1:HP Database Archiving Software Bugs Let Remote Users Execute Arbitrary Code U-071:HP Database Archiving Software Bugs Let Remote Users Execute Arbitrary Code December 29, 2011 - 8:15am Addthis PROBLEM: HP Database Archiving Software Bugs Let Remote Users Execute Arbitrary Code PLATFORM: HP Database Archiving Software v6.31 ABSTRACT: A remote user can execute arbitrary code on the target system. reference LINKS: HP Database Document ID: c03128302 SecurityTracker Alert ID: 1026467 CVE-2011-4163 CVE-2011-4164 CVE-2011-4165 IMPACT ASSESSMENT: High Discussion: Several vulnerabilities were reported in HP Database Archiving Software. A remote user can execute arbitrary code on the target system. Impact: A remote user can execute arbitrary code on the target system. Solution:

217

V-015: Apple iOS Bugs Let Remote Users Execute Arbitrary Code, Local Users  

Broader source: Energy.gov (indexed) [DOE]

5: Apple iOS Bugs Let Remote Users Execute Arbitrary Code, 5: Apple iOS Bugs Let Remote Users Execute Arbitrary Code, Local Users Bypass the Screen Lock, and Applications Obtain Kernel Address Information V-015: Apple iOS Bugs Let Remote Users Execute Arbitrary Code, Local Users Bypass the Screen Lock, and Applications Obtain Kernel Address Information November 2, 2012 - 6:00am Addthis PROBLEM: Apple iOS Bugs Let Remote Users Execute Arbitrary Code, Local Users Bypass the Screen Lock, and Applications Obtain Kernel Address Information PLATFORM: Apple iOS prior to 6.0.1 ABSTRACT: Three vulnerabilities were reported in Apple iOS. REFERENCE LINKS: Apple Article: HT5567 SecurityTracker Alert ID: 1027716 Bugtraq ID: 56363 CVE-2012-3748 CVE-2012-3749 CVE-2012-3750 IMPACT ASSESSMENT: High DISCUSSION: A remote user can create specially crafted HTML that, when loaded by the

218

U-061: RSA Adaptive Authentication Bugs Let Remote Users Bypass Certain  

Broader source: Energy.gov (indexed) [DOE]

1: RSA Adaptive Authentication Bugs Let Remote Users Bypass 1: RSA Adaptive Authentication Bugs Let Remote Users Bypass Certain Security Controls U-061: RSA Adaptive Authentication Bugs Let Remote Users Bypass Certain Security Controls December 14, 2011 - 8:17am Addthis PROBLEM: RSA Adaptive Authentication Bugs Let Remote Users Bypass Certain Security Controls. PLATFORM: 6.0.2.1 SP1 Patch 2 and SP1 Patch 3 6.0.2.1 SP2 and SP2 Patch 1 6.0.2.1 SP3 ABSTRACT: A remote user may be able to bypass certain security controls. reference LINKS: SecurityTracker Alert ID: 1026420 Security Focus: ESA-2011-036 IMPACT ASSESSMENT: Medium Discussion: Two vulnerabilities were reported in RSA Adaptive Authentication (On-Premise). A remote user may be able to bypass certain security controls. A remote user can send specially crafted data elements to affect the Device

219

U-118: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code and  

Broader source: Energy.gov (indexed) [DOE]

18: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary 18: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code and Obtain Information U-118: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code and Obtain Information March 6, 2012 - 7:00am Addthis PROBLEM: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code and Obtain Information PLATFORM: Adobe Flash Player 10.x, Adobe Flash Player 11.x ABSTRACT: Two vulnerabilities were reported in Adobe Flash Player. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can obtain potentially information. reference LINKS: Secunia Advisory SA48281 CVE-2012-0769 IMPACT ASSESSMENT: High Discussion: A remote user can create specially crafted content that, when loaded by the target user, will trigger a memory corruption error in Matrix3D and execute

220

U-279: Cisco Firewall Services Module Bugs Let Remote Users Execute...  

Office of Energy Efficiency and Renewable Energy (EERE) Indexed Site

Users Deny Service and Remote Authenticated Users Modify the Configuration and Execute Arbitrary Code V-071: Cisco ASA 1000V Cloud Firewall H.323 Inspection Bug Lets Remote Users...

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


221

V-149: Microsoft Internet Explorer Object Access Bug Lets Remote Users  

Broader source: Energy.gov (indexed) [DOE]

9: Microsoft Internet Explorer Object Access Bug Lets Remote 9: Microsoft Internet Explorer Object Access Bug Lets Remote Users Execute Arbitrary Code V-149: Microsoft Internet Explorer Object Access Bug Lets Remote Users Execute Arbitrary Code May 6, 2013 - 12:07am Addthis PROBLEM: Microsoft Internet Explorer Object Access Bug Lets Remote Users Execute Arbitrary Code PLATFORM: Internet Explorer 8 ABSTRACT: A vulnerability was reported in Microsoft Internet Explorer. REFERENCE LINKS: SecurityTracker Alert ID: 1028514 Microsoft Security Advisory (2847140) CVE-2013-1347 IMPACT ASSESSMENT: Medium DISCUSSION: A remote user can create specially crafted HTML that, when loaded by the target user, will access and object that has been deleted or not properly allocated and execute arbitrary code on the target system. The code will run with the privileges of the target user.

222

U-269: Cisco IOS Intrusion Prevention System DNS Processing Bug Lets Remote  

Broader source: Energy.gov (indexed) [DOE]

9: Cisco IOS Intrusion Prevention System DNS Processing Bug 9: Cisco IOS Intrusion Prevention System DNS Processing Bug Lets Remote Users Deny Service U-269: Cisco IOS Intrusion Prevention System DNS Processing Bug Lets Remote Users Deny Service September 27, 2012 - 4:07am Addthis PROBLEM: Cisco IOS Intrusion Prevention System DNS Processing Bug Lets Remote Users Deny Service PLATFORM: Devices configured with Cisco IOS IPS are affected ABSTRACT: A vulnerability was reported in Cisco IOS. reference LINKS: SecurityTracker Alert ID: 1027580 Cisco Security Advisory CVE-2012-3950 IMPACT ASSESSMENT: Medium Discussion: A vulnerability was reported in Cisco IOS. A remote user can cause denial of service conditions. A remote user can send specially crafted (but legitimate) DNS packets through the target device to cause the device to

223

V-113: Apple Safari Bugs Let Remote Users Execute Arbitrary Code |  

Broader source: Energy.gov (indexed) [DOE]

3: Apple Safari Bugs Let Remote Users Execute Arbitrary Code 3: Apple Safari Bugs Let Remote Users Execute Arbitrary Code V-113: Apple Safari Bugs Let Remote Users Execute Arbitrary Code March 18, 2013 - 1:53am Addthis PROBLEM: Apple Safari Bugs Let Remote Users Execute Arbitrary Code PLATFORM: Version(s): prior to 6.0.3 ABSTRACT: Two vulnerabilities were reported in Apple Safari. REFERENCE LINKS: Apple security update, Article: HT1222 SecurityTracker Alert ID: 1028292 CVE-2013-0960 CVE-2013-0961 IMPACT ASSESSMENT: Medium DISCUSSION: A remote user can create specially crafted HTML that, when loaded by the target user, will execute arbitrary code on the target system. The code will run with the privileges of the target user. IMPACT: A remote user can create HTML that, when loaded by the target user, will execute arbitrary code on the target user's system.

224

V-160: Wireshark Multiple Bugs Let Remote Users Deny Service | Department  

Broader source: Energy.gov (indexed) [DOE]

60: Wireshark Multiple Bugs Let Remote Users Deny Service 60: Wireshark Multiple Bugs Let Remote Users Deny Service V-160: Wireshark Multiple Bugs Let Remote Users Deny Service May 21, 2013 - 12:09am Addthis PROBLEM: Wireshark Multiple Bugs Let Remote Users Deny Service PLATFORM: Versions 1.8.0 to 1.8.6 ABSTRACT: Multiple vulnerabilities have been reported in Wireshark REFERENCE LINKS: Wireshark Docid: wnpa-sec-2013-23 Secunia Advisory SA53425 SecurityTracker Alert ID: 1028582 CVE-2013-2486 CVE-2013-2487 IMPACT ASSESSMENT: Medium DISCUSSION: Multiple vulnerabilities have been reported in Wireshark, which can be exploited by malicious people to cause a DoS (Denial of Service). 1) An error in the RELOAD dissector (dissectors/packet-reload.c) can be exploited to trigger infinite loops and consume CPU resources via specially

225

U-005: Apache mod_proxy Pattern Matching Bug Lets Remote Users Access  

Broader source: Energy.gov (indexed) [DOE]

5: Apache mod_proxy Pattern Matching Bug Lets Remote Users 5: Apache mod_proxy Pattern Matching Bug Lets Remote Users Access Internal Servers U-005: Apache mod_proxy Pattern Matching Bug Lets Remote Users Access Internal Servers October 6, 2011 - 9:30am Addthis PROBLEM: Apache mod_proxy Pattern Matching Bug Lets Remote Users Access Internal Servers. PLATFORM: Apache HTTP Server 1.3.x, 2.2.21 and prior versions ABSTRACT: A remote user can access internal servers. reference LINKS: The Apache HTTP Server Project SecurityTracker Alert ID: 1026144 CVE-2011-3368 IMPACT ASSESSMENT: High Discussion: A vulnerability was reported in Apache mod_proxy. A remote user can access internal servers. When this system is configured in reverse proxy mode and uses the RewriteRule or ProxyPassMatch directives with a pattern match, a remote user can send a specially crafted request to access internal

226

V-110: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code |  

Broader source: Energy.gov (indexed) [DOE]

0: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary 0: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code V-110: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code March 13, 2013 - 12:04am Addthis PROBLEM: Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code PLATFORM: Version(s): 1.6.602.171 and prior for Windows/Mac; other versions on other platforms ABSTRACT: Several vulnerabilities were reported in Adobe Flash Player. REFERENCE LINKS: Adobe Vulnerability identifier: APSB13-09 SecurityTracker Alert ID: 1028277 CVE-2013-0646 CVE-2013-0650 CVE-2013-1371 CVE-2013-1375 IMPACT ASSESSMENT: High DISCUSSION: A remote user can create specially crafted content that, when loaded by the target user, will execute arbitrary code on the target user's system. The code will run with the privileges of the target user.

227

U-012: BlackBerry Enterprise Server Collaboration Service Bug Lets Remote  

Broader source: Energy.gov (indexed) [DOE]

12: BlackBerry Enterprise Server Collaboration Service Bug Lets 12: BlackBerry Enterprise Server Collaboration Service Bug Lets Remote Users Impersonate Intra-organization Messages U-012: BlackBerry Enterprise Server Collaboration Service Bug Lets Remote Users Impersonate Intra-organization Messages October 17, 2011 - 9:45am Addthis PROBLEM: BlackBerry Enterprise Server Collaboration Service Bug Lets Remote Users Impersonate Intra-organization Messages. PLATFORM: Exchange and Domino 5.0.3 through 5.0.3 MR4 BlackBerry Client for use with Microsoft Office Communications Server 2007 R2 BlackBerry Client for use with Microsoft Lync Server 2010 ABSTRACT: A vulnerability was reported in BlackBerry Enterprise Server. A remote user can impersonate another messaging user within the same organization. reference LINKS: BlackBerry Security Advisory ID: KB28524

228

U-071:HP Database Archiving Software Bugs Let Remote Users Execute  

Broader source: Energy.gov (indexed) [DOE]

1:HP Database Archiving Software Bugs Let Remote Users Execute 1:HP Database Archiving Software Bugs Let Remote Users Execute Arbitrary Code U-071:HP Database Archiving Software Bugs Let Remote Users Execute Arbitrary Code December 29, 2011 - 8:15am Addthis PROBLEM: HP Database Archiving Software Bugs Let Remote Users Execute Arbitrary Code PLATFORM: HP Database Archiving Software v6.31 ABSTRACT: A remote user can execute arbitrary code on the target system. reference LINKS: HP Database Document ID: c03128302 SecurityTracker Alert ID: 1026467 CVE-2011-4163 CVE-2011-4164 CVE-2011-4165 IMPACT ASSESSMENT: High Discussion: Several vulnerabilities were reported in HP Database Archiving Software. A remote user can execute arbitrary code on the target system. Impact: A remote user can execute arbitrary code on the target system. Solution:

229

Presidential Permits | Department of Energy  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

Presidential Permits Presidential Permits Presidential Permits Below is a listing of all the presidential permits grouped by Canada and Mexico. View the Presidental Permits - Mexico View the Presidential Permits - Canada PRESIDENTIAL PERMITS - CANADA BACK TO TOP Docket No. Company Date Issued PP-6 Puget Sound Energy 04/28/81 PP-10 BPA 10/27/45 PP-10-1 BPA 11/30/65 PP-11-2 Fraser Papers 02/29/99 PP-11 Fraser Papers (Rescinded in PP-366) 11/18/10 PP-12 Maine 12/05/63 PP-13 NiMo Hogansburg 01/31/48 PP-18 Glacier Electric 12/12/52 PP-20 Eastern Maine 05/25/65 PP-22 BC Hydro 08/24/67 PP-22-1 BC Hydro 07/21/55 PP-22-2 BC Hydro 02/04/58 PP-22-3 BC Hydro 08/24/67 PP-22-4 BCTC 09/05/07 PP-23 Netley 07/20/55 PP-24 Long Sault 06/06/80 PP-25 NYPA 06/06/80 PP-28 Northern Electric 04/17/63

230

Solar Permitting & Inspection Webinar Series  

Office of Energy Efficiency and Renewable Energy (EERE)

ICLEI Local Governments for Sustainability U.S.A. and the Interstate Renewable Energy Council, Inc. (IREC) present a series of three webinars on Solar Permitting & Inspection. As part of the U...

231

Well Permits (District of Columbia)  

Broader source: Energy.gov [DOE]

Well permits are required for the installation of wells in private and public space. Wells are defined as any trest hole, shaft, or soil excavation created by any means including, but not limited...

232

Page not found | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

71 - 1880 of 28,905 results. 71 - 1880 of 28,905 results. Download EA-1388: Final Environmental Assessment Ground Water Compliance at the Shiprock Uranium Mill Tailings Site http://energy.gov/nepa/downloads/ea-1388-final-environmental-assessment Download Document Management & Control System (DMCS) http://energy.gov/cio/downloads/document-management-control-system-dmcs Article U-129: RSA enVision Bugs Permit Cross-Site Scripting, SQL Injection, and Directory Traversal Attacks Several vulnerabilities were reported in RSA enVision. A remote user can access the system. A remote authenticated user can conduct cross-site scripting attacks. A remote authenticated user can inject SQL commands. A remote authenticated user can view files on the target system. http://energy.gov/cio/articles/u-129-rsa-envision-bugs-permit-cross-site-scripting-sql-injection-and-directory

233

Page not found | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

71 - 28280 of 31,917 results. 71 - 28280 of 31,917 results. Article T-652: Mozilla Thunderbird Bugs Let Remote Users Obtain Cookies and Execute Arbitrary Code Multiple vulnerabilities were reported in Mozilla Thunderbird. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can obtain cookies from another domain in certain cases. http://energy.gov/cio/articles/t-652-mozilla-thunderbird-bugs-let-remote-users-obtain-cookies-and-execute-arbitrary Article T-546: Microsoft MHTML Input Validation Hole May Permit Cross-Site Scripting Attacks Arbitrary Code A vulnerability was reported in Microsoft MHTML. A remote user can conduct cross-site scripting attacks. http://energy.gov/cio/articles/t-546-microsoft-mhtml-input-validation-hole-may-permit-cross-site-scripting-attacks

234

Rack Permitting Efficient Handling of Tissue Cultures  

Science Journals Connector (OSTI)

...for Microbiology research-article Notes Rack Permitting Efficient Handling of Tissue...American Society for Microbiology NOTES Rack Permitting Efficient Handling of Tissue...of this communication is to describe a rack which permits the simultaneous handling...

Samuel Baron; Charles E. Buckler; Kenneth K. Takemoto

1966-11-01T23:59:59.000Z

235

Montana 310 Permit Database | Open Energy Information  

Open Energy Info (EERE)

Permit Database Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: Montana 310 Permit Database Abstract Provides access to Montana's 310 permit mapping...

236

Species composition and seasonal abundance of stink bugs in cotton in the Lower Texas Gulf Coast and the virulence of Euschistus species to cotton  

E-Print Network [OSTI]

with the drop cloth. ........................................................................................................... 26 2.2. Distribution of most common pest stink bugs by county, 2004. ........................ 31 2.3. Distribution... Page 2.1. Mean number of stink bug species collected per six row-feet, by date. Lower Texas Gulf Coast region, 2004.............................................................. 30 2.2. Mean number of stink bug species...

Hopkins, Bradley Wayne

2006-04-12T23:59:59.000Z

237

Hanfords Site-Wide Permit  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

* Across entire Hanford Site ("Facility") What the permit does NOT cover * Solely radioactive materials * Superfund sites How does the permit protect? * Requirements for...

238

Caltrans Transportation Permits Manual | Open Energy Information  

Open Energy Info (EERE)

Permits Manual Jump to: navigation, search OpenEI Reference LibraryAdd to library Legal Document- OtherOther: Caltrans Transportation Permits ManualLegal Abstract...

239

Standardized Permit Guidance | Open Energy Information  

Open Energy Info (EERE)

Permit Guidance Jump to: navigation, search OpenEI Reference LibraryAdd to library Legal Document- OtherOther: Standardized Permit GuidanceLegal Abstract Standardized...

240

Nevada Department of Transportation - Occupancy Permits | Open...  

Open Energy Info (EERE)

Occupancy Permits Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: Nevada Department of Transportation - Occupancy Permits Abstract This website gives...

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


241

Montana Produced Water General Permit - Example Authorization...  

Open Energy Info (EERE)

Water General Permit - Example Authorization Jump to: navigation, search OpenEI Reference LibraryAdd to library PermittingRegulatory Guidance - Supplemental Material: Montana...

242

Backup Generators (BUGS): The Next Smart Grid Peak Resource? | Open Energy  

Open Energy Info (EERE)

Backup Generators (BUGS): The Next Smart Grid Peak Resource? Backup Generators (BUGS): The Next Smart Grid Peak Resource? Jump to: navigation, search Tool Summary LAUNCH TOOL Name: Backup Generators (BUGS): The Next Smart Grid Peak Resource? Focus Area: Crosscutting Topics: Potentials & Scenarios Website: www.netl.doe.gov/smartgrid/referenceshelf/articles/10-18-2010_BUGS%20a Equivalent URI: cleanenergysolutions.org/content/backup-generators-bugs-next-smart-gri Language: English Policies: "Deployment Programs,Financial Incentives,Regulations" is not in the list of possible values (Deployment Programs, Financial Incentives, Regulations) for this property. DeploymentPrograms: Demonstration & Implementation Regulations: "Resource Integration Planning,Energy Standards" is not in the list of possible values (Agriculture Efficiency Requirements, Appliance & Equipment Standards and Required Labeling, Audit Requirements, Building Certification, Building Codes, Cost Recovery/Allocation, Emissions Mitigation Scheme, Emissions Standards, Enabling Legislation, Energy Standards, Feebates, Feed-in Tariffs, Fuel Efficiency Standards, Incandescent Phase-Out, Mandates/Targets, Net Metering & Interconnection, Resource Integration Planning, Safety Standards, Upgrade Requirements, Utility/Electricity Service Costs) for this property.

243

The Insect's Christmas Podcast Welcome to Bug Bytes, a bimonthly podcast from Texas A&M University's  

E-Print Network [OSTI]

Bug Bytes The Insect's Christmas Podcast **Music Up Welcome to Bug Bytes, a bimonthly podcast from didn't cooperate under the bright film lights. So when they died, Starevitch decided to make them. Starevitch has inspired contemporary greats like Tim Burton and Henry Selick of Nightmare before Christmas

Behmer, Spencer T.

244

Queen of the Sun Transcript Welcome to Bug Bytes, a bimonthly podcast from Texas A&M University's  

E-Print Network [OSTI]

Bug Bytes Queen of the Sun Transcript **Music Up Welcome to Bug Bytes, a bimonthly podcast from beekeepers of the world. Why? We recently screened a documentary called Queen of the Sun. The film explores in the face of almost certain impending disaster. We were prepared for this, as we thought Queen of the Sun

Behmer, Spencer T.

245

permitting | OpenEI Community  

Open Energy Info (EERE)

permitting permitting Home Alevine's picture Submitted by Alevine(5) Member 29 July, 2013 - 14:46 Texas Legal Review BHFS flora and fauna leasing Legal review permitting roadmap Texas The NREL roadmap team recently met with our legal team Brownstein Hyatt Farber and Schreck (www.bhfs.com) for a review of the Texas portion of the Geothermal Regulatory Roadmap (GRR). BHFS provided excellent suggestions to the Section 3 flowcharts for geothermal leases on Texas state lands. The Texas portion of the GRR now encompasses a flowchart for Texas state land leasing on Permanent School Fund Lands, Texas Parks and Wildlife Department Lands, Land Trade Lands, and Relinquishment Act Lands. Additionally, BHFS provided many other helpful tips for clarifying other issue Kyoung's picture Submitted by Kyoung(155)

246

GRR/Section 15-CO-a - Air Permit - Construction Permit | Open Energy  

Open Energy Info (EERE)

5-CO-a - Air Permit - Construction Permit 5-CO-a - Air Permit - Construction Permit < GRR Jump to: navigation, search GRR-logo.png GEOTHERMAL REGULATORY ROADMAP Roadmap Home Roadmap Help List of Sections Section 15-CO-a - Air Permit - Construction Permit 15COAAirPermitConstructionPermit.pdf Click to View Fullscreen Contact Agencies Colorado Department of Public Health and Environment Regulations & Policies 5 CCR 1001-5 Colorado Stationary Source Permitting and Air Pollution Control Emission Notice Requirements Triggers None specified Click "Edit With Form" above to add content 15COAAirPermitConstructionPermit.pdf 15COAAirPermitConstructionPermit.pdf 15COAAirPermitConstructionPermit.pdf Error creating thumbnail: Page number not in range. Flowchart Narrative The Colorado Department of Public Health and Environment (CDPHE) Air

247

U-112: PostgreSQL Bugs Let Remote Authenticated Users Gain Elevated  

Broader source: Energy.gov (indexed) [DOE]

2: PostgreSQL Bugs Let Remote Authenticated Users Gain Elevated 2: PostgreSQL Bugs Let Remote Authenticated Users Gain Elevated Privileges, Inject SQL Commands, and Spoof Certificates U-112: PostgreSQL Bugs Let Remote Authenticated Users Gain Elevated Privileges, Inject SQL Commands, and Spoof Certificates February 28, 2012 - 8:45am Addthis PROBLEM: A vulnerability was reported in PostgreSQL. PLATFORM: Version(s): prior to 8.3.18, 8.4.11, 9.0.7, 9.1.3 ABSTRACT: A remote authenticated user can gain elevated privileges. A remote authenticated user can inject SQL commands. A remote user can spoof connections in certain cases. reference LINKS: Vendor Advisory Security Tracker ID 1026744 CVE-2012-0866 IMPACT ASSESSMENT: Medium Discussion: For trigger functions marked SECURITY DEFINER, a remote authenticated user can execute a trigger function and gain elevated privileges CVE-2012-0866.

248

V-203: HP LoadRunner Multiple Bugs Let Remote Users Deny Service and  

Broader source: Energy.gov (indexed) [DOE]

3: HP LoadRunner Multiple Bugs Let Remote Users Deny Service 3: HP LoadRunner Multiple Bugs Let Remote Users Deny Service and Execute Arbitrary Code V-203: HP LoadRunner Multiple Bugs Let Remote Users Deny Service and Execute Arbitrary Code July 26, 2013 - 3:31am Addthis PROBLEM: A remote user can execute arbitrary code on the target system. A remote user can cause denial of service conditions. PLATFORM: HP LoadRunner prior to 11.52 ABSTRACT: Multiple vulnerabilities were reported in HP LoadRunner. REFERENCE LINKS: Security Tracker Alert ID: 1028833 CVE-2013-2368 CVE-2013-2369 CVE-2013-2370 CVE-2013-4797 CVE-2013-4798 CVE-2013-4799 CVE-2013-4800 CVE-2013-4801 IMPACT ASSESSMENT: Medium DISCUSSION: Potential security vulnerabilities have been identified with HP LoadRunner. The vulnerabilities could be remotely exploited to allow execution of code

249

U-092: Sudo Format String Bug Lets Local Users Gain Elevated Privileges |  

Broader source: Energy.gov (indexed) [DOE]

2: Sudo Format String Bug Lets Local Users Gain Elevated 2: Sudo Format String Bug Lets Local Users Gain Elevated Privileges U-092: Sudo Format String Bug Lets Local Users Gain Elevated Privileges January 31, 2012 - 5:45am Addthis PROBLEM: A vulnerability was reported in Sudo. A local user can obtain elevated privileges on the target system. PLATFORM: Linux (Any) Version(s): 1.8.0 - 1.8.3p1 ABSTRACT: A local user can supply a specially crafted command line argument to trigger a format string flaw and execute arbitrary commands on the target system with root privileges. reference LINKS: CVE-2012-0809 SecurityTracker Alert ID: 1026600 Vendor Site IMPACT ASSESSMENT: Medium Discussion: The vulnerability resides in the sudo_debug() function in 'src/sudo.c'. This can be exploited by local users, regardless of whether they are listed

250

V-128: Xen Event Channel Tracking Pointer Bug Local Privilege Escalation |  

Broader source: Energy.gov (indexed) [DOE]

8: Xen Event Channel Tracking Pointer Bug Local Privilege 8: Xen Event Channel Tracking Pointer Bug Local Privilege Escalation V-128: Xen Event Channel Tracking Pointer Bug Local Privilege Escalation April 8, 2013 - 12:28am Addthis PLATFORM: Version(s): 3.2 and later ABSTRACT: A vulnerability was reported in Xen. REFERENCE LINKS: SecurityTracker Alert ID: 1028388 CVE-2013-1920 IMPACT ASSESSMENT: Medium DISCUSSION: A local user with kernel level privileges on the guest operating system can exploit a memory pointer error when the hypervisor is under memory pressure and Xen Security Module (XSM) is enabled to execute arbitrary code on the target host system IMPACT: A local user on the guest operating system can obtain elevated privileges on the target host system. SOLUTION: The vendor has issued a fix (xsa47-4.1.patch, xsa47-4.2-unstable.patch).

251

U-110: Samba Bug Lets Remote Users Execute Arbitrary Code | Department of  

Broader source: Energy.gov (indexed) [DOE]

0: Samba Bug Lets Remote Users Execute Arbitrary Code 0: Samba Bug Lets Remote Users Execute Arbitrary Code U-110: Samba Bug Lets Remote Users Execute Arbitrary Code February 24, 2012 - 7:30am Addthis PROBLEM: A vulnerability was reported in Samba. PLATFORM: Version(s): prior to 3.4.0 ABSTRACT: A remote user can send specially crafted data to the smbd service to trigger a flaw in chain_reply() and construct_reply() and execute arbitrary code on the target system. reference LINKS: Vendor Advisory Security Tracker ID 1026739 CVE-2012-0870 IMPACT ASSESSMENT: Medium Discussion: A vulnerability was reported in Samba. A remote user can execute arbitrary code on the target system. A remote user can send specially crafted data to the smbd service to trigger a flaw in chain_reply() and construct_reply() and execute arbitrary code on the target system. The code will run with the

252

U-192 VMware Workstation/Player VM Remote Device Bug Lets Local or Remote  

Broader source: Energy.gov (indexed) [DOE]

VMware Workstation/Player VM Remote Device Bug Lets Local or VMware Workstation/Player VM Remote Device Bug Lets Local or Remote Users Deny Service U-192 VMware Workstation/Player VM Remote Device Bug Lets Local or Remote Users Deny Service June 15, 2012 - 7:00am Addthis PROBLEM: A vulnerability was reported in VMware Workstation/Player. PLATFORM: Version(s): Workstation 8.x, Player 4.x ABSTRACT: A local or remote user can cause denial of service conditions on the target virtual system. reference LINKS: Vendor Advisory Security Tracker ID 1027173 CVE-2012-3289 IMPACT ASSESSMENT: High Discussion: A user with the ability to modify communications data between a remote virtual device (e.g., CD-ROM, keyboard) located on a physically separate system and the target virtual machine can cause the target virtual machine to crash. Impact:

253

V-076: Cisco Wireless LAN Controller Bugs Let Remote Users Deny Service and  

Broader source: Energy.gov (indexed) [DOE]

6: Cisco Wireless LAN Controller Bugs Let Remote Users Deny 6: Cisco Wireless LAN Controller Bugs Let Remote Users Deny Service and Remote Authenticated Users Modify the Configuration and Execute Arbitrary Code V-076: Cisco Wireless LAN Controller Bugs Let Remote Users Deny Service and Remote Authenticated Users Modify the Configuration and Execute Arbitrary Code January 24, 2013 - 6:00am Addthis PROBLEM: Several vulnerabilities were reported in Cisco Wireless LAN Controller. PLATFORM: The vulnerabilities are reported in: Cisco 2000 Series WLC Cisco 2100 Series WLC Cisco 2500 Series WLC Cisco 4100 Series WLC Cisco 4400 Series WLC Cisco 5500 Series WLC Cisco 7500 Series WLC Cisco 8500 Series WLC Cisco 500 Series Wireless Express Mobility Controllers Cisco Wireless Services Module (Cisco WiSM) Cisco Wireless Services Module version 2 (Cisco WiSM version 2)

254

U-096: IBM AIX TCP Large Send Offload Bug Lets Remote Users Deny Service |  

Broader source: Energy.gov (indexed) [DOE]

6: IBM AIX TCP Large Send Offload Bug Lets Remote Users Deny 6: IBM AIX TCP Large Send Offload Bug Lets Remote Users Deny Service U-096: IBM AIX TCP Large Send Offload Bug Lets Remote Users Deny Service February 6, 2012 - 7:00am Addthis PROBLEM: Vulnerability in AIX TCP stack PLATFORM: Version(s): 5.3, 6.1, 7.1 ABSTRACT: A remote user can send a series of specially crafted TCP packets to trigger a kernel panic on the target system. reference LINKS: SecurityTracker Alert ID: 1026640 IBM Security Advisory CVE-2012-0194 IMPACT ASSESSMENT: Medium Discussion: AIX could allow a remote attacker to cause a denial of service, caused by an error when the TCP large send offload option is enabled on a network interface. By sending a specially-crafted sequence of packets, an attacker could exploit this vulnerability to cause a kernel panic.

255

V-077: Barracuda SSL VPN Bug Lets Remote Users Bypass Authentication |  

Broader source: Energy.gov (indexed) [DOE]

7: Barracuda SSL VPN Bug Lets Remote Users Bypass 7: Barracuda SSL VPN Bug Lets Remote Users Bypass Authentication V-077: Barracuda SSL VPN Bug Lets Remote Users Bypass Authentication January 25, 2013 - 6:00am Addthis PROBLEM: A vulnerability was reported in Barracuda SSL VPN. PLATFORM: The vulnerability has been verified to exist in Barracuda SSL VPN version 2.2.2.203 ABSTRACT: A remote user can gain administrative access to the target system. REFERENCE LINKS: SecurityTracker Alert ID: 1028039 Barracuda Networks Advisory IMPACT ASSESSMENT: High DISCUSSION: A remote user can set a specially crafted Java system property (via 'setSysProp.jsp') to bypass access restrictions and gain access to the API functionality. This can be exploited to download configuration files, download database dumps, shutdown the system, and set new administrative

256

T-654: Apple QuickTime Multiple Bugs Let Remote Users Execute Arbitrary |  

Broader source: Energy.gov (indexed) [DOE]

4: Apple QuickTime Multiple Bugs Let Remote Users Execute 4: Apple QuickTime Multiple Bugs Let Remote Users Execute Arbitrary T-654: Apple QuickTime Multiple Bugs Let Remote Users Execute Arbitrary June 24, 2011 - 4:39am Addthis PROBLEM: A vulnerability was reported in QuickTime. A remote user can cause arbitrary code to be executed on the target user's system. PLATFORM: Version(s): prior to QuickTime 7.6.8 ABSTRACT: A remote user can create a specially crafted file that, when loaded by the target user, will execute arbitrary code on the target system. The code will run with the privileges of the target user. reference LINKS: SecurityTracker Alert ID: 1025705 Apple Security Article: HT4339 Apple Security Article: HT4723 Apple Security Article: HT1222 CVE-2011-0213 Secunia Advisory: SA45054 IMPACT ASSESSMENT High Discussion:

257

V-202: Cisco Video Surveillance Manager Bugs Let Remote Users Obtain  

Broader source: Energy.gov (indexed) [DOE]

2: Cisco Video Surveillance Manager Bugs Let Remote Users 2: Cisco Video Surveillance Manager Bugs Let Remote Users Obtain Potentially Sensitive Information V-202: Cisco Video Surveillance Manager Bugs Let Remote Users Obtain Potentially Sensitive Information July 25, 2013 - 2:52am Addthis PROBLEM: A remote user can obtain potentially sensitive information and modify some configuration settings. A remote user can exploit this to create, modify, and remove camera feeds, archives, logs, and users. PLATFORM: Cisco Video Surveillance Manager 7.1, 7.5 ABSTRACT: Two vulnerabilities were reported in Cisco Video Surveillance Manager REFERENCE LINKS: Security Tracker Alert ID: 1028827 CVE-2013-3429 CVE-2013-3430 CVE-2013-3431 IMPACT ASSESSMENT: Medium DISCUSSION: The vulnerability is due to an access control error that occurred. The

258

T-647: PHP File Upload Bug May Let Remote Users Overwrite Files on the  

Broader source: Energy.gov (indexed) [DOE]

7: PHP File Upload Bug May Let Remote Users Overwrite Files on 7: PHP File Upload Bug May Let Remote Users Overwrite Files on the Target System T-647: PHP File Upload Bug May Let Remote Users Overwrite Files on the Target System June 15, 2011 - 3:45pm Addthis PROBLEM: A vulnerability was reported in PHP. A remote user may be able to overwrite files on the target system. PLATFORM: PHP prior to 5.3.7 ABSTRACT: PHP is prone to a security-bypass vulnerability.Successful exploits will allow an attacker to delete files from the root directory, which may aid in further attacks. PHP 5.3.6 is vulnerable; other versions may also be affected. reference LINKS: PHP Security Notice PHP CVE-2011-2202 SecurityTracker Alert ID: 1025659 Secunia Advisory: SA44874 CVE-2011-2202 IMPACT ASSESSMENT: High Discussion: The vulnerability lies in the 'SAPI_POST_HANDLER_FUNC()' function in

259

U-192: VMware Workstation/Player VM Remote Device Bug Lets Local or Remote  

Broader source: Energy.gov (indexed) [DOE]

92: VMware Workstation/Player VM Remote Device Bug Lets Local or 92: VMware Workstation/Player VM Remote Device Bug Lets Local or Remote Users Deny Service U-192: VMware Workstation/Player VM Remote Device Bug Lets Local or Remote Users Deny Service June 15, 2012 - 7:00am Addthis PROBLEM: A vulnerability was reported in VMware Workstation/Player. PLATFORM: Version(s): Workstation 8.x, Player 4.x aBSTRACT: A local or remote user can cause denial of service conditions on the target virtual system. reference LINKS: Vendor Advisory Security Tracker ID 1027173 CVE-2012-3289 IMPACT ASSESSMENT: High Discussion: A user with the ability to modify communications data between a remote virtual device (e.g., CD-ROM, keyboard) located on a physically separate system and the target virtual machine can cause the target virtual machine to crash.

260

T-652: Mozilla Thunderbird Bugs Let Remote Users Obtain Cookies and Execute  

Broader source: Energy.gov (indexed) [DOE]

2: Mozilla Thunderbird Bugs Let Remote Users Obtain Cookies and 2: Mozilla Thunderbird Bugs Let Remote Users Obtain Cookies and Execute Arbitrary Code T-652: Mozilla Thunderbird Bugs Let Remote Users Obtain Cookies and Execute Arbitrary Code June 22, 2011 - 2:55pm Addthis PROBLEM: Multiple vulnerabilities were reported in Mozilla Thunderbird. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can obtain cookies from another domain in certain cases. A remote user can create specially crafted HTML that, when loaded by the target user, will trigger a memory corruption error and execute arbitrary code on the target system [CVE-2011-2364, CVE-2011-2374, CVE-2011-2375, CVE-2011-2376]. The code will run with the privileges of the target user. PLATFORM: Mozilla Thunderbird prior to 3.1.11

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


261

V-183: Cisco TelePresence TC and TE Bugs Let Remote Users Deny Service and  

Broader source: Energy.gov (indexed) [DOE]

3: Cisco TelePresence TC and TE Bugs Let Remote Users Deny 3: Cisco TelePresence TC and TE Bugs Let Remote Users Deny Service and Remote Adjacent Authenticated Users Gain Root Shell Access V-183: Cisco TelePresence TC and TE Bugs Let Remote Users Deny Service and Remote Adjacent Authenticated Users Gain Root Shell Access June 21, 2013 - 6:00am Addthis PROBLEM: Three vulnerabilities were reported in Cisco TelePresence TC and TE PLATFORM: The following product models are affected by the vulnerabilities: Cisco TelePresence MX Series Cisco TelePresence System EX Series Cisco TelePresence Integrator C Series Cisco TelePresence Profiles Series running Cisco TelePresence Quick Set Series Cisco IP Video Phone E20 ABSTRACT: Cisco TelePresence TC and TE Software contain two vulnerabilities in the implementation of the Session Initiation Protocol (SIP) that could allow an

262

U-201: HP System Management Homepage Bugs Let Remote Users Deny Service |  

Broader source: Energy.gov (indexed) [DOE]

1: HP System Management Homepage Bugs Let Remote Users Deny 1: HP System Management Homepage Bugs Let Remote Users Deny Service U-201: HP System Management Homepage Bugs Let Remote Users Deny Service June 28, 2012 - 7:00am Addthis PROBLEM: A vulnerability was reported in HP System Management Homepage. PLATFORM: Version(s): prior to 7.1.1 ABSTRACT: The vulnerabilities could be exploited remotely resulting in unauthorized access, disclosure of information, data modification, Denial of Service (DoS), and execution of arbitrary code. Reference links: Original Advisory Security Tracker ID 1027209 CVE-2012-2012, CVE-2012-2013, CVE-2012-2014 CVE-2012-2015, CVE-2012-2016 IMPACT ASSESSMENT: Medium Discussion: A vulnerability was reported in HP System Management Homepage. A remote authenticated user can gain elevated privileges. A remote authenticated

263

U-088: Symantec pcAnywhere Bugs Let Remote Users Execute Arbitrary Code |  

Broader source: Energy.gov (indexed) [DOE]

8: Symantec pcAnywhere Bugs Let Remote Users Execute Arbitrary 8: Symantec pcAnywhere Bugs Let Remote Users Execute Arbitrary Code U-088: Symantec pcAnywhere Bugs Let Remote Users Execute Arbitrary Code January 25, 2012 - 6:00am Addthis PROBLEM: A remote user can execute arbitrary code on the target system. PLATFORM: Version(s): 12.5 SP3; pcAnywhere Solutions 7.1 GA, SP 1, and SP 2 ABSTRACT: Two vulnerabilities were reported in Symantec pcAnywhere. A remote user can execute arbitrary code on the target system. A local user can obtain elevated privileges on the target system. reference LINKS: Symantec Advisory Secunia Advisory SecurityTracker Alert ID:102576 IMPACT ASSESSMENT: Medium Discussion: A remote user can send specially crafted data to TCP port 5631 to trigger a but in the validation of authentication data and execute arbitrary code.

264

Permit Parking Emergency Blue Light  

E-Print Network [OSTI]

P P P P P P P P P P P P P P P P P PP P P P P P Permit Parking Food P P Emergency Blue Light underground Emergency Blue Light outdoors Wheelchair Wheelchair prior arrangements necessary Telephone Visitor 144 Albert Street 21 152 Albert Street 20 154 Albert Street 94 34 Barrie Street 91 68 Barrie Street 90

Abolmaesumi, Purang

265

General Air Permits (Louisiana) | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

General Air Permits (Louisiana) General Air Permits (Louisiana) General Air Permits (Louisiana) < Back Eligibility Agricultural Construction Industrial Investor-Owned Utility Municipal/Public Utility Rural Electric Cooperative Utility Program Info State Louisiana Program Type Environmental Regulations Provider Louisiana Department of Environmental Quality Any source, including a temporary source, which emits or has the potential to emit any air contaminant requires an air permit. Facilities with potential emissions less than 5 tons per year of any regulated air pollutant do not need a permit. The Louisiana Department of Environmental Quality issues Title V General Permits. The permit is developed based on equipment types versus facility types, the general permits are not limited in their use to a specific industry or category. Title V permits combine

266

V-115: Apple iOS Bugs Let Local Users Gain Elevated Privileges | Department  

Broader source: Energy.gov (indexed) [DOE]

5: Apple iOS Bugs Let Local Users Gain Elevated Privileges 5: Apple iOS Bugs Let Local Users Gain Elevated Privileges V-115: Apple iOS Bugs Let Local Users Gain Elevated Privileges March 20, 2013 - 12:08am Addthis PROBLEM: Apple iOS Bugs Let Local Users Gain Elevated Privileges PLATFORM: Version(s): prior to 6.1.3 ABSTRACT: Several vulnerabilities were reported in Apple iOS REFERENCE LINKS: Apple security Article: HT1222 SecurityTracker Alert ID: 1028314 CVE-2013-0977 CVE-2013-0978 CVE-2013-0979 CVE-2013-0981 IMPACT ASSESSMENT: High DISCUSSION: A local user can exploit a flaw in the handling of Mach-O executable files with overlapping segments to execute unsigned code on the target system [CVE-2013-0977]. A local user can exploit a flaw in the ARM prefetch abort handling to determine the address of structures in the kernel [CVE-2013-0978].

267

U-036: Apple iOS Bugs Let Remote Users Execute Arbitrary Code | Department  

Broader source: Energy.gov (indexed) [DOE]

6: Apple iOS Bugs Let Remote Users Execute Arbitrary Code 6: Apple iOS Bugs Let Remote Users Execute Arbitrary Code U-036: Apple iOS Bugs Let Remote Users Execute Arbitrary Code November 15, 2011 - 8:00am Addthis PROBLEM: Apple iOS Bugs Let Remote Users Execute Arbitrary Code and Obtain Information and Let Local Users Bypass Authentication. PLATFORM: iOS 3.0 through 5.0 for iPhone 3GS iPhone 4 and iPhone 4S iOS 3.1 through 5.0 for iPod touch (3rd generation) and later iOS 3.2 through 5.0 for iPad, iOS 4.3 through 5.0 for iPad 2 ABSTRACT: A remote user can create content that, when loaded by the target user, will execute arbitrary code on or obtain potentially sensitive information from the target user's system. reference LINKS: Apple Security Article: HT5052 Apple Product Security SecurityTracker Alert ID: 1026311 IMPACT ASSESSMENT:

268

U-211: EMC Celerra/VNX/VNXe Access Control Bug Lets Remote Authenticated  

Broader source: Energy.gov (indexed) [DOE]

11: EMC Celerra/VNX/VNXe Access Control Bug Lets Remote 11: EMC Celerra/VNX/VNXe Access Control Bug Lets Remote Authenticated Users Access Files/Directories U-211: EMC Celerra/VNX/VNXe Access Control Bug Lets Remote Authenticated Users Access Files/Directories July 12, 2012 - 7:00am Addthis PROBLEM: EMC Celerra/VNX/VNXe Access Control Bug Lets Remote Authenticated Users Access Files/Directories PLATFORM: EMC Celerra Network Server versions 6.0.36.4 through 6.0.60.2 EMC VNX versions 7.0.12.0 through 7.0.53.1 EMC VNXe 2.0 (including SP1, SP2, and SP3) EMC VNXe MR1 (including SP1, SP2, SP3, and SP3.1) EMC VNXe MR2 (including SP0.1) ABSTRACT: A vulnerability was reported in EMC Celerra/VNX/VNXe. A remote authenticated user can access files and directories on the target file system. reference LINKS: The Vendor's Advisory

269

V-031: IBM WebSphere DataPower XC10 Appliance Bugs Let Remote Authenticated  

Broader source: Energy.gov (indexed) [DOE]

1: IBM WebSphere DataPower XC10 Appliance Bugs Let Remote 1: IBM WebSphere DataPower XC10 Appliance Bugs Let Remote Authenticated Users Gain Elevated Privileges and Remote Users Deny Service V-031: IBM WebSphere DataPower XC10 Appliance Bugs Let Remote Authenticated Users Gain Elevated Privileges and Remote Users Deny Service November 22, 2012 - 3:00am Addthis PROBLEM: IBM WebSphere DataPower XC10 Appliance Bugs Let Remote Authenticated Users Gain Elevated Privileges and Remote Users Deny Service PLATFORM: Version(s): XC10 2.0.0.0 - 2.0.0.3, 2.1.0.0 - 2.1.0.2 ABSTRACT: Several vulnerabilities were reported in IBM WebSphere DataPower. REFERENCE LINKS: IBM Security Bulletin SecurityTracker Alert ID: 1027798 CVE-2012-5758 CVE-2012-5759 CVE-2012-5756 IMPACT ASSESSMENT: High DISCUSSION: Several vulnerabilities were reported in IBM WebSphere DataPower. A remote

270

V-141: HP ElitePad 900 Secure Boot Bug Lets Local Users Boot to Other  

Broader source: Energy.gov (indexed) [DOE]

1: HP ElitePad 900 Secure Boot Bug Lets Local Users Boot to 1: HP ElitePad 900 Secure Boot Bug Lets Local Users Boot to Other Operating Systems V-141: HP ElitePad 900 Secure Boot Bug Lets Local Users Boot to Other Operating Systems April 24, 2013 - 1:06am Addthis PROBLEM: HP ElitePad 900 Secure Boot Bug Lets Local Users Boot to Other Operating Systems PLATFORM: HP ElitePad 900 with BIOS version vF.00 ABSTRACT: A vulnerability was reported in HP ElitePad 900 REFERENCE LINKS: HP Document ID: c03727435 SecurityTracker Alert ID: 1028461 CVE-2012-5218 IMPACT ASSESSMENT: Medium DISCUSSION: The BIOS secure boot feature of the BIOS may not be enabled. A local user may be able to bypass the secure boot feature and boot an alternate operating system. IMPACT: A local user can may be able to boot to an alternate operating system. SOLUTION:

271

U-119: Blackberry PlayBook Unspecified WebKit Bug Lets Remote Users Execute  

Broader source: Energy.gov (indexed) [DOE]

9: Blackberry PlayBook Unspecified WebKit Bug Lets Remote Users 9: Blackberry PlayBook Unspecified WebKit Bug Lets Remote Users Execute Arbitrary Code U-119: Blackberry PlayBook Unspecified WebKit Bug Lets Remote Users Execute Arbitrary Code March 7, 2012 - 7:00am Addthis PROBLEM: Blackberry PlayBook Unspecified WebKit Bug Lets Remote Users Execute Arbitrary Code PLATFORM: BlackBerry 6, BlackBerry 7, BlackBerry 7.1, and BlackBerry PlayBook tablet software ABSTRACT: A remote user can create HTML that, when loaded by the target user, will execute arbitrary code on the target user's system. reference LINKS: SecurityTracker Alert ID: 1026769 BlackBerry Security Notice Article ID: KB30152 IMPACT ASSESSMENT: High Discussion: A vulnerability was reported in Blackberry PlayBook. A remote user can cause arbitrary code to be executed on the target user's system. A remote

272

V-141: HP ElitePad 900 Secure Boot Bug Lets Local Users Boot to Other  

Broader source: Energy.gov (indexed) [DOE]

1: HP ElitePad 900 Secure Boot Bug Lets Local Users Boot to 1: HP ElitePad 900 Secure Boot Bug Lets Local Users Boot to Other Operating Systems V-141: HP ElitePad 900 Secure Boot Bug Lets Local Users Boot to Other Operating Systems April 24, 2013 - 1:06am Addthis PROBLEM: HP ElitePad 900 Secure Boot Bug Lets Local Users Boot to Other Operating Systems PLATFORM: HP ElitePad 900 with BIOS version vF.00 ABSTRACT: A vulnerability was reported in HP ElitePad 900 REFERENCE LINKS: HP Document ID: c03727435 SecurityTracker Alert ID: 1028461 CVE-2012-5218 IMPACT ASSESSMENT: Medium DISCUSSION: The BIOS secure boot feature of the BIOS may not be enabled. A local user may be able to bypass the secure boot feature and boot an alternate operating system. IMPACT: A local user can may be able to boot to an alternate operating system. SOLUTION:

273

U-165: Apple iOS Bugs Let Remote Users Execute Arbitrary Code and Spoof  

Broader source: Energy.gov (indexed) [DOE]

5: Apple iOS Bugs Let Remote Users Execute Arbitrary Code and 5: Apple iOS Bugs Let Remote Users Execute Arbitrary Code and Spoof Address Bar URLs U-165: Apple iOS Bugs Let Remote Users Execute Arbitrary Code and Spoof Address Bar URLs May 9, 2012 - 7:00am Addthis PROBLEM: Apple iOS Bugs Let Remote Users Execute Arbitrary Code and Spoof Address Bar URLs PLATFORM: prior to 5.1.1; iPhone 3GS, iPhone 4, iPhone 4S, iPod touch (3rd generation) and later, iPad, iPad 2 ABSTRACT: Two vulnerabilities were reported in Apple iOS. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can spoof the address bar URL. reference LINKS: SecurityTracker Alert ID: 1027028 CVE-2012-0672 CVE-2012-0674 IMPACT ASSESSMENT: Medium Discussion: A remote user can create a specially crafted file that, when loaded by the

274

T-714:Wireshark OpenSafety and CSN.1 Dissector Bugs | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

714:Wireshark OpenSafety and CSN.1 Dissector Bugs 714:Wireshark OpenSafety and CSN.1 Dissector Bugs T-714:Wireshark OpenSafety and CSN.1 Dissector Bugs September 12, 2011 - 9:00am Addthis PROBLEM: Several vulnerabilities were reported in Wireshark. A remote user can cause denial of service conditions. PLATFORM: Version(s): 1.4.0 to 1.4.8, 1.6.0 to 1.6.1 ABSTRACT: Wireshark OpenSafety and CSN.1 Dissector Bugs Lets Remote Users Deny Service. reference LINKS: Wireshark 1.6.2 Release Notes Wireshark 1.4.9 Release Notes Docid: wnpa-sec-2011-12 Docid: wnpa-sec-2011-14 Docid: wnpa-sec-2011-15 Docid: wnpa-sec-2011-16 SecurityTracker Alert ID: 1026030 IMPACT ASSESSMENT: High Discussion: A remote user can cause arbitrary scripting code to be executed on the target user's system. A large loop in the OpenSafety dissector could cause a crash. A remote user

275

T-579: BlackBerry Device Software Bug in WebKit Lets Remote Users Execute  

Broader source: Energy.gov (indexed) [DOE]

9: BlackBerry Device Software Bug in WebKit Lets Remote Users 9: BlackBerry Device Software Bug in WebKit Lets Remote Users Execute Code T-579: BlackBerry Device Software Bug in WebKit Lets Remote Users Execute Code March 15, 2011 - 5:05pm Addthis PROBLEM: A vulnerability was reported in BlackBerry Device Software. A remote user can cause arbitrary code to be executed on the target user's system. PLATFORM: BlackBerry Device Software version 6.0 and later. ABSTRACT: BlackBerry Device Software Bug in WebKit Lets Remote Users Execute Code. reference LINKS: BlackBerry Advisory: KB26132 CVE-2011-1290 BlackBerry Security Note BlackBerry Device Storage IMPACT ASSESSMENT: Moderate Discussion: A vulnerability exists in the open source WebKit browser engine provided in BlackBerry Device Software version 6.0 and later. The issue could result in

276

U-085: OpenSSL DTLS Bug Lets Remote Users Deny Service | Department of  

Broader source: Energy.gov (indexed) [DOE]

5: OpenSSL DTLS Bug Lets Remote Users Deny Service 5: OpenSSL DTLS Bug Lets Remote Users Deny Service U-085: OpenSSL DTLS Bug Lets Remote Users Deny Service January 20, 2012 - 9:15am Addthis PROBLEM: OpenSSL DTLS Bug Lets Remote Users Deny Service PLATFORM: Only DTLS applications using OpenSSL 1.0.0f and 0.9.8s are affected. ABSTRACT: A flaw in the fix to CVE-2011-4108 can be exploited in a denial of service attack. REFERNCE LINKS: CVE-2012-0050 SecurityTracker Alert ID: 1026548 OpenSSL Security Advisory [18 Jan 2011] OpenSSL News IMPACT ASSESSMENT: Medium Discussion: A vulnerability was reported in OpenSSL. The fix to correct the Datagram Transport Layer Security (DTLS) vulnerability referenced by CVE-2011-4108 introduced a flaw. A remote user can send specially crafted data to cause denial of service conditions on the target system.

277

U-165: Apple iOS Bugs Let Remote Users Execute Arbitrary Code and Spoof  

Broader source: Energy.gov (indexed) [DOE]

5: Apple iOS Bugs Let Remote Users Execute Arbitrary Code and 5: Apple iOS Bugs Let Remote Users Execute Arbitrary Code and Spoof Address Bar URLs U-165: Apple iOS Bugs Let Remote Users Execute Arbitrary Code and Spoof Address Bar URLs May 9, 2012 - 7:00am Addthis PROBLEM: Apple iOS Bugs Let Remote Users Execute Arbitrary Code and Spoof Address Bar URLs PLATFORM: prior to 5.1.1; iPhone 3GS, iPhone 4, iPhone 4S, iPod touch (3rd generation) and later, iPad, iPad 2 ABSTRACT: Two vulnerabilities were reported in Apple iOS. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can spoof the address bar URL. reference LINKS: SecurityTracker Alert ID: 1027028 CVE-2012-0672 CVE-2012-0674 IMPACT ASSESSMENT: Medium Discussion: A remote user can create a specially crafted file that, when loaded by the

278

Control of the chinch bug, Blissus leucopterous (say) on corn and grain sorghum  

E-Print Network [OSTI]

) ~ Painter et ~a. (19$$) azui SnellinS, azzi ~ (ling'p), ore mn~ ztuymoekeC bg other meieOLes an@ strains oF oem. 'tests moro ccn8uctcS Surinam lg6$-3. 966 to evaluate the toxicity cf s~2. imscotici@cs to thc chinch bug. both in the laboratory exxon...

Todd, Larry Leland

2012-06-07T23:59:59.000Z

279

Static Detection of API Error-Handling Bugs via Mining Source Code  

E-Print Network [OSTI]

Static Detection of API Error-Handling Bugs via Mining Source Code Mithun Acharya and Tao Xie}@csc.ncsu.edu Abstract Incorrect handling of errors incurred after API invoca- tions (in short, API errors) can lead to security and robust- ness problems, two primary threats to software reliability. Correct handling of API

Young, R. Michael

280

T-718:Adobe Acrobat/Reader Multiple Bugs Let Remote Users Execute Arbitrary  

Broader source: Energy.gov (indexed) [DOE]

8:Adobe Acrobat/Reader Multiple Bugs Let Remote Users Execute 8:Adobe Acrobat/Reader Multiple Bugs Let Remote Users Execute Arbitrary Code T-718:Adobe Acrobat/Reader Multiple Bugs Let Remote Users Execute Arbitrary Code September 15, 2011 - 8:45am Addthis PROBLEM: Adobe Acrobat/Reader Multiple Bugs Let Remote Users Execute Arbitrary Code. PLATFORM: Adobe Reader X (10.1) and earlier 10.x versions for Windows and Macintosh Adobe Reader 9.4.5 and earlier 9.x versions for Windows, Macintosh and UNIX Adobe Reader 8.3 and earlier 8.x versions for Windows and Macintosh Adobe Acrobat X (10.1) and earlier 10.x versions for Windows and Macintosh Adobe Acrobat 9.4.5 and earlier 9.x versions for Windows and Macintosh Adobe Acrobat 8.3 and earlier 8.x versions for Windows and Macintosh ABSTRACT: A remote user can create a file that, when loaded by the target user, will

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


281

U-176: Wireshark Multiple Bugs Let Remote Users Deny Service | Department  

Broader source: Energy.gov (indexed) [DOE]

U-176: Wireshark Multiple Bugs Let Remote Users Deny Service U-176: Wireshark Multiple Bugs Let Remote Users Deny Service U-176: Wireshark Multiple Bugs Let Remote Users Deny Service May 24, 2012 - 7:00am Addthis PROBLEM: Wireshark Multiple Bugs Let Remote Users Deny Service PLATFORM: 1.4.0 to 1.4.12, 1.6.0 to 1.6.7 ABSTRACT: Several vulnerabilities were reported in Wireshark. A remote user can cause denial of service conditions. Reference Links: SecurityTracker Alert ID: 1027094 CVE-2012-2392 CVE-2012-2393 CVE-2012-2394 IMPACT ASSESSMENT: Medium Discussion: A remote user can send specially crafted ANSI MAP, ASF, BACapp, Bluetooth HCI, IEEE 802.11, IEEE 802.3, LTP, and R3 data to cause Wireshark to hang or enter an infinite loop. A remote user can cause the DIAMETER dissector to crash. A remote user can trigger a memory error on SPARC or Itanium processors and

282

Market Power in Pollution Permit Markets  

E-Print Network [OSTI]

As with other commodity markets, markets for trading pollution permits have not been immune to market power concerns. In this paper, I survey the existing literature on market power in permit trading but also contribute ...

Montero, Juan Pablo

283

Air Permitting for Stationary Sources (New Hampshire)  

Broader source: Energy.gov [DOE]

The permitting system implements the permitting requirements of RSA 125-C and 125-I to regulate the operation and modification of new and existing stationary sources, area sources, and devices to...

284

Full Permit Application Handbook | Open Energy Information  

Open Energy Info (EERE)

Full Permit Application Handbook Jump to: navigation, search OpenEI Reference LibraryAdd to library Legal Document- OtherOther: Full Permit Application HandbookLegal Abstract...

285

Idaho NPDES Permits Webpage | Open Energy Information  

Open Energy Info (EERE)

Permits Webpage Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: Idaho NPDES Permits Webpage Abstract This webpage provides an overview of the process...

286

JC3 Bulletin Archive | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

6, 2012 6, 2012 U-076: OpenSSL Bugs Let Remote Users Deny Service, Obtain Information, and Potentially Execute Arbitrary Code A remote user may be able to execute arbitrary code on the target system. January 5, 2012 U-075: Apache Struts Bug Lets Remote Users Overwrite Files and Execute Arbitrary Code A remote user can execute arbitrary Java code on the target system. January 4, 2012 U-074: Microsoft .NET Bugs Let Remote Users Execute Arbitrary Commands, Access User Accounts, and Redirect Users A remote user can execute arbitrary commands on the target system. A remote user can access a target user's account. A remote user can redirect users to arbitrary sites. January 3, 2012 U-073: Bugzilla Flaws Permit Cross-Site Scripting and Cross-Site Request Forgery Attacks Several vulnerabilities were reported in Bugzilla. A remote user can

287

PIA - Radiological Work Permit | Department of Energy  

Energy Savers [EERE]

Work Permit More Documents & Publications PIA - Bonneville Power Adminstration Ethics Helpline Occupational Medical Surveillance System (OMSS) PIA, Idaho National...

288

RPP Environmental Permits and Related Documentation  

SciTech Connect (OSTI)

This document contains the current list of environmental permits and related documentation for TWRS facilities and activities.

DEXTER, M.L.

2000-11-29T23:59:59.000Z

289

GRR/Section 15-ID-b - Air Quality Permit - Tier II Operating Permit | Open  

Open Energy Info (EERE)

GRR/Section 15-ID-b - Air Quality Permit - Tier II Operating Permit GRR/Section 15-ID-b - Air Quality Permit - Tier II Operating Permit < GRR Jump to: navigation, search GRR-logo.png GEOTHERMAL REGULATORY ROADMAP Roadmap Home Roadmap Help List of Sections Section 15-ID-b - Air Quality Permit - Tier II Operating Permit 15IDBAirQualityPermitTierIIOperatingPermit.pdf Click to View Fullscreen Contact Agencies Idaho Department of Environmental Quality Regulations & Policies IDAPA 58.01.01 Triggers None specified Click "Edit With Form" above to add content 15IDBAirQualityPermitTierIIOperatingPermit.pdf Error creating thumbnail: Page number not in range. Error creating thumbnail: Page number not in range. Error creating thumbnail: Page number not in range. Flowchart Narrative Tier II Operating Permits are issued to facilities or stationary sources

290

Siting & Permitting | Open Energy Information  

Open Energy Info (EERE)

Siting & Permitting Siting & Permitting Jump to: navigation, search Siting and permitting policies can facilitate the installation of clean energy systems by specifying the conditions and fees involved in project development. Some local governments have adopted simplified or expedited permitting standards for wind and/or solar projects. “Top-of-the-stack” or fast-track permitting saves system owners and project developers time and money. Some states have established maximum fees that local governments may charge for a permit for a solar or wind energy system. In addition, some states have developed (or have supported the development of) model wind ordinances for use by local governments. [1] References ↑ DSIRE Glossary Retrieved from "http://en.openei.org/w/index.php?title=Siting_%26_Permitting&oldid=538321"

291

Annual Hanford Site Environmental Permitting status report  

SciTech Connect (OSTI)

The information contained in, and/or referenced in, this Annual Hanford Site Environmental Permitting Status Report addresses Permit Condition II.W (Other Permits and/or Approvals) of the Dangerous Waste Portion of the Resource Conservation and Recovery Act Permit for the Treatment, Storage, and Disposal of Dangerous Waste, issued by the Washington State Department of Ecology (WA7890008967). Condition II.W specifies that the Permittees are responsible for obtaining all other applicable federal, state, and local permits authorizing the development and operation of the Hanford Facility. Condition II.W further specifies that the Permittees are to use their best efforts to obtain such permits. For the purposes of this Permit Condition, ''best efforts'' mean submittal of documentation and/or approval(s) in accordance with schedules specified in applicable regulations, or as determined through negotiations with the applicable regulatory agencies.

SONNICHSEN, J.C.

1999-10-18T23:59:59.000Z

292

GRR/Section 15-ID-a - Air Quality Permit - Permit to Construct | Open  

Open Energy Info (EERE)

15-ID-a - Air Quality Permit - Permit to Construct 15-ID-a - Air Quality Permit - Permit to Construct < GRR Jump to: navigation, search GRR-logo.png GEOTHERMAL REGULATORY ROADMAP Roadmap Home Roadmap Help List of Sections Section 15-ID-a - Air Quality Permit - Permit to Construct 15IDAAirQualityPermitPermitToConstruct (1).pdf Click to View Fullscreen Contact Agencies Idaho Department of Environmental Quality Regulations & Policies IDAPA 58.01.01 Triggers None specified Click "Edit With Form" above to add content 15IDAAirQualityPermitPermitToConstruct (1).pdf Error creating thumbnail: Page number not in range. Error creating thumbnail: Page number not in range. Error creating thumbnail: Page number not in range. Flowchart Narrative The Idaho Department of Environmental Quality (DEQ) requires an air quality

293

GRR/Section 15-CA-b - Air Permit - Operating Permit | Open Energy  

Open Energy Info (EERE)

15-CA-b - Air Permit - Operating Permit 15-CA-b - Air Permit - Operating Permit < GRR Jump to: navigation, search GRR-logo.png GEOTHERMAL REGULATORY ROADMAP Roadmap Home Roadmap Help List of Sections Section 15-CA-b - Air Permit - Operating Permit 15CABAirPermitOperatingPermit.pdf Click to View Fullscreen Contact Agencies California Air Resources Board Regulations & Policies Clean Air Act (42 USC 1857 et seq.) California Air Pollution Control Laws Triggers None specified Click "Edit With Form" above to add content 15CABAirPermitOperatingPermit.pdf Error creating thumbnail: Page number not in range. Error creating thumbnail: Page number not in range. Error creating thumbnail: Page number not in range. Flowchart Narrative A developer operating a facility that emits air pollutants must obtain an

294

Idaho DEQ Air Quality Permits Applicant and DEQ Responsibilities...  

Open Energy Info (EERE)

LibraryAdd to library PermittingRegulatory Guidance - GuideHandbook: Idaho DEQ Air Quality Permits Applicant and DEQ Responsibilities guidebookPermittingRegulatory...

295

Alaska Public Participation in APDES Permitting Process | Open...  

Open Energy Info (EERE)

search OpenEI Reference LibraryAdd to library PermittingRegulatory Guidance - GuideHandbook: Alaska Public Participation in APDES Permitting ProcessPermittingRegulatory...

296

AZPDES Construction General Permit Fact Sheet | Open Energy Informatio...  

Open Energy Info (EERE)

General Permit Fact Sheet Jump to: navigation, search OpenEI Reference LibraryAdd to library PermittingRegulatory Guidance - Instructions: AZPDES Construction General Permit...

297

Microsoft Word - BUGS_The Next Smart Grid Peak Resource Final 4_19.docx  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

April 15, 2010 April 15, 2010 DOE/NETL-2010/1406 Backup Generators (BUGS): The Next Smart Grid Peak Resource Backup Generators (BUGS): The Next Smart Grid Peak Resource v1.0 ii DISCLAIMER This report was prepared as an account of work sponsored by an agency of the United States Government. Neither the United States Government nor any agency thereof, nor any of their employees, makes any warranty, express or implied, or assumes any legal liability or responsibility for the accuracy, completeness, or usefulness of any information, apparatus, product, or process disclosed, or represents that its use would not infringe privately owned rights. Reference therein to any specific commercial product, process, or service by trade name, trademark, manufacturer, or

298

T-633: BIND RRSIG RRsets Negative Caching Off-by-one Bug Lets Remote Users  

Broader source: Energy.gov (indexed) [DOE]

3: BIND RRSIG RRsets Negative Caching Off-by-one Bug Lets 3: BIND RRSIG RRsets Negative Caching Off-by-one Bug Lets Remote Users Deny Service T-633: BIND RRSIG RRsets Negative Caching Off-by-one Bug Lets Remote Users Deny Service May 31, 2011 - 3:35pm Addthis PROBLEM: A vulnerability was reported in BIND. A remote user can cause denial of service conditions. PLATFORM: BIND Version(s): 9.4-ESV-R3 and later, 9.6-ESV-R2 and later, 9.6.3, 9.7.1 and later, 9.8.0 and later; prior to 9.4-ESV-R4-P1, 9.6-ESV-R4-P1, 9.7.3-P1, 9.8.0-P2 ABSTRACT: A remote DNS server can supply very large RRSIG RRsets in a negative response to trigger an off-by-one error in a buffer size check and cause the target requesting named process to crash. A remote user can cause named to crash. reference LINKS: SecurityTracker Alert ID: 1025575 SecurityTracker Alert ID: 1025572

299

V-210: HP LaserJet Pro Printer Bug Lets Remote Users Access Data |  

Broader source: Energy.gov (indexed) [DOE]

V-210: HP LaserJet Pro Printer Bug Lets Remote Users Access Data V-210: HP LaserJet Pro Printer Bug Lets Remote Users Access Data V-210: HP LaserJet Pro Printer Bug Lets Remote Users Access Data August 3, 2013 - 2:37am Addthis PROBLEM: A vulnerability was reported in HP Printers. A remote user can obtain potentially sensitive information. PLATFORM: HP LaserJet Pro products ABSTRACT: A potential security vulnerability has been identified with certain HP LaserJet Pro printers. The vulnerability could be exploited remotely to gain unauthorized access to data. REFERENCE LINKS: SecurityTracker Alert ID 1028869 CVE-2013-4807 Vendor URL IMPACT ASSESSMENT: Medium DISCUSSION: The following models are affected: HP LaserJet Pro P1102w CE657A/CE658A HP LaserJet Pro P1606dn CE749A HP LaserJet Pro M1212nf MFP CE841A HP LaserJet Pro M1213nf MFP CE845A

300

GRR/Section 15-TX-a - Air Permit - Permit to Construct | Open Energy  

Open Energy Info (EERE)

GRR/Section 15-TX-a - Air Permit - Permit to Construct GRR/Section 15-TX-a - Air Permit - Permit to Construct < GRR Jump to: navigation, search GRR-logo.png GEOTHERMAL REGULATORY ROADMAP Roadmap Home Roadmap Help List of Sections Section 15-TX-a - Air Permit - Permit to Construct 15TXAAirPermitPermitToConstruct (1).pdf Click to View Fullscreen Contact Agencies Texas Commission on Environmental Quality Regulations & Policies Title 30 of the Texas Administrative Code 30 TAC 116.114 30 TAC 39.418 30 TAC 39.604 30 TAC 39.605 30 TAC 39.409 30 TAC 116.136 30 TAC 55.254 30 TAC 116.136 30 TAC 116.137 Triggers None specified Click "Edit With Form" above to add content 15TXAAirPermitPermitToConstruct (1).pdf 15TXAAirPermitPermitToConstruct (1).pdf 15TXAAirPermitPermitToConstruct (1).pdf Error creating thumbnail: Page number not in range.

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


301

Colorado - Access Permit Application File Review Checklist |...  

Open Energy Info (EERE)

Checklist Jump to: navigation, search OpenEI Reference LibraryAdd to library General: Colorado - Access Permit Application File Review Checklist Author Colorado Department of...

302

Catawba County- Green Construction Permitting Incentive Program  

Broader source: Energy.gov [DOE]

Catawba County is providing incentives to encourage the construction of sustainably built homes and commercial buildings. Rebates on permit fees and plan reviews are available for certain...

303

Montana - Encroachment Permit Application | Open Energy Information  

Open Energy Info (EERE)

General: Montana - Encroachment Permit Application Author Montana Department of Transportation Published Montana Department of Transportation, 2007 DOI Not Provided Check for...

304

Annual Hanford Site environmental permitting status report  

SciTech Connect (OSTI)

This Annual Hanford Site Environmental Permitting Status Report (Status Report) was prepared in response to requirements prescribed in U.S. Department of Energy (DOE) Order 5400.2A, `Environmental Compliance Issue Coordination`. This Order, canceled in April 1996, required that information on existing and anticipated environmental permitting for DOE facilities be submitted (or updated) annually by October 1 of each calendar year. Although the Order was canceled, the need for this Status Report still remains. For example, the Washington State Department of Ecology`s (Ecology) Dangerous Waste Permit Application Requirements (Publication Number 95-402, June 1996), Checklist Section J, calls for current information on existing and anticipated environmental permitting. As specified in the Hanford Facility Dangerous Waste Permit Application, General Information Portion (DOE/RL-91-28), this Status Report serves as the vehicle for meeting this requirement for the Hanford Facility. This Status Report includes information on all existing and anticipated environmental permitting. Environmental permitting required by the Resource Conservation and Recovery Act (RCRA) of 1976, the Hazardous and Solid Waste Amendments (HSWA) of 1984, and non-RCRA permitting (solid waste handling, Clean Air Act Amendments of 1990, Clean Water Act Amendments of 1987, Washington State waste discharge, and onsite sewage system) are addressed. Information on RCRA and non-RCRA permitting is included and is current as of July 31, 1996.

Thompson, S.A.

1996-10-01T23:59:59.000Z

305

Arizona Department of Environmental Quality's Individual Permits...  

Open Energy Info (EERE)

process for an individual AZPDES permit. Author Arizona Department of Environmental Quality Published ADEQ, Date Not Provided DOI Not Provided Check for DOI availability: http:...

306

Arizona Department of Environmental Quality's General Permits...  

Open Energy Info (EERE)

regarding AZPDES general permits. Author Arizona Department of Environmental Quality Published ADEQ, Date Not Provided DOI Not Provided Check for DOI availability: http:...

307

WIPP Hazardous Waste Permit - Approved Modifications  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

Modification to Add South Access Road for Transportation of TRU Mixed Waste dated March 17, 2011 Class 1 Permit Modification Notification to Revise TRU-Pact III Management...

308

Permitted Mercury Storage Facility Notifications | Department...  

Broader source: Energy.gov (indexed) [DOE]

Services Waste Management Waste Disposition Long-Term Management and Storage of Elemental Mercury is in the Planning Stages Permitted Mercury Storage Facility...

309

Transmission/Permitting Atlas | Open Energy Information  

Open Energy Info (EERE)

mittingAtlasHeader.png Roadmap Compare States General Transmission Dashboard Permitting Atlas Compare States Arizona California Colorado Idaho Montana Nevada New Mexico Oregon Utah...

310

California Permit Streamlining Act | Open Energy Information  

Open Energy Info (EERE)

Streamlining Act Jump to: navigation, search OpenEI Reference LibraryAdd to library Legal Document- StatuteStatute: California Permit Streamlining ActLegal Abstract California...

311

Industrial Discharge Permits (District of Columbia)  

Broader source: Energy.gov [DOE]

All businesses and government agencies discharging process wastewater to the public sewer system must report their activities to DC Water's Pretreatment Center. Wastewater discharge permits are...

312

Wastewater Construction and Operation Permits (Iowa)  

Broader source: Energy.gov [DOE]

These regulations describe permit requirements for the construction and operation of facilities treating wastewater, and provide separation distances from other water sources.

313

Groundwater Discharge Permit and Registration (New Hampshire)  

Broader source: Energy.gov [DOE]

The Groundwater Discharge Permitting and Registration Program seeks to protect groundwater quality by establishing standards, criteria, and procedures for wastewater discharges. The program...

314

NPDES Permit Program Website | Open Energy Information  

Open Energy Info (EERE)

Program Website Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: NPDES Permit Program Website Author Environmental Protection Agency Published Publisher...

315

Hawaii Underground Injection Control Permitting Webpage | Open...  

Open Energy Info (EERE)

Webpage Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: Hawaii Underground Injection Control Permitting Webpage Author State of Hawaii Department of...

316

Colorado Air Pollution Control Division - Construction Permits...  

Open Energy Info (EERE)

Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: Colorado Air Pollution Control Division - Construction Permits Forms and Air Pollutant Emission...

317

Page not found | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

21 - 9430 of 28,905 results. 21 - 9430 of 28,905 results. Article News Release: 2010 UMTRCA Title I and Title II Disposal Sites Reports Available The U.S. Department of Energy announces the availability of the 2010 Annual Site Inspection and Monitoring Report for Uranium Mill Tailings Radiation Control Act Title I Disposal Sites and the 2010 Annual Site Inspection and Monitoring Report for Uranium Mill Tailings Radiation Control Act Title II Disposal Sites reports http://energy.gov/lm/articles/news-release-2010-umtrca-title-i-and-title-ii-disposal-sites-reports Article V-078: WordPress Bugs Permit Cross-Site Scripting and Port Scanning Attacks WordPress 3.5.1 Maintenance and Security Release http://energy.gov/cio/articles/v-078-wordpress-bugs-permit-cross-site-scripting-and-port-scanning-attacks

318

Page not found | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

81 - 23090 of 26,764 results. 81 - 23090 of 26,764 results. Article DOE Extends Public Comment Period for the Draft Uranium Leasing Program Programmatic Environmental Impact Statement The U.S. Department of Energy (DOE) today announced that the public comment period for the Draft Uranium Leasing Program Programmatic Environmental Impact Statement (ULP PEIS) has been extended to May 31, 2013. http://energy.gov/nepa/articles/doe-extends-public-comment-period-draft-uranium-leasing-program-programmatic Article V-146: HP Service Manager Bugs Permit Cross-Site Scripting and Information Disclosure Attacks Two vulnerabilities were reported in HP Service Manager http://energy.gov/cio/articles/v-146-hp-service-manager-bugs-permit-cross-site-scripting-and-information-disclosure Download Enforcement Letter, National Security Technologies, LLC- May 21,

319

JC3 Bulletin Archive | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

14, 2011 14, 2011 T-717: Microsoft Security Bulletin Summary for September 2011 Microsoft Security Bulletin Summary for September 2011. September 14, 2011 T-716: Google SketchUp v8.x - '.DAE' File Memory Corruption Vulnerability Google SketchUp v8.x - '.DAE' File Memory Corruption Vulnerability September 13, 2011 T-715: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting Attacks Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting Attacks. September 12, 2011 T-714:Wireshark OpenSafety and CSN.1 Dissector Bugs Wireshark OpenSafety and CSN.1 Dissector Bugs Lets Remote Users Deny Service. September 9, 2011 T-713: Blue Coat Reporter Directory Traversal Flaw Blue Coat Reporter Directory Traversal Flaw Lets Remote Users Gain Full Control. September 8, 2011

320

GRR/Section 7-NV-a - Permit to Construct and Permit to Operate | Open  

Open Energy Info (EERE)

7-NV-a - Permit to Construct and Permit to Operate 7-NV-a - Permit to Construct and Permit to Operate < GRR Jump to: navigation, search GRR-logo.png GEOTHERMAL REGULATORY ROADMAP Roadmap Home Roadmap Help List of Sections Section 7-NV-a - Permit to Construct and Permit to Operate 07NVAPermitToConstructAndPermitToOperate (3).pdf Click to View Fullscreen Contact Agencies Nevada Division of Environmental Protection Triggers None specified Click "Edit With Form" above to add content 07NVAPermitToConstructAndPermitToOperate (3).pdf Error creating thumbnail: Page number not in range. Error creating thumbnail: Page number not in range. Error creating thumbnail: Page number not in range. Flowchart Narrative _ 7-NV-a.1 and 6-NV-a.2 - Has an Environmental Review been Completed for Construction? The developer must make sure to undergo an environmental process before

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


321

MCA 75-5-401 - Water Quality Permits: Board Rules for Permits...  

Open Energy Info (EERE)

- Water Quality Permits: Board Rules for Permits Jump to: navigation, search OpenEI Reference LibraryAdd to library Legal Document- StatuteStatute: MCA 75-5-401 - Water Quality...

322

Annual Hanford Site environmental permitting status report  

SciTech Connect (OSTI)

The information contained and/or referenced in this Annual Hanford Site Environmental Permitting Status Report (Status Report) addresses the State Environmental Policy Act (SEPA) of 1971 and Condition II.W. of the Resource Conservation and Recovery Act (RCRA) of 1976 Permit, Dangerous Waste Portion (DW Portion). Condition II.W. of the RCRA Permit specifies the Permittees are responsible for all other applicable federal, state, and local permits for the development and operation of the Hanford Facility. Condition II.W. of the RCRA Permit specifies that the Permittees are to use their best efforts to obtain such permits. For the purposes of permit condition, `best efforts` means submittal of documentation and/or approval(s) in accordance with schedules specified in applicable regulations, or as determined through negotiations with the applicable regulatory agencies. This Status Report includes information on all existing and anticipated environmental permitting. Environmental permitting required by RCRA, the Hazardous and Solid Waste Amendments (HSWA) of 1984, and non-RCRA permitting (solid waste handling, Clean Air Act Amendments of 1990, Clean Water Act Amendments of 1987, Washington State waste discharge, and onsite sewage system) is addressed. Information on RCRA and non-RCRA is current as of July 31, 1998. For the purposes of RCRA and the State of Washington Hazardous Waste Management Act of 1976 [as administered through the Dangerous Waste Regulations, Washington Active Code (WAC) 173-303], the Hanford Facility is considered a single facility. As such, the Hanford Facility has been issued one US Environmental Protection Agency (EPA)/State Identification Number (WA7890008967). This EPA/State identification number encompasses over 60 treatment, storage, and/or disposal (TSD) units. The Washington State Department of Ecology (Ecology) has been delegated authority by the EPA to administer the RCRA, including mixed waste authority. The RCRA permitting approach for the Hanford Facility is addressed in the Hanford Federal Facility Agreement and Consent Order (Tri-Party Agreement). Pursuant to the Tri-Party Agreement, a single RCRA permit was issued by Ecology and the EPA to cover the Hanford Facility. The RCRA Permit, through the permit modification process, eventually will incorporate all TSD units.

Sonnichsen, J.C.

1998-09-17T23:59:59.000Z

323

Coordinating Permit Office | OpenEI Community  

Open Energy Info (EERE)

Coordinating Permit Office Coordinating Permit Office Home Kyoung's picture Submitted by Kyoung(155) Contributor 9 July, 2013 - 20:57 GRR 3rd Quarter - Stakeholder Update Meeting Alaska analysis appropriations Categorical Exclusions Coordinating Permit Office Cost Mechanisms Cost Recovery geothermal Hawaii NEPA permitting quarterly meeting White Papers On June 26th, we held the 3rd Quarter GRR Stakeholder Update at the Grand Sierra Resort in Reno, NV. The meeting was well-attended with over 40 attendees, including in-person and webinar attendance. Thanks to all who attended! Files: application/pdf icon Presentation: 3rd Quarterly Stakeholder Update Meeting application/vnd.openxmlformats-officedocument.presentationml.presentation icon Mock-up: GRR Permitting Wizard Interface Kyoung's picture Submitted by Kyoung(155)

324

Operating Permits (New Jersey) | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

Operating Permits (New Jersey) Operating Permits (New Jersey) Operating Permits (New Jersey) < Back Eligibility Utility Fed. Government Commercial Agricultural Investor-Owned Utility State/Provincial Govt Industrial Construction Municipal/Public Utility Local Government Residential Installer/Contractor Rural Electric Cooperative Tribal Government Low-Income Residential Schools Retail Supplier Institutional Multi-Family Residential Systems Integrator Fuel Distributor Nonprofit General Public/Consumer Transportation Program Info State New Jersey Program Type Siting and Permitting Provider Department of Environmental Protection The owner or operator of a facility subject to this article shall obtain and maintain an operating permit for the facility. The owner or operator of a facility subject to this article shall ensure that no person shall use or

325

HQ Work Control Permit | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

HQ Work Control Permit HQ Work Control Permit HQ Work Control Permit To ensure safe operations when undertaking work at DOE Headquarters, the Office of Headquarters Health and Safety has developed a Work Permit document (doc) to help ensure the safety of all workers and headquarters employees. The form should be completed and brought to the Office of Headquarters Safety, Health and Security office at GE-112 at the Forrestal facility, or the Germantown Building Manager's office at E-076 for review and sign off. Any questions can be directed to the HQ Health and Safety office on (202) 586-1005. HQ_Work_Control_Permit.docx More Documents & Publications Preliminary Notice of Violation, Petsco and Son, Inc - EA-96-06 OSS 19.10 Barriers and Postings 5/26/95 OSS 19.3 Confined Space Entry 5/23/95

326

Solar Construction Permitting Standards | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

Standards Standards Solar Construction Permitting Standards < Back Eligibility Agricultural Commercial General Public/Consumer Industrial Local Government Nonprofit Residential Savings Category Solar Buying & Making Electricity Heating & Cooling Water Heating Program Info State Colorado Program Type Solar/Wind Permitting Standards Provider Colorado Energy Office Owners of solar photovoltaic (PV) systems and solar water heating systems in Colorado are required to obtain a building permit before their systems may be installed. Permits are handled at the local level and awarded by counties and municipalities. Traditionally, counties and municipalities have been free to assign their own fees for a permit. These fees can vary broadly in size across jurisdictions and in some cases, can be large enough

327

HQ Work Control Permit | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

HQ Work Control Permit HQ Work Control Permit HQ Work Control Permit To ensure safe operations when undertaking work at DOE Headquarters, the Office of Headquarters Health and Safety has developed a Work Permit document (doc) to help ensure the safety of all workers and headquarters employees. The form should be completed and brought to the Office of Headquarters Safety, Health and Security office at GE-112 at the Forrestal facility, or the Germantown Building Manager's office at E-076 for review and sign off. Any questions can be directed to the HQ Health and Safety office on (202) 586-1005. HQ_Work_Control_Permit.docx More Documents & Publications Preliminary Notice of Violation, Petsco and Son, Inc - EA-96-06 OSS 19.3 Confined Space Entry 5/23/95 WA_02_026_UNITED_TECHNOLOGIES_Waiver_of_Domestic_and_Foreign

328

Wind Project Permitting | Open Energy Information  

Open Energy Info (EERE)

Project Permitting Project Permitting Jump to: navigation, search Invenergy is the developer of the 129-MW Forward Wind Energy Center project near Fond du Lac, Wisconsin, that came online in 2008. Photo by Ruth Baranowski, NREL 16412 As with other energy facility permitting processes, the goal of the wind project permitting process is to reach decisions that are timely, minimize challenges, and ensure compliance with laws and regulations that provide for necessary environmental protection.[1] Resources National Wind Coordinating Committee. (2002). Permitting of Wind Energy Facilities. Accessed August 28, 2013. This handbook is written for individuals and groups involved in evaluating wind projects: decision-makers and agency staff at all levels of government, wind developers, interested parties and the public.

329

U-238: HP Service Manager Input Validation Flaw Permits Cross...  

Broader source: Energy.gov (indexed) [DOE]

9.21, 9.30 ABSTRACT: Cross-site scripting (XSS) vulnerability in HP Service Manager Web Tier 7.11, 9.21, and 9.30, and HP Service Center Web Tier 6.28, allows remote attackers...

330

State Surface Water Discharge Permits (New Hampshire)  

Broader source: Energy.gov [DOE]

Rules apply to the discharge of all pollutants from a point source to surface waters of the state. The rule does not apply to facilities that require both a state discharge permit and a federal...

331

Regulations and Permits Related to Dams (Vermont)  

Broader source: Energy.gov [DOE]

Vermont law requires a permit, or a dam order, for the construction, alteration, or removal of dams impounding more than 500,000 cubic feet of water, including any accumulated sediments. Dam...

332

Reclamation permit application handbook. Final technical report  

SciTech Connect (OSTI)

The objective of this handbook is to provide Appalachian surface coal mine operators with an explanation of the Office of Surface Mining's (OSM) permanent regulatory program permit application requirements. The format of the handbook is designed to give the reader an understanding of how the permit application regulations were developed, the number of subjects the application must cover, the work entailed in satisfying the permit requirements, and sources of information for more technical studies. Preparation of the handbook involved reviewing the OSM regulations and devising a hypothetical permit, incorporating information required by all the sections of the regulations. The outlines and drafts of the handbook were reviewed by mine operators, OSM, and State agencies for completeness, and to ensure that the maximum benefit would be derived by using such a handbook.

Myers, L.L.; Calvert, R.P.

1981-06-01T23:59:59.000Z

333

Environmental Permit Application Background Statement (Delaware)  

Broader source: Energy.gov [DOE]

The purpose of Chapter 79 of Delaware Title 7 is to ensure that the State has adequate information about the background of applicants or regulated parties for the purposes of processing permits and...

334

Disclosure of Permitted Communication Concerning Fossil Fuel...  

Energy Savers [EERE]

Fossil Fuel Energy Consumption Reduction for New Construction and Major Renovations of Federal Buildings -- Docket No. EERE-2010-BT-STD-0031; RIN 1904-AB96 Disclosure of Permitted...

335

Disclosure of Permitted Communication Concerning Regional Standards  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

Disclosure of Permitted Communication Concerning Regional Standards Disclosure of Permitted Communication Concerning Regional Standards Enforcement Framework Document -- Docket No. EERE-2011-BT-CE-0077 Disclosure of Permitted Communication Concerning Regional Standards Enforcement Framework Document -- Docket No. EERE-2011-BT-CE-0077 This memo provides an overview of communications made to DOE staff on the subject of a policy for providing waivers from new regional furnace efficiency standards. memo_furnace_std_waiver_policy.pdf More Documents & Publications Disclosure of Permitted Communication Concerning Fossil Fuel Energy Consumption Reduction for New Construction and Major Renovations of Federal Buildings -- Docket No. EERE-2010-BT-STD-0031; RIN 1904-AB96 Record of Communication Concerning Ceiling Fan and Ceiling Fan Light Kit

336

Distributed PV Permitting and Inspection Processes  

Broader source: Energy.gov [DOE]

This presentation summarizes case studies of the time and cost involved in the distributed PV permitting and inspection process in three Solar America Cities, Austin, Portland, and Salt Lake City.

337

Major Source Permits (District of Columbia) | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

Major Source Permits (District of Columbia) Major Source Permits (District of Columbia) Major Source Permits (District of Columbia) < Back Eligibility Utility Commercial Industrial Program Info State District of Columbia Program Type Environmental Regulations Provider District Department of the Environment The District reviews designs for new pollution sources and design modifications for existing sources. Permits are issued to allow sources to emit limited and specified amounts of pollution as allowed by air quality laws and regulations. Major sources include power plants, heating plants, and large printing facilities. Three types of permits are issued: pre-construction review permits; new source review permits; and operating permits. These permits include conditions intended to minimize emissions of

338

Has operating permitting really changed with Title V? Reflecting on the Title V operating permit program  

SciTech Connect (OSTI)

Now that some state regulatory agencies are reviewing Title V permit applications and issuing permits, evaluation of the process can be made in comparison with the original goals of the Title V permitting program. In addition, assessment of the terms and conditions that are being incorporated into permits, the nature of draft permits that are issued to facilities for comment, and the extent and type of negotiation that have been conducted with agencies to develop successful Title V permits, will be helpful for facilities that are currently undergoing application review. In working with a Fortune 500 surface coating company, fourteen Title V permit applications were developed and submitted for plants located in Maryland, Pennsylvania, Ohio, New Jersey, Illinois, Georgia, West Virginia, Wisconsin, Indiana and southern California. Draft permits have been issued for several of the plants, and differences in the terms and conditions, testing requirements, and permit format and structure have been noted between states. One of the issued permits required modification, and the process was one of the first for this state agency.

Goldstein, D.R.; Cressman, A.W.

1999-07-01T23:59:59.000Z

339

State Waste Discharge Permit ST-4502 Implementation Plan  

SciTech Connect (OSTI)

Plan has been developed to demonstrate compliance with regulatory requirements set forth in Permit ST-3502 and as a line management tool for use in maintaining configuration control of permit as well as documentation used to implement permit requirements.

BROWN, M.J.; LECLAIR, M.D.

2000-09-27T23:59:59.000Z

340

EPA Region 6 NPDES General Permits | Open Energy Information  

Open Energy Info (EERE)

NPDES General Permits Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: EPA Region 6 NPDES General Permits Abstract Access to NPDES General Permits for...

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


341

Introduction to Coast Guard Bridge Permitting | Open Energy Informatio...  

Open Energy Info (EERE)

search OpenEI Reference LibraryAdd to library PermittingRegulatory Guidance - GuideHandbook: Introduction to Coast Guard Bridge PermittingPermittingRegulatory GuidanceGuide...

342

EPA - Construction General Permit Fact Sheet | Open Energy Information  

Open Energy Info (EERE)

search OpenEI Reference LibraryAdd to library PermittingRegulatory Guidance - GuideHandbook: EPA - Construction General Permit Fact SheetPermittingRegulatory GuidanceGuide...

343

ARM 12-14-150 - Commercial Use Permitting: Restricted Use Permitting...  

Open Energy Info (EERE)

use permits for land use within the jurisdiction of the Montana Department of Fish, Wildlife and Parks. Published NA Year Signed or Took Effect 2009 Legal Citation ARM...

344

ARM 12-14-145 - Commercial Use Permitting: Restricted Use Permit...  

Open Energy Info (EERE)

use permits for land use within the jurisdiction of the Montana Department of Fish, Wildlife and Parks. Published NA Year Signed or Took Effect 2007 Legal Citation ARM...

345

Integrated Title V/acid rain permits: Transitioning through initial permit issuance and reopenings  

SciTech Connect (OSTI)

Titles IV and V of the Clean Air Act Amendments of 1990 (Act or CAA) created two new stationary source permitting programs, one specific to acid rain (Title IV), and a second for operating permits in general (Title V). The Phase 2 portion of the acid rain program was designed to be implemented through the Title V operating permit program, thereby subjecting all Phase 2 acid rain sources to the requirements of Title V. Permits issued pursuant to Phase 2 of the acid rain program will be viewed as a self-contained portion of the Title V operating permit and will be governed by regulations promulgated under both Title IV and Title V. The requirements imposed by Title IV may not always be consistent with the broader operating permit program requirements of Title V, and when inconsistency occurs, the acid rain requirements will take precedence. This nonalignment will perhaps be most apparent during two stages of initial permitting: (1) the transition period following Title V program approval when permit application, issuance, and effective dates differ between the two programs, and (2) at the point when acid rain permits must be reopened to incorporate Phase 2 NO{sub x} requirements. This paper explores strategies for streamlining implementation of the two programs with particular focus on these two coordination issues.

Bloomfield, C. [Environmental Protection Agency, San Francisco, CA (United States)

1995-12-31T23:59:59.000Z

346

U-265: HP SiteScope Bugs in SiteScope SOAP Feature Let Remote Users Obtain  

Broader source: Energy.gov (indexed) [DOE]

5: HP SiteScope Bugs in SiteScope SOAP Feature Let Remote Users 5: HP SiteScope Bugs in SiteScope SOAP Feature Let Remote Users Obtain Information and Execute Arbitrary Code U-265: HP SiteScope Bugs in SiteScope SOAP Feature Let Remote Users Obtain Information and Execute Arbitrary Code September 21, 2012 - 6:00am Addthis PROBLEM: HP SiteScope Bugs in SiteScope SOAP Feature Let Remote Users Obtain Information and Execute Arbitrary Code PLATFORM: HP SiteScope v11.10, v11.11, v11.12 for Windows, Linux and Solaris ABSTRACT: A vulnerability was reported in HP SiteScope. reference LINKS: HP Security Bulletin Document ID: c03489683 SecurityTracker Alert ID: 1027547 CVE-2012-3259 CVE-2012-3260 CVE-2012-3261 CVE-2012-3262 CVE-2012-3263 CVE-2012-3264 IMPACT ASSESSMENT: Medium Discussion: A vulnerability was reported in HP SiteScope. A remote user can execute

347

U-232: Xen p2m_teardown() Bug Lets Local Guest OS Users Deny Service on the  

Broader source: Energy.gov (indexed) [DOE]

32: Xen p2m_teardown() Bug Lets Local Guest OS Users Deny 32: Xen p2m_teardown() Bug Lets Local Guest OS Users Deny Service on the Host OS U-232: Xen p2m_teardown() Bug Lets Local Guest OS Users Deny Service on the Host OS August 10, 2012 - 7:00am Addthis PROBLEM: Xen p2m_teardown() Bug Lets Local Guest OS Users Deny Service on the Host OS PLATFORM: This vulnerability effects only Xen 4.0 and 4.1. Xen 3.4 and earlier and xen-unstable are not vulnerable. ABSTRACT: A vulnerability was reported in Xen. A local user on a guest operating system can cause denial of service conditions on the host. reference LINKS: Xen Security Announcements SecurityTracker Alert ID: 1027365 seclists.org CVE-2012-3433 IMPACT ASSESSMENT: Medium Discussion: An HVM guest is able to manipulate its physical address space such that tearing down the guest takes an extended period amount of time searching

348

U-029: TCP/IP Services for OpenVMS POP/IMAP Service Bug Lets Remote Users  

Broader source: Energy.gov (indexed) [DOE]

29: TCP/IP Services for OpenVMS POP/IMAP Service Bug Lets Remote 29: TCP/IP Services for OpenVMS POP/IMAP Service Bug Lets Remote Users Gain Unauthorized Access U-029: TCP/IP Services for OpenVMS POP/IMAP Service Bug Lets Remote Users Gain Unauthorized Access November 8, 2011 - 8:00am Addthis PROBLEM: TCP/IP Services for OpenVMS POP/IMAP Service Bug Lets Remote Users Gain Unauthorized Access. PLATFORM: HP TCP/IP Services for OpenVMS v5.6 and v5.7 on iTanium and ALPHA Servers. ABSTRACT: A remote user can gain unauthorized access reference LINKS: HP Support document ID: c01908983 SecurityTracker Alert ID: 1026279 CVE-2011-3168 IMPACT ASSESSMENT: Medium Discussion: A vulnerability was reported in TCP/IP Services for OpenVMS. A remote user can gain unauthorized access. On systems running POP or IMAP servers, a remote user can gain unauthorized access.

349

U-232: Xen p2m_teardown() Bug Lets Local Guest OS Users Deny Service on the  

Broader source: Energy.gov (indexed) [DOE]

32: Xen p2m_teardown() Bug Lets Local Guest OS Users Deny 32: Xen p2m_teardown() Bug Lets Local Guest OS Users Deny Service on the Host OS U-232: Xen p2m_teardown() Bug Lets Local Guest OS Users Deny Service on the Host OS August 10, 2012 - 7:00am Addthis PROBLEM: Xen p2m_teardown() Bug Lets Local Guest OS Users Deny Service on the Host OS PLATFORM: This vulnerability effects only Xen 4.0 and 4.1. Xen 3.4 and earlier and xen-unstable are not vulnerable. ABSTRACT: A vulnerability was reported in Xen. A local user on a guest operating system can cause denial of service conditions on the host. reference LINKS: Xen Security Announcements SecurityTracker Alert ID: 1027365 seclists.org CVE-2012-3433 IMPACT ASSESSMENT: Medium Discussion: An HVM guest is able to manipulate its physical address space such that tearing down the guest takes an extended period amount of time searching

350

U-265: HP SiteScope Bugs in SiteScope SOAP Feature Let Remote Users Obtain  

Broader source: Energy.gov (indexed) [DOE]

5: HP SiteScope Bugs in SiteScope SOAP Feature Let Remote Users 5: HP SiteScope Bugs in SiteScope SOAP Feature Let Remote Users Obtain Information and Execute Arbitrary Code U-265: HP SiteScope Bugs in SiteScope SOAP Feature Let Remote Users Obtain Information and Execute Arbitrary Code September 21, 2012 - 6:00am Addthis PROBLEM: HP SiteScope Bugs in SiteScope SOAP Feature Let Remote Users Obtain Information and Execute Arbitrary Code PLATFORM: HP SiteScope v11.10, v11.11, v11.12 for Windows, Linux and Solaris ABSTRACT: A vulnerability was reported in HP SiteScope. reference LINKS: HP Security Bulletin Document ID: c03489683 SecurityTracker Alert ID: 1027547 CVE-2012-3259 CVE-2012-3260 CVE-2012-3261 CVE-2012-3262 CVE-2012-3263 CVE-2012-3264 IMPACT ASSESSMENT: Medium Discussion: A vulnerability was reported in HP SiteScope. A remote user can execute

351

Year of Biodiversity Podcast Welcome to Bug Bytes, a bimonthly podcast from Texas A&M University's  

E-Print Network [OSTI]

are affected. Biodiversity encompasses humans, plants, animals, fungi, bacteria, food, and water at the scale that we don't! Join us on this excursion as we learn from the bugs that share in every aspect of our lives the human element, the diversity of cultures and how we impact the world around us. How, in turn we

Behmer, Spencer T.

352

Utah Underground Storage Tank Installation Permit | Open Energy...  

Open Energy Info (EERE)

Underground Storage Tank Installation Permit Jump to: navigation, search OpenEI Reference LibraryAdd to library Form: Utah Underground Storage Tank Installation Permit Form Type...

353

Alaska Special Area Permit Application | Open Energy Information  

Open Energy Info (EERE)

Form: Alaska Special Area Permit Application Form Type ApplicationNotice Form Topic Fish and Game Special Area Permit Application Organization Alaska Department of Fish and...

354

Alaska Fish Habitat Permit Application | Open Energy Information  

Open Energy Info (EERE)

Form: Alaska Fish Habitat Permit Application Form Type ApplicationNotice Form Topic Fish Habitat Permit Organization Alaska Department of Fish and Game Published Publisher Not...

355

Arizona State Land Department Applications and Permits Website...  

Open Energy Info (EERE)

Permits Website Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: Arizona State Land Department Applications and Permits Website Abstract This website...

356

BLM - Paleontological Resource Use Permits webpage | Open Energy...  

Open Energy Info (EERE)

Use Permits webpage Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: BLM - Paleontological Resource Use Permits webpage Abstract This webpage provides...

357

Idaho DEQ Waste Management and Permitting Webpage | Open Energy...  

Open Energy Info (EERE)

Permitting Webpage Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: Idaho DEQ Waste Management and Permitting Webpage Abstract This webpage provides...

358

Application for presidential permit OE Docket No. PP-234 Baja...  

Broader source: Energy.gov (indexed) [DOE]

presidential permit OE Docket No. PP-234 Baja California Power, Inc Application for presidential permit OE Docket No. PP-234 Baja California Power, Inc Application from Baja...

359

Air Quality Approvals and Permits (New Brunswick, Canada) | Department...  

Office of Energy Efficiency and Renewable Energy (EERE) Indexed Site

Approvals and Permits (New Brunswick, Canada) Air Quality Approvals and Permits (New Brunswick, Canada) < Back Eligibility Commercial Construction Developer Industrial Installer...

360

Fact Sheet - Air Quality Permitting | Open Energy Information  

Open Energy Info (EERE)

Air Quality Permitting Jump to: navigation, search OpenEI Reference LibraryAdd to library PermittingRegulatory Guidance - GuideHandbook: Fact Sheet - Air Quality...

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


361

RAPID/Best Practices/Coordinating Permit Offices | Open Energy...  

Open Energy Info (EERE)

accept the permit plan until the environmental review process is complete. DBEDT will conduct agency outreach and coordination to discuss federal, state, and county permits...

362

Hydrogen Codes and Standards and Permitting | Department of Energy  

Office of Energy Efficiency and Renewable Energy (EERE) Indexed Site

Codes and Standards and Permitting Hydrogen Codes and Standards and Permitting 2009 DOE Hydrogen Program and Vehicle Technologies Program Annual Merit Review and Peer Evaluation...

363

WSDE Report: Wastewater Discharge Permits in Washington State...  

Open Energy Info (EERE)

Wastewater Discharge Permits in Washington State Jump to: navigation, search OpenEI Reference LibraryAdd to library Report: WSDE Report: Wastewater Discharge Permits in Washington...

364

Request for Information on Permitting of Transmission Lines:...  

Broader source: Energy.gov (indexed) [DOE]

Request for Information on Permitting of Transmission Lines: Federal Register Notice Volume 77, No. 38 - Feb. 27, 2012 Request for Information on Permitting of Transmission Lines:...

365

Guide to Permitting Electric Transmission Lines in Wyoming |...  

Open Energy Info (EERE)

Permitting Electric Transmission Lines in Wyoming Jump to: navigation, search OpenEI Reference LibraryAdd to library PermittingRegulatory Guidance - GuideHandbook: Guide to...

366

EPA - Permit Compliance System webpage | Open Energy Information  

Open Energy Info (EERE)

System webpage Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: EPA - Permit Compliance System webpage Abstract This webpage contains EPA's Permit...

367

Construction and Minor Permit Applications | Open Energy Information  

Open Energy Info (EERE)

Permit Applications Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: Construction and Minor Permit Applications Author Division of Air Quality...

368

New Mexico Archaeological Permits Webpage | Open Energy Information  

Open Energy Info (EERE)

Permits Webpage Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: New Mexico Archaeological Permits Webpage Abstract Provides information about...

369

EPA - Section 404 Dredge and Fill Permitting webpage | Open Energy...  

Open Energy Info (EERE)

Permitting webpage Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: EPA - Section 404 Dredge and Fill Permitting webpage Abstract This webpage...

370

Hawaii Permit Application for Solid Waste Management Facility...  

Open Energy Info (EERE)

to receive a permit for a solid waste management facility. Form Type CertificateForm of Completion Form Topic Permit Application for Solid Waste Management Facility Organization...

371

Hawaii Clean Energy Initiative - Transmission Line Approval Permit...  

Open Energy Info (EERE)

Hawaii Clean Energy Initiative - Transmission Line Approval Permit Packet Jump to: navigation, search OpenEI Reference LibraryAdd to library PermittingRegulatory Guidance -...

372

Guide to Colorado Well Permits, Water Rights, and Water Administration...  

Open Energy Info (EERE)

Colorado Well Permits, Water Rights, and Water Administration Jump to: navigation, search OpenEI Reference LibraryAdd to library PermittingRegulatory Guidance - GuideHandbook:...

373

Westinghouse and Fuzhou Permitted to Restart Distribution of...  

Broader source: Energy.gov (indexed) [DOE]

Westinghouse and Fuzhou Permitted to Restart Distribution of Light Bulb Products Westinghouse and Fuzhou Permitted to Restart Distribution of Light Bulb Products August 6, 2010 -...

374

Property:ExplorationPermit-Drilling | Open Energy Information  

Open Energy Info (EERE)

without first obtaining a permit issued under the authority of the State Department of Geology and Mineral Industries and without complying with the conditions of such permit....

375

AUTHORIZATION FOR PAYROLL DEDUCTION 2012-2013 PARKING PERMIT  

E-Print Network [OSTI]

________________________________________________ DATE______________________________ $267.00 (ONE PERMIT) $66.00 (MOTORCYCLE PERMIT) $267.00 (TOTAL MONTH____________ OPTION FOR MOTORCYCLE DEDUCTION--1 MONTH______________ PLEASE INCLUDE YOUR CAMPUS

Escher, Christine

376

T-623: HP Business Availability Center Input Validation Hole...  

Broader source: Energy.gov (indexed) [DOE]

Business Availability Center Input Validation Hole Permits Cross-Site Scripting Attacks T-623: HP Business Availability Center Input Validation Hole Permits Cross-Site Scripting...

377

Hanford facility dangerous waste permit application  

SciTech Connect (OSTI)

This document, Set 2, the Hanford Facility Dangerous Waste Part B Permit Application, consists of 15 chapters that address the content of the Part B checklists prepared by the Washington State Department of Ecology (Ecology 1987) and the US Environmental Protection Agency (40 CFR 270), with additional information requirements mandated by the Hazardous and Solid Waste Amendments of 1984 and revisions of WAC 173-303. For ease of reference, the Washington State Department of Ecology checklist section numbers, in brackets, follow the chapter headings and subheadings. This permit application contains umbrella- type'' documentation with overall application to the Hanford Facility. This documentation is broad in nature and applies to all TSD units that have final status under the Hanford Facility Permit.

none,

1991-09-18T23:59:59.000Z

378

Underground Injection Control Permits and Registrations (Texas) |  

Broader source: Energy.gov (indexed) [DOE]

You are here You are here Home » Underground Injection Control Permits and Registrations (Texas) Underground Injection Control Permits and Registrations (Texas) < Back Eligibility Utility Agricultural Investor-Owned Utility State/Provincial Govt Industrial Construction Municipal/Public Utility Local Government Installer/Contractor Rural Electric Cooperative Fuel Distributor Savings Category Buying & Making Electricity Program Info State Texas Program Type Environmental Regulations Safety and Operational Guidelines Provider Texas Commission on Environmental Quality Chapter 27 of the Texas Water Code (the Injection Well Act) defines an "injection well" as "an artificial excavation or opening in the ground made by digging, boring, drilling, jetting, driving, or some other

379

WIPP Hazardous Waste Facility Permit Update  

SciTech Connect (OSTI)

The Waste Isolation Pilot Plant (WIPP) Hazardous Waste Facility Permit (HWFP) was issued on October 27, 1999 [1]. Since that time, the WIPP has sought modifications to clarify the permit language, provide alternative methods for meeting permit requirements and to update permit conditions. Significant advancements have been made in transuranic (TRU) waste management as the result of modifications to the HWFP. Among these advancements is a modification to obtain a drum age criteria (DAC) value to perform headspace gas sampling on drums to be super-compacted and placed in a 100-gallon overpack drum. In addition, the Section 311 permit modification request that would allow for more efficient waste characterization, and the modification to authorize the shipment and disposal of Remote-Handled (RH) TRU waste were merged together and submitted to the regulator as the Consolidated Permit Modification Request (PMR). The submittal of the Consolidated PMR came at the request of the regulator as part of responses to Notices of Deficiency (NODs) for the separate PMRs which had been submitted in previous years. Section 311 of the fiscal year 2004 Energy and Water Developments Appropriations Act (Public Law 108-137) [2] directs the Department of Energy to submit a permit modification that limits waste confirmation to radiography or visual examination of a statistical subpopulation of containers. Section 311 also specifically directs that disposal room performance standards be to be met by monitoring for volatile organic compounds in the underground disposal rooms. This statute translates into the elimination of other waste confirmation methods such as headspace gas sampling and analysis and solids sampling and analysis. These methods, as appropriate, will continue to be used by the generator sites during hazardous waste determinations or characterization activities. This modification is expected to reduce the overall cost of waste analysis by hundreds of millions of dollars [3]. Combining both the chap. 311 and RH TRU waste permit modification requests allows for both the regulator and DOE to expedite action on the modification requests. The Combined PMR reduces costs by having only one administrative process for both modification requests. (authors)

Kehrman, B.; Most, W. [Washington Regulatory and Environmental Services, 4021 National Parks Highway, Carlsbad, NM 88220 (United States)

2006-07-01T23:59:59.000Z

380

Permitting of Wind Energy Facilities: A Handbook  

SciTech Connect (OSTI)

This handbook has been written for individuals and groups involved in evaluating wind projects: decision-makers and agency staff at all levels of government, wind developers, interested parties and the public. Its purpose is to help stakeholders make permitting wind facility decisions in a manner which assures necessary environmental protection and responds to public needs.

NWCC Siting Work Group

2002-08-01T23:59:59.000Z

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


381

UCSF Bicycle Permit Application Transportation Services  

E-Print Network [OSTI]

UCSF Bicycle Permit Application Transportation Services 500 Parnassus Ave, Box 0240 MU- P7 Room 26 ____________________________________________________________________ ____________________________ ______________________________ ____________________________________________________________________ Street City State Zip Home Phone Number Work Phone Number Bicycle Make Color Frame Serial #Bicycle Model 1. Bicycles which are not moved for a period of 7 days or longer will be tagged for removal

Yamamoto, Keith

382

Two photo permits are available: Daily Photographer Permit and Annual Photographer Permit. Daily Photographer Permit is $75 and includes gate admission for up to 15 adults and photographer. To reserve  

E-Print Network [OSTI]

Two photo permits are available: Daily Photographer Permit and Annual Photographer Permit. Daily of the photo session will be $75 plus a $25 processing fee. Your Daily Photo Badge can be picked up the business day before. Any permits purchased on the day of the photo session will be $225 and subject

Netoff, Theoden

383

Enforcing Emissions Trading when Emissions Permits are Bankable  

Science Journals Connector (OSTI)

We propose enforcement strategies for emissions trading programs with bankable emissions permits that guarantee...

John K. Stranlund; Christopher Costello

2005-09-01T23:59:59.000Z

384

Alternative Fuels Data Center: Biofuels Construction and Permitting  

Alternative Fuels and Advanced Vehicles Data Center [Office of Energy Efficiency and Renewable Energy (EERE)]

Biofuels Construction Biofuels Construction and Permitting Assistance to someone by E-mail Share Alternative Fuels Data Center: Biofuels Construction and Permitting Assistance on Facebook Tweet about Alternative Fuels Data Center: Biofuels Construction and Permitting Assistance on Twitter Bookmark Alternative Fuels Data Center: Biofuels Construction and Permitting Assistance on Google Bookmark Alternative Fuels Data Center: Biofuels Construction and Permitting Assistance on Delicious Rank Alternative Fuels Data Center: Biofuels Construction and Permitting Assistance on Digg Find More places to share Alternative Fuels Data Center: Biofuels Construction and Permitting Assistance on AddThis.com... More in this section... Federal State Advanced Search All Laws & Incentives Sorted by Type

385

Alternative Fuels Data Center: Hydrogen Fueling Infrastructure Permitting  

Alternative Fuels and Advanced Vehicles Data Center [Office of Energy Efficiency and Renewable Energy (EERE)]

Hydrogen Fueling Hydrogen Fueling Infrastructure Permitting and Safety to someone by E-mail Share Alternative Fuels Data Center: Hydrogen Fueling Infrastructure Permitting and Safety on Facebook Tweet about Alternative Fuels Data Center: Hydrogen Fueling Infrastructure Permitting and Safety on Twitter Bookmark Alternative Fuels Data Center: Hydrogen Fueling Infrastructure Permitting and Safety on Google Bookmark Alternative Fuels Data Center: Hydrogen Fueling Infrastructure Permitting and Safety on Delicious Rank Alternative Fuels Data Center: Hydrogen Fueling Infrastructure Permitting and Safety on Digg Find More places to share Alternative Fuels Data Center: Hydrogen Fueling Infrastructure Permitting and Safety on AddThis.com... More in this section... Federal State Advanced Search

386

Water pollution Control Permit Fee Schedules (West Virginia) | Department  

Broader source: Energy.gov (indexed) [DOE]

pollution Control Permit Fee Schedules (West Virginia) pollution Control Permit Fee Schedules (West Virginia) Water pollution Control Permit Fee Schedules (West Virginia) < Back Eligibility Utility Fed. Government Commercial Agricultural Investor-Owned Utility State/Provincial Govt Industrial Construction Municipal/Public Utility Local Government Residential Installer/Contractor Rural Electric Cooperative Tribal Government Low-Income Residential Schools Retail Supplier Institutional Multi-Family Residential Systems Integrator Fuel Distributor Nonprofit General Public/Consumer Transportation Program Info State West Virginia Program Type Fees Siting and Permitting Provider Department of Environmental Protection This rule establishes schedules of permit application fees and annual permit fees for state water pollution control permits and national

387

Hanford Site air operating permit application  

SciTech Connect (OSTI)

The Clean Air Act Amendments of 1990, which amended the Federal Clean Air Act of 1977, required that the US Environmental Protection Agency develop a national Air Operating Permit Program, which in turn would require each state to develop an Air Operating Permit Program to identify all sources of ``regulated`` pollutants. Regulated pollutants include ``criteria`` pollutants (oxides of nitrogen, sulfur oxides, total suspended particulates, carbon monoxide, particulate matter greater than 10 micron, lead) plus 189 other ``Hazardous`` Air Pollutants. The Hanford Site, owned by the US Government and operated by the US Department of Energy, Richland Operations Office, is located in southcentral Washington State and covers 560 square miles of semi-arid shrub and grasslands located just north of the confluence of the Snake and Yakima Rivers with the Columbia River. This land, with restricted public access, provides a buffer for the smaller areas historically used for the production of nuclear materials, waste storage, and waste disposal. About 6 percent of the land area has been disturbed and is actively used. The Hanford Site Air Operating Permit Application consists of more than 1,100 sources and in excess of 300 emission points. Before January 1995, the maintenance and operations contractor and the environmental restoration contractor for the US Department of Energy completed an air emission inventory on the Hanford Site. The inventory has been entered into a database so that the sources and emission points can be tracked and updated information readily can be retrieved. The Hanford Site Air Operating Permit Application contains information current as of April 19, 1995.

NONE

1995-05-01T23:59:59.000Z

388

Broward County Online Solar Permitting (Florida) | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

Broward County Online Solar Permitting (Florida) Broward County Online Solar Permitting (Florida) Broward County Online Solar Permitting (Florida) < Back Eligibility Commercial Residential Savings Category Solar Buying & Making Electricity Program Info State Florida Program Type Solar/Wind Permitting Standards Provider Unincorporated Broward County Broward County now offers Go SOLAR Online Permitting*, for rooftop solar photovoltaic system permitting. This online permitting system may be used for residential or low commercial properties that are governed by a participating municipality. The online permitting system is designed to provide a one-stop solar permitting process with a single application form, electronic review and approval, and flat fee. Applicants can use this system to choose from pre-approved and pre-engineered solar panel mounting installation designs,

389

Alternative Fuels Data Center: Compressed Natural Gas (CNG) Permit  

Alternative Fuels and Advanced Vehicles Data Center [Office of Energy Efficiency and Renewable Energy (EERE)]

Compressed Natural Gas Compressed Natural Gas (CNG) Permit to someone by E-mail Share Alternative Fuels Data Center: Compressed Natural Gas (CNG) Permit on Facebook Tweet about Alternative Fuels Data Center: Compressed Natural Gas (CNG) Permit on Twitter Bookmark Alternative Fuels Data Center: Compressed Natural Gas (CNG) Permit on Google Bookmark Alternative Fuels Data Center: Compressed Natural Gas (CNG) Permit on Delicious Rank Alternative Fuels Data Center: Compressed Natural Gas (CNG) Permit on Digg Find More places to share Alternative Fuels Data Center: Compressed Natural Gas (CNG) Permit on AddThis.com... More in this section... Federal State Advanced Search All Laws & Incentives Sorted by Type Compressed Natural Gas (CNG) Permit Anyone dispensing CNG for use in vehicles must obtain a permit from the

390

Chapter 52 Permits, Registrations, and Prohibitory Rules (Kentucky) |  

Broader source: Energy.gov (indexed) [DOE]

Chapter 52 Permits, Registrations, and Prohibitory Rules (Kentucky) Chapter 52 Permits, Registrations, and Prohibitory Rules (Kentucky) Chapter 52 Permits, Registrations, and Prohibitory Rules (Kentucky) < Back Eligibility Agricultural Commercial Construction Developer Industrial Installer/Contractor Investor-Owned Utility Municipal/Public Utility Rural Electric Cooperative Utility Program Info State Kentucky Program Type Environmental Regulations Siting and Permitting Provider Kentucky Department for Environmental Protection Kentucky Administrative Regulation Chapter 52, entitled Air Quality: Permits, Registrations, and Prohibitory Rules, is promulgated under the authority of the Division of Air Quality within the Energy and Environment Cabinet's Department for Environmental Protection. Chapter 52 outlines the permitting requirements for all air pollution sources within the state;

391

Petroleum Pipeline Eminent Domain Permit Procedures (Georgia) | Department  

Broader source: Energy.gov (indexed) [DOE]

Petroleum Pipeline Eminent Domain Permit Procedures (Georgia) Petroleum Pipeline Eminent Domain Permit Procedures (Georgia) Petroleum Pipeline Eminent Domain Permit Procedures (Georgia) < Back Eligibility Commercial Construction Developer Fuel Distributor General Public/Consumer Industrial Investor-Owned Utility Municipal/Public Utility Utility Program Info State Georgia Program Type Environmental Regulations Siting and Permitting Provider Georgia Department of Natural Resources The Petroleum Pipeline Eminent Domain Permit Procedures serve to protect Georgia's natural and environmental resources by requiring permits be issued by the Director of the Environmental Protection Division prior to any petroleum or petroleum product pipe company acquiring property or interests by eminent domain. Monitoring conditions will be issued with

392

General Conditions Applicable to Water Discharge Permits and Procedures and  

Broader source: Energy.gov (indexed) [DOE]

General Conditions Applicable to Water Discharge Permits and General Conditions Applicable to Water Discharge Permits and Procedures and Criteria for Issuing Water Discharge Permits (Connecticut) General Conditions Applicable to Water Discharge Permits and Procedures and Criteria for Issuing Water Discharge Permits (Connecticut) < Back Eligibility Agricultural Commercial Construction Fed. Government Fuel Distributor General Public/Consumer Industrial Installer/Contractor Institutional Investor-Owned Utility Local Government Low-Income Residential Multi-Family Residential Municipal/Public Utility Nonprofit Residential Retail Supplier Rural Electric Cooperative Schools State/Provincial Govt Systems Integrator Transportation Tribal Government Utility Program Info State Connecticut Program Type Siting and Permitting Provider Department of Energy and Environmental Protection

393

Permit Types, Tiers, and Parking Privileges 2012-2013 Alr 07-01-2012 1  

E-Print Network [OSTI]

loading permit from booth. M (motorcycle permit) Motorcycle Spaces ME (Maple Avenue Complex) Perimeter

394

Alternative Fuels Data Center: Compressed Natural Gas (CNG) Dealer Permit  

Alternative Fuels and Advanced Vehicles Data Center [Office of Energy Efficiency and Renewable Energy (EERE)]

Compressed Natural Gas Compressed Natural Gas (CNG) Dealer Permit to someone by E-mail Share Alternative Fuels Data Center: Compressed Natural Gas (CNG) Dealer Permit on Facebook Tweet about Alternative Fuels Data Center: Compressed Natural Gas (CNG) Dealer Permit on Twitter Bookmark Alternative Fuels Data Center: Compressed Natural Gas (CNG) Dealer Permit on Google Bookmark Alternative Fuels Data Center: Compressed Natural Gas (CNG) Dealer Permit on Delicious Rank Alternative Fuels Data Center: Compressed Natural Gas (CNG) Dealer Permit on Digg Find More places to share Alternative Fuels Data Center: Compressed Natural Gas (CNG) Dealer Permit on AddThis.com... More in this section... Federal State Advanced Search All Laws & Incentives Sorted by Type Compressed Natural Gas (CNG) Dealer Permit

395

Solar and Wind Permitting Standards | Open Energy Information  

Open Energy Info (EERE)

Permitting Standards Permitting Standards Jump to: navigation, search Permitting standards can facilitate the installation of wind and solar energy systems by specifying the conditions and fees involved in project development. Some local governments have adopted simplified or expedited permitting standards for wind and/or solar. “Top-of-the-stack” or fast-track permitting saves system owners and project developers time and money. Some states have established maximum fees that local governments may charge for a permit for a solar or wind energy system. In addition, some states have developed (or have supported the development of) model wind ordinances for use by local governments. [1] Contents 1 Solar/Wind Permitting Standards Incentives 2 References Solar/Wind Permitting Standards Incentives

396

File:UtilityPermitFranchiseApp.pdf | Open Energy Information  

Open Energy Info (EERE)

UtilityPermitFranchiseApp.pdf Jump to: navigation, search File File history File usage Metadata File:UtilityPermitFranchiseApp.pdf Size of this preview: 463 599 pixels. Other...

397

DOE to Hold Public Information Meetings on Permit Modifications  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

Meetings On Permit Modifications CARLSBAD, N.M., May 8, 2001 - The public is invited to comment on two proposed modifications to the Hazardous Waste Facility Permit for the Waste...

398

Idaho Dredge and Fill Permits Webpage | Open Energy Information  

Open Energy Info (EERE)

Fill Permits Webpage Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: Idaho Dredge and Fill Permits Webpage Author Idaho Department of Environmental...

399

WAC - 173-401 Operating Permit Regulation | Open Energy Information  

Open Energy Info (EERE)

Operating Permit Regulation Jump to: navigation, search OpenEI Reference LibraryAdd to library Legal Document- RegulationRegulation: WAC - 173-401 Operating Permit RegulationLegal...

400

EPA Citizens Guide to Hazardous Waste Permitting Process | Open...  

Open Energy Info (EERE)

Citizens Guide to Hazardous Waste Permitting Process Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: EPA Citizens Guide to Hazardous Waste Permitting...

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


401

Hazardous Waste Facility Permit Fact Sheet | Open Energy Information  

Open Energy Info (EERE)

search OpenEI Reference LibraryAdd to library Legal Document- OtherOther: Hazardous Waste Facility Permit Fact SheetLegal Abstract Hazardous Waste Facility Permit Fact Sheet,...

402

Hazardous Waste Facility Permit Public Comments to Community...  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

covered by the permit. Please use another word for "promulgated," such as "created." This section should state that it is a ten-year permit, set to expire in November 2020. It...

403

Property:AirQualityPermitProcess | Open Energy Information  

Open Energy Info (EERE)

"AirQualityPermitProcess" Showing 1 page using this property. R RAPIDOverviewGeothermalAir QualityAlaska + The Air Permit process in Alaska is divided into two divisions: Title...

404

Alternative Fuels Data Center: Fueling Station Air Quality Permit Exemption  

Alternative Fuels and Advanced Vehicles Data Center [Office of Energy Efficiency and Renewable Energy (EERE)]

Fueling Station Air Fueling Station Air Quality Permit Exemption to someone by E-mail Share Alternative Fuels Data Center: Fueling Station Air Quality Permit Exemption on Facebook Tweet about Alternative Fuels Data Center: Fueling Station Air Quality Permit Exemption on Twitter Bookmark Alternative Fuels Data Center: Fueling Station Air Quality Permit Exemption on Google Bookmark Alternative Fuels Data Center: Fueling Station Air Quality Permit Exemption on Delicious Rank Alternative Fuels Data Center: Fueling Station Air Quality Permit Exemption on Digg Find More places to share Alternative Fuels Data Center: Fueling Station Air Quality Permit Exemption on AddThis.com... More in this section... Federal State Advanced Search All Laws & Incentives Sorted by Type Fueling Station Air Quality Permit Exemption

405

Idaho Application for Water Permit (DWR Form 202) | Open Energy...  

Open Energy Info (EERE)

Idaho Application for Water Permit (DWR Form 202) Jump to: navigation, search OpenEI Reference LibraryAdd to library Form: Idaho Application for Water Permit (DWR Form 202)...

406

On-Site Wastewater Treatment Systems: Selecting and Permitting (Spanish)  

E-Print Network [OSTI]

This publication explains how to select and obtain a permit for an on-site wastewater treatment system in Texas....

Lesikar, Bruce J.

2005-04-30T23:59:59.000Z

407

Biotechnology Regulatory Services public data file (permits, notifications,  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

Biotechnology Regulatory Services public data file (permits, notifications, Biotechnology Regulatory Services public data file (permits, notifications, and petitions) Agriculture Community Menu DATA APPS EVENTS DEVELOPER STATISTICS COLLABORATE ABOUT Agriculture You are here Data.gov » Communities » Agriculture » Data Biotechnology Regulatory Services public data file (permits, notifications, and petitions) Dataset Summary Description Public information on BRS applications for genetically engineered permits, notifications, and petitions. Tags {BRS,Permits,Notifications,Petitions,GE,"Agronomic Properties","Bacterial Resistance","Fungal Resistance","Herbicide Tolerance","Insect Resistance","Marker Gene","Nematode Resistance","Product Quality","Virus Resistance",Institution,Article,Phenotypes,"Genotypes "}

408

Hazardous Waste Transporter Permits (Connecticut) | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

Hazardous Waste Transporter Permits (Connecticut) Hazardous Waste Transporter Permits (Connecticut) Hazardous Waste Transporter Permits (Connecticut) < Back Eligibility Agricultural Commercial Construction Fed. Government Fuel Distributor General Public/Consumer Industrial Installer/Contractor Institutional Investor-Owned Utility Local Government Low-Income Residential Multi-Family Residential Municipal/Public Utility Nonprofit Residential Retail Supplier Rural Electric Cooperative Schools State/Provincial Govt Systems Integrator Transportation Tribal Government Utility Program Info State Connecticut Program Type Siting and Permitting Provider Department of Energy and Environmental Protection Transportation of hazardous wastes into or through the State of Connecticut requires a permit. Some exceptions apply. The regulations provide

409

Aquatic Habitat Protection Permit (Saskatchewan, Canada) | Department of  

Broader source: Energy.gov (indexed) [DOE]

Aquatic Habitat Protection Permit (Saskatchewan, Canada) Aquatic Habitat Protection Permit (Saskatchewan, Canada) Aquatic Habitat Protection Permit (Saskatchewan, Canada) < Back Eligibility Agricultural Commercial Construction Developer Industrial Installer/Contractor Institutional Investor-Owned Utility Local Government Low-Income Residential Multi-Family Residential Municipal/Public Utility Nonprofit Residential Rural Electric Cooperative Schools Utility Savings Category Buying & Making Electricity Water Home Weatherization Solar Wind Program Info State Saskatchewan Program Type Environmental Regulations Siting and Permitting Provider Saskatchewan Ministry of the Environment The Environmental Management and Protection Act, 2002 (EMPA) provides for the protection of aquatic habitat and states that a permit is required: to

410

City of Portland - Streamlined Building Permits for Residential Solar  

Broader source: Energy.gov (indexed) [DOE]

Commercial Commercial Residential Savings Category Solar Buying & Making Electricity Heating & Cooling Water Heating Program Info State Oregon Program Type Solar/Wind Permitting Standards Provider City of Portland The City of Portland's Bureau of Development Services (BDS) developed an electronic permitting process for residential solar energy system installations. With this streamlined, expedited process, solar contractors can submit the project plans and permit application online for residential installations. In order to file the online application, the contractor must first be trained. The City of Portland has staff at the permitting desk trained as solar experts to assist solar contractors who need help filing their permits in person. This process has a turnaround time of

411

Storm Water Discharge Permits (Wisconsin) | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

Storm Water Discharge Permits (Wisconsin) Storm Water Discharge Permits (Wisconsin) Storm Water Discharge Permits (Wisconsin) < Back Eligibility Agricultural Commercial Construction Developer Fed. Government Fuel Distributor General Public/Consumer Industrial Installer/Contractor Institutional Investor-Owned Utility Local Government Low-Income Residential Multi-Family Residential Municipal/Public Utility Nonprofit Residential Retail Supplier Rural Electric Cooperative Schools State/Provincial Govt Systems Integrator Transportation Tribal Government Utility Program Info Start Date 08/2004 State Wisconsin Program Type Siting and Permitting Provider Department of Natural Resources Wisconsin's storm water runoff regulations include permitting requirements for construction sites and industrial facilities, including those

412

City and County of Denver - Solar Panel Permitting (Colorado) | Department  

Broader source: Energy.gov (indexed) [DOE]

Solar Panel Permitting (Colorado) Solar Panel Permitting (Colorado) City and County of Denver - Solar Panel Permitting (Colorado) < Back Eligibility Commercial Construction General Public/Consumer Industrial Low-Income Residential Multi-Family Residential Residential Savings Category Solar Buying & Making Electricity Heating & Cooling Water Heating Program Info State Colorado Program Type Solar/Wind Permitting Standards Provider Department of Development Services Construction, Electrical, Plumbing and Zoning Permits* are required for Photovoltaic (PV) systems installed in the city of Denver. Denver provides same day permit review for most solar panel projects. More complex engineering projects may still be required to go through the Plan Review process. To obtain Zoning Permits for flush mounted solar panels, applicants must

413

Solar/Wind Permitting Standards | Open Energy Information  

Open Energy Info (EERE)

Permitting Standards Permitting Standards < Solar Jump to: navigation, search Permitting standards can facilitate the installation of wind and solar energy systems by specifying the conditions and fees involved in project development. Some local governments have adopted simplified or expedited permitting standards for wind and/or solar. “Top-of-the-stack” or fast-track permitting saves system owners and project developers time and money. Some states have established maximum fees that local governments may charge for a permit for a solar or wind energy system. In addition, some states have developed (or have supported the development of) model wind ordinances for use by local governments. [1] Solar/Wind Permitting Standards Incentives CSV (rows 1 - 55) Incentive Incentive Type Place Applicable Sector Eligible Technologies Active

414

GRR/Section 6 - Construction Permits Overview | Open Energy Information  

Open Energy Info (EERE)

6 - Construction Permits Overview 6 - Construction Permits Overview < GRR Jump to: navigation, search GRR-logo.png GEOTHERMAL REGULATORY ROADMAP Roadmap Home Roadmap Help List of Sections Section 6 - Construction Permits Overview 06 - ConstructionPermitsOverview.pdf Click to View Fullscreen Triggers None specified Click "Edit With Form" above to add content 06 - ConstructionPermitsOverview.pdf 06 - ConstructionPermitsOverview.pdf Error creating thumbnail: Page number not in range. Error creating thumbnail: Page number not in range. Flowchart Narrative Constructing a geothermal power plant requires numerous permits from Federal, state, and local governments, related to transporting construction materials, encroaching upon Federal and state right-of-ways, demolishing existing structures and building new structures.

415

Transmission/Permitting Atlas/State Data | Open Energy Information  

Open Energy Info (EERE)

Transmission/Permitting Atlas/State Data Transmission/Permitting Atlas/State Data < Transmission‎ | Permitting Atlas Jump to: navigation, search PermittingAtlasHeader.png Roadmap Compare States General Transmission Dashboard Permitting Atlas Compare States Arizona California Colorado Idaho Montana Nevada New Mexico Oregon Utah Washington Wyoming Resource Library NEPA Database State State Siting Act State Preemptive Authority Siting/Permitting Entities Permit Processing Timeframe Arizona None If TLSC finds compliance with local land use unreasonable or unfeasible, then the TLSC may grant a certificate Arizona Corporation Commission (ACC); Transmission Line Siting Committee (TLSC) 210-240 Days California Public Utilities Code Section 1001 Local jurisdictions are preempted from regulating electric power line projects California Public Utilities Commission (CPUC) 18 months

416

Solar and Wind Permitting Laws | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

Permitting Laws Permitting Laws Solar and Wind Permitting Laws < Back Eligibility Commercial Industrial Nonprofit Residential Schools Savings Category Solar Buying & Making Electricity Wind Program Info State New Jersey Program Type Solar/Wind Permitting Standards Provider New Jersey Department of Community Affairs New Jersey has enacted three separate laws addressing local permitting practices for solar and wind energy facilities. The first deals with solar and wind facilities located in industrial-zoned districts; the second with wind energy devices sited on piers; and the third addresses permitting standards small wind energy devices in general. All three are described below. '''Solar and Wind as Permitted Uses in Industrial Zones''' In March 2009 the state enacted legislation (A.B. 2550) defining facilities

417

Presidential Permits and Export Authorizations - Frequently Asked Questions  

Broader source: Energy.gov (indexed) [DOE]

Permits and Export Permits and Export Authorizations - Frequently Asked Questions Presidential Permits and Export Authorizations - Frequently Asked Questions Presidential Permits Export Authorizations Self Certifications Annual Reports Presidential Permits What are they? Permits for the construction, connection, operation and/or maintenance of electric transmission lines that cross the U.S. international border. What are the criteria? Two primary criteria are used to determine if a proposed project is consistent with the public interest. 1. DOE considers the impact the proposed project would have on the operating reliability of the U.S. electric power supply. 2. DOE must comply with the National Environmental Policy Act of 1969 (NEPA), which requires DOE to consider the environmental consequences

418

Request for Information on Permitting of Transmission Lines: Federal  

Broader source: Energy.gov (indexed) [DOE]

Request for Information on Permitting of Transmission Lines: Request for Information on Permitting of Transmission Lines: Federal Register Notice Volume 77, No. 38 - Feb. 27, 2012 Request for Information on Permitting of Transmission Lines: Federal Register Notice Volume 77, No. 38 - Feb. 27, 2012 The Department of Energy's Office of Electricity Delivery and Energy Reliability requested information on questions related to permitting of transmission lines. Infrastructure projects - such as high voltage, long distance, electric transmission facilities - often involve multiple Federal, State, local and Tribal authorizations and are subject to a wide array of processes and procedural requirements in order to obtain all necessary permits and other authorizations. Delays in securing required statutory reviews, permits, and consultations can threaten the completion

419

Presidential Permit Holders - Annual Reports | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

Permit Holders - Permit Holders - Annual Reports Presidential Permit Holders - Annual Reports Presidential permit holders are responsible for reporting the gross amount electric energy which flows into and out of the United States over the permitted international transmission facility regardless if the energy is wheeled to or for another entity. For example, utility A receives a Presidential permit for a single international transmission line across the U.S.-Canadian border. During the calendar year just completed, 300,000,000 kilowatt-hours (kwh) are imported from Canada across this line. Utility A arranged for the purchase of 200,000,000 kwh for its own use and wheeled 100,000,000 kwh to neighboring utility B. Utility A must report 300,000,000 kwh of imports over the international

420

Environmental assessment for presidential permit applications for Baja  

Broader source: Energy.gov (indexed) [DOE]

Environmental assessment for presidential permit applications for Environmental assessment for presidential permit applications for Baja California Power Inc and Sempra Energy Resources PP-234 and PP-235 Environmental assessment for presidential permit applications for Baja California Power Inc and Sempra Energy Resources PP-234 and PP-235 Environmental assessment for presidential permit applications for Baja California Power Inc and Sempra Energy Resources. December 2001 PP-234 and PP-235 Enviornmental assessment for presidential permit applications for Baja California Power Inc and Sempra Energy Resources PP-234 and PP-235 More Documents & Publications DOE Environmental Assessment EA-1391 for Presidential Permit Applications for Baja California Power Inc and Sempra Energy Resources PP-234 and PP-235: Finding of No Significant Impact

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


421

Coastal Permit Program Rules (New Jersey) | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

Coastal Permit Program Rules (New Jersey) Coastal Permit Program Rules (New Jersey) Coastal Permit Program Rules (New Jersey) < Back Eligibility Utility Fed. Government Commercial Agricultural Investor-Owned Utility State/Provincial Govt Industrial Construction Municipal/Public Utility Local Government Residential Installer/Contractor Rural Electric Cooperative Tribal Government Low-Income Residential Schools Retail Supplier Institutional Multi-Family Residential Systems Integrator Fuel Distributor Nonprofit General Public/Consumer Transportation Savings Category Alternative Fuel Vehicles Hydrogen & Fuel Cells Buying & Making Electricity Water Home Weatherization Solar Wind Program Info State New Jersey Program Type Siting and Permitting Provider Department of Environmental Protection The Coastal Permit Program Rules provide the processes for permit reviews.

422

DOE Seeking Information on Transmission Line Permitting | Department of  

Broader source: Energy.gov (indexed) [DOE]

Seeking Information on Transmission Line Permitting Seeking Information on Transmission Line Permitting DOE Seeking Information on Transmission Line Permitting February 27, 2012 - 3:25pm Addthis The Department of Energy's Office of Electricity Delivery and Energy Reliability is seeking information on the questions related to permitting of transmission lines. Infrastructure projects - such as high voltage, long distance, electric transmission facilities - often involve multiple Federal, State, local, and Tribal authorizations and are subject to a wide array of processes and procedural requirements in order to obtain all necessary permits and other authorizations. Delays in securing required statutory reviews, permits, and consultations can threaten the completion projects of national and regional significance. This Request for

423

Orange County - Wind Permitting Standards | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

Orange County - Wind Permitting Standards Orange County - Wind Permitting Standards Orange County - Wind Permitting Standards < Back Eligibility Agricultural Commercial Residential Savings Category Wind Buying & Making Electricity Program Info State California Program Type Solar/Wind Permitting Standards Provider OC Planning In December 2010, the County of Orange Board of Supervisors adopted small wind performance and development standards (Ord. No. 10-020) in order to promote distributed generation systems in non-urbanized areas (as defined in Government Code Section 65944(d)(2)) within the unincorporated territory. Permitting standards are for systems of 50 kW or less per customer site, for which the energy is primarily for on-site consumption. Height: For systems 45 feet tall or less, a use permit must be approved by

424

Expedited Permitting of Grid-Scale Wind Energy Development (Maine) |  

Broader source: Energy.gov (indexed) [DOE]

Expedited Permitting of Grid-Scale Wind Energy Development (Maine) Expedited Permitting of Grid-Scale Wind Energy Development (Maine) Expedited Permitting of Grid-Scale Wind Energy Development (Maine) < Back Eligibility Utility Fed. Government Commercial Agricultural Investor-Owned Utility State/Provincial Govt Industrial Construction Municipal/Public Utility Local Government Residential Installer/Contractor Rural Electric Cooperative Tribal Government Low-Income Residential Schools Retail Supplier Institutional Multi-Family Residential Systems Integrator Fuel Distributor Nonprofit General Public/Consumer Transportation Savings Category Wind Buying & Making Electricity Program Info State Maine Program Type Siting and Permitting Maine's Expedited Permitting of Grid-Scale Wind Energy Development statue provides an expedited permitting pathway for proposed wind developments in

425

Request for Information on Permitting of Transmission Lines: Federal  

Broader source: Energy.gov (indexed) [DOE]

Request for Information on Permitting of Transmission Lines: Request for Information on Permitting of Transmission Lines: Federal Register Notice Volume 77, No. 38 - Feb. 27, 2012 Request for Information on Permitting of Transmission Lines: Federal Register Notice Volume 77, No. 38 - Feb. 27, 2012 The Department of Energy's Office of Electricity Delivery and Energy Reliability requested information on questions related to permitting of transmission lines. Infrastructure projects - such as high voltage, long distance, electric transmission facilities - often involve multiple Federal, State, local and Tribal authorizations and are subject to a wide array of processes and procedural requirements in order to obtain all necessary permits and other authorizations. Delays in securing required statutory reviews, permits, and consultations can threaten the completion

426

Chapter 38 Hazardous Waste Permitting Process (Kentucky) | Department of  

Broader source: Energy.gov (indexed) [DOE]

8 Hazardous Waste Permitting Process (Kentucky) 8 Hazardous Waste Permitting Process (Kentucky) Chapter 38 Hazardous Waste Permitting Process (Kentucky) < Back Eligibility Agricultural Commercial Construction Developer Fed. Government Industrial Institutional Investor-Owned Utility Local Government Municipal/Public Utility Rural Electric Cooperative Schools State/Provincial Govt Transportation Tribal Government Utility Savings Category Alternative Fuel Vehicles Hydrogen & Fuel Cells Program Info State Kentucky Program Type Environmental Regulations Provider Department for Environmental Protection This administrative regulation establishes the general provisions for storage, treatment, recycling, or disposal of hazardous waste. It provides information about permits and specific requirements for containers, tanks,

427

Local Option - Building Permit Fee Waivers for Renewable Energy Projects  

Broader source: Energy.gov (indexed) [DOE]

Local Option - Building Permit Fee Waivers for Renewable Energy Local Option - Building Permit Fee Waivers for Renewable Energy Projects (Connecticut) Local Option - Building Permit Fee Waivers for Renewable Energy Projects (Connecticut) < Back Eligibility Agricultural Commercial Construction Fed. Government General Public/Consumer Industrial Installer/Contractor Institutional Local Government Low-Income Residential Multi-Family Residential Nonprofit Residential Schools State Government Tribal Government Savings Category Bioenergy Alternative Fuel Vehicles Hydrogen & Fuel Cells Water Buying & Making Electricity Solar Home Weatherization Wind Program Info State Connecticut Program Type Solar/Wind Permitting Standards Provider Department of Energy and Environmental Protection As of July 2011, Connecticut authorizes municipalities to pass a local

428

Phase III - Permitting and Initial Development | Open Energy Information  

Open Energy Info (EERE)

III - Permitting and Initial Development III - Permitting and Initial Development Jump to: navigation, search GEOTHERMAL ENERGYGeothermal Home GEA Development Phase III: Permitting and Initial Development GEA Development Phases The Geothermal Energy Association's (GEA) Geothermal Reporting Terms and Definitions are a guideline for geothermal developers to use when submitting geothermal resource development information to GEA for public dissemination in its annual US Geothermal Power Production and Development Update. GEA's Geothermal Reporting Terms and Definitions serve to increase the consistency, accuracy, and reliability of industry information presented in the development updates. Phase I - Resource Procurement and Identification Phase II - Resource Exploration and Confirmation Phase III - Permitting and Initial Development

429

Alteration of Terrain Permits (New Hampshire) | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

Alteration of Terrain Permits (New Hampshire) Alteration of Terrain Permits (New Hampshire) Alteration of Terrain Permits (New Hampshire) < Back Eligibility Agricultural Commercial Construction Fed. Government Fuel Distributor General Public/Consumer Industrial Installer/Contractor Institutional Investor-Owned Utility Local Government Low-Income Residential Multi-Family Residential Municipal/Public Utility Nonprofit Residential Retail Supplier Rural Electric Cooperative Schools State/Provincial Govt Systems Integrator Transportation Tribal Government Utility Savings Category Alternative Fuel Vehicles Hydrogen & Fuel Cells Buying & Making Electricity Water Home Weatherization Solar Wind Program Info State New Hampshire Program Type Siting and Permitting Provider NH Department of Environmental Services Alteration of Terrain Bureau

430

Bureau of Land Management - Geothermal Drilling Permit | Open...  

Open Energy Info (EERE)

Bureau of Land Management - Geothermal Drilling Permit Jump to: navigation, search OpenEI Reference LibraryAdd to library Form: Bureau of Land Management - Geothermal Drilling...

431

Frederick County (Maryland) Department of Permits and Inspections (FCDPI)  

Broader source: Energy.gov [DOE]

The Frederick County (Maryland) Department of Permits and Inspections (FCDPI) is currently reviewing two proposed amendments to the 2012 International Energy Conservation Code (IECC), copies of...

432

Colorado - Access Permit Pre-Design Checklist | Open Energy Informatio...  

Open Energy Info (EERE)

Checklist Jump to: navigation, search OpenEI Reference LibraryAdd to library General: Colorado - Access Permit Pre-Design Checklist Author Colorado Department of Transportation...

433

ARM 12-14-101 - Commercial Use Permitting Requirements: Definitions...  

Open Energy Info (EERE)

permitting requirements for land within the jurisdiction of the Montana Department of Fish, Wildlife and Parks. Published NA Year Signed or Took Effect 2009 Legal Citation ARM...

434

Alaska Sample Special Area Permit | Open Energy Information  

Open Energy Info (EERE)

to library General: Alaska Sample Special Area Permit Author Alaska Department of Fish and Game Published Division of Habitat, 122012 DOI Not Provided Check for DOI...

435

50 CFR 13 - General Permit Procedures | Open Energy Information  

Open Energy Info (EERE)

denial, suspension, revocation, and general administration of permits issued by the Fish and Wildlife Service. Published NA Year Signed or Took Effect 2014 Legal Citation 50...

436

Application for Presidential Permit OE Docket No. PP-371 Northern...  

Broader source: Energy.gov (indexed) [DOE]

Conservation Law Foundation, Appalachian Mountain Club, and Society for the Protection of New Hampshire Forests Application for Presidential Permit OE Docket No. PP-371 Northern...

437

Application for Presidential Permit OE Docket No. PP-400 TDI...  

Broader source: Energy.gov (indexed) [DOE]

Project - Comments and Motion to Intervene of Conservation Law Foundation Application for Presidential Permit OE Docket No. PP-400 TDI-NE - New England Clean Power Link Project -...

438

CDOT - Utility/Special Use Permit Application | Open Energy Informatio...  

Open Energy Info (EERE)

to the CDOT UtilitySpecial Use Permit application. Author Colorado Department of Transportation Published Colorado Department of Transportation, 2007 DOI Not Provided Check for...

439

CDOT - State Highway Access Permit Application | Open Energy...  

Open Energy Info (EERE)

CDOT - State Highway Access Permit Application Author Colorado Department of Transportation Published Colorado Department of Transportation, 2010 DOI Not Provided Check for...

440

CDOT - Permit Standard Provisions Example | Open Energy Information  

Open Energy Info (EERE)

General: CDOT - Permit Standard Provisions Example Author Colorado Department of Transportation Published Colorado Department of Transportation, 2006 DOI Not Provided Check for...

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


441

Innovation and Success in Solar Permitting and Inspections  

Broader source: Energy.gov (indexed) [DOE]

Webinar 2: Innovation and Success in Solar Permitting and Inspections Transcript June 26, 2013 Speaker: Courtney Kendal Slide 1: Good afternoon. My name is Courtney Kendall,...

442

EPA - Construction General Permit webpage | Open Energy Information  

Open Energy Info (EERE)

webpage Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: EPA - Construction General Permit webpage Abstract This is the Environmental Protection...

443

CDWR Well Permitting Forms and Associated Documents | Open Energy...  

Open Energy Info (EERE)

Associated Documents Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: CDWR Well Permitting Forms and Associated Documents Abstract This webpage...

444

BLM - Information on Cultural Resource Use Permits webpage |...  

Open Energy Info (EERE)

Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: BLM - Information on Cultural Resource Use Permits webpage Abstract This webpage provides information...

445

Application for Presidential Permit OE Docket No. PP-387 Soule...  

Broader source: Energy.gov (indexed) [DOE]

maintain electric transmission facilities at the U.S. - Canada Border. SOULE RIVER HYDROELECTRIC PROJECT More Documents & Publications Application for Presidential Permit OE...

446

Application for Presidential Permit OE Docket No. PP-387 Soule...  

Broader source: Energy.gov (indexed) [DOE]

Correction Application for Presidential Permit OE Docket No. PP-387 Soule River Hydroelectric Project; Federal Register Notice, Volume 78, No. 154 - Aug. 9, 2013: Correction...

447

Application for Presidential Permit OE Docket No. PP-387 Soule...  

Broader source: Energy.gov (indexed) [DOE]

July 30, 2013 Application for Presidential Permit OE Docket No. PP-387 Soule River Hydroelectric Project: Federal Register Notice, Volume 78, No. 146 - July 30, 2013 Application...

448

Regulatory and Permitting Information Desktop Toolkit (Fact Sheet)  

SciTech Connect (OSTI)

Overview of DOE's Regulatory and Permitting Information Desktop (RAPID) Toolkit project, providing information on where to go to view documents and who to contact to get involved.

Young, K.

2014-04-01T23:59:59.000Z

449

Property:ExplorationPermit-PreDrilling | Open Energy Information  

Open Energy Info (EERE)

Permit from the Hawaii Department of Land and Natural Resources Engineering Division to conduct any exploration activity on state or reserved lands for evidence of geothermal...

450

Hawaii Guidelines for NPDES Notice of General Permit Coverage...  

Open Energy Info (EERE)

an overview of the NPDES General Permit process. Author State of Hawaii Department of Health Published State of Hawaii, 92004 DOI Not Provided Check for DOI availability: http:...

451

Hawaii Application for Community Noise Permit (DOH Form CNP)...  

Open Energy Info (EERE)

Application for Community Noise Permit Organization State of Hawaii Department of Health Published Publisher Not Provided, 012008 DOI Not Provided Check for DOI availability:...

452

Hawaii Guide for Filing Community Noise Permit Applications ...  

Open Energy Info (EERE)

permit applications for construction activities. Author State of Hawaii Department of Health Published State of Hawaii, 2008 DOI Not Provided Check for DOI availability: http:...

453

Hawaii EIS-EA Permit Packet | Open Energy Information  

Open Energy Info (EERE)

PacketPermittingRegulatory GuidanceSupplemental Material Authors Hawaii Department of Health and Office of Environmental Quality Control Published State of Hawaii, 72014 DOI Not...

454

Appendix F. Permits AnnualSiteEnvironmentalRepor  

E-Print Network [OSTI]

/17/2003 DOE DOE BWXT CAA Depleted Uranium Forming and Heat Transfer (Construction Permit) 950266P 11/4/1998 7

Pennycook, Steve

455

Request for Information on Improving Performance of Federal Permitting...  

Broader source: Energy.gov (indexed) [DOE]

of Infrastructure Projects: Federal Register Notice Volume 78, No. 168 - August 29, 2013 Request for Information on Improving Performance of Federal Permitting and Review of...

456

Application for Presidential Permit OE Docket No. PP-299 Sea...  

Broader source: Energy.gov (indexed) [DOE]

99 Sea Breeze Pacific Regional Transmission System, INC Application for Presidential Permit OE Docket No. PP-299 Sea Breeze Pacific Regional Transmission System, INC TBDApplication...

457

WSDE Air Operating Permits Register Entries webpage | Open Energy...  

Open Energy Info (EERE)

takes on a facility's permit application. Author Washington State Department of Ecology Published Washington State Department of Ecology, Date Not Provided DOI Not Provided...

458

File:CDPHE Industrial Individual Wastewater Discharge Permit...  

Open Energy Info (EERE)

Industrial Individual Wastewater Discharge Permit Application.pdf Jump to: navigation, search File File history File usage Metadata File:CDPHE Industrial Individual Wastewater...

459

Nevada Sample Application for Permit Under Utility Environmental...  

Open Energy Info (EERE)

Collins. Initial Application of K Road Moapa Solar, LLC for a Permit to Construct A Transmission Line Under the Utility Environmental Protection Act. Retrieved from "http:...

460

Property:AirQualityPermitAgency | Open Energy Information  

Open Energy Info (EERE)

"AirQualityPermitAgency" Showing 1 page using this property. R RAPIDOverviewGeothermalAir QualityAlaska + Alaska Department of Environmental Conservation + Retrieved from...

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


461

UPDES Storm Water Permits: General Construction Website | Open...  

Open Energy Info (EERE)

Construction Website Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: UPDES Storm Water Permits: General Construction Website Abstract this website...

462

Air Permit Program Information Page | Open Energy Information  

Open Energy Info (EERE)

Web Site: Air Permit Program Information Page Author Division of Air Quality Published Publisher Not Provided, Date Not Provided DOI Not Provided Check for DOI availability: http:...

463

Title V Operation Permit Application Webpage | Open Energy Information  

Open Energy Info (EERE)

Application Webpage Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: Title V Operation Permit Application Webpage Author Division of Air Quality...

464

Air Permit Program Application Forms | Open Energy Information  

Open Energy Info (EERE)

Web Site: Air Permit Program Application Forms Author Division of Air Quality Published Publisher Not Provided, Date Not Provided DOI Not Provided Check for DOI availability:...

465

Idaho Permit to Construct Application Webpage | Open Energy Informatio...  

Open Energy Info (EERE)

Application Webpage Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: Idaho Permit to Construct Application Webpage Abstract This webpage provides access...

466

Alaska Division of Water Permit Fees | Open Energy Information  

Open Energy Info (EERE)

Web Site: Alaska Division of Water Permit Fees Author Alaska Division of Water Published Publisher Not Provided, Date Not Provided DOI Not Provided Check for DOI availability:...

467

Colorado Construction Air Permit Application | Open Energy Information  

Open Energy Info (EERE)

for a construction permit for construction of a commercial or industrial source of air pollution. Form Type ApplicationNotice Form Topic Air Pollution Control Division -...

468

Hawaii Air Pollution Control Permits Webpage | Open Energy Information  

Open Energy Info (EERE)

Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: Hawaii Air Pollution Control Permits Webpage Abstract Information about Air Pollution Control...

469

Optimizing operational flexibility and enforcement liability in Title V permits  

SciTech Connect (OSTI)

Now that most states have interim or full approval of the portions of their state implementation plans (SIPs) implementing Title V (40 CFR Part 70) of the Clean Air Act Amendments (CAAA), most sources which require a Title V permit have submitted or are well on the way to submitting a Title V operating permit application. Numerous hours have been spent preparing applications to ensure the administrative completeness of the application and operational flexibility for the facility. Although much time and effort has been spent on Title V permit applications, the operating permit itself is the final goal. This paper outlines the major Federal requirements for Title V permits as given in the CAAA at 40 CFR 70.6, Permit Content. These Federal requirements and how they will effect final Title V permits and facilities will be discussed. This paper will provide information concerning the Federal requirements for Title V permits and suggestions on how to negotiate a Title V permit to maximize operational flexibility and minimize enforcement liability.

McCann, G.T. [Rust Environment and Infrastructure Inc., Greenville, SC (United States)

1997-12-31T23:59:59.000Z

470

Application for Presidential Permit OE Docket No. PP-398 Minnesota...  

Broader source: Energy.gov (indexed) [DOE]

Application for Presidential Permit OE Docket No. PP-398 Minnesota Power - Great Northern Transmission Line: Notice of Intent to Prepare an Environmental Impact Statement: Federal...

471

Application for Presidential Permit OE Docket No. PP-398 Minnesota...  

Broader source: Energy.gov (indexed) [DOE]

Application for Presidential Permit OE Docket No. PP-398 Minnesota Power - Great Northern Transmission Line: Federal Register Notice, Vol. 79, No. 93 - May 14, 2014 Application...

472

Application for Presidential Permit OE Docket No. PP-362 Champlain...  

Broader source: Energy.gov (indexed) [DOE]

: Record of Decision for Issuing a Presidential Permit for the CHPE Transmission Line Project: Federal Register Notice, Volume 79, No. 190 - Oct. 1, 2014 Application for...

473

Application for Presidential Permit OE Docket No. PP-398 Minnesota...  

Broader source: Energy.gov (indexed) [DOE]

Application for Presidential Permit OE Docket No. PP-398 Minnesota Power - Great Northern Transmission Line Application from Great Northern (GNTL) to construct, operate and...

474

Application for a Colorado State Permit for Achaeological or...  

Open Energy Info (EERE)

Form: Application for a Colorado State Permit for Achaeological or Paleontological Work Abstract This application must be submitted and approved prior to commencing...

475

Permitting of Consumptive Uses of Water (Florida) | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

Permitting of Consumptive Uses of Water (Florida) Permitting of Consumptive Uses of Water (Florida) Permitting of Consumptive Uses of Water (Florida) < Back Eligibility Agricultural Commercial Construction Developer Fed. Government Fuel Distributor General Public/Consumer Industrial Installer/Contractor Institutional Investor-Owned Utility Local Government Low-Income Residential Multi-Family Residential Municipal/Public Utility Nonprofit Residential Retail Supplier Rural Electric Cooperative Schools State/Provincial Govt Systems Integrator Transportation Tribal Government Utility Savings Category Water Buying & Making Electricity Home Weatherization Program Info State Florida Program Type Siting and Permitting Provider Florida Department of Environmental Protection Local water management districts are required to establish programs and

476

Montana Disinfected Water and Hydrostatic Testing General Permit...  

Open Energy Info (EERE)

Montana Disinfected Water and Hydrostatic Testing General Permit Jump to: navigation, search OpenEI Reference LibraryAdd to library Form: Montana Disinfected Water and Hydrostatic...

477

Application for presidential permit OE Docket No. PP-371 Northern...  

Broader source: Energy.gov (indexed) [DOE]

for a Presidential Permit to construct a 1,200 MW high voltage direct current ("HVDC") transmission line (the "Application") from the Des Cantons substation in Quebec, to...

478

Geothermal: Sponsored by OSTI -- Regulatory and Permitting Information...  

Office of Scientific and Technical Information (OSTI)

Regulatory and Permitting Information Desktop (RAPID) Toolkit (Poster) Geothermal Technologies Legacy Collection HelpFAQ | Site Map | Contact Us | Admin Log On HomeBasic Search...

479

Bugs boost Cold War clean-up: Bacteria could scrub uranium from sites contaminated decades ago. updated at midnight GMTtoday is friday, november 14  

E-Print Network [OSTI]

in the study was contaminated by low levels of uranium from mining residue. The team hopes that the techniqueBugs boost Cold War clean-up: Bacteria could scrub uranium from sites contaminated decades ago boost Cold War clean-up Bacteria could scrub uranium from sites contaminated decades ago. 13 October

Lovley, Derek

480

Got the "Buy Local" bug? Here are some resources for you! From farmers markets to grocery stores to university cafeterias, more retailers are showcasing food  

E-Print Network [OSTI]

the feasibility of new marketing opportunities; expand capacity for locally and regionallygrown productsGot the "Buy Local" bug? Here are some resources for you! From farmers markets to grocery stores for local fresh markets. Interested producers should contact their local FSA office at www

Debinski, Diane M.

Note: This page contains sample records for the topic "bugs permit cross-site" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


481

Solution Structure of Ptu1, a Toxin from the Assassin Bug Peirates turpis That Blocks the Voltage-Sensitive Calcium Channel N-Type  

Science Journals Connector (OSTI)

Ptu1 is a toxin from the assassin bug Peirates turpis which has been demonstrated to bind reversibly the N-type calcium channels and to have lower affinity than the ?-conotoxin MVIIA. We have determined the solution structure of Ptu1 by use of ...

Cdric Bernard; Gerardo Corzo; Amor Mosbah; Terumi Nakajima; Herv Darbon

2001-10-02T23:59:59.000Z

482

Waste Feed Delivery Environmental Permits and Approvals Plan  

SciTech Connect (OSTI)

This plan describes the environmental permits approvals, and other requirements that may affect establishment of a waste feed delivery system for the Hanford Site's River Protection Project. This plan identifies and screens environmental standards for potential applicability, outlines alternatives for satisfying applicable standards, and describes preferred permitting and approval approaches.

TOLLEFSON, K.S.

2000-01-18T23:59:59.000Z

483

The Initial Allocation of Carbon Permits: Choices and Implications  

E-Print Network [OSTI]

the playing field, and we need other nations to cut emissions. 3. Permit value to R&D, renewable energy Cost MC + carbon tax Demand Fixed pollution per unit output (tons carbon per Kwh). The "demandThe Initial Allocation of Carbon Permits: Choices and Implications Prof. Don Fullerton University

484

DOE Environmental Assessment EA-1391 for Presidential Permit Applications  

Broader source: Energy.gov (indexed) [DOE]

DOE Environmental Assessment EA-1391 for Presidential Permit DOE Environmental Assessment EA-1391 for Presidential Permit Applications for Baja California Power Inc and Sempra Energy Resources PP-234 and PP-235: Finding of No Significant Impact DOE Environmental Assessment EA-1391 for Presidential Permit Applications for Baja California Power Inc and Sempra Energy Resources PP-234 and PP-235: Finding of No Significant Impact The Department of Energy has determined in its Environmental Assessment EA-1391 for Presidential Permit Applications for Baja California Power Inc and Sempra Energy Resources PP-234 and PP-235 a finding of no significant impact Finding of No Significant Impact: DOE Enviornmental Assessment EA-1391 More Documents & Publications Environmental assessment for presidential permit applications for Baja

485

Air Permits, Licenses, Certifications (Maine) | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

Air Permits, Licenses, Certifications (Maine) Air Permits, Licenses, Certifications (Maine) Air Permits, Licenses, Certifications (Maine) < Back Eligibility Agricultural Commercial Construction Fed. Government Fuel Distributor General Public/Consumer Industrial Installer/Contractor Institutional Investor-Owned Utility Local Government Low-Income Residential Multi-Family Residential Municipal/Public Utility Nonprofit Residential Retail Supplier Rural Electric Cooperative Schools State/Provincial Govt Systems Integrator Transportation Tribal Government Utility Program Info State Maine Program Type Siting and Permitting Provider Department of Environmental Protection This program regulates and limits air emissions from a variety of sources within Maine through a statewide permitting program. Separate regulations exist for limiting emissions of nitrogen oxides (NOx), sulfur dioxide

486

City of Asheville - Building Permit Fee Waiver | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

City of Asheville - Building Permit Fee Waiver City of Asheville - Building Permit Fee Waiver City of Asheville - Building Permit Fee Waiver < Back Eligibility Commercial Residential Savings Category Solar Buying & Making Electricity Heating & Cooling Water Heating Wind Program Info Start Date 7/01/2009 State North Carolina Program Type Green Building Incentive Provider Building Safety Department The City of Asheville waives fees for building permits and plan reviews for certain renewable energy technologies and green building certifications for homes and mixed-use commercial buildings. Waivers for building permit fees may apply to residences with the following designations (the regular fee is in parentheses): * HealthyBuilt Home Certification* ($100) * Energy Star Rating ($100) * Geothermal heat pumps ($50)

487

City of Portland - Streamlined Building Permits for Residential Solar  

Broader source: Energy.gov (indexed) [DOE]

Residential Residential Savings Category Solar Buying & Making Electricity Heating & Cooling Water Heating Program Info State Oregon Program Type Green Building Incentive Provider City of Portland The City of Portland's Bureau of Development Services (BDS) developed an electronic permitting process for residential solar energy system installations. With this streamlined, expedited process, solar contractors can submit the project plans and permit application online for residential installations. In order to file the online application, the contractor must first be trained. The City of Portland has staff at the permitting desk trained as solar experts to assist solar contractors who need help filing their permits in person. This process has a turnaround time of approximately 2-3 business days for building permits.

488

Presidential Permits and Export Authorizations - About the Program |  

Broader source: Energy.gov (indexed) [DOE]

Presidential Permits and Export Presidential Permits and Export Authorizations - About the Program Presidential Permits and Export Authorizations - About the Program The Federal international electricity program consists of two elements: 1.Granting Presidential permits for the construction, connection, operation and/or maintenance of electric transmission lines which cross the U.S. international border; and 2.Authorizing exports of electric energy to foreign countries. The authority to grant Presidential permits is derived from the constitutional power of the President to protect the territorial integrity of the United States. The authority to regulate the export of electric energy is based on the statutory authority contained in section 202(e) of the Federal Power Act (FPA). Executive Order 8202, issued by President Roosevelt in 1939, prohibited

489

State Water Permit Regulation (Arkansas) | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

Permit Regulation (Arkansas) Permit Regulation (Arkansas) State Water Permit Regulation (Arkansas) < Back Eligibility Fuel Distributor Industrial Utility Program Info State Arkansas Program Type Environmental Regulations Siting and Permitting Provider Department of Environmental Quality It is the purpose of this regulation to adopt standards applicable to the storage, discharge, or disposal of any waste which, if unregulated, will cause pollution of waters of the state or result in wastes being placed in a location where it is likely to cause pollution of the waters of the state. These standards are intended to protect public health and the environment, and prevent, control, or abate pollution. The State Water Permit Regulation is implemented to adopt standards applicable to the storage, discharge, or disposal of any waste that, if

490

Environment/Health/Safety (EHS): Operating Permits for LBNL Activities  

Broader source: All U.S. Department of Energy (DOE) Office Webpages (Extended Search)

Operating Permits for LBNL Activities Operating Permits for LBNL Activities LBNL Main Site Agency Expiration Date Certified Unified Program Agency Permit and Registration Hazardous Materials Release Response Plan (Hazardous Materials Business Plan) Aboveground Petroleum Storage Tanks, Spill Prevention Control and Countermeasures Plan Underground Storage Tank Program Hazardous Waste Generator Program Tiered Permit Program for Onsite Treatment of Hazardous Wastes City of Berkeley March 1, 2014 Fuel Dispensing Sources at Building 76: E85 Unleaded Bay Area Air Quality Management District July 1, 2014 Stationary Air Emission Sources (28 permits): Diesel-powered Emergency Standby Generators: Buildings 2, 31, 37(2), 48, 50A, 50B, 55, 62, 64(2), 66, 67, 68, 70, 70A, 72, 74, 77, 84B, 85 and three (3) portable units

491

Wetlands Standard Dredge and Fill Permit (New Hampshire) | Department of  

Broader source: Energy.gov (indexed) [DOE]

Standard Dredge and Fill Permit (New Hampshire) Standard Dredge and Fill Permit (New Hampshire) Wetlands Standard Dredge and Fill Permit (New Hampshire) < Back Eligibility Agricultural Commercial Construction Fed. Government Fuel Distributor General Public/Consumer Industrial Installer/Contractor Institutional Investor-Owned Utility Local Government Low-Income Residential Multi-Family Residential Municipal/Public Utility Nonprofit Residential Retail Supplier Rural Electric Cooperative Schools State/Provincial Govt Systems Integrator Transportation Tribal Government Utility Savings Category Alternative Fuel Vehicles Hydrogen & Fuel Cells Buying & Making Electricity Water Home Weatherization Solar Wind Program Info State New Hampshire Program Type Environmental Regulations Provider Department of Environmental Services

492

City of Santa Monica - Expedited Permitting for Green Buildings |  

Broader source: Energy.gov (indexed) [DOE]

Expedited Permitting for Green Buildings Expedited Permitting for Green Buildings City of Santa Monica - Expedited Permitting for Green Buildings < Back Eligibility Commercial Residential Savings Category Heating & Cooling Home Weatherization Construction Commercial Weatherization Commercial Heating & Cooling Design & Remodeling Bioenergy Solar Lighting Windows, Doors, & Skylights Heating Buying & Making Electricity Water Water Heating Wind Program Info State California Program Type Green Building Incentive Provider City of Santa Monica The City of Santa Monica allows for priority plan check processing for building projects that are registered with the United States Green Building Council for certification under the Leadership in Energy and Environmental Design (LEED) Green Building Rating System. The priority status applies to

493

Does fundamental host range match ecological host range? A retrospective case study of a Lygus plant bug parasitoid  

Science Journals Connector (OSTI)

Using the retrospective case study of Peristenus digoneutis (Hymenoptera: Braconidae) introduced in the United States for biological control of native Lygus plant bugs (Hemiptera: Miridae), laboratory and field studies were conducted in the area of origin to evaluate whether the fundamental host range of P. digoneutis matches its ecological host range. Furthermore, it was determined whether these approaches would have been indicative of the post-introduction host range of P. digoneutis in North America [Day, W.H., 1999. Host preference of introduced and native parasites (Hymenoptera: Braconidae) of phytophagous plant bugs (Hemiptera: Miridae) in alfalfa-grass fields in the north-eastern USA, BioControl 44, 249261.]. Seven non-target mirid species were selected to define the fundamental host range of P. digoneutis in the area of origin in Europe. Laboratory choice and no-choice tests demonstrated that all selected non-target species were attacked by P. digoneutis and were largely suitable for parasitoid development. To confirm the validity of the fundamental host range, the ecological host range of P. digoneutis in the area of origin was investigated. Peristenus digoneutis was reared from 10 hosts, including three Lygus species and seven non-target hosts from the subfamily Mirinae. Despite the fact that laboratory tests demonstrated a high parasitism level in non-targets, ecological assessments in both North America (Day, 1999) and Europe suggest a much lower impact of P. digoneutis on non-target mirids, with low levels of parasitism (below 1% in Europe). Therefore, ecological host range studies in the area of origin provide useful supplementary data for interpreting pre-release laboratory host range testing.

T. Haye; H. Goulet; P.G. Mason; U. Kuhlmann

2005-01-01T23:59:59.000Z

494

EIS-0414: Presidential Permit Application, Energia Sierra Juarez  

Broader source: Energy.gov (indexed) [DOE]

14: Presidential Permit Application, Energia Sierra Juarez 14: Presidential Permit Application, Energia Sierra Juarez Transmission Line, California EIS-0414: Presidential Permit Application, Energia Sierra Juarez Transmission Line, California Summary This EIS evaluates the potential environmental impacts from DOE's proposed Federal action of granting a Presidential permit to Energia Sierra Juarez U.S. Tranmssion, LLC (ESJ-U.S.), a subsidiary of Sempra Generation, to construct, operate, maintain, and connect a 1.7-mile transmission line (0.65 miles in the U.S.) across the international border between the U.S. and Mexico, near the town of Jacumba, California. The County of San Diego is a cooperating agency in the preparation of this EIS. Public Comment Opportunities No public comment opportunities available at this time.

495

Solar Construction Permitting Standards (California) | Department of Energy  

Broader source: Energy.gov (indexed) [DOE]

Standards (California) Standards (California) Solar Construction Permitting Standards (California) < Back Eligibility Commercial Industrial Local Government Residential Savings Category Solar Buying & Making Electricity Heating & Cooling Commercial Heating & Cooling Heating Water Heating Program Info State California Program Type Solar/Wind Permitting Standards Two bills signed in 2012 place limits on the fees that cities, counties, cities and counties, and charter cities can charge for a solar permit. AB 1801 specifies that a local government cannot base the fee for a solar permit on the value of the solar system or the value of the property on which the system will be installed. It also requires the local government to separately identify every fee charged on the invoice provided to the

496

File:03CACEncroachmentPermit.pdf | Open Energy Information  

Open Energy Info (EERE)

CACEncroachmentPermit.pdf CACEncroachmentPermit.pdf Jump to: navigation, search File File history File usage File:03CACEncroachmentPermit.pdf Size of this preview: 463 × 599 pixels. Other resolution: 464 × 600 pixels. Full resolution ‎(1,275 × 1,650 pixels, file size: 34 KB, MIME type: application/pdf) File history Click on a date/time to view the file as it appeared at that time. Date/Time Thumbnail Dimensions User Comment current 12:45, 19 November 2012 Thumbnail for version as of 12:45, 19 November 2012 1,275 × 1,650 (34 KB) Alevine (Talk | contribs) You cannot overwrite this file. Edit this file using an external application (See the setup instructions for more information) File usage The following 2 pages link to this file: GRR/Flowcharts GRR/Section 3-CA-c - Encroachment Permit

497

File:03UTFEncroachmentPermit.pdf | Open Energy Information  

Open Energy Info (EERE)

UTFEncroachmentPermit.pdf UTFEncroachmentPermit.pdf Jump to: navigation, search File File history File usage File:03UTFEncroachmentPermit.pdf Size of this preview: 463 × 599 pixels. Other resolution: 464 × 600 pixels. Full resolution ‎(1,275 × 1,650 pixels, file size: 40 KB, MIME type: application/pdf) File history Click on a date/time to view the file as it appeared at that time. Date/Time Thumbnail Dimensions User Comment current 12:15, 30 August 2012 Thumbnail for version as of 12:15, 30 August 2012 1,275 × 1,650 (40 KB) Jnorris (Talk | contribs) You cannot overwrite this file. Edit this file using an external application (See the setup instructions for more information) File usage The following 2 pages link to this file: GRR/Flowcharts GRR/Section 3-UT-f - Encroachment Permit

498

File:04AKBGeophysicalExplorationPermit.pdf | Open Energy Information  

Open Energy Info (EERE)

AKBGeophysicalExplorationPermit.pdf AKBGeophysicalExplorationPermit.pdf Jump to: navigation, search File File history File usage File:04AKBGeophysicalExplorationPermit.pdf Size of this preview: 463 × 599 pixels. Other resolution: 464 × 600 pixels. Full resolution ‎(1,275 × 1,650 pixels, file size: 62 KB, MIME type: application/pdf) File history Click on a date/time to view the file as it appeared at that time. Date/Time Thumbnail Dimensions User Comment current 11:38, 6 August 2012 Thumbnail for version as of 11:38, 6 August 2012 1,275 × 1,650 (62 KB) Jnorris (Talk | contribs) You cannot overwrite this file. Edit this file using an external application (See the setup instructions for more information) File usage The following 2 pages link to this file: GRR/Flowcharts GRR/Section 4-AK-b - Geophysical Exploration Permit

499

Property:Permit/License Buildout (MW) | Open Energy Information  

Open Energy Info (EERE)

Permit/License Buildout (MW) Permit/License Buildout (MW) Jump to: navigation, search Property Name Permit/License Buildout (MW) Property Type String Pages using the property "Permit/License Buildout (MW)" Showing 25 pages using this property. (previous 25) (next 25) M MHK Projects/40MW Lewis project + 40 + MHK Projects/Algiers Light Project + 20 + MHK Projects/Anconia Point Project + 15 + MHK Projects/Ashley Point Project + 148 + MHK Projects/Avalon Tidal + 30 + MHK Projects/Avondale Bend Project + 18 + MHK Projects/BW2 Tidal + 3 + MHK Projects/Bar Field Bend + 94 + MHK Projects/Barfield Point + 114 + MHK Projects/Bayou Latenache + 50 + MHK Projects/Bondurant Chute + 152 + MHK Projects/Breeze Point + 198 + MHK Projects/Brilliant Point Project + 56 + MHK Projects/Brough Head Wave Farm + 200 +

500

City of Riverhead - Energy Conservation Device Permitting Fees | Department  

Broader source: Energy.gov (indexed) [DOE]

City of Riverhead - Energy Conservation Device Permitting Fees City of Riverhead - Energy Conservation Device Permitting Fees City of Riverhead - Energy Conservation Device Permitting Fees < Back Eligibility Commercial Residential Savings Category Solar Buying & Making Electricity Heating & Cooling Water Heating Wind Program Info Start Date 07/01/2005 (retroactive) State New York Program Type Green Building Incentive Provider Building Department In 2006 the Town of Riverhead on Long Island enacted a special allowance in its building permit fee structure to provide a discount to people wishing to install energy conservation devices on residential or commercial buildings. The provision in the town code applies to any energy conservation device "installed in or on a structure which qualifies for any federal, state or local tax exemption, tax credit or tax rebate", but