Powered by Deep Web Technologies
Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


1

U-021: Cisco Unified Communications Manager Directory Traversal Flaw Lets  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

1: Cisco Unified Communications Manager Directory Traversal 1: Cisco Unified Communications Manager Directory Traversal Flaw Lets Remote Users Obtain Files U-021: Cisco Unified Communications Manager Directory Traversal Flaw Lets Remote Users Obtain Files October 27, 2011 - 7:45am Addthis PROBLEM: Cisco Unified Communications Manager Directory Traversal Flaw Lets Remote Users Obtain Files. PLATFORM: Cisco Unified Communications Manager 6.x, 7.x and 8.x ABSTRACT: A vulnerability was reported in Cisco Unified Communications Manager. reference LINKS: Cisco Advisory ID: cisco-sa-20111026-cucm Cisco Security Advisories and Response SecurityTracker Alert ID: 1026243 CVE-2011-3315 IMPACT ASSESSMENT: Medium Discussion: A remote user can view files on the target system. The software does not properly validate user-supplied input. A remote user can supply a specially

2

T-713: Blue Coat Reporter Directory Traversal Flaw | Department of Energy  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

3: Blue Coat Reporter Directory Traversal Flaw 3: Blue Coat Reporter Directory Traversal Flaw T-713: Blue Coat Reporter Directory Traversal Flaw September 9, 2011 - 10:47am Addthis PROBLEM: A vulnerability was reported in Blue Coat Reporter. A remote user can view files on the target system and gain full control of the target application. PLATFORM: All pre-9.3 versions of Reporter installed on a Windows server are vulnerable. ABSTRACT: Blue Coat Reporter Directory Traversal Flaw Lets Remote Users Gain Full Control. reference LINKS: Blue Coat Security Advisory ID: SA60 SecurityTracker Alert ID: 1026023 About Path Traversal IMPACT ASSESSMENT: High Discussion: Reporter installed on a Windows server is vulnerable to an HTTP directory traversal attack. An unauthenticated user can browse the file system and read any file. Data from these files can be used by an attacker to gain

3

U-006:Cisco Network Admission Control Manager Directory Traversal Flaw Lets  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

6:Cisco Network Admission Control Manager Directory Traversal 6:Cisco Network Admission Control Manager Directory Traversal Flaw Lets Remote Users Obtain Potentially Sensitive Information U-006:Cisco Network Admission Control Manager Directory Traversal Flaw Lets Remote Users Obtain Potentially Sensitive Information October 7, 2011 - 8:45am Addthis PROBLEM: Cisco Network Admission Control Manager Directory Traversal Flaw Lets Remote Users Obtain Potentially Sensitive Information PLATFORM: Cisco NAC Manager software versions 4.8.X Cisco NAC Manager software versions 4.7.X and earlier are not affected ABSTRACT: An unauthenticated attacker could exploit this vulnerability to access sensitive information, including password files and system logs, that could be leveraged to launch subsequent attacks. reference LINKS: Cisco Security Advisory Document ID: 113189

4

V-215: NetworkMiner Directory Traversal and Insecure Library...  

Office of Energy Efficiency and Renewable Energy (EERE) Indexed Site

5: NetworkMiner Directory Traversal and Insecure Library Loading Vulnerabilities V-215: NetworkMiner Directory Traversal and Insecure Library Loading Vulnerabilities August 9, 2013...

5

U-157: Ruby Mail Gem Directory Traversal and Shell Command Injection  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

57: Ruby Mail Gem Directory Traversal and Shell Command 57: Ruby Mail Gem Directory Traversal and Shell Command Injection Vulnerabilities U-157: Ruby Mail Gem Directory Traversal and Shell Command Injection Vulnerabilities April 27, 2012 - 7:00am Addthis PROBLEM: Ruby Mail Gem Directory Traversal and Shell Command Injection Vulnerabilities PLATFORM: Mail gem for Ruby 2.x ABSTRACT: Some vulnerabilities have been reported in the Mail gem for Ruby, which can be exploited by malicious people to manipulate certain data and compromise a vulnerable system. Reference Links: Secunia Advisory SA48970 CVE-2012-2139 CVE-2012-2140 IMPACT ASSESSMENT: Medium Discussion: Input passed via the "to" parameter within the file delivery method is not properly verified before being used and can be exploited to modify arbitrary files via directory traversal attacks. Certain input passed to

6

U-031: Microsoft Active Directory CRL Validation Flaw Lets Remote Users  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

1: Microsoft Active Directory CRL Validation Flaw Lets Remote 1: Microsoft Active Directory CRL Validation Flaw Lets Remote Users Bypass Authentication U-031: Microsoft Active Directory CRL Validation Flaw Lets Remote Users Bypass Authentication November 9, 2011 - 8:30am Addthis PROBLEM: Microsoft Active Directory CRL Validation Flaw Lets Remote Users Bypass Authentication. PLATFORM: Windows XP Service Pack 3 Windows XP Professional x64 Edition Service Pack 2 Windows Server 2003 Service Pack 2 Windows Server 2003 x64 Edition Service Pack 2 Active Directory Windows Server 2003 with SP2 for Itanium-based Systems Windows Vista Service Pack 2 Windows Vista x64 Edition Service Pack 2 Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 Windows 7 for 32-bit Systems Windows 7 for 32-bit Systems Service Pack 1

7

U-139: IBM Tivoli Directory Server Input Validation Flaw | Department of  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

39: IBM Tivoli Directory Server Input Validation Flaw 39: IBM Tivoli Directory Server Input Validation Flaw U-139: IBM Tivoli Directory Server Input Validation Flaw April 3, 2012 - 7:00am Addthis PROBLEM: A vulnerability was reported in IBM Tivoli Directory Server. A remote user can conduct cross-site scripting attacks PLATFORM: Version(s): 6.2, 6.3 ABSTRACT: The Web Admin Tool does not properly filter HTML code from user-supplied input before displaying the input. Reference LINKS: Vendor Advisory Security Tracker ID 1026880 CVE-2012-0740 IMPACT ASSESSMENT: Medium Discussion: A remote user can create a specially crafted URL that, when loaded by a target user, will cause arbitrary scripting code to be executed by the target user's browser. The code will originate from the site running the IBM Tivoli Directory Server software and will run in the security context

8

Directory  

Science Journals Connector (OSTI)

This cross-reference table summarises the type of products available from each manufacturer or supplier, giving the page number for the company entry in the directory section of this book.

Bob Hussey; Jo Wilson

1998-01-01T23:59:59.000Z

9

ARM - People Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

govPeople Directory People Directory Enter last name to begin search: Search Icon Register a new user to the directory...

10

Berkeley Lab Directory Services: Offsite Directory Services  

NLE Websites -- All DOE Office Websites (Extended Search)

Offsite Directories Offsite Directories Directories for Organizations Related to the Lab Berkeley Lab Directory Services DOE Labs and Sites DOE National Telephone Directory EPA ESnet Contacts Federal Telephone Directories Lawrence Livermore National Laboratory National Institute of Standards and Technology (NIST) National Institutes of Health (NIH) Directory National Science Foundation (NSF) SLAC Directories, Including High Energy Physics (HEP Names) UC Berkeley Directory (all current faculty, staff, and students) University of California Campuses and Offices General Online Directories AT&T directory services All-In-One HotBot Internet Address Finder WhoWhere? People Search Yellowbook Yahoo People Search International Country Codes for Email Addresses Official USPS Abbreviations (States, Street Suffixes, Secondary Unit

11

Fellows Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

Directory Directory Fellows Directory Complete listing of senior, active, and retired Laboratory Fellows. Senior, active, and retired Laboratory Fellows Senior Fellows Mark Bitensky, retired Gregory H. Canavan Stirling A. Colgate, retired Harry Dreicer, retired Hans Frauenfelder Gerald T. Garvey, retired Houston T. Hawkins Siegfried S. Hecker, retired Alan S. Perelson William H. Press A. P. Sattelberger, retired Benno P. Schoenborn, retired Geoffrey B. West, retired Stephen M. Younger, retired Deceased Fellows Herbert L. Anderson Aloysius Arko George I. Bell Peter A. Carruthers Edward Cashwell George A. Cowan Arthur N. Cox Keith H. Despain Clarence Max Fowler Walter B. Goad Gordon E. Hansen P. O'Dean Judd Robert G. Keepin Edward A. Knapp Jere D. Knight H. Ralph Lewis John Marshall Nicholas Metropolis

12

Flawed reasoning  

SciTech Connect

The FERC's failure to investigate the Entergy/GSU merger's effects on market power may force other agencies to examine electric utility mergers on their own. The competitive effects of the proposed merger Entergy and Gulf States Utilities (GSU) will not be further investigated by the Federal Energy Regulatory Commission (FERC), according to a January 1993 order. The FERC's primary justification is that the [open quotes]open access[close quotes] transmission conditions offered by the merging parties eliminated concern over market power in transmission and bulk power. The FERC's reasoning is flawed. If the merger were to lead to an increase in market power, the proposed transmission conditions would not prevent the merged firm from exercising that power. The FERC also justifies its decision not to investigate the competitive effects of the merger on the grounds that no intervenor had demonstrated that present competition between the two systems is more than de minimis. This is not an appropriate standard. Intervenors demonstrated that Entergy's and GSU's transmission system offer alternative contract routes for bulk power between generators and customers. Even if Entergy and GSU both do not actually sell significant amounts of the same transmission-service, an antitrust evaluation should consider whether the availability of a second, independent route constrains the pricing of the first. The FERC's reasoning indicates that it has lost its way in carrying out its responsibilities to protect consumers. Open access to transmission systems may play an important role in increasing competition in bulk power markets. However, the FERC's goal should be to promote competition, not merely to open access for its own sake. In its enthusiasm to secure [open quotes]open access[close quotes], the FERC appears willing to ignore possible reductions in competition.

Frankena, M.W.; Owen, B.M.

1993-07-15T23:59:59.000Z

13

Berkeley Lab Directory Services  

NLE Websites -- All DOE Office Websites (Extended Search)

How to use the LBNL directory search pages How to use the LBNL directory search pages How to search for people at LBNL Searching for two-letter names at LBNL Advanced search: how to search by office location, etc. Hostname/DNS lookup How to add a link to your website in your directory listing How to find people at LBNL If you enter a single word, the directory will search for one of the following: Partial first or last name. (e.g. Tony or Smith) E-mail address (e.g. JRSmith) The end of a phone number- usually the extension. (e.g. 6965) The employee ID # If you enter two words, the directory will search for: The combination of both the beginning of a FIRST name and the beginning of a LAST name. When BOTH first and second words are matched, the name is displayed. This is the prefered method of searching- fewer entries

14

NEPA Stakeholders Directory  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

Environmental Policy Act N E P A DIRECTORY of POTENTIAL STAKEHOLDERS for DOE ACTIONS under NEPA 28 th Edition July 2011 U.S. Department of Energy Office of NEPA Policy and Compliance United States Government Department of Energy memorandum DATE: July 28, 201 1 REPLY TO ATN OF: Office of NEPA Policy and Compliance (C. Chen, GC-54,202-586-0733) SUBJECT: Directory of Potential Stakeholders for DOE Actions under NEPA: 2gth Edition TO: DOE NEPA Community I am pleased to announce that the 2sth edition of the Directory of Potential Stakeholders for DOE Actions under NEPA, dated July 20 1 1, is now posted on the DOE NEPA website (http://ne-pa. enerm. gov/documents/StakeholdersDirectory. pdfl. The Directory is intended to supplement distribution lists that DOE Offices compile for particular projects or facilities

15

T-648: Avaya IP Office Manager TFTP Server Lets Remote Users Traverse the  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

48: Avaya IP Office Manager TFTP Server Lets Remote Users 48: Avaya IP Office Manager TFTP Server Lets Remote Users Traverse the Directory T-648: Avaya IP Office Manager TFTP Server Lets Remote Users Traverse the Directory June 16, 2011 - 3:45pm Addthis PROBLEM: A vulnerability was reported in Avaya IP Office Manager. A remote user can view files on the target system. PLATFORM: Versions 5.0.x - 6.1.x ABSTRACT: The software does not properly validate user-supplied input. A remote user can supply a specially crafted request to view files on target system running the IP Office Manager software. reference LINKS: ASA-2011-156 SecurityTracker Alert ID: 1025664 Secunia Advisory: SA43884 Avaya Support IMPACT ASSESSMENT: Medium Discussion: Avaya IP Office Manager is an application for viewing and editing an IP Office system's configuration. It can be used to securely connect to and

16

Annual Report Directory2009  

E-Print Network (OSTI)

09 Annual Report #12;Directory2009 Chancellor Rex Williams, BE(Hons) Pro-Chancellor L John Wood-Chancellor Ian Town, MBChB(Otago), DM(Soton) University Registrar Jeff Field, JP, MA, DipJ, Dip

Hickman, Mark

17

DIRECTORY OF HEALTH SERVICES  

E-Print Network (OSTI)

a centralized resource of regional health care services for persons with developmental disabilitiesDIRECTORY OF HEALTH SERVICES FOR BRONX RESIDENTS WITH DEVELOPMENTAL DISABILITIES 2012 Compiled Albert Einstein College of Medicine in collaboration with Health Services Committee, Bronx Developmental

Yates, Andrew

18

EIA publications directory 1996  

SciTech Connect

This edition of the EIA Publications Directory contains titles and abstracts of periodicals and one-time reports produced by the Energy Information Administration (EIA) from January through December 1996. The body of the Directory contains citations and abstracts arranged by broad subject categories; metadata, coal, oil and gas, nuclear, electricity, renewable and energy/alternative fuels, multifuel, end-use consumption, models, and forecasts.

NONE

1997-05-01T23:59:59.000Z

19

EIA publications directory 1997  

SciTech Connect

This edition of the EIA Publications Directory contains 68 titles and abstracts of periodicals and one time reports produced by EIA from January through December 1997. The body of the Directory contains citations and abstracts arranged by broad subject categories; (1) MetaData, (2) Coal, (3) Oil (4) Natural gas, (5) Nuclear, (6) Electricity, (7) Renewable energy and Alternative fuels, (8) Multifuel, (9) End use consumption, (10) Models, and (11) Forecasts.

NONE

1998-04-01T23:59:59.000Z

20

The Impact of Dynamic Directories on Multicore Interconnects MATT SCHUCHHARDT, Northwestern University  

E-Print Network (OSTI)

consumption by up to 37.3% (22.9% on average for scientific workloads, and 8.0% for Map-Reduce). 1 Directories on the performance, power, and energy consumption of a multicore processor. We show its. This eliminates a large fraction of on-chip interconnect traversals, thus reducing interconnect power and energy

Kuzmanovic, Aleksandar

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


21

Directory | Princeton Plasma Physics Lab  

NLE Websites -- All DOE Office Websites (Extended Search)

Procurement Division Technology Transfer Furth Plasma Physics Library Contact Us Lab Leadership Directory Careers Human Resources Environment, Safety & Health Procurement...

22

ALS Beamlines Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

Beamlines Directory Beamlines Directory ALS Beamlines Directory Print Beamlines, Parameters, Contact Information, and Schedules Download a high-resolution version of the ALS Beamclock. See Beamclock to view the ALS energy-related beamlines beamclock. Beamline Parameters Beamline and endstation technical information is available through the links below. Unless otherwise noted, all beamlines are currently operational. Individual beamline schedules are posted when available. Please contact the responsible beamline scientist for additional schedule information. When calling from off-site, all beamline (BL) phone numbers that begin with a "2" are preceded by 495- (i.e., 495-2014); all others are preceded by 486-. Beamline Number Source Technique/ Group Name Energy Range Beamline Contact Schedule/BL Phone

23

EIA publications directory 1994  

SciTech Connect

Enacted in 1977, the Department of Energy (DOE) Organization Act established the Energy Information Administration (EIA) as the Department`s independent statistical and analytical agency, with a mandate to collect and publish data and prepare analyses on energy production, consumption, prices, resources, and projections of energy supply and demand. This edition of the EIA Publications Directory contains titles and abstracts of periodicals and one-time reports produced by EIA from January through December 1994. The body of the Directory contains citations and abstracts arranged by broad subject categories: metadata, coal, oil and gas, nuclear, electricity, renewable energy/alternative fuels, multifuel, end-use consumption, models, and forecasts.

NONE

1995-07-20T23:59:59.000Z

24

Better Buildings Neighborhood Program: Resource Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

Tools & Resources Tools & Resources Printable Version Share this resource Send a link to Better Buildings Neighborhood Program: Resource Directory to someone by E-mail Share Better Buildings Neighborhood Program: Resource Directory on Facebook Tweet about Better Buildings Neighborhood Program: Resource Directory on Twitter Bookmark Better Buildings Neighborhood Program: Resource Directory on Google Bookmark Better Buildings Neighborhood Program: Resource Directory on Delicious Rank Better Buildings Neighborhood Program: Resource Directory on Digg Find More places to share Better Buildings Neighborhood Program: Resource Directory on AddThis.com... Case Studies Resource Directory Webcasts Workshops Grants Administration Resource Directory The guidance documents and reports below have been used by Better Buildings

25

Energy information directory 1995  

SciTech Connect

The National Energy Information Center provides energy information and referral assistance to Federal, State, and local governments, the academic community, business and industrial organizations, and the general public. This Energy Information Directory is used to assist the Center staff as well as other DOE staff in directing inquires to the proper offices.

NONE

1995-10-01T23:59:59.000Z

26

Annual Report Directory2010  

E-Print Network (OSTI)

Annual Report 10 #12;Directory2010 Chancellor Rex Williams, BE(Hons) Pro-Chancellor L John Wood(Soton) University Registrar Jeff Field, JP, MA, DipJ, DipTColl(ChCh.TColl.), DipTchg(DeptEd), APR, MFINZ Assistant

Hickman, Mark

27

Annual Report. Directory2011  

E-Print Network (OSTI)

UC2011 Annual Report. #12;Directory2011 Chancellor Rex Williams, BE(Hons) Pro-Chancellor L John(Soton) University Registrar Jeff Field, JP, MA, DipJ, DipTColl(ChCh.TColl.), DipTchg(DeptEd), APR, MFINZ Assistant

Hickman, Mark

28

ALS Beamlines Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

Beamlines Directory Print Beamlines Directory Print Beamlines, Parameters, Contact Information, and Schedules Download a high-resolution version of the ALS Beamclock. See Beamclock to view the ALS energy-related beamlines beamclock. Beamline Parameters Beamline and endstation technical information is available through the links below. Unless otherwise noted, all beamlines are currently operational. Individual beamline schedules are posted when available. Please contact the responsible beamline scientist for additional schedule information. When calling from off-site, all beamline (BL) phone numbers that begin with a "2" are preceded by 495- (i.e., 495-2014); all others are preceded by 486-. Beamline Number Source Technique/ Group Name Energy Range Beamline Contact Schedule/BL Phone

29

ALS Beamlines Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

ALS Beamlines Directory Print ALS Beamlines Directory Print Beamlines, Parameters, Contact Information, and Schedules Download a high-resolution version of the ALS Beamclock. See Beamclock to view the ALS energy-related beamlines beamclock. Beamline Parameters Beamline and endstation technical information is available through the links below. Unless otherwise noted, all beamlines are currently operational. Individual beamline schedules are posted when available. Please contact the responsible beamline scientist for additional schedule information. When calling from off-site, all beamline (BL) phone numbers that begin with a "2" are preceded by 495- (i.e., 495-2014); all others are preceded by 486-. Beamline Number Source Technique/ Group Name Energy Range Beamline Contact Schedule/BL Phone

30

ALS Beamlines Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

ALS Beamlines Directory Print ALS Beamlines Directory Print Beamlines, Parameters, Contact Information, and Schedules Download a high-resolution version of the ALS Beamclock. See Beamclock to view the ALS energy-related beamlines beamclock. Beamline Parameters Beamline and endstation technical information is available through the links below. Unless otherwise noted, all beamlines are currently operational. Individual beamline schedules are posted when available. Please contact the responsible beamline scientist for additional schedule information. When calling from off-site, all beamline (BL) phone numbers that begin with a "2" are preceded by 495- (i.e., 495-2014); all others are preceded by 486-. Beamline Number Source Technique/ Group Name Energy Range Beamline Contact Schedule/BL Phone

31

ALS Beamlines Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

Beamlines Directory Print Beamlines Directory Print Beamlines, Parameters, Contact Information, and Schedules Download a high-resolution version of the ALS Beamclock. See Beamclock to view the ALS energy-related beamlines beamclock. Beamline Parameters Beamline and endstation technical information is available through the links below. Unless otherwise noted, all beamlines are currently operational. Individual beamline schedules are posted when available. Please contact the responsible beamline scientist for additional schedule information. When calling from off-site, all beamline (BL) phone numbers that begin with a "2" are preceded by 495- (i.e., 495-2014); all others are preceded by 486-. Beamline Number Source Technique/ Group Name Energy Range Beamline Contact Schedule/BL Phone

32

Energy information directory 1998  

SciTech Connect

The National Energy Information Center (NEIC), as part of its mission, provides energy information and referral assistance to Federal, State, and local governments, the academic community, business and industrial organizations, and the general public. The two principal functions related to this task are: (1) operating a general access telephone line, and (2) responding to energy-related correspondence addressed to the Energy Information Administration (EIA). The Energy Information Directory was developed to assist the NEIC staff, as well as other Department of Energy (DOE) staff, in directing inquiries to the proper offices within DOE, other Federal agencies, or energy-related trade associations. The Directory lists most Government offices and trade associations that are involved in energy matters.

NONE

1998-11-01T23:59:59.000Z

33

Energy information directory 1994  

SciTech Connect

The National Energy Information Center (NEIC), as part of its mission, provides energy information and referral assistance to Federal, State, and local governments, the academic community, business and industrial organizations, and the general public. The two principal functions related to this task are (1) operating a general access telephone line, and (2) responding to energy-related correspondence addressed to the Energy Information Administration (EIA). The Energy Information Directory was developed to assist the NEIC staff, as well as other Department of Energy (DOE) staff, in directing inquiries to the proper offices within DOE, other Federal agencies, or energy-related trade associations. The Directory is a list of most Government offices and trade associations that are involved in energy matters. It does not include those DOE offices which do not deal with the public or public information.

Not Available

1994-03-28T23:59:59.000Z

34

Chemistry Department Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

Chemistry Staff Directory Chemistry Staff Directory Last Name, First Phone E-mail Note: All listed phone extensions are in the format of (631) 344-xxxx. Adzic, Radoslav 4522 adzic@bnl.gov Akimov, Alexey No Entry akimov@bnl.gov An, Wei 4317 weian@bnl.gov Anselmini, James 4399 anselmini@bnl.gov Baber, Ashleigh 4317 ababer@bnl.gov Badiei, Yosra 4360 ybadiei@bnl.gov Bak, Seong Min BAK 3663 smbak@bnl.gov Bakalis, Jin No Entry jbakalis@bnl.gov Bird, Matthew 4331 mbird@bnl.gov Cabelli, Diane 4361 cabelli@bnl.gov Camillone III, Nicholas 4412 nicholas@bnl.gov Chen, Jingguang 2655 jgchen@bnl.gov Chen, Wei-Fu 4360 wfchen@bnl.gov Concepcion, Javier 4369 jconcepc@bnl.gov Cook, Andrew 4782 acook@bnl.gov Cumming, James 4338 cumming@bnl.gov Duan, Lele 4357 lduan@bnl.gov Ertem, Mehmed No Entry mzertem@bnl.gov

35

Staff Directory | Argonne National Laboratory  

NLE Websites -- All DOE Office Websites (Extended Search)

Staff Directory Name Title E-mail Brewer-Jordan, Elizabeth Business Development Assistant ebrewer@anl.gov Claxton, Christopher Commercialization Associate cclaxton@anl.gov...

36

EIA Publications Directory 1995  

SciTech Connect

This directory contains abstracts and ordering information for individual issues of semiannual, annual, biennial, and triennial Energy Information Administration (EIA) periodicals, analysis reports, Service Reports, and model documentations. This edition covers periodicals and one-time reports produced by EIA from January through December 1995. The citations and abstracts are arranged by broad subject categories: metadata, coal, oil/gas, nuclear, electricity, renewable energy/alternative fuels, multifuel, end-use consumption, models, and forecasts. Indexes are provided.

NONE

1995-10-01T23:59:59.000Z

37

Staff Directory | Argonne Leadership Computing Facility  

NLE Websites -- All DOE Office Websites (Extended Search)

About Overview History Staff Directory Our Teams User Advisory Council Careers Margaret Butler Fellowship Visiting Us Contact Us Staff Directory Yury Alekseev Yuri Alexeev...

38

DOE Contracting Offices Directory | Department of Energy  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

DOE Contracting Offices Directory DOE Contracting Offices Directory The Department of Energy has a decentralized procurement process for buying goods and services which is carried...

39

A community service directory for Yolo County.  

E-Print Network (OSTI)

??The problem this author has identified is that there is no printed community service directory for Yolo County. In order to provide a printed directory… (more)

Bennett, Amy Irene

2012-01-01T23:59:59.000Z

40

Five dimensional cosmological traversable wormhole  

E-Print Network (OSTI)

In this paper, a traversable wormhole in the Friedmann-Lema\\^{\\i}tre-Robertson-Walker (FLRW) model with one extra spacelike compact dimension is studied. We have chosen dynamical compactification as the evolution of the fifth dimension. In this respect, we study how the existence of the extra dimension, affect the behavior of the energy density, the shape function and the scale factor. It is shown that the total matter can be non-exotic and the violation of the weak energy condition can be avoided.

Najafi, S; Jalalzadeh, S

2015-01-01T23:59:59.000Z

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


41

Energy information directory 1997  

SciTech Connect

The National Energy Information Center (NEIC), as part of its mission, provides energy information and referral assistance to Federal, state, and local governments, the academic community, business and industrial organizations, and the general public. The two principal functions related to this task are: (1) operating a general access telephone line, and (2) responding to energy-related correspondence addressed to the Energy Information Administration (EIA). The Energy Information Directory was developed to assist the NEIC staff, as well as other Department of Energy (DOE) staff, in directing inquiries to the proper offices within DOE, other Federal agencies, or energy-related trade associations. The Directory lists some of the Government offices and trade associations that are involved in energy matters. It includes those DOE offices which deal with the public or public information. For the purposes of this publication, each entry has been given a numeric identification symbol. The index found in the back of this publication uses these identification numbers to refer the reader to relevant entries.

NONE

1997-09-01T23:59:59.000Z

42

DOE Solar Decathlon: Product Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

Directory Directory The U.S. Department of Energy Solar Decathlon 2009 Product Directory provides a complete listing of the products used in the solar-powered team houses. To find common household products, see the list below. You may also search for products by team or in the Product Directory spreadsheet Microsoft Excel . By Products By Team Advanced Search Household Products Bathroom Faucet Bathroom Sink Clothes Dryer Clothes Washer Clothes Washer/Dryer Cooktop Computer Desktop Laptop Decking Dishwasher Dishdrawer Under Counter Dishwasher Exhaust Hood Flooring Furniture Insulation Kitchen Cabinets Kitchen Countertops Kitchen Faucet Kitchen Sink Lighting Fixed Lighting (hardwired) Plug-In Lighting (lamps, plug-in fixtures) Sensors Oven Combination Microwave Steam Wall Photovoltaic Collectors

43

Chemical Sciences Division: Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

INTRODUCTION INTRODUCTION TO CSD NATIONAL FACILITIES & CENTERS RESEARCH STUDENT & POSTDOCTORAL OPPORTUNITIES NEWS & EVENTS CSD CONTACTS LBNL HOME Privacy & Security Notice DOE UC Berkeley CSD Directory A B C D E F G H I J K L M N O P Q R S T U V W X Y Z A Rebecca Abergel CSD Project Scientist; The Glenn T. Seaborg Center. Musahid Ahmed CSD Staff Scientist, Chemical Physics Program/Chemical Dynamics Beamline Publications Richard A. Andersen Professor of Chemistry, UC Berkeley; CSD Senior Faculty Scientist, The Glenn T. Seaborg Center Publications John Arnold Professor of Chemistry, UC Berkeley; CSD Faculty Scientist, Catalytic Science Program Publications B Ali Belkacem CSD Deputy and Senior Staff Scientist; Atomic, Molecular and Optical Sciences Program Leader

44

Directory Enabled Policy Based Networking  

SciTech Connect

This report presents a discussion of directory-enabled policy-based networking with an emphasis on its role as the foundation for securely scalable enterprise networks. A directory service provides the object-oriented logical environment for interactive cyber-policy implementation. Cyber-policy implementation includes security, network management, operational process and quality of service policies. The leading network-technology vendors have invested in these technologies for secure universal connectivity that transverses Internet, extranet and intranet boundaries. Industry standards are established that provide the fundamental guidelines for directory deployment scalable to global networks. The integration of policy-based networking with directory-service technologies provides for intelligent management of the enterprise network environment as an end-to-end system of related clients, services and resources. This architecture allows logical policies to protect data, manage security and provision critical network services permitting a proactive defense-in-depth cyber-security posture. Enterprise networking imposes the consideration of supporting multiple computing platforms, sites and business-operation models. An industry-standards based approach combined with principled systems engineering in the deployment of these technologies allows these issues to be successfully addressed. This discussion is focused on a directory-based policy architecture for the heterogeneous enterprise network-computing environment and does not propose specific vendor solutions. This document is written to present practical design methodology and provide an understanding of the risks, complexities and most important, the benefits of directory-enabled policy-based networking.

KELIIAA, CURTIS M.

2001-10-01T23:59:59.000Z

45

DOE Solar Decathlon: Product Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

Andrea Argabright, a student decathlete, staining an exterior wall of the Solar Decathlon 2013 West Virginia University house. Andrea Argabright, a student decathlete, staining an exterior wall of the Solar Decathlon 2013 West Virginia University house. U.S. Department of Energy Solar Decathlon Bookmark and Share - Home About Competition Scores & Standings Teams News Photos Videos Product Directory Village Energy Balance Education Sponsors History FAQs Contacts Product Directory The U.S. Department of Energy Solar Decathlon 2013 product directory is a listing of products used in the solar-powered team houses. Find specific products in the table below by sorting or searching by description, manufacturer, model, or team. Brief Description Detailed Description Manufacturer Model Team Name Bathroom Faucet Wall mount two-handle lavatory faucet with solid brass fixtures Kohler K-T14412-4-BN Team Alberta

46

Tools & Resources: Resource Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

Resource Directory Resource Directory The guidance documents and reports below have been used by Better Buildings Neighborhood Program partners to build their programs and guide them to early successes. The tools and calculators can be used by homeowners, business owners, and program designers to help determine energy savings and other benefits associated with energy efficiency upgrades. Guidance Documents and Reports Background Program Evaluation Program Updates and Lessons Learned Program Design Marketing and Driving Demand Financing and Incentives Workforce Development Partnering with Utilities Technical Resources Tools and Calculators For Homes For Commercial Buildings Emissions and Equivalency Calculators Guidance Documents and Reports Background Recovery Through Retrofit Report

47

T-541: Citrix Provisioning Services Unspecified Flaw Let's Remote...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

Citrix Provisioning Services Unspecified Flaw Let's Remote Users Execute Arbitrary Code T-541: Citrix Provisioning Services Unspecified Flaw Let's Remote Users Execute Arbitrary...

48

U-252: Barracuda Web Filter Input Validation Flaws Permit Cross...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

2: Barracuda Web Filter Input Validation Flaws Permit Cross-Site Scripting Attacks U-252: Barracuda Web Filter Input Validation Flaws Permit Cross-Site Scripting Attacks September...

49

V-176: Adobe Flash Player Memory Corruption Flaw Lets Remote...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

6: Adobe Flash Player Memory Corruption Flaw Lets Remote Users Execute Arbitrary Code V-176: Adobe Flash Player Memory Corruption Flaw Lets Remote Users Execute Arbitrary Code June...

50

University of Minnesota Morris 201113 Catalog Campus Directories and Map  

E-Print Network (OSTI)

..................................................................................................................198 UMM Web Directory-6386 Financial gifts to the college. #12;199University of Minnesota Morris 2011­13 Catalog UMM Web Directory The following UMM web directory should assist persons in locating Internet address information for Morris

Amin, S. Massoud

51

Category:Traverse City, MI | Open Energy Information  

Open Energy Info (EERE)

City, MI" City, MI" The following 16 files are in this category, out of 16 total. SVFullServiceRestaurant Traverse City MI Detroit Edison Co.png SVFullServiceRestauran... 64 KB SVHospital Traverse City MI Detroit Edison Co.png SVHospital Traverse Ci... 63 KB SVLargeHotel Traverse City MI Detroit Edison Co.png SVLargeHotel Traverse ... 61 KB SVLargeOffice Traverse City MI Detroit Edison Co.png SVLargeOffice Traverse... 64 KB SVMediumOffice Traverse City MI Detroit Edison Co.png SVMediumOffice Travers... 59 KB SVMidriseApartment Traverse City MI Detroit Edison Co.png SVMidriseApartment Tra... 64 KB SVOutPatient Traverse City MI Detroit Edison Co.png SVOutPatient Traverse ... 64 KB SVPrimarySchool Traverse City MI Detroit Edison Co.png SVPrimarySchool Traver... 65 KB SVQuickServiceRestaurant Traverse City MI Detroit Edison Co.png

52

Beamlines Directory | Advanced Photon Source  

NLE Websites -- All DOE Office Websites (Extended Search)

Beamlines Directory Beamlines Directory Filter by: L bracket Discipline: All Atomic Physics Chemistry Environmental Science GeoScience Life Sciences Materials Science Physics Polymer Science Technique: All Anomalous and resonant scattering (hard x-ray) Anomalous and resonant scattering (soft x-ray) Biohazards at the BSL2/3 level Coherent x-ray scattering Diffraction anomalous fine structure Diffuse x-ray scattering Energy dispersive X-ray diffraction Fiber diffraction Fluorescence spectroscopy General diffraction Grazing incidence diffraction Grazing incidence small-angle scattering High-energy x-ray diffraction High-pressure diamond anvil cell High-pressure multi-anvil press Inelastic x-ray scattering Inelastic x-ray scattering (1 eV resolution) Intensity fluctuation spectroscopy Large unit cell crystallography Laue

53

2011 October Center Directory.pub  

NLE Websites -- All DOE Office Websites (Extended Search)

DIRECTORY About CEN CEN is a Department of Energy, Office of Basic Energy Sciences, Energy Frontier Research Center (EFRC). CEN members are drawn from four major research...

54

Directory of Energy Information Administration Models 1994  

SciTech Connect

This directory revises and updates the 1993 directory and includes 15 models of the National Energy Modeling System (NEMS). Three other new models in use by the Energy Information Administration (EIA) have also been included: the Motor Gasoline Market Model (MGMM), Distillate Market Model (DMM), and the Propane Market Model (PPMM). This directory contains descriptions about each model, including title, acronym, purpose, followed by more detailed information on characteristics, uses and requirements. Sources for additional information are identified. Included in this directory are 37 EIA models active as of February 1, 1994.

Not Available

1994-07-01T23:59:59.000Z

55

Daylighting directory 6/1980  

SciTech Connect

A renewed interest in the energy conservation potential of daylighting has generated new research, applications and demonstration activities over the last few years. It is apparent that even those people actively working in the field are frequently not aware of all of the ongoing projects and activities. At the same time, the total national effort to utilize daylighting effectively in buildings on a broad scale is still very small, thus making it important that current activities are crossfertilized. The intent of this directory is to provide current listings of individuals and organizations that are actively engaged in daylighting work and related publications and upcoming events of interest. This directory was compiled from information contained in the survey response forms which were filled out and returned to us over the last few months. Responsibility for the accuracy and completeness of each survey form lies entirely with the respondents. The directory is composed of five parts: (1) Participant Survey Response: contains the survey response forms as submitted to us, listed alphabetically by responding organization; (2) Activity Index: lists individual respondents alphabetically, showing the daylighting activities each has checked. Allows the reader to quickly identify the individuals working in a specific area. Once an individual is identified, turn to the Individual Index to find the page numbers where that individual may be located in other areas of the directory; (3) Individual Index: lists individual respondents alphabetically; (4) Daylighting publications: lists the publications by each respondent (authors listed alphabetically); and (5) Notes of Interest: contains a variety of information on meetings, conferences, new projects and publications, etc. This material was collected from a variety of sources in addition to the survey respondents.

Not Available

1980-06-01T23:59:59.000Z

56

Bureau of Indian Affairs Tribal Directory | Open Energy Information  

Open Energy Info (EERE)

Tribal Directory Jump to: navigation, search OpenEI Reference LibraryAdd to library Web Site: Bureau of Indian Affairs Tribal Directory Abstract This website contains a...

57

Traversable wormholes in a string cloud  

E-Print Network (OSTI)

We study spherically symmetric thin-shell wormholes in a string cloud background in (3+1)-dimensional spacetime. The amount of exotic matter required for the construction, the traversability and the stability under radial perturbations, are analyzed as functions of the parameters of the model. Besides, in the Appendices a non perturbative approach to the dynamics and a possible extension of the analysis to a related model are briefly discussed.

Martin Richarte; Claudio Simeone

2007-11-14T23:59:59.000Z

58

ACCELERATORS: ENGINES FOR TRAVERSING A LARGE AND OFTEN DIFFICULT LANDSCAPE  

E-Print Network (OSTI)

California. ACCELERATORS: ENGINES FOR TRAVERSING A LARGE ANDthat go with them, are from: “Engines of Discovery: Particle

Sessler, Andrew M.

2014-01-01T23:59:59.000Z

59

Designing Directories in Distributed Systems: A Systematic Framework  

E-Print Network (OSTI)

Designing Directories in Distributed Systems: A Systematic Framework K. Mani Chandy and Eve M of directory­based distributed applications. We evaluate a space of directory designs using our frame­ work. We distributed applications, including directory design. We propose a weaker con­ cept: estimation. We define

60

Directory of Energy Information Administration models 1996  

SciTech Connect

This directory revises and updates the Directory of Energy Information Administration Models 1995, DOE/EIA-0293(95), Energy Information Administration (EIA), U.S. Department of Energy, July 1995. Four models have been deleted in this directory as they are no longer being used: (1) Market Penetration Model for Ground-Water Heat Pump Systems (MPGWHP); (2) Market Penetration Model for Residential Rooftop PV Systems (MPRESPV-PC); (3) Market Penetration Model for Active and Passive Solar Technologies (MPSOLARPC); and (4) Revenue Requirements Modeling System (RRMS).

NONE

1996-07-01T23:59:59.000Z

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


61

T-720: Blue Coat Director HTTP Trace Processing Flaw Permits...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

0: Blue Coat Director HTTP Trace Processing Flaw Permits Cross-Site Scripting Attacks T-720: Blue Coat Director HTTP Trace Processing Flaw Permits Cross-Site Scripting Attacks...

62

ACCELERATORS: ENGINES FOR TRAVERSING A LARGE AND OFTEN DIFFICULT LANDSCAPE  

E-Print Network (OSTI)

of California. ACCELERATORS: ENGINES FOR TRAVERSING A LARGEand Andre Lebedev Abstract TYPES OF ACCELERATORS The manyapplications of accelerators are presented, with pictures

Sessler, Andrew M.

2014-01-01T23:59:59.000Z

63

Detecting insider activity using enhanced directory virtualization.  

SciTech Connect

Insider threats often target authentication and access control systems, which are frequently based on directory services. Detecting these threats is challenging, because malicious users with the technical ability to modify these structures often have sufficient knowledge and expertise to conceal unauthorized activity. The use of directory virtualization to monitor various systems across an enterprise can be a valuable tool for detecting insider activity. The addition of a policy engine to directory virtualization services enhances monitoring capabilities by allowing greater flexibility in analyzing changes for malicious intent. The resulting architecture is a system-based approach, where the relationships and dependencies between data sources and directory services are used to detect an insider threat, rather than simply relying on point solutions. This paper presents such an architecture in detail, including a description of implementation results.

Shin, Dongwan (New Mexico Tech, Socorro, NM); Claycomb, William R.

2010-07-01T23:59:59.000Z

64

Global Social Media Directory: A Resource Guide  

SciTech Connect

The Global Social Media Directory is a resource guide providing information on social networking services around the globe. This information changes rapidly, therefore, this document will be updated on a regular basis and as funding permits.

Noonan, Christine F.; Piatt, Andrew W.

2014-10-23T23:59:59.000Z

65

Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

Archive, Sample Requests in Progress, Swipe Results Folder Miscellaneous Folder Process Procedures Folder Project Plans Folder RAD Records Area Surveys, Completed RPR13...

66

Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

Daren Jensen Nuclear Energy University Programs NEUP Quality Assurance Daren Jensen NEUP Quality Engineer Val See... (Properties) 82211 12:59 PM 82211 12:59 PM Send Document...

67

Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

INL.GOV Related Communities Home Subfolders in "INL.GOV" Go Up 1 Level Go Up 1 Level Up Folder CommunityPages Folder Feature Stories Folder Feature Story Files Folder News Releases...

68

Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

17- Willardson 17- Willardson May 16, 2012 Tony Willardson, Executive Director Western States Water Council WSWC Organization We... (Properties) 82712 11:59 AM 82712...

69

Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

Sort items in descending order Object Created Object Last Modified Aquifer Impacts from Hydraulic Fracturing Aquifer Impacts from Hydraulic Fracturing Aquifer Impacts from...

70

Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

AREVA Folder Argonne National Laboratory Folder Dominion Engineering, Inc Folder Entergy Folder General Atomics Folder Industry Alliance Folder Oak Ridge National Laboratory...

71

Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

PM Send Document Link 15- Ehud Greenspan 15- Ehud Greenspan 1 of 1 Project Title Self-sustaining thorium boiling water reactors PI: Ehud Greenspan - UC Berkeley... (Properties)...

72

Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

INL Audio 1 Your INL Update - Week of Jan. 4, 2010 This is Nicole Stricker with your INL Update. You... (Properties) 1510 2:04 PM 1510 2:41 PM Send Document...

73

Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

15 6:20 PM Send Document Link News Release Details (11538) News Release Details (11538) IDAHO FALLS -- The Advanced Test Reactor National Scientific User Facility (ATR NSUF),...

74

Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

Nuclear Collaboration Portal Subfolders in "Nuclear Collaboration Portal" Go Up 1 Level Go Up 1 Level Up This folder contains no subfolders. Documents in "Nuclear Collaboration...

75

Directory  

NLE Websites -- All DOE Office Websites (Extended Search)

2010" Go Up 1 Level Go Up 1 Level Up Folder INLNGNP References Folder NGNP Industry Alliance Folder NON INLNGNP References Documents in "NEAC 2010" (1 - 20 of 24) View items: 21...

76

Georgia Biofuel Directory A directory of Georgia industries that use biofuels.  

E-Print Network (OSTI)

Georgia Biofuel Directory · A directory of Georgia industries that use biofuels. · Completed in May _________________________________________________________________ 3 Biofuels_____________________________________________________________________ 4 Biofuel Use in Georgia that Burn Self-Generated Biofuels as of May 2003__ 4 Chart 1.0 Biofuel Use from Contacted

77

Fabrication Flaws in Reactor Pressure Vessel Repair Welds  

SciTech Connect

This paper describes the fabrication flaw distribution and characterization in the repair weld metal of reactor pressure vessels. This work indicates that the large flaws occur in these repairs. These results show that repair flaws are complex in composition and sometimes include cracks on the repair ends. Parametric analysis using an exponential fit is performed on the data. A description of repair flaw morphology is provided. Fabrication flaws in repairs are characterized using high sensitivity nondestructive ultrasonic testing, validation by other nondestructive evaluation (NDE) techniques, and complemented by destructive testing.

Schuster, George J.; Doctor, Steven R.

2007-12-01T23:59:59.000Z

78

Traverse City Light & Power Wind Farm | Open Energy Information  

Open Energy Info (EERE)

Traverse City Light & Power Wind Farm Traverse City Light & Power Wind Farm Jump to: navigation, search Name Traverse City Light & Power Wind Farm Facility Traverse City Light & Power Sector Wind energy Facility Type Community Wind Facility Status In Service Owner Traverse City Light & Power Developer Traverse City Light & Power Energy Purchaser Traverse City Light & Power Location Traverse City MI Coordinates 44.777032°, -85.689917° Loading map... {"minzoom":false,"mappingservice":"googlemaps3","type":"ROADMAP","zoom":14,"types":["ROADMAP","SATELLITE","HYBRID","TERRAIN"],"geoservice":"google","maxzoom":false,"width":"600px","height":"350px","centre":false,"title":"","label":"","icon":"","visitedicon":"","lines":[],"polygons":[],"circles":[],"rectangles":[],"copycoords":false,"static":false,"wmsoverlay":"","layers":[],"controls":["pan","zoom","type","scale","streetview"],"zoomstyle":"DEFAULT","typestyle":"DEFAULT","autoinfowindows":false,"kml":[],"gkml":[],"fusiontables":[],"resizable":false,"tilt":0,"kmlrezoom":false,"poi":true,"imageoverlays":[],"markercluster":false,"searchmarkers":"","locations":[{"text":"","title":"","link":null,"lat":44.777032,"lon":-85.689917,"alt":0,"address":"","icon":"","group":"","inlineLabel":"","visitedicon":""}]}

79

Status of French flaw evaluation procedures  

SciTech Connect

The RSE-M Code is under development in France and the 1996 edition will include a complete flaw evaluation procedure for operating PWRs. For FBRs the authors have developed the RCC-MR for design and they are now developing RSE-MR rules for operating plants; a first set of flaw evaluation rules are proposed in the A16 document for low and high temperature regime. After some comments on the organization of RSE and RCC Committees, the paper presents: (1) the status of the different French code rules (RSE-M and A16 document); (2) how can one take into consideration some complex geometry or loading case situations; (3) some comparisons with ASME Code-Section XI; and (4) few examples of major on-going developments for flaw evaluation for different components. In conclusion, two different sets of rules are under development one in RSE-M for PWRs and one in RSE-MR for FBRs using partly the A16 proposals. These rules have to remain consistent, but not necessary identical due to the specific components covered by these documents. The components can be very different in term of pressure load, operating temperature, transient thermal loads and seismic loads.

Faidy, C. [Electricite de France-SEPTEN, Villeurbanne (France); Barthelet, B. [Electricite de France-EPN, Paris La Defense (France); Drubay, B. [CEA CEN Saclay, Gif-sur-Yvette (France)

1996-12-01T23:59:59.000Z

80

Building Energy Tools Software Directory | Open Energy Information  

Open Energy Info (EERE)

Building Energy Tools Software Directory Building Energy Tools Software Directory Jump to: navigation, search Tool Summary Name: Building Energy Tools Software Directory Agency/Company /Organization: United States Department of Energy Sector: Energy Focus Area: Energy Efficiency, Buildings Phase: Create a Vision, Determine Baseline, Develop Goals Topics: Technology characterizations Resource Type: Dataset, Software/modeling tools User Interface: Website Website: apps1.eere.energy.gov/buildings/tools_directory/ References: http://apps1.eere.energy.gov/buildings/tools_directory/ Logo: Building Energy Tools Software Directory This directory provides information on 388 building software tools for evaluating energy efficiency, renewable energy, and sustainability in buildings. The energy tools listed in this directory include databases,

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


81

The 2010 ERC Directory of Waste-to-Energy Plants  

E-Print Network (OSTI)

1 The 2010 ERC Directory of Waste-to-Energy Plants By Ted Michaels The 2010 ERC Directory of Waste-to-Energy Plants provides current information about the waste-to-energy sector in the United States. Since this Directory was last published in 2007, waste-to-energy capacity has increased for the first time in many

Columbia University

82

Global Change Master Directory | Data.gov  

NLE Websites -- All DOE Office Websites (Extended Search)

Global Change Master Directory Global Change Master Directory Energy Data Apps Maps Challenges Resources Blogs Let's Talk Energy Beta You are here Data.gov » Communities » Energy » Data Global Change Master Directory Dataset Summary Description The GCMD database holds more than 30,000 descriptions of Earth science data sets and services covering all aspects of Earth and environmental sciences. Tags {Agriculture,atmosphere,biosphere,bilogy,climate,cryosphere,"land surface",oceans,paleoclimate,"solid Earth",Sun,"terrestrial hydrosphere",NASA,GSFC,"Goddard Space Flight Center"} Dataset Ratings Overall 0 No votes yet Data Utility 0 No votes yet Usefulness 0 No votes yet Ease of Access 0 No votes yet Dataset Additional Information Last Updated 01-Jan-2010 Publisher National Aeronautics and Space Administration

83

Directory of Energy Information Administration Models 1993  

SciTech Connect

This directory contains descriptions about each model, including the title, acronym, purpose, followed by more detailed information on characteristics, uses, and requirements. Sources for additional information are identified. Included in this directory are 35 EIA models active as of May 1, 1993. Models that run on personal computers are identified by ``PC`` as part of the acronym. EIA is developing new models, a National Energy Modeling System (NEMS), and is making changes to existing models to include new technologies, environmental issues, conservation, and renewables, as well as extend forecast horizon. Other parts of the Department are involved in this modeling effort. A fully operational model is planned which will integrate completed segments of NEMS for its first official application--preparation of EIA`s Annual Energy Outlook 1994. Abstracts for the new models will be included in next year`s version of this directory.

Not Available

1993-07-06T23:59:59.000Z

84

An Integrated Traverse Planner and Analysis Tool for Planetary Exploration  

E-Print Network (OSTI)

Future planetary explorations will require surface traverses of unprecedented frequency, length, and duration. As a result, there is need for exploration support tools to maximize productivity, scientific return, and safety. ...

Johnson, Aaron William

85

V-139: Cisco Network Admission Control Input Validation Flaw...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

Sensitive Information U-270:Trend Micro Control Manager Input Validation Flaw in Ad Hoc Query Module Lets Remote Users Inject SQL Commands U-015: CiscoWorks Common...

86

U-219: Symantec Web Gateway Input Validation Flaws Lets Remote...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

9: Symantec Web Gateway Input Validation Flaws Lets Remote Users Inject SQL Commands, Execute Arbitrary Commands, and Change User Passwords U-219: Symantec Web Gateway Input...

87

Directory of Energy Information Administration models, 1990  

SciTech Connect

This directory revises and updates the Directory of Energy Information Administration Models, DOE/EIA-0293(89), Energy Information Administration (EIA), US Department of Energy, May 1989. The major changes are the inclusion of the Building Energy End-Use Model (BEEM-PC), Residential Energy End-Use Model (REEM-PC), the Refinery Yield Model Spreadsheet System (RYMSS-PC), and the Capital Stock Model (CAPSTOCK-PC). Also, the following models have been inactivated: Energy Disaggregated Input-Output Model (EDIO), Household Model of Energy (HOME3-PC), Commercial Sector Energy Model (CSEM-PC), Outer Continental Shelf Oil and Gas Supply Model (OCSM), and the Stock Module of the Intermediate Future Forecasting System (STOCK). This directory contains descriptions about each basic and auxiliary model, including the title, acronym, purpose, and type, followed by more detailed information on characteristics, uses, and requirements. For developing models, limited information is provided. Sources for additional information are identified. Included in this directory are 38 EIA models active as of March 1, 1990, as well as the PC-AEO Forecasting Model Overview and the three Subsystems for the Short-Term Integrated Forecasting System (STIFS) Model. Models that run on personal computers are identified by PC'' as part of the acronym.

Not Available

1990-06-04T23:59:59.000Z

88

EIA Publications Directory, 1977--1989  

SciTech Connect

Enacted in 1977, the Department of Energy (DOE) Organization Act established the Energy Information Administration (EIA) as the Department's independent statistical and analytical agency, with a mandate to collect and publish data and prepare analyses on energy production, consumption, prices, and resources, and projections of energy supply and demand. This cumulative edition of the EIA Publications Directory (formerly entitled EIA Publications Directory: A User's Guide) contains titles and abstracts of periodicals and one-time reports produced by the EIA from October 1977 through December 1989. It supersedes all previous issues of the Directory. EIA publications have undergone a great many changes over the last decade. The EIA inherited periodicals from the Bureau of Mines, Federal Power Commission, and the Federal Energy Administration. Some of these periodicals have been retitled, consolidated, or discontinued. These changes are noted in the abstracts. The body of the Directory contains citations and abstracts arranged by broad subject categories, such as coal, petroleum, and natural gas and subcategories such as reserves, products and byproducts, and marketing and economics. All reports are indexed alphabetically by subject and title and numerically by report number. EIA appreciates the assistance of DOE's Office of Scientific and Technical Information in sharing portions of the Energy Data Base.

Not Available

1990-06-01T23:59:59.000Z

89

Improved Criteria for the Repair of Fabrication Flaws  

SciTech Connect

Section III of the American Society of Mechanical Engineers (ASME) Boiler and Pressure Vessel Code for nuclear power plant components requires radiographic examinations (RT) of welds and requires repairs for RT indications that exceed code acceptable sizes. This paper describes research that has generated data on welding flaws, which indicated that the largest flaws occur in repaired welds. The fabrication flaws were detected in material removed from cancelled nuclear power plants using high sensitivity Nondestructive Examination (NDE) and validated by complementary NDE and destructive testing. Evidence suggests that repairs are often for small and benign RT indications at locations buried within the vessel or pipe wall. Probabilistic fracture mechanics calculations are described in this paper to predict the increases in vessel and piping failure probabilities caused by the repair-induced flaws. Calculations address failures of embrittled vessel welds for pressurized thermal shock (PTS) transients and piping failures caused by fatigue crack growth. For vessels the small flaws, which are relatively common, can cause brittle fracture, such that the rarely encountered repair flaws of large sizes gave only modestly increased failure probabilities. Calculations for piping show that only relatively large fabrication flaws can cause failures because of the ductile nature of the piping material. The large repair flaws therefore significantly increased the failure probabilities. The paper recommends the use of more discriminating ultrasonic examinations in place of RT examinations along with repair criteria based on a fitness-for-purpose approach that minimize the number of unjustified repairs.

Doctor, Steven R.; Schuster, George J.; Simonen, Fredric A.

2004-12-01T23:59:59.000Z

90

U-161: Citrix Provisioning Services Unspecified Flaw Lets Remote Users  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

1: Citrix Provisioning Services Unspecified Flaw Lets Remote 1: Citrix Provisioning Services Unspecified Flaw Lets Remote Users Execute Arbitrary Code U-161: Citrix Provisioning Services Unspecified Flaw Lets Remote Users Execute Arbitrary Code May 3, 2012 - 7:00am Addthis PROBLEM: Citrix Provisioning Services Unspecified Flaw Lets Remote Users Execute Arbitrary Code PLATFORM: 6.1 and prior ABSTRACT: A vulnerability was reported in Citrix Provisioning Services. A remote user can execute arbitrary code on the target system. reference LINKS: SecurityTracker Alert ID: 1027004 Secunia Advisory SA48971 Citrix advisory IMPACT ASSESSMENT: Medium Discussion: A remote user can send a specially crafted packet to trigger an unspecified flaw and execute arbitrary code on the target system. The code will run with the privileges of the target service.

91

Directory of Potential Stakeholders for DOE Actions under NEPA | Department  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

Directory of Potential Stakeholders for DOE Actions under NEPA Directory of Potential Stakeholders for DOE Actions under NEPA Directory of Potential Stakeholders for DOE Actions under NEPA DOE Offices are encouraged to be inclusive in providing potentially interested parties with opportunities to review NEPA documents. This Directory of Potential Stakeholders for DOE Actions under NEPA is primarily intended to supplement lists that Departmental Offices compile for individual projects or facilities. It complements the EIS Distribution Guidance. The Office of NEPA Policy and Compliance updates this Directory annually in July and may issue revisions throughout the year as new information becomes available. NEPAStakeholdersDirectory_10_29_13.pdf More Documents & Publications Diversity Employment and Recruitment Sources

92

T-676: Apple iOS Certificate Chain Validation Flaw Lets Certain...  

Energy Savers (EERE)

Chain Validation Flaw Lets Certain Remote Users Access or Modify SSLTLS Sessions T-676: Apple iOS Certificate Chain Validation Flaw Lets Certain Remote Users Access or...

93

T-727:Microsoft Windows SSL/TLS Protocol Flaw Lets Remote Users...  

Office of Environmental Management (EM)

727:Microsoft Windows SSLTLS Protocol Flaw Lets Remote Users Decryption Sessions T-727:Microsoft Windows SSLTLS Protocol Flaw Lets Remote Users Decryption Sessions September 27,...

94

T-673: Apple Safari Multiple Flaws Let Remote Users Execute Arbitrary...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

Flaws Let Remote Users Execute Arbitrary Code, Conduct Cross-Site Scripting Attacks T-673: Apple Safari Multiple Flaws Let Remote Users Execute Arbitrary Code, Conduct...

95

V-075: EMC AlphaStor Command Injection and Format String Flaws...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

Flaw Lets Remote Users Execute Arbitrary Commands V-181: Oracle Java SE Critical Patch Update Advisory - June 2013 V-067: Oracle Java Flaw Lets Remote Users Execute...

96

Directory of energy information administration models 1995  

SciTech Connect

This updated directory has been published annually; after this issue, it will be published only biennially. The Disruption Impact Simulator Model in use by EIA is included. Model descriptions have been updated according to revised documentation approved during the past year. This directory contains descriptions about each model, including title, acronym, purpose, followed by more detailed information on characteristics, uses, and requirements. Sources for additional information are identified. Included are 37 EIA models active as of February 1, 1995. The first group is the National Energy Modeling System (NEMS) models. The second group is all other EIA models that are not part of NEMS. Appendix A identifies major EIA modeling systems and the models within these systems. Appendix B is a summary of the `Annual Energy Outlook` Forecasting System.

NONE

1995-07-13T23:59:59.000Z

97

Directory of Standard, Optional and Other Agency Forms  

Directives, Delegations, and Requirements

The directive lists the Directory of Standard, Optional and Other Agency Forms and includes a list of Departmental reports and forms managers. Cancels DOE 1322.4A.

1989-12-12T23:59:59.000Z

98

Bureau of Land Management - Washington Office Directories | Open...  

Open Energy Info (EERE)

p?titleBureauofLandManagement-WashingtonOfficeDirectories&oldid793278" Categories: References Geothermal References Solar References Utilities References Bulk Transmission...

99

Directory of contractors supported by Division of Nuclear Physics  

SciTech Connect

The directory includes the name of the institution, principal investigator, contract numbers, addresses, and phone numbers. Some contract titles are included. (WHK)

Not Available

1981-12-01T23:59:59.000Z

100

Directory of Small Business Program Managers (SBPMs)  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

smallbusiness.energy.gov smallbusiness.energy.gov Office of Small and Disadvantaged Business Utilization (OSDBU) U.S. Department of Energy Office of Small and Disadvantaged Business Utilization 1000 Independence Ave., SW Washington, DC 20585 DIRECTORY OF SMALL BUSINESS PROGRAM MANAGERS (SBPMs) Section I CONTENTS Headquarters Program Elements/Offices ....................................................... Section I Contracting Activities/Offices ........................................................................ Section II Facility Management Contractors (FMCs) .................................................... Section III

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


101

Environmental/Radiological Assistance Directory (ERAD)  

Energy.gov (U.S. Department of Energy (DOE))

The Environmental Radiological Assistance Directory or ERAD, developed by HS-22, serves as an assistance tool to the DOE complex for protection of the public and environment from radiation. The ERAD is a combination webinar/conference call, designed to provide DOE and its contractors a forum to share information, lessons-learned, best practices, emerging trends, compliance issues, etc. in support of radiological protection programs developed in accordance with DOE O 458.1. ERAD Presentations, Questions and Answers ERAD

102

Traversal, Case Analysis, and Lowering for C++ Program Analysis  

E-Print Network (OSTI)

. . . . . . . . . . . . . . . . . . . . . . . . 11 II TUTORIAL : : : : : : : : : : : : : : : : : : : : : : : : : : : : : 13 A. Motivation . . . . . . . . . . . . . . . . . . . . . . . . . . . 13 B. Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15 C. \\Hello, Unit... are and leaves the why for the discussion in Chapter III. Also, these goals are introduced by metaphor and example, saving their realization in the Filter library for the tutorial in Chapter II. 1. Traversal and case analysis The rst functional goal...

Wagner, Luke A.

2010-01-14T23:59:59.000Z

103

Rover Traverse Science for Increased Mission Science Return  

E-Print Network (OSTI)

rate than downlink capacity is increasing. As this trend continues, the quantity of data that can be returned to Earth per meter traversed is reduced. The capacity of the rover to collect data, however importance to NASA's program of exploring the Solar System, and Mars in particular, is the development

104

T-541: Citrix Provisioning Services Unspecified Flaw Let's Remote Users  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

41: Citrix Provisioning Services Unspecified Flaw Let's Remote 41: Citrix Provisioning Services Unspecified Flaw Let's Remote Users Execute Arbitrary Code T-541: Citrix Provisioning Services Unspecified Flaw Let's Remote Users Execute Arbitrary Code January 24, 2011 - 5:34pm Addthis PROBLEM: Citrix Provisioning Services Unspecified Flaw Let's Remote Users Execute Arbitrary Code PLATFORM: * Provisioning Services 5.1 * Provisioning Services 5.6 ABSTRACT: A vulnerability has been identified in Citrix Provisioning Services that could result in arbitrary code execution. This vulnerability can be triggered by an attacker sending a specially crafted packet to the Provisioning Services server. This vulnerability is present in all supported versions of Citrix Provisioning Services up to and including version 5.6. reference LINKS:

105

U-093: Mozilla Firefox Multiple Flaws Permit Remote Code Execution,  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

3: Mozilla Firefox Multiple Flaws Permit Remote Code Execution, 3: Mozilla Firefox Multiple Flaws Permit Remote Code Execution, Information Disclosure, and Cross-Site Scripting Attacks U-093: Mozilla Firefox Multiple Flaws Permit Remote Code Execution, Information Disclosure, and Cross-Site Scripting Attacks February 1, 2012 - 5:51am Addthis PROBLEM: Multiple vulnerabilities were reported in Mozilla Firefox. PLATFORM: Linux (Any), UNIX (Any), Windows (Any) Version(s): prior to 3.2.26; prior to 10.0 ABSTRACT: Mozilla Firefox Multiple Flaws Permit Remote Code Execution, Information Disclosure, and Cross-Site Scripting. reference LINKS: SecurityTracker Alert ID: 1026605 CVE-2011-3659, CVE-2012-0442 CVE-2012-0443, CVE-2012-0444 CVE-2012-0445, CVE-2012-0446 CVE-2012-0447, CVE-2012-0449 CVE-2012-0450 Vendor Site IMPACT ASSESSMENT:

106

Fabrication Flaw Density and Distribution in Piping Weldments  

SciTech Connect

The U.S. Nuclear Regulatory Commission supported the Pacific Northwest National Laboratory (PNNL) to develop empirical data on the density and distribution of fabrication flaws in nuclear reactor components. These data are needed to support probabilistic fracture mechanics calculations and studies on component structural integrity. PNNL performed nondestructive examination inspections and destructive testing on archived piping welds to determine the fabrication flaw size and distribution characteristics of the flaws in nuclear power plant piping weldments. Eight different processes and product forms in piping weldments were studied including wrought stainless steel and dissimilar metal weldments. Parametric analysis using an exponential fit was performed on the data. Results were created as a function of the through-wall size of the fabrication flaws as well as the length distribution. The results are compared and contrasted with those developed for reactor pressure vessel processes and product forms. The most significant findings were that the density of fabrication flaws versus through-wall size was higher in piping weldments than that for the reactor pressure vessel weldments, and the density of fabrication flaws versus through-wall size in both reactor pressure vessel weld repairs and piping weldments were greater than the density in the original weldments. Curves showing these distributions are presented.

Doctor, Steven R.

2009-09-01T23:59:59.000Z

107

Hanford Site radioactive hazardous materials packaging directory  

SciTech Connect

The Hanford Site Radioactive Hazardous Materials Packaging Directory (RHMPD) provides information concerning packagings owned or routinely leased by Westinghouse Hanford Company (WHC) for offsite shipments or onsite transfers of hazardous materials. Specific information is provided for selected packagings including the following: general description; approval documents/specifications (Certificates of Compliance and Safety Analysis Reports for Packaging); technical information (drawing numbers and dimensions); approved contents; areas of operation; and general information. Packaging Operations & Development (PO&D) maintains the RHMPD and may be contacted for additional information or assistance in obtaining referenced documentation or assistance concerning packaging selection, availability, and usage.

McCarthy, T.L.

1995-12-01T23:59:59.000Z

108

City of Traverse City, Michigan (Utility Company) | Open Energy Information  

Open Energy Info (EERE)

Traverse City Traverse City Place Michigan Utility Id 19125 Utility Location Yes Ownership M NERC Location RFC NERC RFC Yes Operates Generating Plant Yes Activity Generation Yes Activity Transmission Yes Activity Buying Transmission Yes Activity Distribution Yes References EIA Form EIA-861 Final Data File for 2010 - File1_a[1] LinkedIn Connections CrunchBase Profile No CrunchBase profile. Create one now! This article is a stub. You can help OpenEI by expanding it. Utility Rate Schedules Grid-background.png General Secondary Service (Large Business Rate) Commercial General Secondary Service (Small Business Rate) Commercial Primary Service-High Load Factor Commercial Commercial Primary Service-High Load Factor Industrial Industrial Residential Rates Residential Residential Senior Citizen Rate Residential

109

Efficient Traversal of Beta-Sheet Protein Folding Pathways Using Ensemble Models  

E-Print Network (OSTI)

Efficient Traversal of Beta-Sheet Protein Folding Pathways Using Ensemble Models SOLOMON SHENKER,1 introduce a complete methodology to

Gifford, David K.

110

Footprint traversal by ATP-dependent chromatin remodeler motor  

E-Print Network (OSTI)

ATP-dependent chromatin remodeling enzymes (CRE) are bio-molecular motors in eukaryotic cells. These are driven by a chemical fuel, namely, adenosine triphosphate (ATP). CREs actively participate in many cellular processes that require accessibility of specific segments of DNA which are packaged as chromatin. The basic unit of chromatin is a nucleosome where 146 bp $\\sim$ 50 nm of a double stranded DNA (dsDNA) is wrapped around a spool formed by histone proteins. The helical path of histone-DNA contact on a nucleosome is also called "footprint". We investigate the mechanism of footprint traversal by a CRE that translocates along the dsDNA. Our two-state model of a CRE captures effectively two distinct chemical (or conformational) states in the mechano-chemical cycle of each ATP-dependent CRE. We calculate the mean time of traversal. Our predictions on the ATP-dependence of the mean traversal time can be tested by carrying out {\\it in-vitro} experiments on mono-nucleosomes.

Ashok Garai; Jesrael Mani; Debashish Chowdhury

2012-03-14T23:59:59.000Z

111

Directory of RivDIS data  

NLE Websites -- All DOE Office Websites (Extended Search)

Directory of RivDIS data Directory of RivDIS data The data consists of tabular data files, html summary tables, and gif images. The images summarize all existing data except for Discharge vs Year, which shows only 1960 - 1990. This index is organized by Country, River, and Station. Clicking on a letter link scrolls you to a country beginning with that letter. A B C D E F G H I J K L M N O P Q R S T U V W X Y Z The most recent update at 10:57:50 on 12/29/1999 included 1018 stations out of the total 1018 stations. See also the README file and the RivDIS Online Home Page for further information. Albania A B C D E F G H I J K L M N O P Q R S T U V W X Y Z (Devolli River) Kokel: Data Summary and Plots (Drini River) Kalimash: Data Summary and Plots (Drini i Zi River) Ura e Dodes: Data

112

American Institute of Aeronautics and Astronautics An Integrated Traverse Planner and Analysis Tool for  

E-Print Network (OSTI)

of metrics: the traverse distance, traverse time, or the explorer's energy consumption. The generated path, display of traverse obstacles, and selection of Activity Points are visualized in a 3D mapping interface to compute the thermal load on suited astronauts and the solar power generation capacity of rovers over

Newman, Dava J.

113

Ultrasonic Flaw Detection of Cracks and Machined Flaws as Observed Through Austenitic Stainless Steel Piping Welds  

SciTech Connect

Piping welds in the pressure boundary of light water reactors (LWRs) are subject to a volumetric examination based on Section XI of the American Society of Mechanical Engineers (ASME) Boiler and Pressure Vessel Code. Due to access limitations and high background radiation levels, the technique used is primarily ultrasonic rather than radiographic. Many of the austenitic welds in safety-related piping systems provide limited access to both sides of the weld, so a far-side examination is necessary. Historically, far-side inspections have performed poorly because of the coarse and elongated grains that make up the microstructures of austenitic weldments. The large grains cause the ultrasound to be scattered, attenuated, and redirected. Additionally, grain boundaries or weld geometry may reflect coherent ultrasonic echoes, making flaw detection and discrimination a more challenging endeavor. Previous studies conducted at the Pacific Northwest National Laboratory (PNNL) on ultrasonic far-side examinations in austenitic piping welds involved the application of conventional transducers, use of low-frequency Synthetic Aperture Focusing Techniques (SAFT), and ultrasonic phased-array (PA) methods on specimens containing implanted thermal fatigue cracks and machined reflectors [1-2]. From these studies, PA inspection provided the best results, detecting nearly all of the flaws from the far side. These results were presented at the Fifth International Conference on NDE in Relation to Structural Integrity for Nuclear and Pressurised Components in 2006. This led to an invitation to examine field-removed specimens containing service-induced intergranular stress corrosion cracks (IGSCC) at the Electric Power Research Institute’s (EPRI) Nondestructive Evaluation (NDE) Center, in Charlotte, North Carolina. Results from this activity are presented.

Anderson, Michael T.; Cinson, Anthony D.; Crawford, Susan L.; Cumblidge, Stephen E.; Diaz, Aaron A.

2009-07-01T23:59:59.000Z

114

Environment, Environmental Restoration, and Waste Management Field Organization Directory  

SciTech Connect

This directory was developed by the Office of Environmental Guidance, RCRA/CERCLA Division (EH-231) from an outgrowth of the Departments efforts to identify and establish the regulatory response lead persons in the Field Organizations. The directory was developed for intemal EH-231 use to identify both the DOE and DOE contractor Field Organizations in the Environment, Environmental Restoration and Waste Management areas. The Field Organization directory is divided into three substantive sections: (1) Environment; (2) Environmental Restoration; and (3) Waste Management which are organized to correspond to the management hierarchy at each Field Organization. The information provided includes the facility name and address, individual managers name, and telephone/fax numbers.

Not Available

1993-07-01T23:59:59.000Z

115

V-073: IBM Tivoli Federated Identity Manager Signature Verification Flaw  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

3: IBM Tivoli Federated Identity Manager Signature Verification 3: IBM Tivoli Federated Identity Manager Signature Verification Flaw Lets Remote Users Modify Attributes V-073: IBM Tivoli Federated Identity Manager Signature Verification Flaw Lets Remote Users Modify Attributes January 21, 2013 - 12:15am Addthis PROBLEM: IBM Tivoli Federated Identity Manager Signature Verification Flaw Lets Remote Users Modify Attributes PLATFORM: Tivoli Federated Identity Manager versions 6.2.0, 6.2.1, 6.2.2 ABSTRACT: A vulnerability was reported in IBM Tivoli Federated Identity Manager. REFERENCE LINKS: IBM Security Bulletin: 1615744 SecurityTracker Alert ID: 1028011 CVE-2012-6359 IMPACT ASSESSMENT: Medium DISCUSSION: The system does not check that all attributes have been signed. A remote user with the ability to conduct a man-in-the-middle attack can modify

116

V-192: Symantec Security Information Manager Input Validation Flaws Permit  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

92: Symantec Security Information Manager Input Validation Flaws 92: Symantec Security Information Manager Input Validation Flaws Permit Cross-Site Scripting, SQL Injection, and Information Disclosure Attacks V-192: Symantec Security Information Manager Input Validation Flaws Permit Cross-Site Scripting, SQL Injection, and Information Disclosure Attacks July 4, 2013 - 6:00am Addthis PROBLEM: Several vulnerabilities were reported in Symantec Security Information Manager PLATFORM: Symantec Security Information Manager Appliance Version 4.7.x and 4.8.0 ABSTRACT: Symantec was notified of multiple security issues impacting the SSIM management console REFERENCE LINKS: SecurityTracker Alert ID: 1028727 Symantec Security Advisory SYM13-006 CVE-2013-1613 CVE-2013-1614 CVE-2013-1615 IMPACT ASSESSMENT: Medium DISCUSSION: The console does not properly filter HTML code from user-supplied input

117

Probabilistic assessment of critically flawed LMFBR PHTS piping elbows  

SciTech Connect

One of the important functions of the Primary Heat Transport System (PHTS) of a large Liquid Metal Fast Breeder Reactor (LMFBR) plant is to contain the circulating radioactive sodium in components and piping routed through inerted areas within the containment building. A significant possible failure mode of this vital system is the development of cracks in the piping components. This paper presents results from the probabilistic assessment of postulated flaws in the most-critical piping elbow of each piping leg. The criticality of calculated maximum sized flaws is assessed against an estimated material fracture toughness to determine safety factors and failure probability estimates using stress-strength interference theory. Subsequently, a different approach is also employed in which the randomness of the initial flaw size and loading are more-rigorously taken into account. This latter approach yields much smaller probability of failure values when compared to the stress-strength interference analysis results.

Balkey, K.R.; Wallace, I.T.; Vaurio, J.K.

1982-01-01T23:59:59.000Z

118

Solubility of Flaws in Heavily-Doped Semiconductors  

Science Journals Connector (OSTI)

The solubility of a charged impurity in a semiconductor depends upon the Fermi level. This dependence may be understood in terms of a conceptual model in which an impurity is allowed to diffuse in a specimen containing a p-n junction, so that the Fermi level varies in respect to the band edges. If the impurity can exist in many states of charge (i.e., is a "flaw"), then the concentration of flaws with charge r times the electronic charge varies as the rth power of the hole density. Summing the concentrations for the different states of charge gives the solubility and its dependence upon hole concentration, and, hence, Fermi level.

W. Shockley and J. L. Moll

1960-09-01T23:59:59.000Z

119

Office of NEPA Policy and Compliance, Staff Directory  

Energy.gov (U.S. Department of Energy (DOE))

Office of NEPA Policy and Compliance, Staff Directory including phone number and areas of responsibility for the  Energy and Waste Management Unit, Western Energy and Waste Management Unit, and the...

120

Directory of coal production ownership, 1979  

SciTech Connect

Ownership patterns in the coal industry are highly complex. Many producers are diversified into other lines of activity. The pattern and extent of this diversification has varied through time. In the past, steel and nonferrous metals companies had major coal industry involvement. This is still true today. However, other types of enterprises have entered the industry de novo or through merger. Those of greatest significance in recent times have involved petroleum and particularly public utility companies. This report attempts to identify, as accurately as possible, production ownership patterns in the coal industry. The audience for this Directory is anyone who is interested in accurately tracing the ownership of coal companies to parent companies, or who is concerned about the structure of ownership in the US coal industry. This audience includes coal industry specialists, coal industry policy analysts, economists, financial analysts, and members of the investment community.

Thompson, B.

1981-10-01T23:59:59.000Z

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


121

Traversable wormholes without exotic matter in multimetric repulsive gravity  

E-Print Network (OSTI)

We present a static, spherically symmetric, traversable wormhole solution to multimetric gravity which is sustained by only non-exotic matter, i.e., matter which satisfies all energy conditions. The possibility of this solution arises from the fact that under certain conditions the multimetric gravitational field equations reduce to the Einstein equations, but with a negative effective gravitational constant. We show that the Arnowitt-Deser-Misner mass of this wormhole vanishes, so that it appears massless to observers in the asymptotically flat spacetime. We finally speculate on the feasibility of creating and maintaining this type of wormhole by an advanced civilization.

Manuel Hohmann

2014-04-10T23:59:59.000Z

122

Flawed analysis of the possibility of air capture  

E-Print Network (OSTI)

(2009) Capture of carbon dioxide from ambient air. Eur Phys J Spec Top 176: 93­106. Author contributionsLETTER Flawed analysis of the possibility of air capture In the article entitled "Economic capture and other gas separation processes. It concludes that (i) "unless air capture significantly

123

Detection of Strength-Impairing Surface Flaws in Glass  

Science Journals Connector (OSTI)

...of Strength-Impairing Surface Flaws in Glass F. M. Ernsberger Experiments have shown...sodium vapour treatment on the surface of glass (Andrade Tsien 1937) are fractures due...can also be developed, in soda-lime glass, by treatment with a molten lithium salt...

1960-01-01T23:59:59.000Z

124

On flaw tolerance of nacre: a theoretical study  

Science Journals Connector (OSTI)

...superior flaw-tolerance feature. The maximal crack size that does not evidently reduce the tensile strength of nacre is up to...PC Paris, and GR Irwin. 1985 The stress analysis of cracks handbook. St Louis, MO: Paris Productions. 48 Bao, G , and Y Song...

2014-01-01T23:59:59.000Z

125

T-536: Cisco ASA Multiple Flaws Let Remote Users Deny Service...  

Office of Energy Efficiency and Renewable Energy (EERE) Indexed Site

36: Cisco ASA Multiple Flaws Let Remote Users Deny Service and Bypass Security Controls T-536: Cisco ASA Multiple Flaws Let Remote Users Deny Service and Bypass Security Controls...

126

T-698: Adobe ColdFusion Input Validation Flaw in 'probe.cfm'...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

ColdFusion Input Validation Flaw in 'probe.cfm' Permits Cross-Site Scripting Attacks T-698: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' Permits Cross-Site Scripting...

127

U-050: Adobe Flex SDK Input Validation Flaw Permits Cross-Site...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

Attacks U-050: Adobe Flex SDK Input Validation Flaw Permits Cross-Site Scripting Attacks December 2, 2011 - 5:24am Addthis PROBLEM: Adobe Flex SDK Input Validation Flaw Permits...

128

U-230: Sudo on Red Hat Enterprise Linux %postun Symlink Flaw...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

0: Sudo on Red Hat Enterprise Linux %postun Symlink Flaw Lets Local Users Gain Elevated Privileges U-230: Sudo on Red Hat Enterprise Linux %postun Symlink Flaw Lets Local Users...

129

V-142: Oracle Java Reflection API Flaw Lets Remote Users Execute...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

2: Oracle Java Reflection API Flaw Lets Remote Users Execute Arbitrary Code V-142: Oracle Java Reflection API Flaw Lets Remote Users Execute Arbitrary Code April 25, 2013 - 12:14am...

130

V-104: Oracle Java Flaw Lets Remote Users Execute Arbitrary Code...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

Code V-104: Oracle Java Flaw Lets Remote Users Execute Arbitrary Code March 5, 2013 - 12:53am Addthis PROBLEM: Oracle Java Flaw Lets Remote Users Execute Arbitrary Code...

131

U-239: Apple iPhone SMS Processing Flaw Lets Remote Users Spoof...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

39: Apple iPhone SMS Processing Flaw Lets Remote Users Spoof SMS Source Addresses U-239: Apple iPhone SMS Processing Flaw Lets Remote Users Spoof SMS Source Addresses August 20,...

132

V-168: Splunk Web Input Validation Flaw Permits Cross-Site Scripting...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

8: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks V-168: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks May 31, 2013 - 6:00am Addthis...

133

V-124: Splunk Web Input Validation Flaw Permits Cross-Site Scripting...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

4: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks V-124: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks April 2, 2013 - 1:13am Addthis...

134

U-106: Citrix XenServer Multiple Flaws in Web Self Service Have...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

6: Citrix XenServer Multiple Flaws in Web Self Service Have Unspecified Impact U-106: Citrix XenServer Multiple Flaws in Web Self Service Have Unspecified Impact February 17, 2012...

135

Fabrication Flaw Density and Distribution In Repairs to Reactor Pressure Vessel and Piping Welds  

SciTech Connect

The Pacific Northwest National Laboratory is developing a generalized fabrication flaw distribution for the population of nuclear reactor pressure vessels and for piping welds in U.S. operating reactors. The purpose of the generalized flaw distribution is to predict component-specific flaw densities. The estimates of fabrication flaws are intended for use in fracture mechanics structural integrity assessments. Structural integrity assessments, such as estimating the frequency of loss-of-coolant accidents, are performed by computer codes that require, as input, accurate estimates of flaw densities. Welds from four different reactor pressure vessels and a collection of archived pipes have been studied to develop empirical estimates of fabrication flaw densities. This report describes the fabrication flaw distribution and characterization in the repair weld metal of vessels and piping. This work indicates that large flaws occur in these repairs. These results show that repair flaws are complex in composition and sometimes include cracks on the ends of the repair cavities. Parametric analysis using an exponential fit is performed on the data. The relevance of construction records is established for describing fabrication processes and product forms. An analysis of these records shows there was a significant change in repair frequency over the years when these components were fabricated. A description of repair flaw morphology is provided with a discussion of fracture mechanics significance. Fabrication flaws in repairs are characterized using optimized-access, high-sensitivity nondestructive ultrasonic testing. Flaw characterizations are then validated by other nondestructive evaluation techniques and complemented by destructive testing.

GJ Schuster, FA Simonen, SR Doctor

2008-04-01T23:59:59.000Z

136

T-563: Red Hat Directory Server Bugs Let Local Users Gain Elevated...  

Office of Environmental Management (EM)

T-563: Red Hat Directory Server Bugs Let Local Users Gain Elevated Privileges and Remote and Local Users Deny Service T-563: Red Hat Directory Server Bugs Let Local Users Gain...

137

OFFICE OF NEPA POLICY AND COMPLIANCE - STAFF DIRECTORY | Department of  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

OFFICE OF NEPA POLICY AND COMPLIANCE - STAFF DIRECTORY OFFICE OF NEPA POLICY AND COMPLIANCE - STAFF DIRECTORY OFFICE OF NEPA POLICY AND COMPLIANCE - STAFF DIRECTORY Carol Borgstrom, Director 202-586-4600 Carol.Borgstrom@hq.doe.gov Lettie Wormley, Secretary 202-586-4610 Lettie.Wormley@hq.doe.gov Eastern Energy and Waste Management Unit Contact Program/Responsibility Special Projects or Topics Brian Costner Brian.Costner@hq.doe.gov 202-586-9924 Unit Leader Yardena Mansoor Yardena.Mansoor@hq.doe.gov 202-586-9326 Office of Environmental Management * Oak Ridge Office * Savannah River Operations Office Office of Fossil Energy * Strategic Reserves * Liquefied Natural Gas (LNG) Office of Electricity Delivery and Energy Reliability * Champlain Hudson Power Express Western Area Power Administration Bonneville Power Administration

138

T-563: Red Hat Directory Server Bugs Let Local Users Gain Elevated  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

3: Red Hat Directory Server Bugs Let Local Users Gain Elevated 3: Red Hat Directory Server Bugs Let Local Users Gain Elevated Privileges and Remote and Local Users Deny Service T-563: Red Hat Directory Server Bugs Let Local Users Gain Elevated Privileges and Remote and Local Users Deny Service February 23, 2011 - 7:00am Addthis PROBLEM: Red Hat Directory Server Bugs Let Local Users Gain Elevated Privileges and Remote and Local Users Deny Service. PLATFORM: Red Hat Directory Server v8 EL4, Red Hat Directory Server v8 EL5 ABSTRACT: Several vulnerabilities were reported in Red Hat Directory Server. A local user can obtain elevated privileges on the target system. A remote user can cause denial of service conditions. A local user can cause denial of service conditions. A remote user can send multiple simple paged search requests to cause the

139

U-200: Red Hat Directory Server Information Disclosure Security Issue and  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

200: Red Hat Directory Server Information Disclosure Security 200: Red Hat Directory Server Information Disclosure Security Issue and Vulnerability U-200: Red Hat Directory Server Information Disclosure Security Issue and Vulnerability June 27, 2012 - 7:00am Addthis PROBLEM: A security issue and a vulnerability have been reported in Red Hat Directory Server, which can be exploited by malicious users to disclose sensitive information. PLATFORM: Red Hat Directory Server 8.x ABSTRACT: If an LDAP user had changed their password, and the directory server had not been restarted since that change, an attacker able to bind to the directory server could obtain the plain text version of that user's password. Reference Links: Original Advisory Secunia ID 49734 CVE-2012-2678, CVE-2012-2746 IMPACT ASSESSMENT: Medium Discussion: 1) The security issue is caused due to new passwords being saved to the

140

U-200: Red Hat Directory Server Information Disclosure Security Issue and  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

0: Red Hat Directory Server Information Disclosure Security 0: Red Hat Directory Server Information Disclosure Security Issue and Vulnerability U-200: Red Hat Directory Server Information Disclosure Security Issue and Vulnerability June 27, 2012 - 7:00am Addthis PROBLEM: A security issue and a vulnerability have been reported in Red Hat Directory Server, which can be exploited by malicious users to disclose sensitive information. PLATFORM: Red Hat Directory Server 8.x ABSTRACT: If an LDAP user had changed their password, and the directory server had not been restarted since that change, an attacker able to bind to the directory server could obtain the plain text version of that user's password. Reference Links: Original Advisory Secunia ID 49734 CVE-2012-2678, CVE-2012-2746 IMPACT ASSESSMENT: Medium Discussion: 1) The security issue is caused due to new passwords being saved to the

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


141

JC3 Bulletin Archive | Department of Energy  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

14, 2011 14, 2011 T-717: Microsoft Security Bulletin Summary for September 2011 Microsoft Security Bulletin Summary for September 2011. September 14, 2011 T-716: Google SketchUp v8.x - '.DAE' File Memory Corruption Vulnerability Google SketchUp v8.x - '.DAE' File Memory Corruption Vulnerability September 13, 2011 T-715: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting Attacks Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting Attacks. September 12, 2011 T-714:Wireshark OpenSafety and CSN.1 Dissector Bugs Wireshark OpenSafety and CSN.1 Dissector Bugs Lets Remote Users Deny Service. September 9, 2011 T-713: Blue Coat Reporter Directory Traversal Flaw Blue Coat Reporter Directory Traversal Flaw Lets Remote Users Gain Full Control. September 8, 2011

142

Thode Library Directory http://library.mcmaster.ca  

E-Print Network (OSTI)

Thode Library Directory http://library.mcmaster.ca 2012/13 Lower Level Bookstacks ( QD- Z) Library Service Desk (Circulation, Reserve, ILL, Research Help, Short Term Loan Collection) Learning Interactive Knowledge (ThInK) Space (classroom) (301) iSci Student Study Space (303) iSci Faculty Work Room

Haykin, Simon

143

Faculty/Staff Directory 200 W. Kawili Street  

E-Print Network (OSTI)

;2 2011-12 HawCC STAFF DIRECTORY COMMUNITY COLLEGE GENERAL INFORMATION NUMBERS Honolulu Community College.......................................................................... Diesel Shop 324.................Machine, Welding & Industrial Mechanics Tech 330..............Architectural, Engineering & CAD Technologies/ Hawaiian Life Styles/I Ola Hloa/ OCET Computer Learning Center

Dong, Yingfei

144

Geriatric Health Speakers 2009 WVGEC Leadership Summit Directory  

E-Print Network (OSTI)

@marshall.edu End of Life Care Crystal Adkins MA, LSW UMWA Health and Retirement Funds, Box 850, Chapmanville, WV@mail.wvu.edu Get List from Organization for Speakers Megan Lasure New River Health-Living Well Elder Care Clinic, P WVGEC Leadership Summit Directory Page 3 Health Care Issues Sherry Kuhl MSW WVU Center on Aging, HSC

Mohaghegh, Shahab

145

A methodology for determining fabrication flaws in a reactor pressure vessel  

SciTech Connect

The Pacific Northwest National Laboratory (PNNL) conducted a program with the major objective of estimating the rate of occurrence of fabrication flaws in US light-water reactor pressure vessels (RPVs). In this study, RPV mate4rial was examined using the Synthetic Aperture Focusing Technique for Ultrasonic Testing (SAFT-UT) to detect and characterize flaws created during fabrication. The inspection data obtained in this program has been analyzed to address the rates of flaw occurrence.

Schuster, G.J.; Doctor, S.R.; Simonen, F.A. [Pacific Northwest National Lab., Richland, WA (United States)

1996-06-01T23:59:59.000Z

146

1990 Washington State directory of biomass energy facilities  

SciTech Connect

This second edition is an update of biomass energy production and use in Washington State for 1989. The purpose of this directory is to provide a listing of known biomass users within the state and some basic information about their facilities. The data can be helpful to persons or organizations considering the use of biomass fuels. The directory is divided into three sections of biomass facilities with each section containing a map of locations and a data summary table. In addition, a conversion table, a glossary and an index are provided in the back of the directory. The first section deals with biogas production from wastewater treatment plants. The second section provides information on the wood combustion facilities in the state. This section is subdivided into two categories. The first is for facilities connected with the forest products industries. The second category include other facilities using wood for energy. The third section is composed of three different types of biomass facilities -- ethanol, municipal solid waste, and solid fuel processing. Biomass facilities included in this directory produce over 64 trillion Btu (British thermal units) per year. Wood combustion facilities account for 91 percent of the total. Biogas and ethanol facilities each produce close to 800 billion Btu per year, MSW facilities produce 1845 billion BTU, and solid fuel processing facilities produce 2321 billion Btu per year. To put these numbers in perspective, Washington's industrial section uses 200 trillion Btu of fuels per year. Therefore, biomass fuels used and/or produced by facilities listed in this directory account for nearly 32 percent of the state's total industrial fuel demand. This is a sizable contribution to the state's energy needs.

Deshaye, J.A.; Kerstetter, J.D.

1990-01-01T23:59:59.000Z

147

E-Print Network 3.0 - axial flaw detection Sample Search Results  

NLE Websites -- All DOE Office Websites (Extended Search)

data mining for flaw identification in ceramics manufacture ORHAN DENGIZy, ALICE E. SMITH*y and IAN... elements is governed by its fracture strength, which is greatly...

148

Application of the TANDEM scheme for reconstructing flaw images by the SAFT method  

Science Journals Connector (OSTI)

The question of applying the TANDEM scheme for reconstructing flaw images by the SAFT method is considered. When the reflection of...

A. E. Bazulin; E. G. Bazulin; D. A. Koval

2009-07-01T23:59:59.000Z

149

Eddy current probe and method for flaw detection in metals  

DOE Patents (OSTI)

A flaw detecting system is shown which includes a probe having a pair of ferrite cores with in-line gaps in close proximity to each other. An insulating, non-magnetic, non-conducting holder fills the gaps and supports the ferrite cores in a manner such that the cores form a generally V-shape. Each core is provided with an excitation winding and a detection winding. The excitation windings are connected in series or parallel with an rf port for connection thereof to a radio frequency source. The detection windings, which are differentially wound, are connected in series circuit to a detector port for connection to a voltage measuring instrument. The ferrite cores at the in-line gaps directly engage the metal surface of a test piece, and the probe is scanned along the test piece. In the presence of a flaw in the metal surface the detection winding voltages are unbalanced, and the unbalance is detected by the voltage measuring instrument. The insulating holder is provided with a profile which conforms to that of a prominent feature of the test piece to facilitate movement of the probe along the feature, typically an edge or a corner. 9 figs.

Watjen, J.P.

1987-06-23T23:59:59.000Z

150

Eddy current probe and method for flaw detection in metals  

DOE Patents (OSTI)

A flaw detecting system is shown which includes a probe having a pair of ferrite cores with in-line gaps in close proximity to each other. An insulating, non-magnetic, non-conducting holder fills the gaps and supports the ferrite cores in a manner such that the cores form a generally V-shape. Each core is provided with an excitation winding and a detection winding. The excitation windings are connected in series or parallel with an rf port for connection thereof to a radio frequency source. The detection windings, which are differentially wound, are connected in series circuit to a detector port for connection to a voltage measuring instrument. The ferrite cores at the in-line gaps directly engage the metal surface of a test piece, and the probe is scanned along the test piece. In the presence of a flaw in the metal surface the detection winding voltages are unbalanced, and the unbalance is detected by the voltage measuring instrument. The insulating holder is provided with a profile which conforms to that of a prominent feature of the test piece to facilitate movement of the probe along the feature, typically an edge or a corner.

Watjen, John P. (Sunnyvale, CA)

1987-06-23T23:59:59.000Z

151

An integrated traverse planner and analysis tool for future lunar surface exploration  

E-Print Network (OSTI)

This thesis discusses the Surface Exploration Traverse Analysis and Navigation Tool (SEXTANT), a system designed to help maximize productivity, scientific return, and safety on future lunar and planetary explorations,. The ...

Johnson, Aaron William

2010-01-01T23:59:59.000Z

152

Efficient traversal of beta-sheet protein folding pathways using ensemble models  

E-Print Network (OSTI)

Efficient traversal of beta-sheet protein folding pathways using ensemble models Solomon Shenker1 methodology to address these computational complexity limitations. Our approach aims to complement the range

Devadas, Srinivas

153

Efficient Traversal of Beta-Sheet Protein Folding Pathways Using Ensemble Models  

E-Print Network (OSTI)

Efficient Traversal of Beta-Sheet Protein Folding Pathways Using Ensemble Models Solomon Shenker1 methodology to address these com- putational complexity limitations. Our approach aims to complement the range of

Gifford, David K.

154

Analytical framework for the smooth manoeuvre of wheeled mobile robots traversing obstacles  

Science Journals Connector (OSTI)

...the smooth manoeuvre of wheeled mobile robots traversing obstacles S. O. Oyadiji...model the dynamics of wheeled mobile robots (WMRs), which need to travel...characteristics of a traction surface. mobile robots|temporal trajectory|traction...

2005-01-01T23:59:59.000Z

155

T-624: Novell eDirectory LDAP-SSL Memory Allocation Error Lets Remote Users  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

4: Novell eDirectory LDAP-SSL Memory Allocation Error Lets 4: Novell eDirectory LDAP-SSL Memory Allocation Error Lets Remote Users Deny Service T-624: Novell eDirectory LDAP-SSL Memory Allocation Error Lets Remote Users Deny Service May 17, 2011 - 3:05pm Addthis PROBLEM: A vulnerability was reported in Novell eDirectory. A remote user can cause denial of service conditions. A remote user can send specially crafted data to cause the target service to crash. On Netware-based systems, the system may crash. PLATFORM: Red Hat Enterprise, SuSE,AIX, HP/UX, Solaris, Windows 2000, 2003 ABSTRACT: A remote user can cause denial of service conditions. reference LINKS: Novell eDirectory - LDAP-SSL SECURELIST.ORG SecurityFocus BugTrackID: 47858 IMPACT ASSESSMENT: High Discussion: A vulnerability was reported in Novell eDirectory. A remote user can cause

156

V-166: HP-UX Directory Server Discloses Passwords to Remote Authenticated  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

6: HP-UX Directory Server Discloses Passwords to Remote 6: HP-UX Directory Server Discloses Passwords to Remote Authenticated and Local Users V-166: HP-UX Directory Server Discloses Passwords to Remote Authenticated and Local Users May 29, 2013 - 12:32am Addthis PROBLEM: HP-UX Directory Server Discloses Passwords to Remote Authenticated and Local Users PLATFORM: Directory Server B.08.10.04 ABSTRACT: Two vulnerabilities were reported in HP-UX Directory Server. REFERENCE LINKS: HP Document ID: c03772083 SecurityTracker Alert ID: 1028593 CVE-2012-2678 CVE-2012-2746 IMPACT ASSESSMENT: High DISCUSSION: A local user can access the plaintext password in certain cases [CVE-2012-2678]. A remote authenticated user can can view the password for a target LDAP user when audit logging is enabled by reading the audit log [CVE-2012-2678].

157

2013 Directory of Potential Stakeholders for DOE Actions under NEPA Issued  

NLE Websites -- All DOE Office Websites (Extended Search)

2013 Directory of Potential Stakeholders for DOE Actions under NEPA 2013 Directory of Potential Stakeholders for DOE Actions under NEPA Issued 2013 Directory of Potential Stakeholders for DOE Actions under NEPA Issued July 31, 2013 - 5:02pm Addthis 2013 Directory of Potential Stakeholders for DOE Actions under NEPA Issued The Stakeholder Directory, now in its 30th edition, identifies contacts in federal agencies; states, territories, and state government associations; and nongovernmental organizations for reviewing environmental impact statements and environmental assessments, and for other NEPA public involvement and consultation activities. The Directory is primarily intended to supplement lists that Departmental Offices compile for individual projects or facilities. Addthis Related Articles Obama Officials Announce Steps to Promote the Clean Energy Potential of the

158

2013 Directory of Potential Stakeholders for DOE Actions under NEPA Issued  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

2013 Directory of Potential Stakeholders for DOE Actions under NEPA 2013 Directory of Potential Stakeholders for DOE Actions under NEPA Issued 2013 Directory of Potential Stakeholders for DOE Actions under NEPA Issued July 31, 2013 - 5:02pm Addthis 2013 Directory of Potential Stakeholders for DOE Actions under NEPA Issued The Stakeholder Directory, now in its 30th edition, identifies contacts in federal agencies; states, territories, and state government associations; and nongovernmental organizations for reviewing environmental impact statements and environmental assessments, and for other NEPA public involvement and consultation activities. The Directory is primarily intended to supplement lists that Departmental Offices compile for individual projects or facilities. Addthis Related Articles Secretary Chu Announces Efforts to Strengthen U.S. Electric Transmission

159

Evaluation of outer flaws in titanium alloys using eddy current measuring system  

SciTech Connect

In this paper results of shallow outer flaw detection in thick titanium alloy specimens is presented. In order to increase efficiency of inspections of minor defects an eddy current measuring system with a lock-in amplifier was used. The measurements were carried out for flat and cylindrical specimens with artificial flaws.

Chady, T.; Psuj, G.; Kowalczyk, J. [Department of Electrical and Computer Engineering, West Pomeranian University of Technology in Szczecin, ul. Sikorskiego 37, 70-313 Szczecin (Poland)

2011-06-23T23:59:59.000Z

160

Fracture response of externally flawed aluminum cylindrical shells under internal gaseous detonation loading  

E-Print Network (OSTI)

Fracture response of externally flawed aluminum cylindrical shells under internal gaseous. Experiments were performed to observe the fracture behavior of thin- wall and initially-flawed aluminum tubes to different fracture events are analyzed. Keywords: tube fracture, detonation, crack branching, crack curving

Barr, Al

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


161

Hydrogen Visual CDP Directory (Sunburst) | Open Energy Information  

Open Energy Info (EERE)

source source History View New Pages Recent Changes All Special Pages Semantic Search/Querying Get Involved Help Apps Datasets Community Login | Sign Up Search Page Edit History Facebook icon Twitter icon » Hydrogen Visual CDP Directory (Sunburst) Jump to: navigation, search Ret Left click to go straight to a CDP. Right click to find more information. The interactive graphic on this page links to all of the Composite Data Products, organized by topic. You can find this complete listing on the Composite Data Products by Topic Web page. If you need additional assistance finding a Composite Data Product, please email us. rieved from "http://en.openei.org/w/index.php?title=Hydrogen_Visual_CDP_Directory_(Sunburst)&oldid=618100" What links here Related changes Special pages

162

V-166: HP-UX Directory Server Discloses Passwords to Remote Authentica...  

Office of Energy Efficiency and Renewable Energy (EERE) Indexed Site

Articles U-135: HP WBEM Discloses Diagnostic Data to Remote and Local Users U-200: Red Hat Directory Server Information Disclosure Security Issue and Vulnerability T-692:...

163

Refrigerator/freezer directory: sorted by type and volume, based on 1979 standards  

SciTech Connect

This directory identifies refrigerators, freezers and combinations thereof, that have been certified as complying with the regulations that became effective on November 3, 1979.

Not Available

1980-02-29T23:59:59.000Z

164

U-230: Sudo on Red Hat Enterprise Linux %postun Symlink Flaw Lets Local  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

0: Sudo on Red Hat Enterprise Linux %postun Symlink Flaw Lets 0: Sudo on Red Hat Enterprise Linux %postun Symlink Flaw Lets Local Users Gain Elevated Privileges U-230: Sudo on Red Hat Enterprise Linux %postun Symlink Flaw Lets Local Users Gain Elevated Privileges August 8, 2012 - 7:00am Addthis PROBLEM: Sudo on Red Hat Enterprise Linux %postun Symlink Flaw Lets Local Users Gain Elevated Privileges PLATFORM: Red Hat Enterprise Linux (v. 5 server) Red Hat Enterprise Linux Desktop (v. 5 client) ABSTRACT: An updated sudo package that fixes one security issue and several bugs is now available for Red Hat Enterprise Linux 5. reference LINKS: Advisory: RHSA-2012:1149-1 SecurityTracker Alert ID: 1027356 Sudo Main Page Bugzilla 844442 CVE-2012-3440 IMPACT ASSESSMENT: Medium Discussion: A local user can exploit a temporary file symbolic link flaw in the %postun

165

V-142: Oracle Java Reflection API Flaw Lets Remote Users Execute Arbitrary  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

2: Oracle Java Reflection API Flaw Lets Remote Users Execute 2: Oracle Java Reflection API Flaw Lets Remote Users Execute Arbitrary Code V-142: Oracle Java Reflection API Flaw Lets Remote Users Execute Arbitrary Code April 25, 2013 - 12:14am Addthis PROBLEM: Oracle Java Reflection API Flaw Lets Remote Users Execute Arbitrary Code PLATFORM: Version(s): 7 Update 21; possibly other versions (1.7.0_21-b11) Java Server JRE is also affected. ABSTRACT: A vulnerability was reported in Oracle Java. REFERENCE LINKS: SecurityTracker Alert ID: 1028466 Oracle IMPACT ASSESSMENT: Medium DISCUSSION: A remote user can create a specially crafted Java application that, when loaded and approved by the target user, will trigger a flaw in the Reflection API to bypass the security sandbox. IMPACT: A remote user can create a Java file that, when loaded by the target user,

166

U-001:Symantec IM Manager Input Validation Flaws | Department of Energy  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

U-001:Symantec IM Manager Input Validation Flaws U-001:Symantec IM Manager Input Validation Flaws U-001:Symantec IM Manager Input Validation Flaws October 3, 2011 - 12:45pm Addthis PROBLEM: Symantec IM Manager Input Validation Flaws Permit Cross-Site Scripting, SQL Injection, and Code Execution Attacks. PLATFORM: Version(s): prior to 8.4.18 ABSTRACT: Symantec IM Manager Input Validation Flaws Permit Cross-Site Scripting, SQL Injection, and Code Execution Attacks. reference LINKS: Security Advisory: SYM11-012 SecurityTracker Alert ID: 1026130 IMPACT ASSESSMENT: Medium Discussion: Several vulnerabilities were reported in Symantec IM Manager. A remote user can conduct cross-site scripting attacks. A remote user can inject SQL commands. Several scripts do not properly filter HTML code from user-supplied input before displaying the input [CVE-2011-0552]. A remote user can create a

167

Directory of Energy Data Collection Forms: Forms in use as of October 1993  

SciTech Connect

This is the seventeenth edition of the Directory of Energy Data Collection forms, an authoritative listing of selected public use forms currently used as basic energy information gathering tools by the Department of Energy (DOE). Originally entitled EIA Data Collection forms, this directory provides an overview of DOE`s energy information collection programs for decisionmakers in Government and industry.

Not Available

1993-12-28T23:59:59.000Z

168

Request to the Energy Commission for Designation as Approved Trade Association Directory  

E-Print Network (OSTI)

) publishes a paper or electronic directory; (C) is designated, under Sections 1602(a) and 1603(b) of Title 20 ENERGY COMMISSION APPLIANCE PROGRAM ­ SECTION 1606(h), TITLE 20, CALIFORNIA CODE OF REGULATIONS (1 in Section 1606(h) of Title 20 of the California Code of Regulations; and (B) the published directory

169

Cache directory look-up re-use as conflict check mechanism for speculative memory requests  

DOE Patents (OSTI)

In a cache memory, energy and other efficiencies can be realized by saving a result of a cache directory lookup for sequential accesses to a same memory address. Where the cache is a point of coherence for speculative execution in a multiprocessor system, with directory lookups serving as the point of conflict detection, such saving becomes particularly advantageous.

Ohmacht, Martin

2013-09-10T23:59:59.000Z

170

Alteration Patterns In Volcanic Rocks Within An East-West Traverse Through  

Open Energy Info (EERE)

Patterns In Volcanic Rocks Within An East-West Traverse Through Patterns In Volcanic Rocks Within An East-West Traverse Through Central Nicaragua Jump to: navigation, search GEOTHERMAL ENERGYGeothermal Home Journal Article: Alteration Patterns In Volcanic Rocks Within An East-West Traverse Through Central Nicaragua Details Activities (0) Areas (0) Regions (0) Abstract: The volcanic rocks investigated in a cross-section between the Pacific and Atlantic coasts of Nicaragua - with the exception of Recent and some Pleistocene lavas - are incipiently to strongly altered. Alteration patterns on different scales can be discerned in the Tertiary sequences: (i) a regional burial diagenesis or very low-grade burial metamorphism at the low-temperature end of the zeolite facies (mordenite subfacies) with an inferred thermal gradient of < 50°C/km, grading into (ii) a geothermal

171

T-610: Red Hat kdenetwork security update | Department of Energy  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

0: Red Hat kdenetwork security update 0: Red Hat kdenetwork security update T-610: Red Hat kdenetwork security update April 26, 2011 - 7:11am Addthis PROBLEM: A directory traversal flaw was found in the way KGet, a download manager, handled the "file" element in Metalink files. An attacker could use this flaw to create a specially-crafted Metalink file that, when opened, would cause KGet to overwrite arbitrary files accessible to the user running KGet. PLATFORM: Red Hat Enterprise Linux Desktop (v. 6) Red Hat Enterprise Linux Server (v. 6) Red Hat Enterprise Linux Workstation (v. 6) ABSTRACT: A directory traversal flaw was found in the way KGet, a download manager, handled the "file" element in Metalink files. reference LINKS: RHSA-2011:0465-1 CVE-2011-1586 RH Classification RH Updates Support

172

An Information Services Algorithm to Heuristically Summarize IP Addresses for a Distributed, Hierarchical Directory Service  

NLE Websites -- All DOE Office Websites (Extended Search)

information services algorithm to heuristically summarize IP addresses for a information services algorithm to heuristically summarize IP addresses for a distributed, hierarchical directory service Marcos Portnoi, Martin Swany Department of Computer and Information Sciences University of Delaware Newark, DE 19716, U.S.A. {portnoi, swany}@cis.udel.edu Jason Zurawski Internet2 Washington, DC 20036, U.S.A. zurawski@internet2.edu Abstract- A distributed, hierarchical information service for computer networks might use several service instances, located in different layers. A distributed directory service, for example, might be comprised of upper level listings, and local directories. The upper level listings contain a compact version of the local directories. Clients desiring to access the information contained in local directories might first access the

173

T-721:Mac OS X Directory Services Lets Local Users View User Password  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

21:Mac OS X Directory Services Lets Local Users View User 21:Mac OS X Directory Services Lets Local Users View User Password Hashes T-721:Mac OS X Directory Services Lets Local Users View User Password Hashes September 20, 2011 - 8:45am Addthis PROBLEM: Mac OS X Directory Services Lets Local Users View User Password Hashes. PLATFORM: Mac OS X Lion (10.7) ABSTRACT: A local user can view user password hashes. reference LINKS: SecurityTracker Alert ID: 1026067 Apple Support Downloads Apple Security Updates Apple OS X Lion v10.7.1 Update IMPACT ASSESSMENT: Medium Discussion: A vulnerability was reported in Mac OS X. A local user can view user password hashes. A local user can invoke the following Directory Services command line command to view the password hash for the target user: dscl localhost -read /Search/Users/[target user] A local user can change their

174

EIA directory of electronic products, first quarter 1995  

SciTech Connect

The Energy Information Administration (EIA) makes available for public use a series of machine-readable data files and computer models. The data files and models are made available to the public on magnetic tapes. In addition, selected data files/models are available on diskette for IBM-compatible personal computers. EIA, as the independent statistical and analytical branch of the Department of Energy, provides assistance to the general public through the National Energy Information Center (NEIC). For each product listed in this directory, a detailed abstract is provided which describes the data published. Specific technical questions may be referred to the appropriate contact person.

NONE

1995-06-01T23:59:59.000Z

175

Energy-efficiency directory of refrigerators and refrigerator-freezers  

SciTech Connect

Information is presented about the energy costs of operating refrigerators and refrigerator-freezers and includes the type of refrigerator or refrigerator-freezer, the fresh food volume, the freezer volume, the total volume, and the yearly energy cost. The directory lists all currently marketed electric refrigerators and refrigerator-freezers that have Energy Guide labels. The Federal Trade Commission requires manufacturers who distribute refrigerators and refrigerator-freezers to attach Energy Guide labels to appliances manufactured on or after May 19, 1980. The data have been measured by manufacturers and/or their agents according to US Government standard test procedures.

Statt, T.G.; Coggins, J.L.

1981-06-01T23:59:59.000Z

176

U-213: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

U-213: Google Chrome Multiple Flaws Let Remote Users Execute U-213: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code U-213: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code July 16, 2012 - 7:00am Addthis PROBLEM: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code PLATFORM: Version(s): prior to 20.0.1132.57 ABSTRACT: Several vulnerabilities were reported in Google Chrome. reference LINKS: Stable Channel Update SecurityTracker Alert ID: 1027249 IMPACT ASSESSMENT: High Discussion: Several vulnerabilities were reported in Google Chrome. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can create a specially crafted content that, when loaded by the target user, will execute arbitrary code on the target system. The code will run with the privileges of the target user.

177

U-219: Symantec Web Gateway Input Validation Flaws Lets Remote Users Inject  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

19: Symantec Web Gateway Input Validation Flaws Lets Remote 19: Symantec Web Gateway Input Validation Flaws Lets Remote Users Inject SQL Commands, Execute Arbitrary Commands, and Change User Passwords U-219: Symantec Web Gateway Input Validation Flaws Lets Remote Users Inject SQL Commands, Execute Arbitrary Commands, and Change User Passwords July 24, 2012 - 7:00am Addthis PROBLEM: Symantec Web Gateway Input Validation Flaws Lets Remote Users Inject SQL Commands, Execute Arbitrary Commands, and Change User Passwords PLATFORM: Symantec Web Gateway 5.0.x.x ABSTRACT: Several vulnerabilities were reported in Symantec Web Gateway. REFERENCE LINKS: Security Advisories Relating to Symantec Products SecurityTracker Alert ID: 1027289 Bugtraq ID: 54424 Bugtraq ID: 54425 Bugtraq ID: 54426 Bugtraq ID: 54427 Bugtraq ID: 54429 Bugtraq ID: 54430

178

T-650: Microsoft Word Unspecified Flaw Lets Remote Users Execute Arbitrary  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

650: Microsoft Word Unspecified Flaw Lets Remote Users Execute 650: Microsoft Word Unspecified Flaw Lets Remote Users Execute Arbitrary Code T-650: Microsoft Word Unspecified Flaw Lets Remote Users Execute Arbitrary Code June 20, 2011 - 3:35pm Addthis PROBLEM: A vulnerability was reported in Microsoft Word. A remote user can cause arbitrary code to be executed on the target user's system. PLATFORM: Office XP; possibly other versions ABSTRACT: Microsoft Word Unspecified Flaw Lets Remote Users Execute Arbitrary Code. reference LINKS: Secunia Advisory: SA44923 SecurityTracker Alert ID: 1025675 Bugtraq ID: 48261 TSL ID: TSL20110614-02 PRL: 2011-07 IMPACT ASSESSMENT: High Discussion: A code execution vulnerability has been reported in Microsoft Office Word. The vulnerability is due to memory corruption when parsing a specially crafted Word file.

179

T-720: Blue Coat Director HTTP Trace Processing Flaw Permits Cross-Site  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

0: Blue Coat Director HTTP Trace Processing Flaw Permits 0: Blue Coat Director HTTP Trace Processing Flaw Permits Cross-Site Scripting Attacks T-720: Blue Coat Director HTTP Trace Processing Flaw Permits Cross-Site Scripting Attacks September 19, 2011 - 8:45am Addthis PROBLEM Blue Coat Director HTTP Trace Processing Flaw Permits Cross-Site Scripting Attacks. PLATFORM: All versions of Director prior to 5.5.2.3 are vulnerable. ABSTRACT: A vulnerability was reported in Blue Coat Director. A remote user can conduct cross-site scripting attacks. reference LINKS: Blue Coat Advisories ID: SA62 SecurityTracker Alert ID: 1026061 Blue Coat Director 510 Blue Coat SGME 5 IMPACT ASSESSMENT: Medium Discussion: An attacker can use the HTTP TRACE method to echo malicious script back to the client as part of a Cross Site Scripting (XSS) attack. No

180

V-124: Splunk Web Input Validation Flaw Permits Cross-Site Scripting  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

4: Splunk Web Input Validation Flaw Permits Cross-Site 4: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks V-124: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks April 2, 2013 - 1:13am Addthis PROBLEM: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks PLATFORM: Version(s): 4.3.0 through 4.3.5 ABSTRACT: A vulnerability was reported in Splunk Web. REFERENCE LINKS: SecurityTracker Alert ID: 1028371 Splunk IMPACT ASSESSMENT: High DISCUSSION: Splunk Web does not properly filter HTML code from user-supplied input before displaying the input. A remote user can cause arbitrary scripting code to be executed by the target user's browser. The code will originate from the site running the Splunk Web software and will run in the security context of that site. As a result, the code will be able to access the

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


181

V-058: Microsoft Internet Explorer CDwnBindInfo Object Reuse Flaw Lets  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

8: Microsoft Internet Explorer CDwnBindInfo Object Reuse Flaw 8: Microsoft Internet Explorer CDwnBindInfo Object Reuse Flaw Lets Remote Users Execute Arbitrary Code V-058: Microsoft Internet Explorer CDwnBindInfo Object Reuse Flaw Lets Remote Users Execute Arbitrary Code December 31, 2012 - 6:58am Addthis PROBLEM: Microsoft Internet Explorer CDwnBindInfo Object Reuse Flaw Lets Remote Users Execute Arbitrary Code PLATFORM: Version(s): 6, 7, 8 ABSTRACT: A vulnerability was reported in Microsoft Internet Explorer. A remote user can cause arbitrary code to be executed on the target user's system. REFERENCE LINKS: SecurityTracker Alert ID: 1027930 Secunia Advisory SA51695 CVE-2012-4792 IMPACT ASSESSMENT: High DISCUSSION: A remote user can create specially crafted HTML that, when loaded by the target user, will trigger a memory corruption error and execute arbitrary

182

V-035: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

5: Google Chrome Multiple Flaws Let Remote Users Execute 5: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code V-035: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code November 28, 2012 - 1:00am Addthis PROBLEM: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code PLATFORM: Version(s): prior to 23.0.1271.91 ABSTRACT: Several vulnerabilities were reported in Google Chrome. REFERENCE LINKS: Release updates from the Chrome team SecurityTracker Alert ID: 1027815 Secunia Advisory SA51437 CVE-2012-5130 CVE-2012-5131 CVE-2012-5132 CVE-2012-5133 CVE-2012-5134 CVE-2012-5135 CVE-2012-5136 IMPACT ASSESSMENT: High DISCUSSION: Several vulnerabilities were reported in Google Chrome. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can create specially crafted content that, when loaded by the

183

V-066: Adobe Acrobat/Reader Multiple Flaws Lets Remote Users Execute  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

6: Adobe Acrobat/Reader Multiple Flaws Lets Remote Users 6: Adobe Acrobat/Reader Multiple Flaws Lets Remote Users Execute Arbitrary Code and Local Users Gain Elevated Privileges V-066: Adobe Acrobat/Reader Multiple Flaws Lets Remote Users Execute Arbitrary Code and Local Users Gain Elevated Privileges January 10, 2013 - 2:00am Addthis PROBLEM: Adobe Acrobat/Reader Multiple Flaws Lets Remote Users Execute Arbitrary Code and Local Users Gain Elevated Privileges PLATFORM: *Adobe Reader XI (11.0.0) for Windows and Macintosh *Adobe Reader X (10.1.4) and earlier 10.x versions for Windows and Macintosh *Adobe Reader 9.5.2 and earlier 9.x versions for Windows and Macintosh *Adobe Reader 9.5.1 and earlier 9.x versions for Linux *Adobe Acrobat XI (11.0.0) for Windows and Macintosh *Adobe Acrobat X (10.1.4) and earlier 10.x versions for Windows and

184

V-067: Oracle Java Flaw Lets Remote Users Execute Arbitrary Code |  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

7: Oracle Java Flaw Lets Remote Users Execute Arbitrary Code 7: Oracle Java Flaw Lets Remote Users Execute Arbitrary Code V-067: Oracle Java Flaw Lets Remote Users Execute Arbitrary Code January 11, 2013 - 12:01am Addthis PROBLEM: Oracle Java Flaw Lets Remote Users Execute Arbitrary Code PLATFORM: Oracle Java Runtime Environment (JRE) 1.7 in Java 7 Update 10 and earlier ABSTRACT: A vulnerability was reported in Oracle Java. REFERENCE LINKS: Seclist.org Vulnerability Note VU#625617 SecurityTracker Alert ID: 1027972 Malware.dontneedcoffee.com CVE-2013-0422 IMPACT ASSESSMENT: High DISCUSSION: A remote user can create specially crafted Java content that, when loaded by the target user, will execute arbitrary code on the target user's system. The code will run with the privileges of the target user. This vulnerability is being actively exploited.

185

U-048: HP LaserJet Printers Unspecified Flaw Lets Remote Users Update  

NLE Websites -- All DOE Office Websites (Extended Search)

8: HP LaserJet Printers Unspecified Flaw Lets Remote Users 8: HP LaserJet Printers Unspecified Flaw Lets Remote Users Update Firmware with Arbitrary Code U-048: HP LaserJet Printers Unspecified Flaw Lets Remote Users Update Firmware with Arbitrary Code November 30, 2011 - 8:15am Addthis PROBLEM: HP LaserJet Printers Unspecified Flaw Lets Remote Users Update Firmware with Arbitrary Code . PLATFORM: HP LaserJet Printers manufactured prior to 2009 ABSTRACT A remote user can upgrade the printer's firmware with arbitrary code. reference LINKS: SecurityTracker Alert ID:1026357 HP Security for Imaging and Printing HP Clarifies on Printer Security IMPACT ASSESSMENT: Low Discussion: A vulnerability was reported in some HP LaserJet Printers. A remote user can update the firmware with arbitrary code. A remote user can send a specially crafted print job or specially crafted data to the

186

T-727:Microsoft Windows SSL/TLS Protocol Flaw Lets Remote Users Decryption  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

7:Microsoft Windows SSL/TLS Protocol Flaw Lets Remote Users 7:Microsoft Windows SSL/TLS Protocol Flaw Lets Remote Users Decryption Sessions T-727:Microsoft Windows SSL/TLS Protocol Flaw Lets Remote Users Decryption Sessions September 27, 2011 - 8:00am Addthis PROBLEM: Microsoft Windows SSL/TLS Protocol Flaw Lets Remote Users Decryption Sessions. PLATFORM: Windows XP Service Pack 3 Windows XP Professional x64 Edition Service Pack 2 Windows Server 2003 Service Pack 2 Windows Server 2003 x64 Edition Service Pack 2 Windows Server 2003 with SP2 for Itanium-based Systems Windows Vista Service Pack 2 Windows Vista x64 Edition Service Pack 2 Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 for Itanium-based Systems Service Pack 2 Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack

187

U-252: Barracuda Web Filter Input Validation Flaws Permit Cross-Site  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

2: Barracuda Web Filter Input Validation Flaws Permit 2: Barracuda Web Filter Input Validation Flaws Permit Cross-Site Scripting Attacks U-252: Barracuda Web Filter Input Validation Flaws Permit Cross-Site Scripting Attacks September 6, 2012 - 6:00am Addthis PROBLEM: Barracuda Web Filter Input Validation Flaws Permit Cross-Site Scripting Attacks PLATFORM: Barracuda Web Filter 5.0.015 is vulnerable; other versions may also be affected. ABSTRACT: Barracuda Web Filter Authentication Module Multiple HTML Injection Vulnerabilities reference LINKS: Barracuda Networks Barracuda Networks Security ID: BNSEC-279/BNYF-5533 SecurityTracker Alert ID: 1027500 Bugtraq ID: 55394 seclists.org IMPACT ASSESSMENT: Medium Discussion: Two scripts not properly filter HTML code from user-supplied input before displaying the input. A remote user can cause arbitrary scripting code to

188

U-212: RSA Authentication Manager Flaws Permit Cross-Site and Cross-Frame  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

2: RSA Authentication Manager Flaws Permit Cross-Site and 2: RSA Authentication Manager Flaws Permit Cross-Site and Cross-Frame Scripting and URL Redirection Attacks U-212: RSA Authentication Manager Flaws Permit Cross-Site and Cross-Frame Scripting and URL Redirection Attacks July 13, 2012 - 7:00am Addthis PROBLEM: RSA Authentication Manager Flaws Permit Cross-Site and Cross-Frame Scripting and URL Redirection Attacks PLATFORM: RSA Authentication Manager 7.1 is vulnerable; other versions may also be affected. ABSTRACT: RSA Authentication Manager is prone to multiple security vulnerabilities because it fails to properly sanitize user-supplied input. Attackers can exploit these issues to execute arbitrary script or HTML code, steal cookie-based authentication credentials, and conduct phishing attacks. Other attacks may also be possible.

189

T-727:Microsoft Windows SSL/TLS Protocol Flaw Lets Remote Users Decryption  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

7:Microsoft Windows SSL/TLS Protocol Flaw Lets Remote Users 7:Microsoft Windows SSL/TLS Protocol Flaw Lets Remote Users Decryption Sessions T-727:Microsoft Windows SSL/TLS Protocol Flaw Lets Remote Users Decryption Sessions September 27, 2011 - 8:00am Addthis PROBLEM: Microsoft Windows SSL/TLS Protocol Flaw Lets Remote Users Decryption Sessions. PLATFORM: Windows XP Service Pack 3 Windows XP Professional x64 Edition Service Pack 2 Windows Server 2003 Service Pack 2 Windows Server 2003 x64 Edition Service Pack 2 Windows Server 2003 with SP2 for Itanium-based Systems Windows Vista Service Pack 2 Windows Vista x64 Edition Service Pack 2 Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 for Itanium-based Systems Service Pack 2 Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack

190

U-263: Trend Micro InterScan Messaging Security Flaws Permit Cross-Site  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

3: Trend Micro InterScan Messaging Security Flaws Permit 3: Trend Micro InterScan Messaging Security Flaws Permit Cross-Site Scripting and Cross-Site Request Forgery Attacks U-263: Trend Micro InterScan Messaging Security Flaws Permit Cross-Site Scripting and Cross-Site Request Forgery Attacks September 19, 2012 - 6:00am Addthis PROBLEM: Trend Micro InterScan Messaging Security Flaws Permit Cross-Site Scripting and Cross-Site Request Forgery Attacks PLATFORM: 7.1-Build_Win32_1394; possibly other versions ABSTRACT: A vulnerability was reported in Trend Micro InterScan Messaging Security. reference LINKS: US CERT Vulnerability Note VU#471364 SecurityTracker Alert ID: 1027544 CVE-2012-2995 CVE-2012-2996 Micro Trend IMPACT ASSESSMENT: Medium Discussion: Several scripts do not properly filter HTML code from user-supplied input

191

V-139: Cisco Network Admission Control Input Validation Flaw Lets Remote  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

9: Cisco Network Admission Control Input Validation Flaw Lets 9: Cisco Network Admission Control Input Validation Flaw Lets Remote Users Inject SQL Commands V-139: Cisco Network Admission Control Input Validation Flaw Lets Remote Users Inject SQL Commands April 21, 2013 - 11:50pm Addthis PROBLEM: Cisco Network Admission Control Input Validation Flaw Lets Remote Users Inject SQL Commands PLATFORM: Cisco NAC Manager versions prior to 4.8.3.1 and 4.9.2 ABSTRACT: A vulnerability was reported in Cisco Network Admission Control. REFERENCE LINKS: SecurityTracker Alert ID: 1028451 Cisco Advisory ID: cisco-sa-20130417-nac CVE-2013-1177 IMPACT ASSESSMENT: High DISCUSSION: The Cisco Network Admission Control (NAC) Manager does not properly validate user-supplied input. A remote user can supply a specially crafted parameter value to execute SQL commands on the underlying database.

192

U-180: Cisco IOS XR Packet Processing Flaw | Department of Energy  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

80: Cisco IOS XR Packet Processing Flaw 80: Cisco IOS XR Packet Processing Flaw U-180: Cisco IOS XR Packet Processing Flaw May 31, 2012 - 7:00am Addthis PROBLEM: A vulnerability was reported in Cisco IOS XR. PLATFORM: Version(s): XR 4.0.3, 4.0.4, 4.1.0, 4.1.1, 4.1.2, and 4.2.0 ABSTRACT: A remote user can cause denial of service conditions. Reference Links: Security Tracker ID 1027104 CVE-2012-2488 Vendor Advisory IMPACT ASSESSMENT: High Discussion: A remote user can send a specially crafted packet to the target device to cause the route processor to be unable to transmit route processor-based protocol packets to the fabric. IP traffic transiting the device cannot trigger the flaw. Cisco IOS XR is affected on the Cisco 9000 Series Aggregation Services Routers (ASR) Route Switch Processor (RSP440) and the Cisco Carrier Routing

193

U-134: Apache Traffic Server Host Header Processing Flaw Lets Remote Users  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

4: Apache Traffic Server Host Header Processing Flaw Lets 4: Apache Traffic Server Host Header Processing Flaw Lets Remote Users Deny Service U-134: Apache Traffic Server Host Header Processing Flaw Lets Remote Users Deny Service March 27, 2012 - 7:00am Addthis PROBLEM: Apache Traffic Server Host Header Processing Flaw Lets Remote Users Deny Service PLATFORM: Versions prior to 3.0.4 and 3.1.3 ABSTRACT: A vulnerability was reported in Apache Traffic Server. A remote user can cause denial of service conditions. reference LINKS: SecurityTracker Alert ID: 1026847 CVE-2012-0256 Secunia Advisory SA48509 IMPACT ASSESSMENT: High Discussion: A remote user can send a request with a specially crafted 'Host' header value to trigger a heap allocation error and cause the target service to crash. Impact: A remote user can cause the target service to crash.

194

U-166: Adobe Shockwave Player Memory Corruption Flaws Let Remote Users  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

6: Adobe Shockwave Player Memory Corruption Flaws Let Remote 6: Adobe Shockwave Player Memory Corruption Flaws Let Remote Users Execute Arbitrary Code U-166: Adobe Shockwave Player Memory Corruption Flaws Let Remote Users Execute Arbitrary Code May 10, 2012 - 7:00am Addthis PROBLEM: Adobe Shockwave Player Memory Corruption Flaws Let Remote Users Execute Arbitrary Code PLATFORM: 11.6.4.634 and prior ABSTRACT: Multiple vulnerabilities were reported in Adobe Shockwave Player. A remote user can cause arbitrary code to be executed on the target user's system. reference LINKS: SecurityTracker Alert ID: 1027037 CVE-2012-2029 CVE-2012-2030 CVE-2012-2031 CVE-2012-2032 CVE-2012-2033 IMPACT ASSESSMENT: High Discussion: A remote user can create specially crafted Shockwave content that, when loaded by the target user, will trigger a memory corruption error and

195

V-075: EMC AlphaStor Command Injection and Format String Flaws Let Remote  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

5: EMC AlphaStor Command Injection and Format String Flaws Let 5: EMC AlphaStor Command Injection and Format String Flaws Let Remote Users Execute Arbitrary Code V-075: EMC AlphaStor Command Injection and Format String Flaws Let Remote Users Execute Arbitrary Code January 23, 2013 - 12:26am Addthis PROBLEM: EMC AlphaStor Command Injection and Format String Flaws Let Remote Users Execute Arbitrary Code PLATFORM: EMC AlphaStor 4.0 prior to build 800 (All platforms) ABSTRACT: Two vulnerabilities were reported in EMC AlphaStor. REFERENCE LINKS: ESA-2013-008: SecurityTracker Alert ID: 1028020 Secunia Advisory SA51930 CVE-2013-0928 CVE-2013-0929 IMPACT ASSESSMENT: Medium DISCUSSION: A remote user can send a specially crafted DCP run command to inject commands and cause the Device Manager (rrobotd.exe) to execute arbitrary code on the target system [CVE-2013-0928].

196

U-238: HP Service Manager Input Validation Flaw Permits Cross-Site  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

8: HP Service Manager Input Validation Flaw Permits Cross-Site 8: HP Service Manager Input Validation Flaw Permits Cross-Site Scripting Attacks U-238: HP Service Manager Input Validation Flaw Permits Cross-Site Scripting Attacks August 17, 2012 - 7:00am Addthis PROBLEM: HP Service Manager Input Validation Flaw Permits Cross-Site Scripting Attacks PLATFORM: Version(s): 7.11, 9.21, 9.30 ABSTRACT: Cross-site scripting (XSS) vulnerability in HP Service Manager Web Tier 7.11, 9.21, and 9.30, and HP Service Center Web Tier 6.28, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. REFERENCE LINKS: www2.hp.com http://www.securitytracker.com/id/1027399 CVE-2012-3251 IMPACT ASSESSMENT: Moderate Discussion: A vulnerability was reported in HP Service Manager. A remote user can conduct cross-site scripting attacks. The software does not properly filter

197

U-010:HP Onboard Administrator Unspecified Flaw Lets Remote Users Gain  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

0:HP Onboard Administrator Unspecified Flaw Lets Remote Users 0:HP Onboard Administrator Unspecified Flaw Lets Remote Users Gain Access U-010:HP Onboard Administrator Unspecified Flaw Lets Remote Users Gain Access October 13, 2011 - 8:15am Addthis PROBLEM: HP Onboard Administrator Unspecified Flaw Lets Remote Users Gain Access PLATFORM: Onboard Administrator (OA) 3.21 through 3.31 ABSTRACT: A remote user can gain access to the target system reference LINKS: HP Support document ID: c03048779 SecurityTracker Alert ID: 1026158 CVE-2011-3155 IMPACT ASSESSMENT: Medium Discussion: A potential security vulnerability has been identified with HP Onboard Administrator (OA). The vulnerability could be exploited remotely to gain unauthorized access. Impact: A remote user can gain access to the target system. Solution: Onboard Administrator (OA) v3.32 is available.

198

U-014: Oracle Java Runtime Environment (JRE) Multiple Flaws Let Remote  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

14: Oracle Java Runtime Environment (JRE) Multiple Flaws Let 14: Oracle Java Runtime Environment (JRE) Multiple Flaws Let Remote Users Execute Arbitrary Code and Deny Service U-014: Oracle Java Runtime Environment (JRE) Multiple Flaws Let Remote Users Execute Arbitrary Code and Deny Service October 19, 2011 - 6:00pm Addthis PROBLEM: Oracle Java Runtime Environment (JRE) Multiple Flaws Let Remote Users Execute Arbitrary Code and Deny Service. PLATFORM: Oracle JDK and JRE 7; JDK and JRE 6 Update 27 and prior; JDK and JRE 5.0 Update 31 and prior; SDK and JRE 1.4.2_33 and prior ABSTRACT: A remote user can create a Java applet or Java Web Start application that, when loaded by the target user, will access or modify data or execute arbitrary code on the target user's system. reference LINKS: Oracle Critical Patch Updates and Security Alerts

199

U-134: Apache Traffic Server Host Header Processing Flaw Lets Remote Users  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

34: Apache Traffic Server Host Header Processing Flaw Lets 34: Apache Traffic Server Host Header Processing Flaw Lets Remote Users Deny Service U-134: Apache Traffic Server Host Header Processing Flaw Lets Remote Users Deny Service March 27, 2012 - 7:00am Addthis PROBLEM: Apache Traffic Server Host Header Processing Flaw Lets Remote Users Deny Service PLATFORM: Versions prior to 3.0.4 and 3.1.3 ABSTRACT: A vulnerability was reported in Apache Traffic Server. A remote user can cause denial of service conditions. reference LINKS: SecurityTracker Alert ID: 1026847 CVE-2012-0256 Secunia Advisory SA48509 IMPACT ASSESSMENT: High Discussion: A remote user can send a request with a specially crafted 'Host' header value to trigger a heap allocation error and cause the target service to crash. Impact: A remote user can cause the target service to crash.

200

V-150: Apache VCL Input Validation Flaw Lets Remote Authenticated Users  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

0: Apache VCL Input Validation Flaw Lets Remote Authenticated 0: Apache VCL Input Validation Flaw Lets Remote Authenticated Users Gain Elevated Privileges V-150: Apache VCL Input Validation Flaw Lets Remote Authenticated Users Gain Elevated Privileges May 7, 2013 - 12:01am Addthis PROBLEM: Apache VCL Input Validation Flaw Lets Remote Authenticated Users Gain Elevated Privileges PLATFORM: Apache VCL Versions: 2.1, 2.2, 2.2.1, 2.3, 2.3.1 ABSTRACT: A vulnerability was reported in Apache VCL. REFERENCE LINKS: Apache Securelist SecurityTracker Alert ID: 1028515 CVE-2013-0267 IMPACT ASSESSMENT: Medium DISCUSSION: A remote authenticated administrative user with minimal administrative privileges (i.e., nodeAdmin, manageGroup, resourceGrant, or userGrant) can send specially crafted data via the web interface or XMLRPC API to gain additional administrative privileges.

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


201

U-133: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

33: Google Chrome Multiple Flaws Let Remote Users Execute 33: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code U-133: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code March 26, 2012 - 3:35am Addthis PROBLEM: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code PLATFORM: Google Chrome prior to 17.0.963.83 ABSTRACT: Multiple vulnerabilities were reported in Google Chrome. A remote user can cause arbitrary code to be executed on the target user's system. reference LINKS: SecurityTracker Alert ID: 1026841 CVE-2011-3049 Secunia Advisory SA48512 IMPACT ASSESSMENT: High Discussion: A remote user can create specially crafted content that, when loaded by the target user, will execute arbitrary code on the target system. The code will run with the privileges of the target user. A use-after-free may occur

202

U-206: WordPress Flaws Permit Cross-Site Scripting, Cross-Site Request  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

6: WordPress Flaws Permit Cross-Site Scripting, Cross-Site 6: WordPress Flaws Permit Cross-Site Scripting, Cross-Site Request Forgery, and Information Disclosure Attacks U-206: WordPress Flaws Permit Cross-Site Scripting, Cross-Site Request Forgery, and Information Disclosure Attacks July 6, 2012 - 7:00am Addthis PROBLEM: WordPress Flaws Permit Cross-Site Scripting, Cross-Site Request Forgery, and Information Disclosure Attacks PLATFORM: Version(s): prior to 3.4.1 ABSTRACT: Several vulnerabilities were reported in WordPress. A remote authenticated user can conduct cross-site scripting attacks. A remote user can conduct cross-site request forgery attacks. A remote authenticated user can obtain potentially sensitive information. reference LINKS: The Vendor's Advisory WordPress 3.4.1 Maintenance and Security Release SecurityTracker Alert ID: 1027219

203

U-219: Symantec Web Gateway Input Validation Flaws Lets Remote Users Inject  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

19: Symantec Web Gateway Input Validation Flaws Lets Remote 19: Symantec Web Gateway Input Validation Flaws Lets Remote Users Inject SQL Commands, Execute Arbitrary Commands, and Change User Passwords U-219: Symantec Web Gateway Input Validation Flaws Lets Remote Users Inject SQL Commands, Execute Arbitrary Commands, and Change User Passwords July 24, 2012 - 7:00am Addthis PROBLEM: Symantec Web Gateway Input Validation Flaws Lets Remote Users Inject SQL Commands, Execute Arbitrary Commands, and Change User Passwords PLATFORM: Symantec Web Gateway 5.0.x.x ABSTRACT: Several vulnerabilities were reported in Symantec Web Gateway. REFERENCE LINKS: Security Advisories Relating to Symantec Products SecurityTracker Alert ID: 1027289 Bugtraq ID: 54424 Bugtraq ID: 54425 Bugtraq ID: 54426 Bugtraq ID: 54427 Bugtraq ID: 54429 Bugtraq ID: 54430

204

U-229: HP Network Node Manager i Input Validation Flaw Permits Cross-Site  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

9: HP Network Node Manager i Input Validation Flaw Permits 9: HP Network Node Manager i Input Validation Flaw Permits Cross-Site Scripting Attacks U-229: HP Network Node Manager i Input Validation Flaw Permits Cross-Site Scripting Attacks August 7, 2012 - 7:00am Addthis PROBLEM: HP Network Node Manager i Input Validation Flaw Permits Cross-Site Scripting Attacks PLATFORM: HP Network Node Manager I (NNMi) v8.x, v9.0x, v9.1x, v9.20 for HP-UX, Linux, Solaris, and Windows ABSTRACT: Potential security vulnerabilities have been identified with HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows. The vulnerabilities could be remotely exploited resulting in cross site scripting (XSS). Reference LINKS: HP Document ID: c03405705 SecurityTracker Alert ID: 1027345 Bugtraq ID: 54815 CVE-2012-2022 IMPACT ASSESSMENT:

205

V-006: CA ARCserve Backup Flaws Let Remote Users Execute Arbitrary Code and  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

6: CA ARCserve Backup Flaws Let Remote Users Execute Arbitrary 6: CA ARCserve Backup Flaws Let Remote Users Execute Arbitrary Code and Deny Service V-006: CA ARCserve Backup Flaws Let Remote Users Execute Arbitrary Code and Deny Service October 19, 2012 - 6:00am Addthis PROBLEM: CA ARCserve Backup Flaws Let Remote Users Execute Arbitrary Code and Deny Service PLATFORM: CA ARCserve Backup for Windows r12.5, r15, r16 ABSTRACT: Two vulnerabilities were reported in CA ARCserve Backup. A remote user can execute arbitrary code on the target system. A remote user can cause denial of service conditions. REFERENCE LINKS: SecurityTracker Alert ID: 1027683 CA Technologies Support CVE-2012-2971 CVE-2012-2972 IMPACT ASSESSMENT: High DISCUSSION: A remote user can send specially crafted RPC requests to execute arbitrary code on the target system [CVE-2012-2971]. The code will run with the

206

U-143: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

3: Google Chrome Multiple Flaws Let Remote Users Execute 3: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code U-143: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code April 9, 2012 - 7:00am Addthis PROBLEM: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code PLATFORM: Version(s): prior to 18.0.1025.151 ABSTRACT: Multiple vulnerabilities were reported in Google Chrome. A remote user can cause arbitrary code to be executed on the target user's system. reference LINKS: SecurityTracker Alert ID: 1026892 CVE-2011-3066 Secunia Advisory SA48732 IMPACT ASSESSMENT: High Discussion: A remote user can create specially crafted content that, when loaded by the target user, will execute arbitrary code on the target system. The code will run with the privileges of the target user. An out-of-bounds memory

207

T-683:Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

83:Google Chrome Multiple Flaws Let Remote Users Execute 83:Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code T-683:Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code August 3, 2011 - 3:45pm Addthis PROBLEM: Multiple vulnerabilities were reported in Google Chrome. A remote user can cause arbitrary code to be executed on the target user's system. PLATFORM: Google Chrome prior to 13.0.782.107 ABSTRACT: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code. reference LINKS: Google Chrome advisory Update Chromium Security SecurityTracker Alert ID: 1025882 CVE-2011-2819 IMPACT ASSESSMENT: Medium Discussion: A remote user can create a specially crafted HTML that, when loaded by the target user, will execute arbitrary code on the target system. The code will run with the privileges of the target user.

208

V-176: Adobe Flash Player Memory Corruption Flaw Lets Remote Users Execute  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

6: Adobe Flash Player Memory Corruption Flaw Lets Remote Users 6: Adobe Flash Player Memory Corruption Flaw Lets Remote Users Execute Arbitrary Code V-176: Adobe Flash Player Memory Corruption Flaw Lets Remote Users Execute Arbitrary Code June 12, 2013 - 12:15am Addthis PROBLEM: Adobe Flash Player Memory Corruption Flaw Lets Remote Users Execute Arbitrary Code PLATFORM: Adobe Flash Player 11.7.700.202 and earlier versions for Windows Adobe Flash Player 11.7.700.203 and earlier versions for Macintosh Adobe Flash Player 11.2.202.285 and earlier versions for Linux Adobe Flash Player 11.1.115.58 and earlier versions for Android 4.x Adobe Flash Player 11.1.111.54 and earlier versions for Android 3.x and 2.x Adobe AIR 3.7.0.1860 and earlier versions for Windows and Macintosh Adobe AIR 3.7.0.1860 and earlier versions for Android

209

U-258: Adobe Flash Player Flaw Lets Remote Users Execute Arbitrary Code |  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

8: Adobe Flash Player Flaw Lets Remote Users Execute Arbitrary 8: Adobe Flash Player Flaw Lets Remote Users Execute Arbitrary Code U-258: Adobe Flash Player Flaw Lets Remote Users Execute Arbitrary Code September 12, 2012 - 1:07pm Addthis PROBLEM: Adobe Flash Player Flaw Lets Remote Users Execute Arbitrary Code PLATFORM: 11.3.300.270 and prior (Windows, OS X); 11.2.202.236 and prior (Linux); 11.3.300.270 and prior (Chrome) ABSTRACT: A remote user can cause arbitrary code to be executed on the target user's system. Reference LINKS: CVE-2012-1535 AdobeSecurity/bulletins SecurityTracker IMPACT ASSESSMENT: High Discussion: Vulnerability was reported in Adobe Flash Player. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can create a specially crafted file that, when loaded by the target user,

210

U-050: Adobe Flex SDK Input Validation Flaw Permits Cross-Site Scripting  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

0: Adobe Flex SDK Input Validation Flaw Permits Cross-Site 0: Adobe Flex SDK Input Validation Flaw Permits Cross-Site Scripting Attacks U-050: Adobe Flex SDK Input Validation Flaw Permits Cross-Site Scripting Attacks December 2, 2011 - 5:24am Addthis PROBLEM: Adobe Flex SDK Input Validation Flaw Permits Cross-Site Scripting Attacks. PLATFORM: Adobe Flex SDK 4.5.1 and earlier 4.x versions for Windows, Macintosh and Linux Adobe Flex SDK 3.6 and earlier 3.x versions for Windows, Macintosh and Linux ABSTRACT: Flex applications created using the Flex SDK may not properly filter HTML code from user-supplied input before displaying the input. reference LINKS: Adobe Security Bulletin CVE-2011-2461 SecurityTracker Alert ID: 1026361 IMPACT ASSESSMENT: High Discussion: A remote user may be able to cause arbitrary scripting code to be executed

211

U-239: Apple iPhone SMS Processing Flaw Lets Remote Users Spoof SMS Source  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

39: Apple iPhone SMS Processing Flaw Lets Remote Users Spoof SMS 39: Apple iPhone SMS Processing Flaw Lets Remote Users Spoof SMS Source Addresses U-239: Apple iPhone SMS Processing Flaw Lets Remote Users Spoof SMS Source Addresses August 20, 2012 - 7:00am Addthis PROBLEM: Apple iPhone SMS Processing Flaw Lets Remote Users Spoof SMS Source Addresses PLATFORM: Version(s): 6 beta 4 and prior versions ABSTRACT: A remote user can spoof SMS source addresses. Reference LINKS: SecurityTracker Alert ID: 1027410 Apple.com PCMag.com The original advisory IMPACT ASSESSMENT: Medum Discussion: A vulnerability was reported in Apple iPhone. A remote user can send an SMS message with a specially crafted User Data Header (UDH) value that specifies an alternate reply address. The recipient's iPhone will display the reply address as the source of the SMS.

212

V-035: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

5: Google Chrome Multiple Flaws Let Remote Users Execute 5: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code V-035: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code November 28, 2012 - 1:00am Addthis PROBLEM: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code PLATFORM: Version(s): prior to 23.0.1271.91 ABSTRACT: Several vulnerabilities were reported in Google Chrome. REFERENCE LINKS: Release updates from the Chrome team SecurityTracker Alert ID: 1027815 Secunia Advisory SA51437 CVE-2012-5130 CVE-2012-5131 CVE-2012-5132 CVE-2012-5133 CVE-2012-5134 CVE-2012-5135 CVE-2012-5136 IMPACT ASSESSMENT: High DISCUSSION: Several vulnerabilities were reported in Google Chrome. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can create specially crafted content that, when loaded by the

213

U-238: HP Service Manager Input Validation Flaw Permits Cross-Site  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

38: HP Service Manager Input Validation Flaw Permits Cross-Site 38: HP Service Manager Input Validation Flaw Permits Cross-Site Scripting Attacks U-238: HP Service Manager Input Validation Flaw Permits Cross-Site Scripting Attacks August 17, 2012 - 7:00am Addthis PROBLEM: HP Service Manager Input Validation Flaw Permits Cross-Site Scripting Attacks PLATFORM: Version(s): 7.11, 9.21, 9.30 ABSTRACT: Cross-site scripting (XSS) vulnerability in HP Service Manager Web Tier 7.11, 9.21, and 9.30, and HP Service Center Web Tier 6.28, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. REFERENCE LINKS: www2.hp.com http://www.securitytracker.com/id/1027399 CVE-2012-3251 IMPACT ASSESSMENT: Moderate Discussion: A vulnerability was reported in HP Service Manager. A remote user can conduct cross-site scripting attacks. The software does not properly filter

214

U-220: Google Android DNS Resolver Randomization Flaw Lets Remote Users  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

0: Google Android DNS Resolver Randomization Flaw Lets Remote 0: Google Android DNS Resolver Randomization Flaw Lets Remote Users Poison the DNS Cache U-220: Google Android DNS Resolver Randomization Flaw Lets Remote Users Poison the DNS Cache July 25, 2012 - 7:00am Addthis PROBLEM: Google Android DNS Resolver Randomization Flaw Lets Remote Users Poison the DNS Cache PLATFORM: Version(s): 4.0.4 and prior versions ABSTRACT: A remote user can poison the DNS cache. reference LINKS: IBM Application Security Research Group SecurityTracker Alert ID: 1027291 Bugtraq ID: 523624 CVE-2012-2808 IMPACT ASSESSMENT: Medium Discussion: A vulnerability was reported in Google Android. The res_randomid() function, which bases a return value on the process ID and the current time, is called twice in quick succession. As a result, the effective

215

U-255: Apache Wicket Input Validation Flaw Permits Cross-Site Scripting  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

5: Apache Wicket Input Validation Flaw Permits Cross-Site 5: Apache Wicket Input Validation Flaw Permits Cross-Site Scripting Attacks U-255: Apache Wicket Input Validation Flaw Permits Cross-Site Scripting Attacks September 11, 2012 - 6:00am Addthis PROBLEM: Apache Wicket Input Validation Flaw Permits Cross-Site Scripting Attacks PLATFORM: Apache Software Foundation Apache Wicket 1.5.5 Apache Software Foundation Apache Wicket 1.5-RC5.1 Apache Software Foundation Apache Wicket 1.4.20 Apache Software Foundation Apache Wicket 1.4.18 Apache Software Foundation Apache Wicket 1.4.17 Apache Software Foundation Apache Wicket 1.4.16 ABSTRACT: A vulnerability was reported in Apache Wicket reference LINKS: Apache Wicket SecurityTracker Alert ID: 1027508 Bugtraq ID: 55445 CVE-2012-3373 IMPACT ASSESSMENT: Medium Discussion: The software does not properly filter HTML code from user-supplied input in

216

U-262: Microsoft Internet Explorer Flaw Lets Remote Users Execute Arbitrary  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

2: Microsoft Internet Explorer Flaw Lets Remote Users Execute 2: Microsoft Internet Explorer Flaw Lets Remote Users Execute Arbitrary Code U-262: Microsoft Internet Explorer Flaw Lets Remote Users Execute Arbitrary Code September 18, 2012 - 6:00am Addthis PROBLEM: Microsoft Internet Explorer Flaw Lets Remote Users Execute Arbitrary Code PLATFORM: Internet Explorer 6, 7, 8, 9 ABSTRACT: A vulnerability was reported in Microsoft Internet Explorer. reference LINKS: Bugtraq ID: 55562 Security Database KB2757760 Microsoft Security Advisory (2757760) SecurityTracker Alert ID: 1027538 IMPACT ASSESSMENT: High Discussion: A remote user can create specially crafted HTML that, when loaded by the target user, will trigger a memory corruption error and execute arbitrary code on the target system. The code will run with the privileges of the

217

T-715: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

15: Microsoft SharePoint Multiple Flaws Permit Cross-Site 15: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting Attacks T-715: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting Attacks September 13, 2011 - 12:35pm Addthis PROBLEM: Multiple vulnerabilities were reported in Microsoft SharePoint. A remote user can conduct cross-site scripting attacks. PLATFORM: Version(s): SharePoint software ABSTRACT: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting Attacks. reference LINKS: MS11-074: Article ID: 2552998 SecurityTracker Alert ID: 1026040 CVE-2011-1893 CVE-2011-1892 CVE-2011-1891 CVE-2011-1890 CVE-2011-0653 IMPACT ASSESSMENT: High Discussion: A remote user can create a specially crafted URL or web site that, when loaded by a target user, will cause arbitrary scripting code to be executed

218

V-067: Oracle Java Flaw Lets Remote Users Execute Arbitrary Code |  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

7: Oracle Java Flaw Lets Remote Users Execute Arbitrary Code 7: Oracle Java Flaw Lets Remote Users Execute Arbitrary Code V-067: Oracle Java Flaw Lets Remote Users Execute Arbitrary Code January 11, 2013 - 12:01am Addthis PROBLEM: Oracle Java Flaw Lets Remote Users Execute Arbitrary Code PLATFORM: Oracle Java Runtime Environment (JRE) 1.7 in Java 7 Update 10 and earlier ABSTRACT: A vulnerability was reported in Oracle Java. REFERENCE LINKS: Seclist.org Vulnerability Note VU#625617 SecurityTracker Alert ID: 1027972 Malware.dontneedcoffee.com CVE-2013-0422 IMPACT ASSESSMENT: High DISCUSSION: A remote user can create specially crafted Java content that, when loaded by the target user, will execute arbitrary code on the target user's system. The code will run with the privileges of the target user. This vulnerability is being actively exploited.

219

V-156: Linux Kernel Array Bounds Checking Flaw Lets Local Users Gain  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

6: Linux Kernel Array Bounds Checking Flaw Lets Local Users 6: Linux Kernel Array Bounds Checking Flaw Lets Local Users Gain Elevated Privileges V-156: Linux Kernel Array Bounds Checking Flaw Lets Local Users Gain Elevated Privileges May 15, 2013 - 12:19am Addthis PROBLEM: Linux Kernel Array Bounds Checking Flaw Lets Local Users Gain Elevated Privileges PLATFORM: Version(s): 2.6.37 to 3.8.9 ABSTRACT: A vulnerability was reported in the Linux Kernel. REFERENCE LINKS: Linux Kernel SecurityTracker Alert ID: 1028565 CVE-2013-2094 IMPACT ASSESSMENT: Medium DISCUSSION: On systems compiled with PERF_EVENTS support, a local user can supply a specially crafted perf_event_open() call to execute arbitrary code on the target system with root privileges. The vulnerability resides in the perf_swevent_init() function in 'kernel/events/core.c'.

220

U-213: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

3: Google Chrome Multiple Flaws Let Remote Users Execute 3: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code U-213: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code July 16, 2012 - 7:00am Addthis PROBLEM: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code PLATFORM: Version(s): prior to 20.0.1132.57 ABSTRACT: Several vulnerabilities were reported in Google Chrome. reference LINKS: Stable Channel Update SecurityTracker Alert ID: 1027249 IMPACT ASSESSMENT: High Discussion: Several vulnerabilities were reported in Google Chrome. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can create a specially crafted content that, when loaded by the target user, will execute arbitrary code on the target system. The code will run with the privileges of the target user.

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


221

V-006: CA ARCserve Backup Flaws Let Remote Users Execute Arbitrary Code and  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

6: CA ARCserve Backup Flaws Let Remote Users Execute Arbitrary 6: CA ARCserve Backup Flaws Let Remote Users Execute Arbitrary Code and Deny Service V-006: CA ARCserve Backup Flaws Let Remote Users Execute Arbitrary Code and Deny Service October 19, 2012 - 6:00am Addthis PROBLEM: CA ARCserve Backup Flaws Let Remote Users Execute Arbitrary Code and Deny Service PLATFORM: CA ARCserve Backup for Windows r12.5, r15, r16 ABSTRACT: Two vulnerabilities were reported in CA ARCserve Backup. A remote user can execute arbitrary code on the target system. A remote user can cause denial of service conditions. REFERENCE LINKS: SecurityTracker Alert ID: 1027683 CA Technologies Support CVE-2012-2971 CVE-2012-2972 IMPACT ASSESSMENT: High DISCUSSION: A remote user can send specially crafted RPC requests to execute arbitrary code on the target system [CVE-2012-2971]. The code will run with the

222

U-015: CiscoWorks Common Services Home Page Input Validation Flaw Lets  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

15: CiscoWorks Common Services Home Page Input Validation Flaw 15: CiscoWorks Common Services Home Page Input Validation Flaw Lets Remote Users Execute Arbitrary Commands U-015: CiscoWorks Common Services Home Page Input Validation Flaw Lets Remote Users Execute Arbitrary Commands October 20, 2011 - 7:30am Addthis PROBLEM: CiscoWorks Common Services Home Page Input Validation Flaw Lets Remote Users Execute Arbitrary Commands. PLATFORM: CiscoWorks Common Services-based products prior to version 4.1 running on Microsoft Windows ABSTRACT: Successful exploitation of this vulnerability may allow an authenticated, remote attacker to execute arbitrary commands on the affected system with the privileges of a system administrator. reference LINKS: Cisco Security Advisory ID: cisco-sa-20111019-cs Cisco Security Advisories and Responses

223

T-691: Adobe Flash Player Multiple Flaws Let Remote Users Execute Arbitrary  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

1: Adobe Flash Player Multiple Flaws Let Remote Users Execute 1: Adobe Flash Player Multiple Flaws Let Remote Users Execute Arbitrary Code T-691: Adobe Flash Player Multiple Flaws Let Remote Users Execute Arbitrary Code August 11, 2011 - 3:00pm Addthis PROBLEM: Multiple vulnerabilities were reported in Adobe Flash Player. A remote user can cause arbitrary code to be executed on the target user's system. PLATFORM: Version(s): 10.3.181.36 and prior; 10.3.185.25 and prior for Android. ABSTRACT: Adobe Flash Player Multiple Flaws Let Remote Users Execute Arbitrary Code. reference LINKS: Security Bulletin: APSB11-21 SecurityTracker Alert ID: 1025907 CVE-2011-2425 IMPACT ASSESSMENT: High Discussion: A remote user can create specially crafted Flash content that, when loaded by the target user, will execute arbitrary code on the target system. The

224

T-673: Apple Safari Multiple Flaws Let Remote Users Execute Arbitrary Code,  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

3: Apple Safari Multiple Flaws Let Remote Users Execute 3: Apple Safari Multiple Flaws Let Remote Users Execute Arbitrary Code, Conduct Cross-Site Scripting Attacks T-673: Apple Safari Multiple Flaws Let Remote Users Execute Arbitrary Code, Conduct Cross-Site Scripting Attacks July 21, 2011 - 1:27am Addthis PROBLEM: Multiple vulnerabilities were reported in Apple Safari. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can conduct cross-site scripting attacks. A remote user can obtain potentially sensitive information. A remote user can bypass a certificate validation control. PLATFORM: Safari 5.1 and Safari 5.0.6 Products Affected: Safari 5 (Mac OS X 10.6), Safari 5 (Mac OS X 10.5), Product Security, Safari 5.1 (OS X Lion) ABSTRACT: Apple Safari Multiple Flaws Let Remote Users Execute Arbitrary Code,

225

V-095: Oracle Java Flaws Let Remote Users Execute Arbitrary Code |  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

5: Oracle Java Flaws Let Remote Users Execute Arbitrary Code 5: Oracle Java Flaws Let Remote Users Execute Arbitrary Code V-095: Oracle Java Flaws Let Remote Users Execute Arbitrary Code February 20, 2013 - 12:38am Addthis PROBLEM: Oracle Java Flaws Let Remote Users Execute Arbitrary Code PLATFORM: JDK and JRE 7 Update 13 and earlier JDK and JRE 6 Update 39 and earlier JDK and JRE 5.0 Update 39 and earlier SDK and JRE 1.4.2_41 and earlier ABSTRACT: Several vulnerabilities were reported in Oracle Java. REFERENCE LINKS: Updated Release of the February 2013 Oracle Java SE Critical Patch Update SecurityTracker Alert ID: 1028155 CVE-2013-1484 CVE-2013-1485 CVE-2013-1486 CVE-2013-1487 IMPACT ASSESSMENT: High DISCUSSION: A remote user can create a specially crafted Java Web Start application or Java applet that, when loaded by the target user, will execute arbitrary

226

T-698: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' Permits  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

8: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' 8: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' Permits Cross-Site Scripting Attacks T-698: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' Permits Cross-Site Scripting Attacks August 22, 2011 - 3:54pm Addthis PROBLEM: A vulnerability was reported in Adobe ColdFusion. A remote user can conduct cross-site scripting attacks. PLATFORM: Adobe ColdFusion 9.x ABSTRACT: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' Permits Cross-Site Scripting Attacks. reference LINKS: Adobe Vulnerability Report Adobe Security Bulletin ColdFusion Support SecurityTracker Alert ID: 1025957 IMPACT ASSESSMENT: Medium Discussion: The 'probe.cfm' script does not properly filter HTML code from user-supplied input in the 'name' parameter before displaying the input. A remote user can create a specially crafted URL that, when loaded by a

227

U-132: Apache Wicket Input Validation Flaw in 'wicket:pageMapName'  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

2: Apache Wicket Input Validation Flaw in 'wicket:pageMapName' 2: Apache Wicket Input Validation Flaw in 'wicket:pageMapName' Parameter Permits Cross-Site Scripting Attacks U-132: Apache Wicket Input Validation Flaw in 'wicket:pageMapName' Parameter Permits Cross-Site Scripting Attacks March 23, 2012 - 7:42am Addthis PROBLEM: Apache Wicket Input Validation Flaw in 'wicket:pageMapName' Parameter Permits Cross-Site Scripting Attacks PLATFORM: Apache Wicket 1.4.x ABSTRACT: A remote user can conduct cross-site scripting attacks. reference LINKS: Apache Wicket CVE-2012-0047 SecurityTracker Alert ID: 1026839 IMPACT ASSESSMENT: High Discussion: The software does not properly filter HTML code from user-supplied input in the 'wicket:pageMapName' request parameter before displaying the input. A remote user can cause arbitrary scripting code to be executed by the target

228

V-075: EMC AlphaStor Command Injection and Format String Flaws Let Remote  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

5: EMC AlphaStor Command Injection and Format String Flaws Let 5: EMC AlphaStor Command Injection and Format String Flaws Let Remote Users Execute Arbitrary Code V-075: EMC AlphaStor Command Injection and Format String Flaws Let Remote Users Execute Arbitrary Code January 23, 2013 - 12:26am Addthis PROBLEM: EMC AlphaStor Command Injection and Format String Flaws Let Remote Users Execute Arbitrary Code PLATFORM: EMC AlphaStor 4.0 prior to build 800 (All platforms) ABSTRACT: Two vulnerabilities were reported in EMC AlphaStor. REFERENCE LINKS: ESA-2013-008: SecurityTracker Alert ID: 1028020 Secunia Advisory SA51930 CVE-2013-0928 CVE-2013-0929 IMPACT ASSESSMENT: Medium DISCUSSION: A remote user can send a specially crafted DCP run command to inject commands and cause the Device Manager (rrobotd.exe) to execute arbitrary code on the target system [CVE-2013-0928].

229

U-277: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

7: Google Chrome Multiple Flaws Let Remote Users Execute 7: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code U-277: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code October 9, 2012 - 6:00am Addthis PROBLEM: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code PLATFORM: Version(s): prior to 22.0.1229.92 ABSTRACT: Several vulnerabilities were reported in Google Chrome. reference LINKS: SecurityTracker Alert ID: 1027617 Stable Channel Update CVE-2012-2900 CVE-2012-5108 CVE-2012-5109 CVE-2012-5110 CVE-2012-5111 IMPACT ASSESSMENT: High Discussion: A remote user can create specially crafted content that, when loaded by the target user, will execute arbitrary code on the target system. The code will run with the privileges of the target user. A crash may occur in Skia text rendering [CVE-2012-2900].

230

U-160: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

60: Google Chrome Multiple Flaws Let Remote Users Execute 60: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code U-160: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code May 2, 2012 - 7:00am Addthis PROBLEM: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code PLATFORM: Prior to 18.0.1025.168 ABSTRACT: Several vulnerabilities were reported in Google Chrome. A remote user can cause arbitrary code to be executed on the target user's system reference LINKS: SecurityTracker Alert ID: 1027001 CVE-2011-3078 CVE-2011-3079 CVE-2011-3080 IMPACT ASSESSMENT: High Discussion: A remote user can create specially crafted content that, when loaded by the target user, will trigger a use-after-free, validation error, or race condition and execute arbitrary code on the target system. The code will

231

U-089:Apache Struts ParameterInterceptor() Flaw Lets Remote Users Execute  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

9:Apache Struts ParameterInterceptor() Flaw Lets Remote Users 9:Apache Struts ParameterInterceptor() Flaw Lets Remote Users Execute Arbitrary Commands U-089:Apache Struts ParameterInterceptor() Flaw Lets Remote Users Execute Arbitrary Commands January 26, 2012 - 6:45am Addthis PROBLEM: Apache Struts ParameterInterceptor() Flaw Lets Remote Users Execute Arbitrary Commands PLATFORM: Struts 2.0.0 - Struts 2.3.1.1 ABSTRACT: A remote user can execute arbitrary code on the target system. reference LINKS: CVE-2011-3923 SecurityTracker Alert ID: 1026575 Apache Struts 2 Documentation S2-009 blog.o0o.nu IMPACT ASSESSMENT: High Discussion: A vulnerability was reported in Apache Struts. The vulnerability allows a malicious user to bypass all the protections (regex pattern, deny method invocation) built into the ParametersInterceptor, thus being able to inject

232

U-170: Apple QuickTime Multiple Flaws Let Remote Users Execute Arbitrary  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

70: Apple QuickTime Multiple Flaws Let Remote Users Execute 70: Apple QuickTime Multiple Flaws Let Remote Users Execute Arbitrary Code U-170: Apple QuickTime Multiple Flaws Let Remote Users Execute Arbitrary Code May 16, 2012 - 7:00am Addthis PROBLEM: Apple QuickTime Multiple Flaws Let Remote Users Execute Arbitrary Code PLATFORM: prior to 7.7.2 ABSTRACT: Multiple vulnerabilities were reported in Apple QuickTime. A remote user can cause arbitrary code to be executed on the target user's system. Reference LINKS: SecurityTracker Alert ID: 1027065 CVE-2012-0265 CVE-2012-0663 CVE-2012-0664 CVE-2012-0665 CVE-2012-0666 IMPACT ASSESSMENT: High Discussion: A remote user can create a specially crafted file that, when loaded by the target user, will execute arbitrary code on the target system. The code will run with the privileges of the target user. Only Windows-based systems

233

V-179: Blackberry Z10 Flaw Lets Physically Local Users Access the Device |  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

9: Blackberry Z10 Flaw Lets Physically Local Users Access the 9: Blackberry Z10 Flaw Lets Physically Local Users Access the Device V-179: Blackberry Z10 Flaw Lets Physically Local Users Access the Device June 17, 2013 - 1:09am Addthis PROBLEM: Blackberry Z10 Flaw Lets Physically Local Users Access the Device PLATFORM: BlackBerry 10 OS version 10.0.10.261 and earlier, except version 10.0.9.2743 ABSTRACT: A vulnerability was reported in Blackberry Z10 Smartphones. REFERENCE LINKS: BlackBerry Security Advisory KB34458 SecurityTracker Alert ID: 1028669 CVE-2013-3692 IMPACT ASSESSMENT: Medium DISCUSSION: On systems with BlackBerry Protect enabled, if the user resets the device password via BlackBerry Protect and downloads a specifically crafted applications, then a physically local user can access or modify data on the device. The vulnerability is due to unsafe permissions on a BlackBerry Protect

234

U-160: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

0: Google Chrome Multiple Flaws Let Remote Users Execute 0: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code U-160: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code May 2, 2012 - 7:00am Addthis PROBLEM: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code PLATFORM: Prior to 18.0.1025.168 ABSTRACT: Several vulnerabilities were reported in Google Chrome. A remote user can cause arbitrary code to be executed on the target user's system reference LINKS: SecurityTracker Alert ID: 1027001 CVE-2011-3078 CVE-2011-3079 CVE-2011-3080 IMPACT ASSESSMENT: High Discussion: A remote user can create specially crafted content that, when loaded by the target user, will trigger a use-after-free, validation error, or race condition and execute arbitrary code on the target system. The code will

235

V-020: Apple QuickTime Multiple Flaws Let Remote Users Execute Arbitrary  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

20: Apple QuickTime Multiple Flaws Let Remote Users Execute 20: Apple QuickTime Multiple Flaws Let Remote Users Execute Arbitrary Code V-020: Apple QuickTime Multiple Flaws Let Remote Users Execute Arbitrary Code November 9, 2012 - 6:00am Addthis PROBLEM: Apple QuickTime Multiple Flaws Let Remote Users Execute Arbitrary Code PLATFORM: Versions prior to QuickTime 7.7.3 are vulnerable on Windows 7, Vista and XP. ABSTRACT: Multiple vulnerabilities were reported in Apple QuickTime. REFERENCE LINKS: Apple Security Article: HT5581 SecurityTracker Alert ID: 1027737 Bugtraq ID: 56438 Secunia Advisory SA51226 CVE-2011-1374 CVE-2012-3751 CVE-2012-3752 CVE-2012-3753 CVE-2012-3754 CVE-2012-3755 CVE-2012-3756 CVE-2012-3757 CVE-2012-3758 IMPACT ASSESSMENT: High DISCUSSION: Multiple vulnerabilities have been reported in Apple QuickTime, which can

236

T-536: Cisco ASA Multiple Flaws Let Remote Users Deny Service and Bypass  

NLE Websites -- All DOE Office Websites (Extended Search)

36: Cisco ASA Multiple Flaws Let Remote Users Deny Service and 36: Cisco ASA Multiple Flaws Let Remote Users Deny Service and Bypass Security Controls T-536: Cisco ASA Multiple Flaws Let Remote Users Deny Service and Bypass Security Controls January 18, 2011 - 2:30pm Addthis PROBLEM: Cisco ASA Multiple Flaws Let Remote Users Deny Service and Bypass Security Controls. PLATFORM: Cisco 5500 Series Adaptive Security Appliances (ASA) ABSTRACT: Cisco ASA 5500 Series Adaptive Security Appliances are affected by multiple vulnerabilities. Affected versions of Cisco ASA Software vary depending on the specific vulnerability. Cisco ASA 5500 Series Adaptive Security Appliances may experience a TCP connection exhaustion condition (no new TCP connections are accepted) that can be triggered through the receipt of specific TCP segments during the

237

U-247: EMC Cloud Tiering Appliance Flaw Lets Remote Users Bypass  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

7: EMC Cloud Tiering Appliance Flaw Lets Remote Users Bypass 7: EMC Cloud Tiering Appliance Flaw Lets Remote Users Bypass Authentication and Gain Administrative Access U-247: EMC Cloud Tiering Appliance Flaw Lets Remote Users Bypass Authentication and Gain Administrative Access August 29, 2012 - 6:00am Addthis PROBLEM: EMC Cloud Tiering Appliance Flaw Lets Remote Users Bypass Authentication and Gain Administrative Access PLATFORM: EMC Cloud Tiering Appliance (CTA) 7.4 and prior EMC Cloud Tiering Appliance Virtual Edition (CTA/VE) 7.4 and prior EMC Cloud Tiering Appliance (CTA) 9.0 and prior EMC Cloud Tiering Appliance Virtual Edition (CTA/VE) 9.0 and prior ABSTRACT: A vulnerability was reported in EMC Cloud Tiering Appliance. reference LINKS: SecurityTracker Alert ID: 1027448 Bugtraq ID: 55250 EMC.com CVE-2012-2285 IMPACT ASSESSMENT:

238

U-255: Apache Wicket Input Validation Flaw Permits Cross-Site...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

Input Validation Flaw Permits Cross-Site Scripting Attacks PLATFORM: Apache Software Foundation Apache Wicket 1.5.5 Apache Software Foundation Apache Wicket 1.5-RC5.1 Apache...

239

T-602: BlackBerry Enterprise Server Input Validation Flaw in...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

02: BlackBerry Enterprise Server Input Validation Flaw in BlackBerry Web Desktop Manager Permits Cross-Site Scripting Attacks T-602: BlackBerry Enterprise Server Input Validation...

240

U-014: Oracle Java Runtime Environment (JRE) Multiple Flaws Let Remote  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

4: Oracle Java Runtime Environment (JRE) Multiple Flaws Let 4: Oracle Java Runtime Environment (JRE) Multiple Flaws Let Remote Users Execute Arbitrary Code and Deny Service U-014: Oracle Java Runtime Environment (JRE) Multiple Flaws Let Remote Users Execute Arbitrary Code and Deny Service October 19, 2011 - 6:00pm Addthis PROBLEM: Oracle Java Runtime Environment (JRE) Multiple Flaws Let Remote Users Execute Arbitrary Code and Deny Service. PLATFORM: Oracle JDK and JRE 7; JDK and JRE 6 Update 27 and prior; JDK and JRE 5.0 Update 31 and prior; SDK and JRE 1.4.2_33 and prior ABSTRACT: A remote user can create a Java applet or Java Web Start application that, when loaded by the target user, will access or modify data or execute arbitrary code on the target user's system. reference LINKS: Oracle Critical Patch Updates and Security Alerts

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


241

T-698: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' Permits  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

8: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' 8: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' Permits Cross-Site Scripting Attacks T-698: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' Permits Cross-Site Scripting Attacks August 22, 2011 - 3:54pm Addthis PROBLEM: A vulnerability was reported in Adobe ColdFusion. A remote user can conduct cross-site scripting attacks. PLATFORM: Adobe ColdFusion 9.x ABSTRACT: Adobe ColdFusion Input Validation Flaw in 'probe.cfm' Permits Cross-Site Scripting Attacks. reference LINKS: Adobe Vulnerability Report Adobe Security Bulletin ColdFusion Support SecurityTracker Alert ID: 1025957 IMPACT ASSESSMENT: Medium Discussion: The 'probe.cfm' script does not properly filter HTML code from user-supplied input in the 'name' parameter before displaying the input. A remote user can create a specially crafted URL that, when loaded by a

242

U-077: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

7: Google Chrome Multiple Flaws Let Remote Users Execute 7: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code U-077: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code January 9, 2012 - 9:15am Addthis PROBLEM: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code PLATFORM: Version(s): prior to 16.0.912.75 ABSTRACT: A remote user may be able to execute arbitrary code on the target system. reference LINKS: Google Chrome Releases Chromium Security SecurityTracker Alert ID:1026487 IMPACT ASSESSMENT: High Discussion: A remote user can create specially crafted content that, when loaded by the target user, will execute arbitrary code on the target system. The code will run with the privileges of the target user. Specially crafted animation frames can trigger a use-after-free memory

243

U-270:Trend Micro Control Manager Input Validation Flaw in Ad Hoc Query  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

0:Trend Micro Control Manager Input Validation Flaw in Ad Hoc 0:Trend Micro Control Manager Input Validation Flaw in Ad Hoc Query Module Lets Remote Users Inject SQL Commands U-270:Trend Micro Control Manager Input Validation Flaw in Ad Hoc Query Module Lets Remote Users Inject SQL Commands September 28, 2012 - 6:00am Addthis PROBLEM: Trend Micro Control Manager Input Validation Flaw in Ad Hoc Query Module Lets Remote Users Inject SQL Commands PLATFORM: Control Manager - 3.0, 3.5, 5.0, 5.5, 6.0 ABSTRACT: Trend Micro has been notified of a potential product vulnerability in Control Manager. reference LINKS: Trend Micro Technical Support ID 1061043 SecurityTracker Alert ID: 1027584 Secunia Advisory SA50760 CVE-2012-2998 IMPACT ASSESSMENT: Medium Discussion: A vulnerability has been reported in Trend Micro Control Manager, which can

244

T-715: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

5: Microsoft SharePoint Multiple Flaws Permit Cross-Site 5: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting Attacks T-715: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting Attacks September 13, 2011 - 12:35pm Addthis PROBLEM: Multiple vulnerabilities were reported in Microsoft SharePoint. A remote user can conduct cross-site scripting attacks. PLATFORM: Version(s): SharePoint software ABSTRACT: Microsoft SharePoint Multiple Flaws Permit Cross-Site Scripting Attacks. reference LINKS: MS11-074: Article ID: 2552998 SecurityTracker Alert ID: 1026040 CVE-2011-1893 CVE-2011-1892 CVE-2011-1891 CVE-2011-1890 CVE-2011-0653 IMPACT ASSESSMENT: High Discussion: A remote user can create a specially crafted URL or web site that, when loaded by a target user, will cause arbitrary scripting code to be executed

245

V-049: RealPlayer Buffer Overflow and Invalid Pointer Flaw Let Remote Users  

NLE Websites -- All DOE Office Websites (Extended Search)

9: RealPlayer Buffer Overflow and Invalid Pointer Flaw Let 9: RealPlayer Buffer Overflow and Invalid Pointer Flaw Let Remote Users Execute Arbitrary Code V-049: RealPlayer Buffer Overflow and Invalid Pointer Flaw Let Remote Users Execute Arbitrary Code December 18, 2012 - 1:30am Addthis PROBLEM: RealPlayer Buffer Overflow and Invalid Pointer Flaw Let Remote Users Execute Arbitrary Code PLATFORM: Windows RealPlayer 15.0.6.14 and prior. ABSTRACT: Two vulnerabilities were reported in RealPlayer. REFERENCE LINKS: RealPlayer Security Vulnerabilities Secunia Advisory SA51589 SecurityTracker Alert ID: 1027893 CVE-2012-5690 CVE-2012-5691 IMPACT ASSESSMENT: Medium DISCUSSION: Two vulnerabilities have been reported in RealPlayer, which can be exploited by malicious people to compromise a user's system. A remote user can create a specially crafted RealAudio file that, when

246

U-015: CiscoWorks Common Services Home Page Input Validation Flaw Lets  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

5: CiscoWorks Common Services Home Page Input Validation Flaw 5: CiscoWorks Common Services Home Page Input Validation Flaw Lets Remote Users Execute Arbitrary Commands U-015: CiscoWorks Common Services Home Page Input Validation Flaw Lets Remote Users Execute Arbitrary Commands October 20, 2011 - 7:30am Addthis PROBLEM: CiscoWorks Common Services Home Page Input Validation Flaw Lets Remote Users Execute Arbitrary Commands. PLATFORM: CiscoWorks Common Services-based products prior to version 4.1 running on Microsoft Windows ABSTRACT: Successful exploitation of this vulnerability may allow an authenticated, remote attacker to execute arbitrary commands on the affected system with the privileges of a system administrator. reference LINKS: Cisco Security Advisory ID: cisco-sa-20111019-cs Cisco Security Advisories and Responses

247

V-066: Adobe Acrobat/Reader Multiple Flaws Lets Remote Users Execute  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

66: Adobe Acrobat/Reader Multiple Flaws Lets Remote Users 66: Adobe Acrobat/Reader Multiple Flaws Lets Remote Users Execute Arbitrary Code and Local Users Gain Elevated Privileges V-066: Adobe Acrobat/Reader Multiple Flaws Lets Remote Users Execute Arbitrary Code and Local Users Gain Elevated Privileges January 10, 2013 - 2:00am Addthis PROBLEM: Adobe Acrobat/Reader Multiple Flaws Lets Remote Users Execute Arbitrary Code and Local Users Gain Elevated Privileges PLATFORM: *Adobe Reader XI (11.0.0) for Windows and Macintosh *Adobe Reader X (10.1.4) and earlier 10.x versions for Windows and Macintosh *Adobe Reader 9.5.2 and earlier 9.x versions for Windows and Macintosh *Adobe Reader 9.5.1 and earlier 9.x versions for Linux *Adobe Acrobat XI (11.0.0) for Windows and Macintosh *Adobe Acrobat X (10.1.4) and earlier 10.x versions for Windows and

248

U-242: Linux Kernel Netlink SCM_CREDENTIALS Processing Flaw Lets Local  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

2: Linux Kernel Netlink SCM_CREDENTIALS Processing Flaw Lets 2: Linux Kernel Netlink SCM_CREDENTIALS Processing Flaw Lets Local Users Gain Elevated Privileges U-242: Linux Kernel Netlink SCM_CREDENTIALS Processing Flaw Lets Local Users Gain Elevated Privileges August 23, 2012 - 7:00am Addthis PROBLEM: Linux Kernel Netlink SCM_CREDENTIALS Processing Flaw Lets Local Users Gain Elevated Privileges PLATFORM: Linux Kernel 3.2.x Linux Kernel 3.4.x Linux Kernel 3.5.x ABSTRACT: A vulnerability was reported in the Linux Kernel. reference LINKS: The Linux Kernel Archives SecurityTracker Alert ID: 1027434 Secunia Advisory SA50323 CVE-2012-3520 IMPACT ASSESSMENT: Medium Discussion: A local user can obtain elevated privileges on the target system. A local user may be able to send specially crafted Netlink messages to spoof SCM_CREDENTIALS and perform actions with elevated privileges.

249

Routing and Traversal via Location Awareness in Ad-Hoc Networks  

E-Print Network (OSTI)

Routing and Traversal via Location Awareness in Ad-Hoc Networks Evangelos Kranakis Ladislav Stacho of an ad-hoc network in order to provide for ef- ficient information dissemination. We explore several new and route discovery in ad-hoc networks. 1 Challenges in Ad-Hoc Networking The current rapid growth

Kranakis, Evangelos

250

A single model of traversable wormholes supported by generalized phantom energy or Chaplygin gas  

E-Print Network (OSTI)

This paper discusses a new variable equation of state parameter leading to exact solutions of the Einstein field equations describing traversable wormholes. In addition to generalizing the notion of phantom energy, the equation of state generates a mathematical model that combines the generalized phantom energy and the generalized Chaplygin gas models.

Peter K. F. Kuhfittig

2009-04-22T23:59:59.000Z

251

Directory of Energy Data Collection Forms: Forms in use as of October 1996  

SciTech Connect

This is the twentieth edition of the Directory of Energy Collection Data Forms, an authoritative listing of selected public use forms currently used as basic energy information gathering tools by the Department of Energy.

NONE

1996-12-01T23:59:59.000Z

252

Directory of energy data collection forms. Forms in use as of October 1995  

SciTech Connect

This is an authoritative listing of selected public use forms currently used as basic energy information gathering tools by the Department of Energy (DOE). This directory provides an overview of DOE`s energy information collection programs for decisionmakers in Government and industry. Forms designed to collect energy information and used by the Energy Information Administration (EIA) as of October 1995 are included in this directory. For each form listed in this directory, an abstract is included that describes the form`s uses, its respondents, and the data collected. For the reader`s convenience in finding specific types of collections, several indices have been provided in this directory. A listing of the forms grouped by energy source and function begins on page 26. Beginning on page 38 are the publications derived from the collections, and on page 50, are the forms linked to general respondent categories.

NONE

1996-01-01T23:59:59.000Z

253

Towards Semantic Web-Based Yellow Page Directory Services Mikko Laukkanen  

E-Print Network (OSTI)

Towards Semantic Web-Based Yellow Page Directory Services Mikko Laukkanen TeliaSonera Finland P.O. Box 970 (Teollisuuskatu 13), FIN-00051 Sonera, Finland mikko.laukkanen@teliasonera.com Kim Viljanen

Hyvönen, Eero

254

EIA directory of electronic products. Second quarter 1995  

SciTech Connect

The Energy Information Administration (EIA) makes available for public use a series of machine-readable data files and computer models. They are available to the public on magnetic tapes; selected data files/models are available on diskette for IBM-compatible personal computers. This directory first presents the on-line files and compact discs. This is followed by descriptions and technical contacts and ordering and other information on the data files and models. An index by energy source is included. Additional ordering information is in the preface. The data files cover petroleum, natural gas, electricity, coal, integrated statistics, and consumption; the models cover petroleum, natural gas, electricity, coal, nuclear, and multifuel.

NONE

1995-10-04T23:59:59.000Z

255

Statistics of the Charge Distribution for a Localized Flaw in a Semiconductor  

Science Journals Connector (OSTI)

A localized flaw such as a vacancy-interstitial pair, gold atom, or small void is considered. It is found that the charge situation can be described by a set of energy levels which are independent of the Fermi level but which are temperature-dependent. If the flaw is electrically neutral for a certain position of the Fermi level, then as the Fermi level is raised from the neutral level successively above each higher-lying level of the set, the flaw acquires an additional electron unit of negative charge. These levels are called the first-acceptor level, second-acceptor level, etc. The energy levels are essentially equal to kTln(Z1Z2), where Z1 and Z2 are the contributions of the flaw to the state sum for the system for the two conditions of charge. Similarly, as the Fermi level is lowered below the neutral point, it passes the first-donor level, second-donor level, etc., and the flaw acquires charges of plus one, plus two, etc. The statistics are derived for the distribution for the various conditions of charge, referred to as first-donor condition, neutral condition, first-acceptor condition, etc.

W. Shockley and J. T. Last

1957-07-15T23:59:59.000Z

256

Predicting Flaw-Induced Resonance Spectrum Shift with Theoretical Perturbation Analysis  

SciTech Connect

Resonance inspection is an emerging non-destructive evaluation (NDE) technique which uses the resonance spectra differences between the good part population and the flawed parts to identify anomalous parts. It was previously established that finite-element (FE)-based modal analysis can be used to predict the resonance spectrum for an engineering scale part with relatively good accuracy. However, FE-based simulations can be time consuming in examining the spectrum shifts induced by all possible structural flaws. This paper aims at developing a computationally efficient perturbation technique to quantify the frequency shifts induced by small structural flaws, based on the FE simulated resonance spectrum for the perfect part. A generic automotive connecting rod is used as the example part for our study. The results demonstrate that the linear perturbation theory provides a very promising way in predicting frequency changes induced by small structural flaws. As the flaw size increases, the discrepancy between the perturbation analysis and the actual FE simulation results increases due to nonlinearity, yet the perturbation analysis is still able to predict the right trend in frequency shift.

Lai, Canhai; Sun, Xin

2013-10-28T23:59:59.000Z

257

Obtaining flaw images by the SAFT method taking the variable velocity of sound in a test object into account  

Science Journals Connector (OSTI)

A modification of the SAFT method for obtaining flaw images in test ... are presented. The images obtained by the SAFT method without taking different SVs into account...

E. G. Bazulin

2010-11-01T23:59:59.000Z

258

U-102: Cisco IronPort Encryption Appliance Input Validation Flaw Permits  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

2: Cisco IronPort Encryption Appliance Input Validation Flaw 2: Cisco IronPort Encryption Appliance Input Validation Flaw Permits Cross-Site Scripting Attacks U-102: Cisco IronPort Encryption Appliance Input Validation Flaw Permits Cross-Site Scripting Attacks February 14, 2012 - 8:00am Addthis PROBLEM: A vulnerability was reported in Cisco IronPort Encryption Appliance. PLATFORM: Version(s): prior to 6.5.3 ABSTRACT: A remote user can conduct cross-site scripting reference LINKS: Vendor URL CVE-2012-0340 Security Tracker ID:1026669 IMPACT ASSESSMENT: Medium Discussion: The interface does not properly filter HTML code from user-supplied input before displaying the input. A remote user can create a specially crafted URL that, when loaded by a target user, will cause arbitrary scripting code to be executed by the target user's browser. The code will originate from

259

U-107: Cisco NX-OS IP Packet Processing Flaw Lets Remote Users Deny Service  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

07: Cisco NX-OS IP Packet Processing Flaw Lets Remote Users Deny 07: Cisco NX-OS IP Packet Processing Flaw Lets Remote Users Deny Service U-107: Cisco NX-OS IP Packet Processing Flaw Lets Remote Users Deny Service February 21, 2012 - 6:00am Addthis PROBLEM: A vulnerability was reported in Cisco NX-OS. A remote user can cause denial of service conditions. PLATFORM: Nexus 1000v, 5000, and 7000 Series Switches ABSTRACT: A remote user can send a specially crafted IP packet to cause the target device to reload. reference LINKS: Cisco Advisory SecurityTracker Alert ID:1026692 CVE-2012-0352 IMPACT ASSESSMENT: Medium Discussion: A vulnerability was reported in Cisco NX-OS. A remote user can cause denial of service conditions. A remote user can send a specially crafted IP packet to cause the target device to reload. The vulnerability occurs when the device attepts to obtain Layer 4 (e.g.,

260

V-168: Splunk Web Input Validation Flaw Permits Cross-Site Scripting  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

8: Splunk Web Input Validation Flaw Permits Cross-Site 8: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks V-168: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks May 31, 2013 - 6:00am Addthis PROBLEM: A vulnerability was reported in Splunk Web PLATFORM: Version(s) prior to 5.0.3 ABSTRACT: A reflected cross-site scripting vulnerability was identified in Splunk Web REFERENCE LINKS: SecurityTracker Alert ID: 1028605 Splunk Security Advisory SPL-59895 CVE-2012-6447 IMPACT ASSESSMENT: Medium DISCUSSION: The web interface does not properly filter HTML code from user-supplied input before displaying the input. A remote user can create a specially crafted URL that, when loaded by a target user, will cause arbitrary scripting code to be executed by the target user's browser. The code will

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


261

U-140: HP-UX Unspecified Flaw in DCE Lets Remote Users Execute Arbitrary  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

U-140: HP-UX Unspecified Flaw in DCE Lets Remote Users Execute U-140: HP-UX Unspecified Flaw in DCE Lets Remote Users Execute Arbitrary Code U-140: HP-UX Unspecified Flaw in DCE Lets Remote Users Execute Arbitrary Code April 4, 2012 - 7:15am Addthis PROBLEM: A vulnerability was reported in HP-UX PLATFORM: Version(s): 11.11, 11.23; running DCE ABSTRACT: A remote user can execute arbitrary code on the target system. A remote user can send specially crafted data to execute arbitrary code on the target system. The code will run with the privileges of the target service. Reference LINKS: Vendor Advisory Security Tracker ID 1026885 CVE-2012-0131 IMPACT ASSESSMENT: High Discussion: A potential security vulnerability has been identified in HP-UX running DCE. The vulnerability could be exploited remotely to create a Denial of Service (DoS).

262

U-245: Critical Java 0-day flaw exploited | Department of Energy  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

45: Critical Java 0-day flaw exploited 45: Critical Java 0-day flaw exploited U-245: Critical Java 0-day flaw exploited August 27, 2012 - 4:41pm Addthis PROBLEM: Attackers are exploiting a new and unpatched vulnerability that affects the latest version of Java -- Java 7 Update 6, and it works against a fully patched Windows 7 SP1 with Java 7 Update 6, Mozilla Firefox on Ubuntu Linux 10.04, Internet Explorer / Mozilla Firefox / Chrome on Windows XP, Internet Explorer / Mozilla Firefox on Windows Vista and Windows 7, and Safari on OS X 10.7.4. PLATFORM: Version(s): Java 7 Update 6 ABSTRACT: Targeted attacks exploiting a zero-day Java vulnerability to deliver the Poison Ivy RAT onto the unsuspecting victims' machines REFERENCE LINKS: http://www.net-security.org/secworld.php?id=13484 zero-day CVE-2012-4681

263

U-144:Juniper Secure Access Input Validation Flaw Permits Cross-Site  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

4:Juniper Secure Access Input Validation Flaw Permits 4:Juniper Secure Access Input Validation Flaw Permits Cross-Site Scripting Attacks U-144:Juniper Secure Access Input Validation Flaw Permits Cross-Site Scripting Attacks April 10, 2012 - 7:30am Addthis PROBLEM: A vulnerability was reported in Juniper Secure Access/Instant Virtual Extranet (IVE). A remote user can conduct cross-site scripting attacks. PLATFORM: Version(s): prior to 7.0R9 and 7.1R ABSTRACT: The VPN management interface does not properly filter HTML code from user-supplied input before displaying the input. A remote user can cause arbitrary scripting code to be executed by the target user's browser. reference LINKS: Vendor URL SecurityTracker Alert ID: 1026893 IMPACT ASSESSMENT: High Discussion: The code will originate from the interface and will run in the security

264

T-701: Citrix Access Gateway Enterprise Edition Input Validation Flaw in  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

1: Citrix Access Gateway Enterprise Edition Input Validation 1: Citrix Access Gateway Enterprise Edition Input Validation Flaw in Logon Portal Permits Cross-Site Scripting Attacks T-701: Citrix Access Gateway Enterprise Edition Input Validation Flaw in Logon Portal Permits Cross-Site Scripting Attacks August 25, 2011 - 3:33pm Addthis PROBLEM: A vulnerability was reported in Citrix Access Gateway Enterprise Edition. A remote user can conduct cross-site scripting attacks. PLATFORM: Citrix Access Gateway Enterprise Edition 9.2-49.8 and prior. Citrix Access Gateway Enterprise Edition version 9.3 is not affected by this vulnerability. ABSTRACT: Citrix Access Gateway Enterprise Edition Input Validation Flaw in Logon Portal Permits Cross-Site Scripting Attacks. reference LINKS: SecurityTracker Alert ID: 1025973 Citrix Document ID: CTX129971

265

T-670: Skype Input Validation Flaw in 'mobile phone' Profile Entry Permits  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

70: Skype Input Validation Flaw in 'mobile phone' Profile Entry 70: Skype Input Validation Flaw in 'mobile phone' Profile Entry Permits Cross-Site Scripting Attacks T-670: Skype Input Validation Flaw in 'mobile phone' Profile Entry Permits Cross-Site Scripting Attacks July 18, 2011 - 7:09am Addthis PROBLEM: A vulnerability was reported in Skype. A remote user can conduct cross-site scripting attacks. PLATFORM: 5.3.0.120 and prior versions ABSTRACT: The software does not properly filter HTML code from user-supplied input in the The "mobile phone" profile entry before displaying the input. reference LINKS: SecurityTracker Alert ID: 1025789 Skype Security Advisory KoreSecure News H Security ID: 1279864 IMPACT ASSESSMENT: High Discussion: Skype suffers from a persistent Cross-Site Scripting vulnerability due to a lack of input validation and output sanitization of the "mobile phone"

266

V-218: HP Service Manager Unspecified Flaw Lets Remote Users Gain  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

8: HP Service Manager Unspecified Flaw Lets Remote Users Gain 8: HP Service Manager Unspecified Flaw Lets Remote Users Gain Unauthorized Access V-218: HP Service Manager Unspecified Flaw Lets Remote Users Gain Unauthorized Access August 15, 2013 - 1:30am Addthis PROBLEM: A potential security vulnerability has been identified with HP Service Manager. The vulnerability could be exploited to allow remote unauthenticated access and elevation of privilege. PLATFORM: HP Service Manager v9.31, v9.30, v9.21, v7.11, v6.2.8 ABSTRACT: The vulnerabilities are reported in versions 9.31 and prior. REFERENCE LINKS: SecurityTracker Alert ID: 1028912 CVE-2013-4808 IMPACT ASSESSMENT: High DISCUSSION: A vulnerability was reported in HP Service Manager. A remote user can gain unauthorized access on the target system. IMPACT: User access via network

267

U-195: PHPlist Input Validation Flaws Permit Cross-Site Scripting and SQL  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

5: PHPlist Input Validation Flaws Permit Cross-Site Scripting 5: PHPlist Input Validation Flaws Permit Cross-Site Scripting and SQL Injection Attacks U-195: PHPlist Input Validation Flaws Permit Cross-Site Scripting and SQL Injection Attacks June 20, 2012 - 7:00am Addthis PROBLEM: Two vulnerabilities were reported in PHPlist. A remote user can conduct cross-site scripting attacks. A remote authenticated user can inject SQL commands. PLATFORM: Version(s): prior to 2.10.18 ABSTRACT: The 'public_html/lists/admin' pages do not properly validate user-supplied input in the 'sortby' parameter [CVE-2012-2740]. A remote authenticated administrative user can supply a specially crafted parameter value to execute SQL commands on the underlying database. REFERENCE LINKS: Vendor Advisory Security Tracker ID 1027181 CVE-2012-2740, CVE-2012-2741

268

V-218: HP Service Manager Unspecified Flaw Lets Remote Users Gain  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

8: HP Service Manager Unspecified Flaw Lets Remote Users Gain 8: HP Service Manager Unspecified Flaw Lets Remote Users Gain Unauthorized Access V-218: HP Service Manager Unspecified Flaw Lets Remote Users Gain Unauthorized Access August 15, 2013 - 1:30am Addthis PROBLEM: A potential security vulnerability has been identified with HP Service Manager. The vulnerability could be exploited to allow remote unauthenticated access and elevation of privilege. PLATFORM: HP Service Manager v9.31, v9.30, v9.21, v7.11, v6.2.8 ABSTRACT: The vulnerabilities are reported in versions 9.31 and prior. REFERENCE LINKS: SecurityTracker Alert ID: 1028912 CVE-2013-4808 IMPACT ASSESSMENT: High DISCUSSION: A vulnerability was reported in HP Service Manager. A remote user can gain unauthorized access on the target system. IMPACT: User access via network

269

T-617: BIND RPZ Processing Flaw Lets Remote Users Deny Service | Department  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

7: BIND RPZ Processing Flaw Lets Remote Users Deny Service 7: BIND RPZ Processing Flaw Lets Remote Users Deny Service T-617: BIND RPZ Processing Flaw Lets Remote Users Deny Service May 6, 2011 - 7:00am Addthis PROBLEM: A vulnerability has been reported in BIND, which can be exploited by malicious people to cause a DoS (Denial of Service). PLATFORM: ISC BIND version 9.8.0. ABSTRACT: When a name server is configured with a response policy zone (RPZ), queries for type RRSIG can trigger a server crash. REFERENCE LINKS: ISC Advisory: CVE-2011-1907 Secunia Advisory: SA44416 Vulnerability Report: ISC BIND CVE-2011-1907 SecurityTracker Alert ID: 1025503 IMPACT ASSESSMENT: High Discussion: This advisory only affects BIND users who are using the RPZ feature configured for RRset replacement. BIND 9.8.0 introduced Response Policy Zones (RPZ), a mechanism for modifying DNS responses returned by a

270

V-225: McAfee Email Gateway SMTP Processing Flaw Lets Remote Users Deny  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

5: McAfee Email Gateway SMTP Processing Flaw Lets Remote Users 5: McAfee Email Gateway SMTP Processing Flaw Lets Remote Users Deny Service V-225: McAfee Email Gateway SMTP Processing Flaw Lets Remote Users Deny Service August 23, 2013 - 1:26am Addthis PROBLEM: A vulnerability was reported in McAfee Email Gateway. A remote user can cause denial of service conditions. PLATFORM: McAfee Email Gateway (MEG) 7.5 ABSTRACT: A remote user can cause the SMTP proxy to stop responding. REFERENCE LINKS: SecurityTracker Alert ID: 1028941 GENERIC-MAP-NOMATCH IMPACT ASSESSMENT: High DISCUSSION: A vulnerability was reported in McAfee Email Gateway. A remote user can cause denial of service conditions.A remote user can send a specially crafted e-mail to cause the ws_inv-smtp process to enter an infinite loop and cause the target SMTP proxy to stop responding.

271

V-153: Symantec Brightmail Gateway Input Validation Flaw Permits Cross-Site  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

3: Symantec Brightmail Gateway Input Validation Flaw Permits 3: Symantec Brightmail Gateway Input Validation Flaw Permits Cross-Site Scripting Attacks V-153: Symantec Brightmail Gateway Input Validation Flaw Permits Cross-Site Scripting Attacks May 10, 2013 - 6:00am Addthis PROBLEM: A vulnerability was reported in Symantec Brightmail Gateway PLATFORM: The vulnerabilities are reported in versions prior to 9.5.x ABSTRACT: Symantec's Brightmail Gateway management console is susceptible to stored cross-site scripting (XSS) issues found in some of the administrative interface pages. REFERENCE LINKS: Security Tracker Alert ID: 1028530 Symantec Security Advisory CVE-2013-1611 IMPACT ASSESSMENT: Medium DISCUSSION: The administrative interface does not properly filter HTML code from user-supplied input before displaying the input. A remote user can cause

272

T-663: Cisco Content Services Gateway ICMP Processing Flaw Lets Remote  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

3: Cisco Content Services Gateway ICMP Processing Flaw Lets 3: Cisco Content Services Gateway ICMP Processing Flaw Lets Remote Users Deny Service T-663: Cisco Content Services Gateway ICMP Processing Flaw Lets Remote Users Deny Service July 7, 2011 - 12:41pm Addthis PROBLEM: A denial of service (DoS) vulnerability exists in the Cisco Content Services Gateway - Second Generation, that runs on the Cisco Service and Application Module for IP (SAMI). An unauthenticated, remote attacker could exploit this vulnerability by sending a series of crafted ICMP packets to an affected device. Exploitation could cause the device to reload. There are no workarounds available to mitigate exploitation of this vulnerability other than blocking ICMP traffic destined to the affected device. PLATFORM: Second Generation only Cisco IOS 12.4(24)MDA3,Cisco IOS 12.4(24)MDA3,Cisco

273

T-649: Red Hat Network Satellite Server Request Validation Flaw Permits  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

9: Red Hat Network Satellite Server Request Validation Flaw 9: Red Hat Network Satellite Server Request Validation Flaw Permits Cross-Site Request Forgery Attacks T-649: Red Hat Network Satellite Server Request Validation Flaw Permits Cross-Site Request Forgery Attacks June 17, 2011 - 3:43pm Addthis PROBLEM: A vulnerability was reported in Red Hat Network Satellite Server. A remote user can conduct cross-site request forgery attacks. PLATFORM: Versions 5.4.x ABSTRACT: The Red Hat Network (RHN) Satellite and Spacewalk services do not properly validate user-supplied. A remote user can create specially crafted HTML that, when loaded by a target authenticated user, will take actions on the target site acting as the target user. reference LINKS: SecurityTracker Alert ID: 1025674 RHSA-2011:0879-1 RHN Support CVE-2009-4139 IMPACT ASSESSMENT:

274

V-227: VMware Workstation and Player vmware-mount Command Flaw Lets Local  

NLE Websites -- All DOE Office Websites (Extended Search)

7: VMware Workstation and Player vmware-mount Command Flaw Lets 7: VMware Workstation and Player vmware-mount Command Flaw Lets Local Users Gain Root Privileges V-227: VMware Workstation and Player vmware-mount Command Flaw Lets Local Users Gain Root Privileges August 26, 2013 - 6:00am Addthis PROBLEM: A vulnerability was reported in VMware Workstation and Player on Debian-based systems PLATFORM: VMware Workstation 8.x, 9.x and Player 4.x, 5.x ABSTRACT: VMware Workstation and Player contain a vulnerability in the handling of the vmware-mount command REFERENCE LINKS: Security Tracker Alert ID 1028948 VMware Security Advisory VMSA-2013-0010 CVE-2013-1662 IMPACT ASSESSMENT: Medium DISCUSSION: A local malicious user may exploit this vulnerability to escalate their privileges to root on the host OS. The issue is present when Workstation or

275

V-034: RSA Adaptive Authentication (On-Premise) Input Validation Flaws  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

4: RSA Adaptive Authentication (On-Premise) Input Validation 4: RSA Adaptive Authentication (On-Premise) Input Validation Flaws Permit Cross-Site Scripting Attacks V-034: RSA Adaptive Authentication (On-Premise) Input Validation Flaws Permit Cross-Site Scripting Attacks November 27, 2012 - 2:00am Addthis PROBLEM: RSA Adaptive Authentication (On-Premise) Input Validation Flaws Permit Cross-Site Scripting Attacks PLATFORM: RSA Adaptive Authentication (On-Premise) 6.x ABSTRACT: A vulnerability was reported in RSA Adaptive Authentication (On-Premise). REFERENCE LINKS: SecurityTracker Alert ID: 1027811 SecurityFocus Security Alert RSA Customer Support CVE-2012-4611 IMPACT ASSESSMENT: Medium DISCUSSION: A vulnerability was reported in RSA Adaptive Authentication (On-Premise). A remote user can conduct cross-site scripting attacks. The software does not

276

V-112: Microsoft SharePoint Input Validation Flaws Permit Cross-Site  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

2: Microsoft SharePoint Input Validation Flaws Permit 2: Microsoft SharePoint Input Validation Flaws Permit Cross-Site Scripting and Denial of Service Attacks V-112: Microsoft SharePoint Input Validation Flaws Permit Cross-Site Scripting and Denial of Service Attacks March 15, 2013 - 6:00am Addthis PROBLEM: Several vulnerabilities were reported in Microsoft SharePoint PLATFORM: Microsoft SharePoint 2010 SP1 ABSTRACT: This security update resolves four reported vulnerabilities in Microsoft SharePoint and Microsoft SharePoint Foundation. REFERENCE LINKS: Security Tracker Alert ID 1028278 MS Security Bulletin MS13-024 CVE-2013-0080 CVE-2013-0083 CVE-2013-0084 CVE-2013-0085 IMPACT ASSESSMENT: High DISCUSSION: The security update addresses the vulnerabilities correcting the way that Microsoft SharePoint Server validates URLs and user input.

277

U-106: Citrix XenServer Multiple Flaws in Web Self Service Have Unspecified  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

6: Citrix XenServer Multiple Flaws in Web Self Service Have 6: Citrix XenServer Multiple Flaws in Web Self Service Have Unspecified Impact U-106: Citrix XenServer Multiple Flaws in Web Self Service Have Unspecified Impact February 17, 2012 - 8:30am Addthis PROBLEM: Multiple vulnerabilities were reported in Citrix XenServer Web Self Service. PLATFORM: Version(s): 5.5, 5.6 SP2, 6.0; Web Self Service prior to 1.1.1 ABSTRACT: A number of security vulnerabilities have been identified in the management web interface of Citrix XenServer Web Self Service. reference LINKS: Citrix Support Center SecurityTracker Alert ID:1026695 IMPACT ASSESSMENT: Medium Discussion: Customers who have installed XenServer but have not additionally downloaded and installed the optional Web Self Service component are not affected by these vulnerabilities. These vulnerabilities affect all currently supported

278

U-254: Webmin Flaws Let Remote Authenticated Users Execute Arbitrary Code  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

54: Webmin Flaws Let Remote Authenticated Users Execute 54: Webmin Flaws Let Remote Authenticated Users Execute Arbitrary Code and View Arbitrary Files U-254: Webmin Flaws Let Remote Authenticated Users Execute Arbitrary Code and View Arbitrary Files September 10, 2012 - 6:00am Addthis PROBLEM: Webmin Multiple Input Validation Vulnerabilities PLATFORM: The vulnerabilities are reported in version 1.580. Other versions may also be affected. ABSTRACT: An authenticated attacker may be able to execute arbitrary commands. reference LINKS: Webmin Security Alerts Bugtraq ID: 55446 Secunia Advisory SA50512 SecurityTracker Alert ID: 1027507 US CERT Vulnerability Note VU#788478 CVE-2012-2981 CVE-2012-2982 CVE-2012-2983 IMPACT ASSESSMENT: Medium Discussion: Multiple vulnerabilities have been reported in Webmin, which can be exploited by malicious users to compromise a vulnerable system and by

279

V-229: IBM Lotus iNotes Input Validation Flaws Permit Cross-Site Scripting  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

V-229: IBM Lotus iNotes Input Validation Flaws Permit Cross-Site V-229: IBM Lotus iNotes Input Validation Flaws Permit Cross-Site Scripting Attacks V-229: IBM Lotus iNotes Input Validation Flaws Permit Cross-Site Scripting Attacks August 28, 2013 - 6:00am Addthis PROBLEM: Several vulnerabilities were reported in IBM Lotus iNotes PLATFORM: IBM Lotus iNotes 8.5.x ABSTRACT: IBM Lotus iNotes 8.5.x contains four cross-site scripting vulnerabilities REFERENCE LINKS: Security Tracker Alert ID 1028954 IBM Security Bulletin 1647740 Seclist.org CVE-2013-0590 CVE-2013-0591 CVE-2013-0595 IMPACT ASSESSMENT: Medium DISCUSSION: The software does not properly filter HTML code from user-supplied input before displaying the input. A remote user can cause arbitrary scripting code to be executed by the target user's browser. The code will originate

280

U-193: NetBSD System Call Return Value Validation Flaw Lets Local Users  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

3: NetBSD System Call Return Value Validation Flaw Lets Local 3: NetBSD System Call Return Value Validation Flaw Lets Local Users Gain Elevated Privileges U-193: NetBSD System Call Return Value Validation Flaw Lets Local Users Gain Elevated Privileges June 18, 2012 - 8:00am Addthis PROBLEM: A vulnerability was reported in NetBSD. A local user can obtain elevated privileges on the target system. PLATFORM: Version(s): 4.0.*, 5.0.*, 5.1, 6.0 Beta ABSTRACT: On Intel CPUs, the sysret instruction can be manipulated into returning to specific non-canonical addresses, which may yield a CPU reset. We cannot currently rule out with utter confidence that this vulnerability could not also be used to execute code with kernel privilege instead of crashing the system. reference LINKS: Vendor Advisory Security Tracker ID 1027178 CVE-2012-0217

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


281

T-670: Skype Input Validation Flaw in 'mobile phone' Profile Entry Permits  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

0: Skype Input Validation Flaw in 'mobile phone' Profile Entry 0: Skype Input Validation Flaw in 'mobile phone' Profile Entry Permits Cross-Site Scripting Attacks T-670: Skype Input Validation Flaw in 'mobile phone' Profile Entry Permits Cross-Site Scripting Attacks July 18, 2011 - 7:09am Addthis PROBLEM: A vulnerability was reported in Skype. A remote user can conduct cross-site scripting attacks. PLATFORM: 5.3.0.120 and prior versions ABSTRACT: The software does not properly filter HTML code from user-supplied input in the The "mobile phone" profile entry before displaying the input. reference LINKS: SecurityTracker Alert ID: 1025789 Skype Security Advisory KoreSecure News H Security ID: 1279864 IMPACT ASSESSMENT: High Discussion: Skype suffers from a persistent Cross-Site Scripting vulnerability due to a lack of input validation and output sanitization of the "mobile phone"

282

V-112: Microsoft SharePoint Input Validation Flaws Permit Cross-Site  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

2: Microsoft SharePoint Input Validation Flaws Permit 2: Microsoft SharePoint Input Validation Flaws Permit Cross-Site Scripting and Denial of Service Attacks V-112: Microsoft SharePoint Input Validation Flaws Permit Cross-Site Scripting and Denial of Service Attacks March 15, 2013 - 6:00am Addthis PROBLEM: Several vulnerabilities were reported in Microsoft SharePoint PLATFORM: Microsoft SharePoint 2010 SP1 ABSTRACT: This security update resolves four reported vulnerabilities in Microsoft SharePoint and Microsoft SharePoint Foundation. REFERENCE LINKS: Security Tracker Alert ID 1028278 MS Security Bulletin MS13-024 CVE-2013-0080 CVE-2013-0083 CVE-2013-0084 CVE-2013-0085 IMPACT ASSESSMENT: High DISCUSSION: The security update addresses the vulnerabilities correcting the way that Microsoft SharePoint Server validates URLs and user input.

283

T-574: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

74: Google Chrome Multiple Flaws Let Remote Users Execute 74: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code T-574: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code March 10, 2011 - 3:05pm Addthis PROBLEM: Multiple vulnerabilities were reported in Google Chrome. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can bypass the pop-up blocker. PLATFORM: Google Chrome prior to 10.0.648.127 ABSTRACT: Multiple vulnerabilities have been reported in Google Chrome, where some have an unknown impact while others can be exploited by malicious people bypass certain security restrictions, disclose system information, and compromise a user's system. reference LINKS: Secunia Advisory: SA43683 Google Chrome Support Chrome Stable Release SecurityTracker Alert ID:1025181

284

V-168: Splunk Web Input Validation Flaw Permits Cross-Site Scripting  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

68: Splunk Web Input Validation Flaw Permits Cross-Site 68: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks V-168: Splunk Web Input Validation Flaw Permits Cross-Site Scripting Attacks May 31, 2013 - 6:00am Addthis PROBLEM: A vulnerability was reported in Splunk Web PLATFORM: Version(s) prior to 5.0.3 ABSTRACT: A reflected cross-site scripting vulnerability was identified in Splunk Web REFERENCE LINKS: SecurityTracker Alert ID: 1028605 Splunk Security Advisory SPL-59895 CVE-2012-6447 IMPACT ASSESSMENT: Medium DISCUSSION: The web interface does not properly filter HTML code from user-supplied input before displaying the input. A remote user can create a specially crafted URL that, when loaded by a target user, will cause arbitrary scripting code to be executed by the target user's browser. The code will

285

Flaws Identification Using Eddy Current Differential Transducer and Artificial Neural Networks  

SciTech Connect

In this paper we present a multi-frequency excitation eddy current differential transducer and dynamic neural models which were used to detect and identify artificial flaws in thin conducting plates. Plates are made of Inconel600. EDM notches have relative depth from 10% to 80% and length from 2 mm to 7 mm. All flaws were located on the opposite surface of the examined specimen. Measured signals were used as input for training and verifying dynamic neural networks with a moving window. Wide range of ANN (Artificial Neural Network) structures are examined for different window length and different number of frequency components in excitation signal. Observed trends are presented in this paper.

Chady, T.; Lopato, P. [Szczecin University of Technology. al Piastow 17, 70-310 Szczecin (Poland)

2006-03-06T23:59:59.000Z

286

An Electrical Instrument for Detecting Invisible Flaws in Nonmagnetic Conductors Such as Tungsten  

Science Journals Connector (OSTI)

In this instrument the conductor being inspected is passed axially through a coil forming a part of the tuned circuit of an oscillator. Any flaws in the conductor cause a change in the tuning and thus in the frequency generated which is conveniently observed through heterodyning with a fixed frequency. By using high frequency of the order of 6000 kilocycles the response is limited to flaws near the surface of the conductor. This instrument is used in the factory inspection of tungsten wire particularly for the location of longitudinal cracks and is also effective in the determination of asymmetry of coated wires.

D. W. Dana

1934-01-01T23:59:59.000Z

287

Technical Letter Report Development of Flaw Size Distribution Tables Including Effects of Flaw Depth Sizing Errors for Draft 10CFR 50.61a (Alternate PTS Rule) JCN-N6398, Task 4  

SciTech Connect

This document describes a new method to determine whether the flaws in a particular reactor pressure vessel are consistent with the assumptions regarding the number and sizes of flaws used in the analyses that formed the technical justification basis for the new voluntary alternative Pressurized Thermal Shock (PTS) rule (Draft 10 CFR 50.61a). The new methodology addresses concerns regarding prior methodology because ASME Code Section XI examinations do not detect all fabrication flaws, they have higher detection performance for some flaw types, and there are flaw sizing errors always present (e.g., significant oversizing of small flaws and systematic under sizing of larger flaws). The new methodology allows direct comparison of ASME Code Section XI examination results with values in the PTS draft rule Tables 2 and 3 in order to determine if the number and sizes of flaws detected by an ASME Code Section XI examination are consistent with those assumed in the probabilistic fracture mechanics calculations performed in support of the development of 10 CFR 50.61a.

Simonen, Fredric A.; Gosselin, Stephen R.; Doctor, Steven R.

2013-04-22T23:59:59.000Z

288

U-260: ISC BIND RDATA Processing Flaw Lets Remote Users Deny Service |  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

0: ISC BIND RDATA Processing Flaw Lets Remote Users Deny 0: ISC BIND RDATA Processing Flaw Lets Remote Users Deny Service U-260: ISC BIND RDATA Processing Flaw Lets Remote Users Deny Service September 14, 2012 - 6:00am Addthis PROBLEM: ISC BIND RDATA Processing Flaw Lets Remote Users Deny Service PLATFORM: Version(s): 9.0.x -> 9.6.x, 9.4-ESV->9.4-ESV-R5-P1, 9.6-ESV->9.6-ESV-R7-P2, 9.7.0->9.7.6-P2, 9.8.0->9.8.3-P2, 9.9.0->9.9.1-P2 ABSTRACT: A vulnerability was reported in ISC BIND. reference LINKS: The vendor's advisory SecurityTracker Alert ID: 1027529 Bugtraq ID: 55522 Red Hat Bugzilla - Bug 856754 CVE-2012-4244 IMPACT ASSESSMENT: High Discussion: A remote user can send a query for a record that has RDATA in excess of 65535 bytes to cause named to exit. This can be exploited against recursive servers by causing the server to query for records provided by an

289

T-602: BlackBerry Enterprise Server Input Validation Flaw in BlackBerry Web  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

02: BlackBerry Enterprise Server Input Validation Flaw in 02: BlackBerry Enterprise Server Input Validation Flaw in BlackBerry Web Desktop Manager Permits Cross-Site Scripting Attacks T-602: BlackBerry Enterprise Server Input Validation Flaw in BlackBerry Web Desktop Manager Permits Cross-Site Scripting Attacks April 14, 2011 - 5:07am Addthis PROBLEM: BlackBerry Enterprise Server Input Validation Flaw in BlackBerry Web Desktop Manager Permits Cross-Site Scripting Attacks PLATFORM: BlackBerry Enterprise Server Express versions 5.0.1 and 5.0.2 for Microsoft Exchange, 5.0.2 for IBM Lotus Domino, 5.0.0 through 5.0.3 for Microsoft Exchange and IBM Lotus Domino, and version 5.0.1 for Novell GroupWise. OS Platform(s): Windows (2000), Windows (2003), Windows (2008) ABSTRACT: The BlackBerry Web Desktop Manager not properly filter HTML code from

290

U-073: Bugzilla Flaws Permit Cross-Site Scripting and Cross-Site Request  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

73: Bugzilla Flaws Permit Cross-Site Scripting and Cross-Site 73: Bugzilla Flaws Permit Cross-Site Scripting and Cross-Site Request Forgery Attacks U-073: Bugzilla Flaws Permit Cross-Site Scripting and Cross-Site Request Forgery Attacks January 3, 2012 - 10:30am Addthis PROBLEM: Bugzilla Flaws Permit Cross-Site Scripting and Cross-Site Request Forgery Attacks PLATFORM: Version(s): prior to 3.4.13, 3.6.7, 4.0.3, 4.2rc1 ABSTRACT: Several vulnerabilities were reported in Bugzilla. A remote user can conduct cross-site scripting attacks. reverence LINKS: SecurityTracker Alert ID: 1026480 3.4.12 Security Advisory Bug 697699 Bug 703975 Bug 703983 IMPACT ASSESSMENT: Medium Discussion: Tabular and graphical reports, as well as new charts have a debug mode which displays raw data as plain text. This text is not correctly escaped and a crafted URL could use this vulnerability to inject code leading to

291

T-636: Wireshark Multiple Flaws Let Remote Users Deny Service | Department  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

T-636: Wireshark Multiple Flaws Let Remote Users Deny Service T-636: Wireshark Multiple Flaws Let Remote Users Deny Service T-636: Wireshark Multiple Flaws Let Remote Users Deny Service June 3, 2011 - 3:35pm Addthis PROBLEM: Wireshark Multiple Flaws Let Remote Users Deny Service PLATFORM: Wireshark Version(s): 1.2.0 to 1.2.16, 1.4.0 to 1.4.6 ABSTRACT: Multiple vulnerabilities were reported in Wireshark. A remote user can cause denial of service conditions. reference LINKS: wnpa-sec-2011-07 SecurityTracker Alert ID: 1025597 wnpa-sec-2011-08 IMPACT ASSESSMENT: High Discussion: A remote user can send specially crafted DICOM data, Visual Networks file, compressed capture data, snoop file, or Diameter dictionary file to cause the target service to crash or enter an infinite loop. Versions affected: 1.2.0 to 1.2.16 and 1.4.0 to 1.4.6.

292

T-676: Apple iOS Certificate Chain Validation Flaw Lets Certain Remote  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

76: Apple iOS Certificate Chain Validation Flaw Lets Certain 76: Apple iOS Certificate Chain Validation Flaw Lets Certain Remote Users Access or Modify SSL/TLS Sessions T-676: Apple iOS Certificate Chain Validation Flaw Lets Certain Remote Users Access or Modify SSL/TLS Sessions July 26, 2011 - 1:06am Addthis PROBLEM: A vulnerability was reported in Apple iOS. A remote user with the ability to conduct a man-in-the-middle attack can access or modify SSL/TLS sessions. PLATFORM: iOS 4.2.5 through 4.2.9 for iPhone 4 (CDMA) iOS 3.0 through 4.3.4 for iPhone 3GS and iPhone 4 (GSM) iOS 3.1 through 4.3.4 for iPod touch (3rd generation) and later iOS 3.2 through 4.3.4 for iPad ABSTRACT: Apple iOS Certificate Chain Validation Flaw Lets Certain Remote Users Access or Modify SSL/TLS Sessions. reference LINKS: SecurityTracker Alert ID: 1025837

293

V-164: Apple QuickTime Multiple Flaws Let Remote Users Execute Arbitrary  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

4: Apple QuickTime Multiple Flaws Let Remote Users Execute 4: Apple QuickTime Multiple Flaws Let Remote Users Execute Arbitrary Code V-164: Apple QuickTime Multiple Flaws Let Remote Users Execute Arbitrary Code May 27, 2013 - 12:23am Addthis PROBLEM: Apple QuickTime Multiple Flaws Let Remote Users Execute Arbitrary Code PLATFORM: Apple QuickTime prior to 7.7.4. ABSTRACT: Apple QuickTime Multiple Vulnerabilities REFERENCE LINKS: Apple Article: HT5770 SecurityTracker Alert ID: 1028589 Secunia Advisory SA53520 CVE-2013-0986, CVE-2013-0987, CVE-2013-0988 CVE-2013-0989, CVE-2013-1015, CVE-2013-1016 CVE-2013-1017, CVE-2013-1018, CVE-2013-1019 CVE-2013-1020, CVE-2013-1021, CVE-2013-1022 IMPACT ASSESSMENT: High DISCUSSION: Multiple vulnerabilities have been reported in Apple QuickTime, which can be exploited by malicious people to compromise a user's system.

294

T-676: Apple iOS Certificate Chain Validation Flaw Lets Certain Remote  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

6: Apple iOS Certificate Chain Validation Flaw Lets Certain 6: Apple iOS Certificate Chain Validation Flaw Lets Certain Remote Users Access or Modify SSL/TLS Sessions T-676: Apple iOS Certificate Chain Validation Flaw Lets Certain Remote Users Access or Modify SSL/TLS Sessions July 26, 2011 - 1:06am Addthis PROBLEM: A vulnerability was reported in Apple iOS. A remote user with the ability to conduct a man-in-the-middle attack can access or modify SSL/TLS sessions. PLATFORM: iOS 4.2.5 through 4.2.9 for iPhone 4 (CDMA) iOS 3.0 through 4.3.4 for iPhone 3GS and iPhone 4 (GSM) iOS 3.1 through 4.3.4 for iPod touch (3rd generation) and later iOS 3.2 through 4.3.4 for iPad ABSTRACT: Apple iOS Certificate Chain Validation Flaw Lets Certain Remote Users Access or Modify SSL/TLS Sessions. reference LINKS: SecurityTracker Alert ID: 1025837

295

U-205: RSA Access Manager Session Replay Flaw Lets Remote Users Access the  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

5: RSA Access Manager Session Replay Flaw Lets Remote Users 5: RSA Access Manager Session Replay Flaw Lets Remote Users Access the System U-205: RSA Access Manager Session Replay Flaw Lets Remote Users Access the System July 5, 2012 - 7:02am Addthis PROBLEM: RSA Access Manager Session Replay Flaw Lets Remote Users Access the System PLATFORM: Version(s): Server version 6.0.x, 6.1, 6.1 SP1, 6.1 SP2, 6.1 SP3; all Agent versions ABSTRACT: A vulnerability was reported in RSA Access Manager. A remote user can gain access to the target system. reference LINKS: SecurityFocus ESA-2012-026 SecurityTracker Alert ID: 1027220 CVE-2012-2281 RSA SecurCare Online MPACT ASSESSMENT: Medium Discussion: RSA Access Manager contains a vulnerability that can be potentially exploited by a malicious user to replay the session with compromised session tokens. This is due to improper invalidation of session tokens

296

V-165: Cisco WebEx for iOS Certificate Validation Flaw Lets Remote Users  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

65: Cisco WebEx for iOS Certificate Validation Flaw Lets Remote 65: Cisco WebEx for iOS Certificate Validation Flaw Lets Remote Users Spoof the Server V-165: Cisco WebEx for iOS Certificate Validation Flaw Lets Remote Users Spoof the Server May 28, 2013 - 12:46am Addthis PROBLEM: Cisco WebEx for iOS Certificate Validation Flaw Lets Remote Users Spoof the Server PLATFORM: Cisco WebEx for iOS 4.1, Other versions may also be affected. ABSTRACT: A vulnerability was reported in Cisco WebEx for iOS. REFERENCE LINKS: Cisco SecurityTracker Alert ID: 1028592 Secunia Advisory SA51412 CVE-2012-6399 IMPACT ASSESSMENT: Medium DISCUSSION: A security issue in Cisco WebEx for iOS can be exploited by malicious people to conduct spoofing attacks. The security issue is caused due to the application not properly verifying the server SSL certificate. This can be exploited to e.g. spoof the server

297

U-007: IBM Rational AppScan Import/Load Function Flaws Let Remote Users  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

7: IBM Rational AppScan Import/Load Function Flaws Let Remote 7: IBM Rational AppScan Import/Load Function Flaws Let Remote Users Execute Arbitrary Code U-007: IBM Rational AppScan Import/Load Function Flaws Let Remote Users Execute Arbitrary Code October 10, 2011 - 9:15am Addthis PROBLEM: IBM Rational AppScan Import/Load Function Flaws Let Remote Users Execute Arbitrary Code. PLATFORM: Version(s): 7.8, 7.8.0.1, 7.8.0.2, 7.9, 7.9.0.1, 7.9.0.2, 7.9.0.3, 8.0, 8.0.0.1, 8.0.0.2 ABSTRACT: Two vulnerabilities were reported in IBM Rational AppScan. A remote user can cause arbitrary code to be executed on the target user's system. reference LINKS: IBM Security Advisory Document ID: 1515110 IBM Fix Pack Document ID: 4030774 SecurityTracker Alert ID: 1026154 IMPACT ASSESSMENT: High Discussion: A high risk security vulnerability in the "Import functionality" of IBM

298

Visual Data Analysis for Detecting Flaws and Intruders in Computer Network Systems  

E-Print Network (OSTI)

Visual Data Analysis for Detecting Flaws and Intruders in Computer Network Systems Soon Tee Teoh T the complex behaviors of computer network systems. We describe three log-file analysis applications operation of a large computer network sys- tem, the common practice is to constantly collect system logs

Ma, Kwan-Liu

299

U-205: RSA Access Manager Session Replay Flaw Lets Remote Users Access the  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

205: RSA Access Manager Session Replay Flaw Lets Remote Users 205: RSA Access Manager Session Replay Flaw Lets Remote Users Access the System U-205: RSA Access Manager Session Replay Flaw Lets Remote Users Access the System July 5, 2012 - 7:02am Addthis PROBLEM: RSA Access Manager Session Replay Flaw Lets Remote Users Access the System PLATFORM: Version(s): Server version 6.0.x, 6.1, 6.1 SP1, 6.1 SP2, 6.1 SP3; all Agent versions ABSTRACT: A vulnerability was reported in RSA Access Manager. A remote user can gain access to the target system. reference LINKS: SecurityFocus ESA-2012-026 SecurityTracker Alert ID: 1027220 CVE-2012-2281 RSA SecurCare Online MPACT ASSESSMENT: Medium Discussion: RSA Access Manager contains a vulnerability that can be potentially exploited by a malicious user to replay the session with compromised session tokens. This is due to improper invalidation of session tokens

300

JC3 High Impact Assessment Bulletins | Department of Energy  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

September 9, 2011 September 9, 2011 T-713: Blue Coat Reporter Directory Traversal Flaw Blue Coat Reporter Directory Traversal Flaw Lets Remote Users Gain Full Control. September 7, 2011 T-711: Fraudulent Google Digital Certificates Could Allow Man-in-the-Middle Attacks Fraudulent Google Digital Certificates Could Allow Man-in-the-Middle Attacks. September 6, 2011 T-710: Apache HTTP Server Overlapping Ranges Denial of Service Vulnerability Apache HTTP Server Overlapping Ranges Denial of Service Vulnerability. September 2, 2011 T-709:Mac OS X Keychain Certificate Settings Can Be Bypassed By Remote Users Mac OS X keychain certificate settings can be bypassed by remote users September 1, 2011 T-708:Pidgin Bugs Let Remote Users Deny Service and Potentially Execute Arbitrary Code Pidgin bugs let remote users deny service and potentially execute arbitrary

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


301

Personnel involved in nuclear standards development: 1980 directory  

SciTech Connect

The development of nuclear standards is an active and necessary endeavor that is concerned with the safe, orderly, and economic development of nuclear potential. There are almost 4100 people from the teachnical community who are presently involved either in writing nuclear standards, including codes, or in the management and processing roles necessary for their approval and promulgation. This document identifies the current participation of each individual as member, chairman, cochairman (vice-chairman), or secretary of about 700 standards development committees and groups. The standards committees and groups are identified with the organizations that are responsible for the preparation, review, and maintenance of the standards and that provide support through supervisory committees and headquarters staff. This directory includes four major sections: personnel, employers, committees, and a Key-Word-in-Context (KWIC) Index of committee titles. It can also be used to identify the participation of employers as well as to recognize the contributions of individuals to the often interdisciplinary activity of standards development.

Carr, S.J. (ed.)

1980-03-01T23:59:59.000Z

302

Directory of Service and Product Providers | ENERGY STAR Buildings & Plants  

NLE Websites -- All DOE Office Websites (Extended Search)

Directory of Service and Product Providers Directory of Service and Product Providers Secondary menu About us Press room Contact Us Portfolio Manager Login Facility owners and managers Existing buildings Commercial new construction Industrial energy management Small business Service providers Service and product providers Verify applications for ENERGY STAR certification Design commercial buildings Energy efficiency program administrators Commercial and industrial program sponsors Associations State and local governments Federal agencies Tools and resources Training In This Section Campaigns Commercial building design Communications resources Energy management guidance Financial resources Portfolio Manager Products and purchasing Recognition Research and reports Service and product provider (SPP) resources Success stories

303

Data sources directory for purchasing officials: Energy-efficient and environmentally preferred products  

SciTech Connect

This Directory, produced by the New York State Energy Research and Development Authority, is an introduction to organizations that provide information about energy-efficient and environmentally preferred equipment and products. It is intended to be a reference tool for purchasing officials in the public and private sectors. The New York State Energy Research and Development Authority does not endorse any particular vendor, organization, or technology. This list was prepared to provide information. The companies listed may provide additional products and/or services not mentioned in this directory.

NONE

1995-09-01T23:59:59.000Z

304

Characterization of Service Induced Flaws on the Far Side of Austenitic Welds Using Phased Array Technology  

SciTech Connect

Conventional ultrasonic testing methods continue to exhibit problems for applications involving coarse-grained structures. Pacific Northwest National Laboratory is evaluating the capabilities and limitations of phased array (PA) technology to detect service-type flaws in these coarse-grained materials. The work is being sponsored by the U.S. Nuclear Regulatory Commission, Office of Research. Work to determine detection capabilities through welds with varied grain structures is being explored to provide a better understanding of the acoustic properties of these welded structures. Piping specimens with welds fabricated in vertical and horizontal positions to simulate field conditions have been studied. The insights gained from the austenitic piping will be applied to dissimilar metal weld configurations, corrosion resistant clad piping and cast stainless steels. This paper presents results for using PA ultrasonic technology to determine the effectiveness of detecting and accurately characterizing flaws on the far-side of austenitic piping welds.

Anderson, Michael T.; Cumblidge, Stephen E.

2004-01-01T23:59:59.000Z

305

T-662: ISC BIND Packet Processing Flaw Lets Remote Users Deny Service |  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

2: ISC BIND Packet Processing Flaw Lets Remote Users Deny 2: ISC BIND Packet Processing Flaw Lets Remote Users Deny Service T-662: ISC BIND Packet Processing Flaw Lets Remote Users Deny Service July 6, 2011 - 7:47am Addthis PROBLEM: A vulnerability was reported in ISC BIND. A remote user can cause denial of service conditions. PLATFORM: 9.6.3, 9.6-ESV-R4, 9.6-ESV-R4-P1, 9.6-ESV-R5b1 9.7.0, 9.7.0-P1, 9.7.0-P2, 9.7.1, 9.7.1-P1, 9.7.1-P2, 9.7.2, 9.7.2-P1, 9.7.2-P2, 9.7.2-P3, 9.7.3, 9.7.3-P1, 9.7.3-P2, 9.7.4b1 9.8.0, 9.8.0-P1, 9.8.0-P2, 9.8.0-P3, 9.8.1b1 ABSTRACT: A defect in the affected BIND 9 versions allows an attacker to remotely cause the "named" process to exit using a specially crafted packet. This defect affects both recursive and authoritative servers. The code location of the defect makes it impossible to protect BIND using ACLs configured

306

U-111: IBM AIX ICMP Processing Flaw Lets Remote Users Deny Service |  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

11: IBM AIX ICMP Processing Flaw Lets Remote Users Deny Service 11: IBM AIX ICMP Processing Flaw Lets Remote Users Deny Service U-111: IBM AIX ICMP Processing Flaw Lets Remote Users Deny Service February 27, 2012 - 6:27am Addthis PROBLEM: A vulnerability was reported in IBM AIX. A remote user can cause denial of service conditions. PLATFORM: version(s): 5.3, 6.1, and 7.1 ABSTRACT: A remote user can send a specially crafted ICMP packet to cause the target service to crash. reference LINKS: Vendor Advisory Security Tracker ID 1026742 CVE-2011-1385 IMPACT ASSESSMENT: Medium Discussion: There is an error in the handling of a particular ICMP packet in which a remote user can cause a denial of service. Impact: Denial of service on AIX via network. Solution: The vendor has issued a fix. 5.3.12: APAR IV03369 6.1.5: APAR IV13672 6.1.6: APAR IV13554

307

Evaluation of Manual Ultrasonic Examinations Applied to Detect Flaws in Primary System Dissimilar Metal Welds at North Anna Power Station  

SciTech Connect

During a recent inservice inspection (ISI) of a dissimilar metal weld (DMW) in an inlet (hot leg) steam generator nozzle at North Anna Power Station Unit 1, several axially oriented flaws went undetected by the licensee's manual ultrasonic testing (UT) technique. The flaws were subsequently detected as a result of outside diameter (OD) surface machining in preparation for a full structural weld overlay. The machining operation uncovered the existence of two through-wall flaws, based on the observance of primary water leaking from the DMW. Further ultrasonic tests were then performed, and a total of five axially oriented flaws, classified as primary water stress corrosion cracking (PWSCC), were detected in varied locations around the weld circumference.

Anderson, Michael T.; Diaz, Aaron A.; Doctor, Steven R.

2012-06-01T23:59:59.000Z

308

Estimation of the Residual Magnetic Field Strength Inside a Pipeline after Testing by a Magnetic Flaw Detector  

Science Journals Connector (OSTI)

The residual magnetic field strength inside a pipeline after testing by a magnetic flaw detector ... demagnetizing local joint-pipe sections in carrying out repair-welding works is proposed.

R. V. Zagidulin; V. F. Muzhitskii

2003-07-01T23:59:59.000Z

309

Theoretical estimation of discontinuity flaw of adhesive contacts between multilayer elements of the liquid metal blanket in a fusion reactor  

Science Journals Connector (OSTI)

A technique developed for calculating the discontinuity flaw of an adhesive contact and the adhesion energy for two bodies makes it possible to take into account these effects in designing a multilayer cermet wal...

I. V. Vitkovsky; A. N. Konev; V. S. Shorkin; S. I. Yakushina

2007-06-01T23:59:59.000Z

310

A demonstration of retro-traverse using a semi-autonomous land vehicle  

SciTech Connect

A Jeep Cherokee has been modified by Sandia National Laboratories to allow remote control either by teleoperation or through computer generated commands (autonomy). This vehicle has been used for development of hardware and software and in the demonstration of concepts for computer augmentation of remote controlled vehicles. As part of this activity, a system has been configured which allows an operator to teleoperate the vehicle from one location (home base) to another (destination). At the completion of teleoperation, the operator can instruct the vehicle to return to the starting position. The vehicle then autonomously performs a retro-tranverse, reversing the path by which it reached its destination. During teleoperation, operator commands are given through an operator control interface consisting of a steering wheel, brake and throttle pedals, and a video display. Commands are transmitted to the vehicle and video returned from the vehicle over RF communication links. Periodic way points are automatically recorded for later use by the vehicle system. Navigation during retro-traverse utilizes dead-reckoning inputs from an odometer, compass and steering angle potentiometer. Way points (previously identified during teleoperation of the vehicle) are linked by short, straight line segments. Along each path segment, the control system generates the steering and speed commands necessary to direct the vehicle towards the next way point. Retro-traverse has been demonstrated over open terrain at Sandia National Laboratories. Path following accuracy and final positional control is a function of dead-reckoning system limitations and control system design. These limitations are discussed, and an improved system is proposed. 10 refs., 5 figs.

McGovern, D.E.; Klarer, P.R.; Jones, D.P.

1988-01-01T23:59:59.000Z

311

c 2013 Philbert R. Lin A LAZY DIRECTORY-BASED IMPLEMENTATION OF CONSISTENT  

E-Print Network (OSTI)

Introduction With the rise of big data and cloud computing the amount of information that backend of Science in Electrical and Computer Engineering in the Graduate College of the University of Illinois two directory-based data- stores which make strong application semantics a primary requirement based

Vaidya, Nitin

312

Cache directory lookup reader set encoding for partial cache line speculation support  

DOE Patents (OSTI)

In a multiprocessor system, with conflict checking implemented in a directory lookup of a shared cache memory, a reader set encoding permits dynamic recordation of read accesses. The reader set encoding includes an indication of a portion of a line read, for instance by indicating boundaries of read accesses. Different encodings may apply to different types of speculative execution.

Gara, Alan; Ohmacht, Martin

2014-10-21T23:59:59.000Z

313

The Blue Book, 1933: the Directory and Handbook of the Electrical Engineering and Allied Trades  

Science Journals Connector (OSTI)

... is well known to the electrical engineering and allied trades as an excellent directory and handbook. It has now reached its fifty-first edition, so it started practically at the ... at the same time as the electrical industry. The matter is excellently arranged. All electricians and manufacturers are given individually. The latter are also arranged under the headings of ...

1933-08-12T23:59:59.000Z

314

Directory -Division of Social Sciences June 2013 Dean's Office Jeff Elman (Dean) deansocsci@ucsd.edu x46073  

E-Print Network (OSTI)

June 20131 Directory - Division of Social Sciences ­ June 2013 Dean's Office Jeff Elman (Dean) Todd Williams (SSCF-S Network Manager) dbfink@ucsd.edu t1williams@ucsd.edu X42617 X48231 Development

Tsien, Roger Y.

315

Development of flaw accept/reject criteria for solid propellant rocket grains  

E-Print Network (OSTI)

OF SCIENCE May 1976 Major Subjects Aerospace Engineering DEVELOPMENT OF FLAW ACCEPT/REJECT CRITERIA FOR SOLID PROPELLANT ROCKET GRAINS A Thesis by JAMES JEROME ROTTER Approved as to style and content bys Head o Depar men Mem er Mem er May 1976 4... crack, ) Mathematically, dU & ~dAa dA dA where& U = internal strain energy A = area of one surface of the crack 10 ~ = s pec if ic surface energy density More recent advances in fracture mechanics have resulted from a detailed examination...

Rotter, James Jerome

2012-06-07T23:59:59.000Z

316

Subcellular Spatial Correlation of Particle Traversal and Biological Response in Clinical Ion Beams  

SciTech Connect

Purpose: To report on the spatial correlation of physical track information (fluorescent nuclear track detectors, FNTDs) and cellular DNA damage response by using a novel hybrid detector (Cell-Fit-HD). Methods and Materials: The FNTDs were coated with a monolayer of human non-small cell lung carcinoma (A549) cells and irradiated with carbon ions (270.55 MeV u{sup ?1}, rising flank of the Bragg peak). Phosphorylated histone variant H2AX accumulating at the irradiation-induced double-strand break site was labeled (RIF). The position and direction of ion tracks in the FNTD were registered with the location of the RIF sequence as an ion track surrogate in the cell layer. Results: All RIF sequences could be related to their corresponding ion tracks, with mean deviations of 1.09 ?m and ?1.72 ?m in position and of 2.38° in slope. The mean perpendicular between ion track and RIF sequence was 1.58 ?m. The mean spacing of neighboring RIFs exhibited a regular rather than random spacing. Conclusions: Cell-Fit-HD allows for unambiguous spatial correlation studies of cell damage with respect to the intracellular ion traversal under therapeutic beam conditions.

Niklas, Martin, E-mail: m.niklas@dkfz.de [Division of Medical Physics in Radiation Oncology, German Cancer Research Center, Heidelberg (Germany); German Cancer Consortium, National Center for Radiation Research in Oncology, Heidelberg Institute of Radiation Oncology, Heidelberg (Germany); Abdollahi, Amir [German Cancer Consortium, National Center for Radiation Research in Oncology, Heidelberg Institute of Radiation Oncology, Heidelberg (Germany); Molecular and Translational Radiation Oncology, Heidelberg Ion-Beam Therapy Center, University of Heidelberg Medical School and National Center for Tumor Diseases, German Cancer Research Center, Heidelberg (Germany); Department of Radiation Oncology and Radiation Therapy, University Hospital Heidelberg, Heidelberg (Germany); Heidelberg Ion-Beam Therapy Center, Heidelberg (Germany); Akselrod, Mark S. [Stillwater Crystal Growth Division, Landauer Inc, Stillwater, Oklahoma (United States); Debus, Jürgen [German Cancer Consortium, National Center for Radiation Research in Oncology, Heidelberg Institute of Radiation Oncology, Heidelberg (Germany); Molecular and Translational Radiation Oncology, Heidelberg Ion-Beam Therapy Center, University of Heidelberg Medical School and National Center for Tumor Diseases, German Cancer Research Center, Heidelberg (Germany); Department of Radiation Oncology and Radiation Therapy, University Hospital Heidelberg, Heidelberg (Germany); Heidelberg Ion-Beam Therapy Center, Heidelberg (Germany); Jäkel, Oliver [Division of Medical Physics in Radiation Oncology, German Cancer Research Center, Heidelberg (Germany); German Cancer Consortium, National Center for Radiation Research in Oncology, Heidelberg Institute of Radiation Oncology, Heidelberg (Germany); Department of Radiation Oncology and Radiation Therapy, University Hospital Heidelberg, Heidelberg (Germany); Heidelberg Ion-Beam Therapy Center, Heidelberg (Germany); and others

2013-12-01T23:59:59.000Z

317

Flaw Shape Reconstruction from SH-Wave Array Ultrasonic Data Using Time Domain Linearized Inverse Scattering Method  

SciTech Connect

A linearized inverse scattering method, so called the Kirchhoff inversion, is formulated in time domain for SH-waves measured by a contact ultrasonic transducer and tested using experimental data. The data for reconstruction are experimentally obtained by measuring ultrasonic echoes from artificial flaws in steel plate specimens. For an efficient and accurate data collection, a contact SH-wave linear array transducer is used. The shapes of the artificial flaws are reconstructed by the Kirchhoff inversion and the conventional SAFT (Synthetic Aperture Focusing Technique) using the waves from a single ray path. Comparison of the two methods shows that the Kirchhoff inversion works well for experimental data and outperforms SAFT although only an illuminated portion of the flaw boundaries is reconstructed by either method. In order to gain more information on the flaw boundaries, the Kirchhoff inversion which takes into account multiple ray paths is also tested with the same experimental data. As a result, it is shown that a larger part of the flaw boundaries can be visualized by considering the multiple ray paths.

Kimoto, K.; Hirose, S. [Department of Mechanical and Environmental Informatics, Graduate School of Information Science and Engineering, Tokyo Institute of Technology 2-12-1 O-okayama, Meguro-ku, Tokyo 152-8552 (Japan)

2005-04-09T23:59:59.000Z

318

Reference flaw size for structural and fracture analysis of Types 1 and 2 waste tanks  

SciTech Connect

High Level Waste Engineering (HLWE) is reviewing the Technical Standard requirements for tank level and minimum wall temperature. These requirements are necessary to minimize the probability of brittle fracture of the primary liner due to normal operating and/or seismic loads. The review includes the determination of a reference flaw size, a maximum through-wall crack length, which may reasonably be applied to structural and fracture analysis of the Type I and II waste tank primary liners. This memorandum briefly discusses the mechanism of crack initiation and propagation, the inspections of primary wall cracks, and a statistical analysis of the measured crack lengths. Recommendations on additional analyses which may increase the confidence in the reference flaw size will also be presented. The primary liner for Type I and II waste tanks is fabricated from ASTM A285, Grade B carbon steel (A285). The liner received no heat treatments to relieve residual stresses in the heat affected zones. Five Type I waste tanks and all four Type II waste tanks developed through-wall cracks. Leaks developed in tanks 9, 10,14 and 16 within less than two years. Small surface cracks were also observed on the interior of the tank primary. The cracks were perpendicular to the butt welds and extended through the heat affected zone before stopping shortly after penetrating the base metal. The largest leakage of radioactive waste, approximately 185,000 gallons from the primary into the annulus, occurred from Tank 16, a Type II waste tank. During inspections of this tank over 300 leaks were discovered with the longest observed crack being approximately 6 inches. Due to the large number of observed cracks and the amount of leakage, this wag the only tank that was surveyed for crack lengths. For this analysis, Tank 16 will be considered representative of all Type I and II waste tanks because the materials, construction practices, and tank chemistry represented a worst case.

Wiersma, B.J.; Sindelar, R.L.

1994-01-01T23:59:59.000Z

319

U-067:WebSVN Input Validation Flaw in getLog() Permits Cross-Site Scripting  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

7:WebSVN Input Validation Flaw in getLog() Permits Cross-Site 7:WebSVN Input Validation Flaw in getLog() Permits Cross-Site Scripting Attacks U-067:WebSVN Input Validation Flaw in getLog() Permits Cross-Site Scripting Attacks December 22, 2011 - 8:15am Addthis PROBLEM: WebSVN Input Validation Flaw in getLog() Permits Cross-Site Scripting Attacks PLATFORM: WebSVN 2.3.0 and prior versions ABSTRACT: A remote user can access the target user's cookies (including authentication cookies), if any, associated with the site running the WebSVN software, access data recently submitted by the target user via web form to the site, or take actions on the site acting as the target user. reference LINKS: SecurityTracker Alert ID: 1026438 WebSVN version update WebSVN News IMPACT ASSESSMENT: Medium Discussion: The getLog() function does not properly filter HTML code from user-supplied

320

Joint Estimation of NDE Inspection Capability and Flaw-size Distribution for in-service Aircraft Inspections  

E-Print Network (OSTI)

1 Joint Estimation of NDE Inspection Capability and Flaw- size Distribution for in-service Aircraft, Dayton, OH 45469 Abstract: Nondestructive evaluation (NDE) is widely used in the aerospace industry of unknown existing cracks is more difficult. If NDE signal strength is recorded at all inspections

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


321

The YPA -An Assistant for Classi ed Directory Anne De Roeck 1 , Udo Kruschwitz 1 , Paul Scott 1 , Sam Steel 1 , Ray Turner 1 , and  

E-Print Network (OSTI)

The YPA - An Assistant for Classi#12;ed Directory Enquiries Anne De Roeck 1 , Udo Kruschwitz 1 , Paul Scott 1 , Sam Steel 1 , Ray Turner 1 , and Nick Webb 2 1 Department of Computer Science allows a user to access advertiser information in classi#12;ed directories [1]. It converts semi

Kruschwitz, Udo

322

T-648: Avaya IP Office Manager TFTP Server Lets Remote Users...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

48: Avaya IP Office Manager TFTP Server Lets Remote Users Traverse the Directory T-648: Avaya IP Office Manager TFTP Server Lets Remote Users Traverse the Directory June 16, 2011 -...

323

THE CHOICE OF OPTIMAL STRUCTURE OF ARTIFICIAL NEURAL NETWORK CLASSIFIER INTENDED FOR CLASSIFICATION OF WELDING FLAWS  

SciTech Connect

Nondestructive testing and evaluation are under continuous development. Currently researches are concentrated on three main topics: advancement of existing methods, introduction of novel methods and development of artificial intelligent systems for automatic defect recognition (ADR). Automatic defect classification algorithm comprises of two main tasks: creating a defect database and preparing a defect classifier. Here, the database was built using defect features that describe all geometrical and texture properties of the defect. Almost twenty carefully selected features calculated for flaws extracted from real radiograms were used. The radiograms were obtained from shipbuilding industry and they were verified by qualified operator. Two weld defect's classifiers based on artificial neural networks were proposed and compared. First model consisted of one neural network model, where each output neuron corresponded to different defect group. The second model contained five neural networks. Each neural network had one neuron on output and was responsible for detection of defects from one group. In order to evaluate the effectiveness of the neural networks classifiers, the mean square errors were calculated for test radiograms and compared.

Sikora, R.; Chady, T.; Baniukiewicz, P.; Caryk, M.; Piekarczyk, B. [West Pomeranian University of Technology in Szczecin, Department of Electrical Engineering, 70-313 Szczecin (Poland)

2010-02-22T23:59:59.000Z

324

Non-destructive evaluation means and method of flaw reconstruction utilizing an ultrasonic multi-viewing transducer data acquistion system  

DOE Patents (OSTI)

A multi-viewing ultrasound transducer acquisition system for non-destructive evaluation, flaw detection and flaw reconstruction in materials. A multiple transducer assembly includes a central transducer surrounded by a plurality of perimeter transducers, each perimeter transducer having an axis of transmission which can be angularly oriented with respect to the axis of transmission of the central transducer to intersect the axis of transmission of the central transducer. A control apparatus automatically and remotely positions the transducer assembly with respect to the material by a positioning apparatus and adjusts the pe GRANT REFERENCE This invention was conceived and reduced to practice at least in part under a grant from the Department of Energy under Contract No. W-7407-ENG-82.

Thompson, Donald O. (Ames, IA); Wormley, Samuel J. (Ames, IA)

1989-03-28T23:59:59.000Z

325

Automated Flaw Detection Scheme For Cast Austenitic Stainless Steel Weld Specimens Using Hilbert Huang Transform Of Ultrasonic Phased Array Data  

SciTech Connect

The objective of this work is to develop processing algorithms to detect and localize the flaws using NDE ultrasonic data. Data was collected using cast austenitic stainless steel (CASS) weld specimens on-loan from the U.S. nuclear power industry’s Pressurized Water Reactor Owners Group (PWROG) specimen set. Each specimen consists of a centrifugally cast stainless steel (CCSS) pipe section welded to a statically cast (SCSS) or wrought (WRSS) section. The paper presents a novel automated flaw detection and localization scheme using low frequency ultrasonic phased array inspection signals in the weld and heat affected zone of the base materials. The major steps of the overall scheme are preprocessing and region of interest (ROI) detection followed by the Hilbert Huang transform (HHT) of A-scans in the detected ROIs. HHT offers time-frequency-energy distribution for each ROI. The accumulation of energy in a particular frequency band is used as a classification feature for the particular ROI.

Khan, T.; Majumdar, Shantanu; Udpa, L.; Ramuhalli, Pradeep; Crawford, Susan L.; Diaz, Aaron A.; Anderson, Michael T.

2012-01-01T23:59:59.000Z

326

Appears in Computer Architecture Letters, Volume 12 (2010) SMT-Directory: Efficient Load-Load Ordering for SMT  

E-Print Network (OSTI)

-thread "read" bit to every data cache line. When a load executes, it sets the bit corresponding to its threadAppears in Computer Architecture Letters, Volume 12 (2010) SMT-Directory: Efficient Load-Load, TSO, and PC enforce load-load ordering, requiring that loads from any single thread appear to occur

Roth, Amir

327

Technical basis for flawed cylinder test specification to assure adequate fracture resistance of ISO high strength steel cylinder  

SciTech Connect

High pressure industrial gases (such as oxygen, nitrogen, argon, hydrogen, etc.) are stored and transported in portable cylinders. ISO TC58 SC3 has developed a draft specification 9809 for design and fabrication of high pressure cylinders with maximum tensile strength limitation of 1,100 N/mm{sup 2}. In order to extend the ISO 9809 rules for higher than 1,100 N/mm{sup 2} strength level cylinders, a working group WG14 was formed in 1989 to develop new rules to assure adequate fracture resistance. In 1994, WG14 recommended a simple, but unique flawed cylinder test method for design qualification of the cylinder and acceptance criteria to assure adequate fracture resistance. WG14 also recommended Charpy-V-Notch impact tests to control the required fracture resistance on production cylinders. This paper presents the technical basis that was employed in developing the flawed cylinder test method and acceptance criteria. The specification was developed for seamless steel cylinders having actual strength in the range of 1,100 to 1,400 N/mm{sup 2} and cylindrical section wall thickness in the range of 3mm to 10mm. Flawed cylinder tests were conducted on several hundred cylinders of varying sizes and strength levels. The specification requires to demonstrate LEAK-BEFORE-BREAK performance of the cylinder having flaw length equal to 1.6(O.D. {times} t{sub design}){sup 0.5} at failure pressure = (t{sub design}/t{sub actual}) {times} Design Pressure.

Rana, M.D. [Praxair, Inc., Tonawanda, NY (United States). Process and Systems R and D; Smith, J.H. [National Inst. of Standards and Technology, Gaithersburg, MD (United States). Metallurgy Div.; Tribolet, R.O.

1996-12-01T23:59:59.000Z

328

Technical basis for flawed cylinder test specification to assure adequate fracture resistance of ISO high-strength steel cylinder  

SciTech Connect

High-pressure industrial gases (such as oxygen, nitrogen, argon, hydrogen, etc.) are stored and transported in portable cylinders. ISO TC58 SC3 has developed a draft specification 9809 for design and fabrication of high-pressure cylinders with maximum tensile strength limitation of 1,100 N/mm{sup 2}. In order to extend the ISO 9809 rules for higher than 1,100 N/mm{sup 2} strength level cylinders, a working group WG14 was formed in 1989 to develop new rules to assure adequate fracture resistance. In 1994, WG14 recommended a simple, but unique flawed cylinder test method for design qualification of the cylinder and acceptance criteria to assure adequate fracture resistance. WG14 also recommended Charpy-V-notch impact tests to control the required fracture resistance on production cylinders. This paper presents the technical basis that was employed in developing the flawed cylinder test method and acceptance criteria. The specification was developed for seamless steel cylinders having actual strength in the range of 1,100 to 1,400 N/mm{sup 2} and cylindrical section wall thickness in the range of 3 to 10 mm. Flawed cylinder tests were conducted on several hundred cylinders of varying sizes and strength levels. The specification requires to demonstrate LEAK-BEFORE-BREAK performance of the cylinder having flaw length equal to 1.6 (o.d. {times} t{sub design}){sup 0.5} at failure pressure = (t{sub design}/t{sub actual}) x Design Pressure.

Rana, M.D. [Praxair, Inc., Tonawanda, NY (United States); Smith, J.H. [National Inst. of Standards and Technology, Gaithersburg, MD (United States). Metallurgy Div.; Tribolet, R.O. [Tribolet (R.O.), Van Wert, OH (United States)

1997-11-01T23:59:59.000Z

329

Dilatation-strain analysis of the effects of flaws on the mechanical behavior of a highly filled elastomer  

E-Print Network (OSTI)

DILATATION-STRAIN ANALYSIS OF THE EFFECTS OF FLANS ON THE MECHANICAL BEHAVIOR OF A HIGHLY FILLED ELASTOMER A Thesis By BENJAMIN RAY SMITH Submitted to the Graduate College of the Texas A&M University in partial fulfillment... of the requirements for the degree of MASTER OF SCIENCE August 1966 Major Subject. 'Aerospace Engineering DILATATION-STRAIN ANALYSIS OF THE EFFECTS OF FLAWS ON THE MECHANICAL BEHAVIOR OF A HIGHLY FILLED ELASTOMER A Thesis By BENJAMIN RAY SMITH Approved...

Smith, Benjamin Ray

2012-06-07T23:59:59.000Z

330

JC3 Bulletin Archive | Department of Energy  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

7, 2011 7, 2011 U-006:Cisco Network Admission Control Manager Directory Traversal Flaw Lets Remote Users Obtain Potentially Sensitive Information An unauthenticated attacker could exploit this vulnerability to access sensitive information, including password files and system logs, that could be leveraged to launch subsequent attacks. October 6, 2011 U-005: Apache mod_proxy Pattern Matching Bug Lets Remote Users Access Internal Servers A remote user can access internal servers. October 5, 2011 U-004:Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code A remote user can create HTML that, when loaded by the target user, will execute arbitrary code on the target user's system. October 4, 2011 U-003:RPM Package Manager security update RPM Package Manager Header Validation Flaws Let Remote Users Execute

331

SAFT imaging of flaws in the rail base blade with consideration of multiple reflections of an ultrasonic pulse from the boundaries of a test object  

Science Journals Connector (OSTI)

The possibility of obtaining images of type-69 flaws in blades of the railroad rail base is considered. For this purpose, a modification of the SAFT algorithm is proposed, in which, during...

E. G. Bazulin

2010-02-01T23:59:59.000Z

332

Reconstruction of flaw images by the C-SAFT method from echo signals measured by an antenna array in the triple-scanning mode  

Science Journals Connector (OSTI)

The application of antenna matrices (AMs) for obtaining flaw images during automated nondestructive ultrasonic testing is considered. The conventional technique of using an AM as a phased AM (PAM) has a number...

E. G. Bazulin

2012-01-01T23:59:59.000Z

333

DEVELOPMENT AND APPLICATION OF MATERIALS PROPERTIES FOR FLAW STABILITY ANALYSIS IN EXTREME ENVIRONMENT SERVICE  

SciTech Connect

Discovery of aging phenomena in the materials of a structure may arise after its design and construction that impact its structural integrity. This condition can be addressed through a demonstration of integrity with the material-specific degraded conditions. Two case studies of development of fracture and crack growth property data, and their application in development of in-service inspection programs for nuclear structures in the defense complex are presented. The first case study covers the development of fracture toughness properties in the form of J-R curves for rolled plate Type 304 stainless steel with Type 308 stainless steel filler in the application to demonstrate the integrity of the reactor tanks of the heavy water production reactors at the Savannah River Site. The fracture properties for the base, weld, and heat-affected zone of the weldments irradiated at low temperatures (110-150 C) up to 6.4 dpa{sub NRT} and 275 appm helium were developed. An expert group provided consensus for application of the irradiated properties for material input to acceptance criteria for ultrasonic examination of the reactor tanks. Dr. Spencer H. Bush played a lead advisory role in this work. The second case study covers the development of fracture toughness for A285 carbon steel in high level radioactive waste tanks. The approach in this case study incorporated a statistical experimental design for material testing to address metallurgical factors important to fracture toughness. Tolerance intervals were constructed to identify the lower bound fracture toughness for material input to flaw disposition through acceptance by analysis.

Sindelar, R; Ps Lam, P; Andrew Duncan, A; Bruce Wiersma, B; Karthik Subramanian, K; James Elder, J

2007-04-18T23:59:59.000Z

334

Directory of Points of Contact for the DOE Technical Standard Program  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

2-2002 2-2002 August 2002 Supersedes DOE-TSL-2-98 January 1998 DOE TECHNICAL STANDARDS LIST DIRECTORY OF POINTS OF CONTACT FOR THE DOE TECHNICAL STANDARDS PROGRAM U.S. Department of Energy AREA SDMP Washington, D.C. 20585 DISTRIBUTION STATEMENT A. Approved for public release; distribution is unlimited. This document has been reproduced from the best available copy. Available to DOE and DOE contractors from ES&H Technical Information Services, U.S. Department of Energy, (800) 473-4375, fax: (301) 903-9823. Available to the public from the U.S. Department of Commerce, Technology Administration, National Technical Information Service, Springfield, VA 22161; (703) 605-6000. TS NOT MEASUREMENT SENSITIVE DOE-TSL-2-2002 August 2002 Supersedes DOE-TSL-2-98 January 1998 DOE TECHNICAL STANDARDS LIST

335

Directory of energy data collection forms: Forms in use as of October 1994  

SciTech Connect

This 18th edition directory provides an overview of DOE`s energy information collection programs for decisionmakers in Government and industry; selected public use forms currently used as basic energy information gathering tools by DOE are covered. For each form, an abstract is included that describes the form`s uses, its respondents, and the data collected. Also shown are frequently requested items: energy sources and functions covered by the form, general categories of respondents, collection frequency, public laws and regulations, reporting requirement, name and phone number of the data collection manager, and the publications resulting from the data collection. Indexes, arranged according to energy source/function, publications, respondent categories, former EIA form number designations, and collection authorities, are provided.

Not Available

1994-12-15T23:59:59.000Z

336

DISTRIBUTOR DIRECTORY:  

Science Journals Connector (OSTI)

......GHANA) LTD. P.O. BOXM14 Corner Liberty, AW Derby Avenue Accra, Ghana GREECE...LEBANON Chromatlx Inc. Represented by: PROJECTS SAL P.O. Box 11-5281 Beirut, Lebanon...Applied Research Corp. Represented by: PROJECTS SAL P.O. Box 11-5281 Beirut, Lebanon......

Distributor Directory

1979-02-01T23:59:59.000Z

337

DISTRIBUTOR DIRECTORY:  

Science Journals Connector (OSTI)

......Represented by: MR. R. CUMARASAMY 21-A Liat Towers Orchard Road, Singapore-9 375148 Metrohm...Singapore 21 674977 VARIAN SEA 410 Orchard Towers 400 Orchard Road, Singapore 9 379-239...Ltd. Represented by: PHILIPS IBERICA SAE Martinez Villergas 2 Madrid 27, Spain......

Distributor Directory

1979-02-01T23:59:59.000Z

338

COMPANY DIRECTORY:  

Science Journals Connector (OSTI)

......Baker Chemical Company 222 Red School Lane Phillipsburg...Electronics, Inc. West Woods Rd. Sharon, CT 06069 203...271 Neville Road Forest Gate, London, England Ellison-Dieterich...Scientific Instruments Inc. 9147 Red Branch Road Columbia, MD......

Company Directory

1977-03-01T23:59:59.000Z

339

MU INTERNATIONAL DIRECTORY International Directory  

E-Print Network (OSTI)

of Ag., Food & Natural Resources International Programs http://students.missouri.edu/~asa Association of Malaysian Students http://www.missouri.edu/~ctl2m5/index.html Bangladesh Student Association

Taylor, Jerry

340

JC3 Bulletin Archive | Department of Energy  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

28, 2012 28, 2012 U-246: Tigase XMPP Dialback Protection Bypass Vulnerability A vulnerability has been reported in Tigase, which can be exploited by malicious people to bypass certain security restrictions. August 27, 2012 U-245: Critical Java 0-day flaw exploited Targeted attacks exploiting a zero-day Java vulnerability to deliver the Poison Ivy RAT onto the unsuspecting victims' machines August 27, 2012 U-244: McAfee Email Gateway Lets Remote Users Bypass Authentication and Conduct Cross-Site Scripting and Directory Traversal Attacks Several vulnerabilities were reported in McAfee Email Gateway. August 24, 2012 U-243: libvirt virTypedParameterArrayClear() Memory Access Error Lets Remote Users Deny Service A vulnerability was reported in libvirt. August 23, 2012 U-242: Linux Kernel Netlink SCM_CREDENTIALS Processing Flaw Lets Local

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


341

Created 2/16/2012 SLC; Updated 3/5/2012 slc; Updated 7/1/2014 slf TTU Directory of Consumer Information OFA Internal Reference  

E-Print Network (OSTI)

Created 2/16/2012 SLC; Updated 3/5/2012 slc; Updated 7/1/2014 slf TTU Directory of Consumer Financial Aid #12;Created 2/16/2012 SLC; Updated 3/5/2012 slc; Updated 7/1/2014 slf Disclosure Disclosure

Zhang, Yuanlin

342

Progress in evaluation and improvement in nondestructive examination reliability for inservice inspection of Light Water Reactors (LWRs) and characterize fabrication flaws in reactor pressure vessels  

SciTech Connect

This paper is a review of the work conducted under two programs. One (NDE Reliability Program) is a multi-year program addressing the reliability of nondestructive evaluation (NDE) for the inservice inspection (ISI) of light water reactor components. This program examines the reliability of current NDE, the effectiveness of evolving technologies, and provides assessments and recommendations to ensure that the NDE is applied at the right time, in the right place with sufficient effectiveness that defects of importance to structural integrity will be reliably detected and accurately characterized. The second program (Characterizing Fabrication Flaws in Reactor Pressure Vessels) is assembling a data base to quantify the distribution of fabrication flaws that exist in US nuclear reactor pressure vessels with respect to density, size, type, and location. These programs will be discussed as two separate sections in this report. 4 refs., 7 figs.

Doctor, S.R.; Bowey, R.E.; Good, M.S.; Friley, J.R.; Kurtz, R.J.; Simonen, F.A.; Taylor, T.T.; Heasler, P.G.; Andersen, E.S.; Diaz, A.A.; Greenwood, M.S.; Hockey, R.L.; Schuster, G.J.; Spanner, J.C.; Vo, T.V.

1991-10-01T23:59:59.000Z

343

Final Assessment of Manual Ultrasonic Examinations Applied to Detect Flaws in Primary System Dissimilar Metal Welds at North Anna Power Station  

SciTech Connect

PNNL conducted a technical assessment of the NDE issues and protocols that led to missed detections of several axially oriented flaws in a steam generator primary inlet dissimilar metal weld at North Anna Power Station, Unit 1 (NAPS-1). This particular component design exhibits a significant outside-diameter (OD) taper that is not included as a blind performance demonstration mock-up within the industry’s Performance Demonstration Initiative, administered by EPRI. For this reason, the licensee engaged EPRI to assist in the development of a technical justification to support the basis for a site-specific qualification. The service-induced flaws at NAPS-1 were eventually detected as a result of OD surface machining in preparation for a full structural weld overlay. The machining operation uncovered the existence of two through-wall flaws, based on the observance of primary water leaking from the dissimilar metal weld. A total of five axially oriented flaws were detected in varied locations around the weld circumference. The field volumetric examination that was conducted at NAPS-1 was a non-encoded, real-time manual ultrasonic examination. PNNL conducted both an initial assessment, and subsequently, a more rigorous technical evaluation (reported here), which has identified an array of NDE issues that may have led to the subject missed detections. These evaluations were performed through technical reviews and discussions with NRC staff, EPRI NDE Center personnel, industry and ISI vendor personnel, and ultrasonic transducer manufacturers, and laboratory tests, to better understand the underlying issues at North Anna.

Anderson, Michael T.; Diaz, Aaron A.; Cinson, Anthony D.; Crawford, Susan L.; Prowant, Matthew S.; Doctor, Steven R.

2014-03-24T23:59:59.000Z

344

A FRAMEWORK TO DEVELOP FLAW ACCEPTANCE CRITERIA FOR STRUCTURAL INTEGRITY ASSESSMENT OF MULTIPURPOSE CANISTERS FOR EXTENDED STORAGE OF USED NUCLEAR FUEL  

SciTech Connect

A multipurpose canister (MPC) made of austenitic stainless steel is loaded with used nuclear fuel assemblies and is part of the transfer cask system to move the fuel from the spent fuel pool to prepare for storage, and is part of the storage cask system for on-site dry storage. This weld-sealed canister is also expected to be part of the transportation package following storage. The canister may be subject to service-induced degradation especially if exposed to aggressive environments during possible very long-term storage period if the permanent repository is yet to be identified and readied. Stress corrosion cracking may be initiated on the canister surface in the welds or in the heat affected zone because the construction of MPC does not require heat treatment for stress relief. An acceptance criteria methodology is being developed for flaw disposition should the crack-like defects be detected by periodic Inservice Inspection. The external loading cases include thermal accident scenarios and cask drop conditions with the contribution from the welding residual stresses. The determination of acceptable flaw size is based on the procedure to evaluate flaw stability provided by American Petroleum Institute (API) 579 Fitness-for-Service (Second Edition). The material mechanical and fracture properties for base and weld metals and the stress analysis results are obtained from the open literature such as NUREG-1864. Subcritical crack growth from stress corrosion cracking (SCC), and its impact on inspection intervals and acceptance criteria, is not addressed.

Lam, P.; Sindelar, R.; Duncan, A.; Adams, T.

2014-04-07T23:59:59.000Z

345

Determining the flaw type from images obtained by the C-SAFT method with account for transformations of wave types upon reflections of ultrasonic pulses from the irregular boundaries of a test object  

Science Journals Connector (OSTI)

The application of antenna arrays (AAs) for obtaining flaw images during automated non-destructive testing is considered. The conventional technique of using an AA as a phased AA has a number of drawbacks. An alt...

E. G. Bazulin

2011-01-01T23:59:59.000Z

346

DOE Technical Standards List: Directory of DOE and Contractor Personnel Involved in Non-Government Standards Activities  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

4-99 4-99 May 1999 Superseding DOE-TSL-4-98 May 1998 DOE TECHNICAL STANDARDS LIST DIRECTORY OF DOE AND CONTRACTOR PERSONNEL INVOLVED IN NON- GOVERNMENT STANDARDS ACTIVITIES U.S. Department of Energy AREA SDMP Washington, D.C. 20585 DISTRIBUTION STATEMENT A. Approved for public release; distribution is unlimited. This document has been reproduced from the best available copy. Available to DOE and DOE contractors from ES&H Technical Information Services, U.S. Department of Energy, (800) 473-4375, fax: (301) 903-9823. Available to the public from the U.S. Department of Commerce, Technology Administration, National Technical Information Service, Springfield, VA 22161; (703) 605-6000. DOE-TSL-4-99 iii 1. GENERAL GUIDANCE 1.1 Purpose. Public Law (PL) 104-113 [15 USC 272(b), March 7, 1996], The

347

JC3 High Impact Assessment Bulletins  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

high-impact-assessment-bulletins high-impact-assessment-bulletins Office of the Chief Information Officer 1000 Independence Ave., SW Washington, DC 202-586-0166 en V-215: NetworkMiner Directory Traversal and Insecure Library Loading Vulnerabilities http://energy.gov/cio/articles/v-215-networkminer-directory-traversal-and-insecure-library-loading-vulnerabilities directory-traversal-and-insecure-library-loading-vulnerabilities" class="title-link">V-215: NetworkMiner Directory Traversal and Insecure Library Loading Vulnerabilities

348

Aneuploidy: Cancer's Fatal Flaw?  

E-Print Network (OSTI)

Aneuploidy is a characteristic of cancer, with greater than 90% of all solid tumors in humans carrying an aberrant karyotype. Yet, whether or how this condition contributes to tumorigenesis is not understood. Here we ...

Williams, Bret R.

349

Article DirectoryArticle Directory Free Online Article Directory  

E-Print Network (OSTI)

utilised inside construction practice. Clean Coal Technology AmericasPower.org Advancing coal methods

350

JC3 Medium Impact Assessment Bulletins | Department of Energy  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

June 17, 2011 June 17, 2011 T-649: Red Hat Network Satellite Server Request Validation Flaw Permits Cross-Site Request Forgery Attacks The Red Hat Network (RHN) Satellite and Spacewalk services do not properly validate user-supplied. A remote user can create specially crafted HTML that, when loaded by a target authenticated user, will take actions on the target site acting as the target user. June 16, 2011 T-648: Avaya IP Office Manager TFTP Server Lets Remote Users Traverse the Directory The software does not properly validate user-supplied input. A remote user can supply a specially crafted request to view files on target system running the IP Office Manager software. June 1, 2011 T-634: Apple Mac OS X MacDefender Fake Antivirus Malicious Software Apple Mac OS X users could infect their systems after visiting a malicious

351

JC3 High Impact Assessment Bulletins | Department of Energy  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

April 26, 2011 April 26, 2011 T-610: Red Hat kdenetwork security update A directory traversal flaw was found in the way KGet, a download manager, handled the "file" element in Metalink files. April 25, 2011 T-609: Adobe Acrobat/Reader Memory Corruption Error in CoolType Library Lets Remote Users Execute Arbitrary Code A remote user can create a specially crafted PDF file that, when loaded by the target user, will trigger a memory corruption error in the CoolType library and execute arbitrary code on the target system. The code will run with the privileges of the target user. April 22, 2011 T-608: HP Virtual Server Environment Lets Remote Authenticated Users Gain Elevated Privileges A potential security vulnerability has been identified in HP Virtual Server Environment for Windows. The vulnerability could be exploited remotely to

352

Faculty & Staff Telephone Directory  

E-Print Network (OSTI)

....................................................................2 Research & Graduate Services..........................................3 Biomedical Engineering...................................1 External Services ...............................................................1 Finance .....................................................3 Undergraduate Services ....................................................4 University Machine

Sinnamon, Gordon J.

353

Directory | The Ames Laboratory  

NLE Websites -- All DOE Office Websites (Extended Search)

294-4360 Director's Office 311 TASF 294-2770 Documents and Records 151 TASF 294-9972 Engineering Services 158 Metals Development 294-3757 Environment, Safety, Health &...

354

Chernobyl: errors and design flaws  

Science Journals Connector (OSTI)

...own mechanical inertia. This residual energy may be required to run...ofthese broke out on the roofof a turbine room next to the unit III reactor...products were carried aloft in the gases produced by the burning graphite...cesium, which has a half-life of 30 years. On the basis of...

C Norman

1986-09-05T23:59:59.000Z

355

Chernobyl: errors and design flaws  

Science Journals Connector (OSTI)

...ofthese broke out on the roofof a turbine room next to the unit III reactor...sharply as decay heat in the remaining fuel drove up the temperature...products were carried aloft in the gases produced by the burning graphite...cesium, which has a half-life of 30 years. On the basis...

C Norman

1986-09-05T23:59:59.000Z

356

Flawed drawings caused spacecraft crash  

Science Journals Connector (OSTI)

... finish its work, and may yet find other problems with Genesis. A battery that overheated during the early days of the mission, and was an early suspect for the ... attention," says Ryschkewitsch. The Genesis mission was designed to provide clues about how the Solar System formed by capturing a few grains of material from the ...

Nicola Jones

2004-10-18T23:59:59.000Z

357

In-service Inspection Ultrasonic Testing of Reactor Pressure Vessel Welds for Assessing Flaw Density and Size Distribution per 10 CFR 50.61a, Alternate Fracture Toughness Requirements  

SciTech Connect

Pressurized thermal shock (PTS) events are system transients in a pressurized water reactor (PWR) in which there is a rapid operating temperature cool-down that results in cold vessel temperatures with or without repressurization of the vessel. The rapid cooling of the inside surface of the reactor pressure vessel (RPV) causes thermal stresses that can combine with stresses caused by high pressure. The aggregate effect of these stresses is an increase in the potential for fracture if a pre-existing flaw is present in a material susceptible to brittle failure. The ferritic, low alloy steel of the reactor vessel beltline adjacent to the core, where neutron radiation gradually embrittles the material over the lifetime of the plant, can be susceptible to brittle fracture. The PTS rule, described in the Code of Federal Regulations, Title 10, Section 50.61 (§50.61), “Fracture Toughness Requirements for Protection against Pressurized Thermal Shock Events,” adopted on July 23, 1985, establishes screening criteria to ensure that the potential for a reactor vessel to fail due to a PTS event is deemed to be acceptably low. The U.S. Nuclear Regulatory Commission (NRC) completed a research program that concluded that the risk of through-wall cracking due to a PTS event is much lower than previously estimated. The NRC subsequently developed a rule, §50.61a, published on January 4, 2010, entitled “Alternate Fracture Toughness Requirements for Protection Against Pressurized Thermal Shock Events” (75 FR 13). Use of the new rule by licensees is optional. The §50.61a rule differs from §50.61 in that it requires licensees who choose to follow this alternate method to analyze the results from periodic volumetric examinations required by the ASME Code, Section XI, Rules for Inservice Inspection (ISI) of Nuclear Power Plants. These analyses are intended to determine if the actual flaw density and size distribution in the licensee’s reactor vessel beltline welds are bounded by the flaw density and size distribution values used in the PTS technical basis. Under a contract with the NRC, Pacific Northwest National Laboratory (PNNL) has been working on a program to assess the ability of current inservice inspection (ISI)-ultrasonic testing (UT) techniques, as qualified through ASME Code, Appendix VIII, Supplements 4 and 6, to detect small fabrication or inservice-induced flaws located in RPV welds and adjacent base materials. As part of this effort, the investigators have pursued an evaluation, based on the available information, of the capability of UT to provide flaw density/distribution inputs for making RPV weld assessments in accordance with §50.61a. This paper presents the results of an evaluation of data from the 1993 Browns Ferry Nuclear Plant, Unit 3, Spirit of Appendix VIII reactor vessel examination, a comparison of the flaw density/distribution from this data with the distribution in §50.61a, possible reasons for differences, and plans and recommendations for further work in this area.

Sullivan, Edmund J.; Anderson, Michael T.; Norris, Wallace

2012-09-17T23:59:59.000Z

358

JC3 Bulletin Archive | Department of Energy  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

TCPIP MS11-083 - Critical Windows TCPIP stack keeps track of UDP packets within memory. November 9, 2011 U-031: Microsoft Active Directory CRL Validation Flaw Lets Remote...

359

JC3 Bulletin Archive | Department of Energy  

Office of Energy Efficiency and Renewable Energy (EERE) Indexed Site

insertion attacks August 9, 2013 V-215: NetworkMiner Directory Traversal and Insecure Library Loading Vulnerabilities The vulnerabilities are reported in versions 1.4.1 and prior...

360

U-129: RSA enVision Bugs Permit Cross-Site Scripting, SQL Injection...  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

Scripting, SQL Injection, and Directory Traversal Attacks PLATFORM: 4.x, prior to 4.1 Patch 4 ABSTRACT: Several vulnerabilities were reported in RSA enVision. A remote user can...

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


361

Traverse Electric Coop, Inc | Open Energy Information  

Open Energy Info (EERE)

Minnesota Minnesota Utility Id 19060 Utility Location Yes Ownership C NERC Location MRO NERC MRO Yes Activity Distribution Yes References EIA Form EIA-861 Final Data File for 2010 - File1_a[1] LinkedIn Connections CrunchBase Profile No CrunchBase profile. Create one now! This article is a stub. You can help OpenEI by expanding it. Utility Rate Schedules Grid-background.png 5/7 Interruptible Service Industrial General Service - Single Phase Commercial Heat Storage - Single Phase Commercial Interruptible Heating Service Commercial Irrigation Industrial Large Power Industrial Multi-Phase and Large Single Phase Industrial Residential Controlled Demand Residential Seasonal Service - Single Phase Commercial Seasonal Service - Town Halls Commercial Special Electric Heat Residential

362

DAYLIGHTING DIRECTORY 1/1980  

E-Print Network (OSTI)

of computerized energy trade off studies of AVAILABILITYDES IG:-1 ~1ETHODS 2. Energy trade off analysis of north

,

2012-01-01T23:59:59.000Z

363

Annual Report 2008 Directory2008  

E-Print Network (OSTI)

FlnstD Pro-Chancellor Rex Williams, BE(Hons) Vice-Chancellor (until June) Roy Sharp, MA, DPhil(Oxf.), Dist(Syr.), PhD, CPA, CA Director of Human Resources Paul O'Flaherty, MBA(Otago) Registrar Jeff Field, JP, MA

Hickman, Mark

364

New Hampshire Directory of Sawmills  

E-Print Network (OSTI)

. Soon after, New Hampshire's patriots joined in the American Revolution, not for tea but to protect Green Lumber, Cants/Timbers, Pallets/Crates, Sawdust Barton Lumber Co., Inc. (Sawmill Not Presently, Retail, Custom Sawing, Custom Planing Species: White Pine, Hemlock, Red Pine Products: Rough Green Lumber

New Hampshire, University of

365

Small Business Program Manager Directory  

Energy.gov (U.S. Department of Energy (DOE))

These Department of Energy Program Elements and offices, primarily located at DOE headquarters (Washington, DC and Germantown, Maryland), have small business points of contact referred to as Small Business Program Managers (SBPMs). SBPMs assist small businesses in marketing to their office/facility.

366

Communications Console: A Fanzine Directory  

E-Print Network (OSTI)

on New Paris... McCoy's list... an Alexander vignette... and more. Beautiful frontispiece by Caren Parnes. K/S AGE STATEMENT PLEASE. USA air $19.50 Canada ?.7.50 Pacific Air ?8.00 U.K. 15.50 Europe ?6.50 Order from: Village Press, c/o Mrs. Rosemary..., Vincent, Hood, Surah, Marek, Pierce, Roderick, Arat, A.F. Black, Resch, Starr, Solten, Burns, Cole, Decker, Feyrer and others. $17.00 K/S AS I DO THEE #3: Cover by Caren Parnes. Includes In Paradise by Vivian Gates plus work by Pierce, Cole, Blacque...

1987-01-01T23:59:59.000Z

367

Directory of Organizations October 2009  

E-Print Network (OSTI)

...................................................................................9 FISH AND WILDLIFE AGENCIES..............................................................................................................................11 COLUMBIA BASIN FISH AND WILDLIFE AUTHORITY.......................................................................................................11 FISH PASSAGE CENTER

368

Resource Directory | Department of Energy  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

in K-12 Schools Energy Efficiency in Affordable Housing Tools and Calculators For Homes Air Seal and Insulate with ENERGY STAR Information, tools, and resource to help consumers...

369

NYSAES DIRECTORY October 1, 2012  

E-Print Network (OSTI)

Entomology ENT 2350 Env. Health & Safety EH&S 2343 Fail, Jozsef (jf458) ENT 2304 Fairbrother, Alan R (arf2) B

Keinan, Alon

370

Beamlines Directory | Advanced Photon Source  

NLE Websites -- All DOE Office Websites (Extended Search)

Science Physics Polymer Science Technique: All Anomalous and resonant scattering (hard x-ray) Anomalous and resonant scattering (soft x-ray) Biohazards at the BSL23 level...

371

Evaluation on the Feasibility of Using Ultrasonic Testing of Reactor Pressure Vessel Welds for Assessing Flaw Density/Distribution per 10 CFR 50.61a, Alternate Fracture Toughness Requirements for Protection Against Pressurized Thermal Shock  

SciTech Connect

This technical letter report provides the status of an assessment undertaken by PNNL at the request of the NRC to verify the capability of periodic ASME-required volumetric examinations of reactor vessels to characterize the density and distribution of flaws of interest for applying §50.61a on a plant-by-plant basis. The PTS rule, described in the Code of Federal Regulations, Title 10, Section 50.61 (§50.61), "Fracture Toughness Requirements for Protection against Pressurized Thermal Shock Events," establishes screening criteria to ensure that the potential for a reactor vessel to fail due to a PTS event is deemed to be acceptably low. Recently, the NRC completed a research program that concluded that the risk of through-wall cracking due to a PTS event is much lower than previously estimated. The NRC subsequently developed and promulgated an alternate PTS rule, §50.61a, that can be implemented by PWR licensees. The §50.61a rule differs from §50.61 in that it requires licensees who choose to follow this alternate method to analyze the results from periodic volumetric examinations required by the ASME Code, Section XI, Rules for Inservice Inspection (ISI) of Nuclear Power Plants.

Sullivan, Edmund J.; Anderson, Michael T.

2014-06-10T23:59:59.000Z

372

Error of law and flawed administrative acts  

E-Print Network (OSTI)

, if so, what form that intervention should take”.49 This applies to claimants seeking a declaration of incompatibility under section 4 of the Human Rights Act 1998 as it does to those seeking other remedies.50 It relates back to our first principle... ), [2008] 2 C.M.L.R. 57, Admin. Ct., and [2008] EWHC 1409 (Admin), [2008] A.C.D. 70, DC. 48 R. v Inland Revenue Commissioners, ex parte National Federation of Self-Employed and Small Businesses Ltd [1982] A.C. 617, HL. 49 R. v Panel on Take...

Feldman, David

2014-07-17T23:59:59.000Z

373

Experimental design flaws still unaccounted for  

Science Journals Connector (OSTI)

... powerful techniques of molecular genetics and immunology, is more troublesome than the tempest in a teapot concerning the minutiae of test precision. With decent experimental design, the trivial questions would ...

LEON T. ROSENBERG

1988-08-25T23:59:59.000Z

374

Did design flaws doom the LHC?  

Science Journals Connector (OSTI)

... some soul-searching. One senior scientist who helped to build the Large Hadron Collider (LHC) at CERN, Europe's particle-physics laboratory near Geneva, Switzerland, is claiming that ... 2008 — could have been avoided. On 19 September 2008, just weeks before the LHC was first scheduled to start colliding protons, an electrical short caused massive damage. A ...

Geoff Brumfiel

2010-02-23T23:59:59.000Z

375

U-129: RSA enVision Bugs Permit Cross-Site Scripting, SQL Injection, and  

Energy.gov (U.S. Department of Energy (DOE)) Indexed Site

9: RSA enVision Bugs Permit Cross-Site Scripting, SQL 9: RSA enVision Bugs Permit Cross-Site Scripting, SQL Injection, and Directory Traversal Attacks U-129: RSA enVision Bugs Permit Cross-Site Scripting, SQL Injection, and Directory Traversal Attacks March 20, 2012 - 7:00am Addthis PROBLEM: RSA enVision Bugs Permit Cross-Site Scripting, SQL Injection, and Directory Traversal Attacks PLATFORM: 4.x, prior to 4.1 Patch 4 ABSTRACT: Several vulnerabilities were reported in RSA enVision. A remote user can access the system. A remote authenticated user can conduct cross-site scripting attacks. A remote authenticated user can inject SQL commands. A remote authenticated user can view files on the target system. Reference LINKS: SecurityTracker Alert ID: 1026819 CVE-2012-0403 IMPACT ASSESSMENT: High Discussion: The system does not properly filter HTML code from user-supplied input

376

Building Energy Software Tools Directory: Louver Shading  

NLE Websites -- All DOE Office Websites (Extended Search)

Louver Shading Louver Shading Louver Shading lets you visualize the annual shading performance of a louver shading system, such as slatted window blinds or a trellis. The tool accepts a location and the dimensions of the louver system as inputs, and produces a chart depicting the amount of shade it produces for each hour of the day, for each month of the year. Screen Shots Keywords window, overhang, blinds, louvers, louvres, trellis, shading, solar Validation/Testing Outputs verified by the author via several 3D louver system models. Expertise Required None. Users International; number not known since tool was just released. Audience Architects, landscape architects, builders, homeowners, passive solar designers, energy analysts. Input Location, louver system design, and dimensions.

377

Building Energy Software Tools Directory: IDEAL  

NLE Websites -- All DOE Office Websites (Extended Search)

IDEAL IDEAL Designed to read electronic data records of facility electrical energy use--data recorded by electric utility companies, and normally used internally only for billing purposes. Upon request, the utility will release this data to the customer for analysis purposes. The format of these data record formats number over 25 distinct file types identified thus far. IDEAL (Interval Data Evaluation and Analysis of Load) translates all these formats into a common database and produces informative graphs and reports to assist the user and his energy management team or consultants to quickly identifying periods of serious power mismanagement. Extensions to the basic program will perform power bill calculations, time-of-use analysis, temperature and humidity plots, and optimum standby

378

Building Energy Software Tools Directory: ECOTECT  

NLE Websites -- All DOE Office Websites (Extended Search)

ECOTECT ECOTECT ECOTECT logo. Complete environmental design tool which couples an intuitive 3D modelling interface with extensive solar, thermal, lighting, acoustic and cost analysis functions. ECOTECT is one of the few tools in which performance analysis is simple, accurate and most importantly, visually responsive. ECOTECT is driven by the concept that environmental design principles are most effectively addressed during the conceptual stages of design. The software responds to this by providing essential visual and analytical feedback from even the simplest sketch model, progressively guiding the design process as more detailed information becomes available. The model is completely scalable, handling simple shading models to full-scale cityscapes. Its extensive export facilities also make final design

379

Building Energy Software Tools Directory: Design Advisor  

NLE Websites -- All DOE Office Websites (Extended Search)

Design Advisor Design Advisor Web suite of building energy simulators that model energy, comfort, and daylighting performance, and give estimates of the long-term cost of utilities. The simulations restrict flexibility in order to offer users greater ease-of-use and speed. The tool can be quickly mastered by non-technical designers, and runs fast enough to allow them the scope to experiment with many different versions of a design during a single sitting. The immediate feedback that the site provides makes it useful in the conceptual phase of design, when architects cannot afford to invest large amounts of time to rule out any particular idea. The emphasis of the energy model is on the envelope system of the building, and includes simulations of high-technology windows such as double-skin facades.

380

Building Energy Software Tools Directory: ENERPASS  

NLE Websites -- All DOE Office Websites (Extended Search)

ENERPASS ENERPASS Detailed building energy simulation program for residential and smaller commercial buildings. ENERPASS calculates the annual energy use for space heating, cooling, lighting, water heating and fan energy. The calculations are performed on an hourly basis using hourly measured weather data. ENERPASS can model up to seven building zones and provides hourly temperature and humidity predictions for each zone. A wide range of HVAC systems can be modelled including make-up air units, heat recovery ventilators, rooftop units, VAV, four-pipe fan coil, and dual duct. The program uses full screen data entry in an easy-to-use format. A typical building model can be generated in one to two hours. In IEA validation studies ENERPASS results compare favorably with other hourly based computer

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


381

Building Energy Software Tools Directory: Sol Path  

NLE Websites -- All DOE Office Websites (Extended Search)

Sol Path Sol Path Sol Path logo. Graphically displays path of sun in the sky for any date and location. Good for quickly obtaining rough sun angle data, or understanding the general nature of the sun's motion. Screen Shots Keywords solar, sun, sun path Validation/Testing N/A Expertise Required None required. Users Several hundred regular users, split approximately evenly between U.S. and other countries. Audience Architects, energy analysts, home owners, educators. Input Location, date. Output Graphical display of sun path in the sky. Computer Platform Web Programming Language Macromedia Director / Shockwave Strengths Easy to use, instantaneous graphical output. Weaknesses Sometimes displays incomplete results for equatorial regions (latitude < 23 degrees). Contact Company: Sustainable By Design

382

Building Energy Software Tools Directory: EZ Sim  

NLE Websites -- All DOE Office Websites (Extended Search)

EZ Sim EZ Sim Quick spreadsheet tool equivalent to sophisticated engineering analysis. EZ Sim lets you use utility bills to calibrate a simulation of a commercial facility in an interactive graphic window. Once it matches your bills, the simulation model can provide reliable estimates of potential conservation savings. The calibration process reveals how energy is used within the facility, helping diagnose why there is excessive consumption or poorly functioning building components. Potential users can review case study examples on the web site. Model also provides precision and confidence limits of savings estimates consistent with IPMVP performance verification protocol. Use utility bills to reveal the patterns of use in your facility: Diagnose energy patterns and consumption.

383

Building Energy Software Tools Directory: AUDIT  

NLE Websites -- All DOE Office Websites (Extended Search)

AUDIT AUDIT AUDIT logo. Calculates monthly and annual heating and cooling costs for residential and light commercial buildings. Virtually any type of cooling and heating system can be simulated by AUDIT including standard DX, evaporative, air source heat pumps, water source heat pumps, and all types of fossil fueled furnaces and boilers (both modulating and on/off controlled). An optional version of AUDIT with appliance capabilities can calculate appliance and hot water energy use as well. AUDIT uses monthly bin weather data and full load cooling hours in its calculations. Weather data for hundreds of cities throughout the world are built-in to AUDIT and additional weather data can be easily added. Along with calculating energy costs, AUDIT also performs an economic analysis that allows you to compare system types and costs over

384

Building Energy Software Tools Directory: PASSPORT  

NLE Websites -- All DOE Office Websites (Extended Search)

PASSPORT PASSPORT PASSPORT logo. Correlation-based evaluation tool that enables heating needs in residential buildings to be assessed. It has been developed in the framework of the PASSYS project of the European Commission DG XII. The PASSPORT tool has close links to a preliminary European Standard for calculating energy requirements for heating in residential buildings, because the PASSYS project and a working group of the European Standardisation Committee (CEN TC 89 WG4), having similar concerns, have worked in close collaboration. A choice is offered to the user of PASSPORT: either to follow strictly the CEN Standard or to call upon some features, intended to improve the accuracy of the results (especially in the case of passive solar buildings), but not retained by CEN for implification reasons.

385

Building Energy Software Tools Directory: COMSOL  

NLE Websites -- All DOE Office Websites (Extended Search)

COMSOL COMSOL COMSOL Logo COMSOL Multiphysics slashes the metric of greatest value to computational scientists - time to solution. It is based on partial differential equations (PDEs) - the fundamental equations that describe the laws of physics. Through multiphysics and mathematical modeling, we transform any coupled PDEs into a form suitable for numerical analysis and solve it using the finite element method with high-performance solvers. Screen Shots Keywords Multiphysics, simulations, modeling, heat transfer, finite element Validation/Testing The software is validated to conform to all four cases of ISO 10211:2007, Annex A, for 3-D calculation programs. The test cases are available on www.comsol.com/papers/5865/ Expertise Required For scientists and engineers. Free, hands-on workshops

386

Building Energy Software Tools Directory: PVSYST  

NLE Websites -- All DOE Office Websites (Extended Search)

PVSYST PVSYST PVSYST logo. Software for the study, sizing, simulation and data analysis of complete PV systems. It is suitable for grid-connected, stand-alone and DC-grid (public transport) systems, and offers an extensive meteorological and PV-components database. It includes a CAO tool for detailed shading analysis. PVSYST offers an ergonomic approach, with greenline guide, and several project levels. Screen Shots Keywords PV system sizing, PV system simulation, grid-connected PV systems, stand-alone PV systems, shading, solar tools Validation/Testing Performed for 7 installations in Switzerland. Detailed results are in the Help. Expertise Required Basic knowledge about solar energy and photovoltaics. Some basic concepts are developed in the contextual help system.

387

Building Energy Software Tools Directory: IWEC  

NLE Websites -- All DOE Office Websites (Extended Search)

IWEC IWEC IWEC logo. Contains "typical" weather data in ASCII format files, suitable for use with building energy simulation programs, for 227 locations outside the USA and Canada. The International Weather for Energy Calculation (IWEC) files are derived from up to 18 years of DATSAV3 hourly weather data originally archived at the National Climatic Data Center. The weather data is supplemented by solar radiations estimated on an hourly basis from earth-sun geometry and hourly weather elements, particularly cloud amount information. The IWEC files contain hourly weather observations such as dry bulb temperature, dew point temperature, wind speed, and wind direction, which are derived from the DATSAV3 database of surface observations developed by the National Climatic Data Center, Asheville, NC; and hourly solar

388

Building Energy Software Tools Directory: UMIDUS  

NLE Websites -- All DOE Office Websites (Extended Search)

UMIDUS UMIDUS UMIDUS logo. Models coupled heat and moisture transfer within porous media, in order to analyze hygrothemal performance of building elements when subjected to any kind of climate conditions. Both diffusion and capillary regimes are taken into account that is the transfer of water in the vapor and liquid phases through the material can be analyzed. The model predicts moisture and temperature profiles within multi-layer walls and low-slope roofs for any time step and calculates heat and mass transfer. Umidus has been built in an OOP language to be fast and precise easy-to-use software. � Umidus is especially useful for studies of hygrothermal behaviours of building envelope and roofs. Users can quickly build different construction elements and compare them in terms of heat flux, mass flow and moisture

389

Building Energy Software Tools Directory: FENSTRUCT  

NLE Websites -- All DOE Office Websites (Extended Search)

FENSTRUCT FENSTRUCT FENSTRUCT images Analyzes structural performance of fenestration products. The calculations are done using industry standard procedures in AAMA 103. FENSTRUCT is a database driven library of cross sections and dies. FENSTRUCT's main screen includes list of all standard cases specified in AAMA 103 standard document, as well as some common special cases. Additional special cases can be added per manufacturer's request. FENSTRUCT works and outputs in both sets of units, IP and SI. FENSTRUCT calculates load distributions, deflections and stresses of frame members and for each member pass/fail criteria are displayed. Results also include calculation of maximum bending moment. Calculations are done for design and structural pressure. Standard product and cross-section reports

390

Building Energy Software Tools Directory: PYTHON  

NLE Websites -- All DOE Office Websites (Extended Search)

PYTHON PYTHON PYTHON logo. WINDOWS-based program that analyses water piping systems for air conditioning applications. PYTHON � Air Conditioning Heating and Cooling Piping Systems Design provides for the analysis of hot and chilled water closed loop systems and also open loop systems such as condenser water piping systems. PYTHON can however also handle any other fluid by entry of the fluid density, viscosity and specific heat. The program handles systems with primary and secondary circuits and is based on the methods and data in the AIRAH/IHRACE Application Manual Air Conditioning Water Piping (DA16). PYTHON includes all the fittings and associated pressure loss data in this manual readily accessible through drop down lists. Calculations are carried out in a series of spreadsheets. In the first of

391

Building Energy Software Tools Directory: CPF Tools  

NLE Websites -- All DOE Office Websites (Extended Search)

CPF Tools CPF Tools CPF Tools logo CPF Tools is the market-leading software for solar installers connecting sales, system design and financing. Screen Shots Keywords Solar Sales, Quoting Tool, Proposal Tool, Solar Financing, Leads, Auto-Populate, Rebate Form, CRM software, Customer and Financing Dashboard Validation/Testing None Expertise Required Basic understanding of PV. Training is provided through our help site, which features training videos, a user community through Get Satisfaction, and user guides. We also offer live phone support and regular training webinars. Users More than 2,000 Audience Solar professionals, including installers, sales representatives, operations and system design specialists. We also offer a "Channel Manager" version of CPF Tools for manufacturers and distributors.

392

Building Energy Software Tools Directory: EXTREMES  

NLE Websites -- All DOE Office Websites (Extended Search)

EXTREMES EXTREMES EXTREMES logo. Synthesizes extreme, but statistically possible, hot, cold or average sequences of hourly weather data for periods of up to one week for a specified month and for 329 locations in North America, with the capability of modifying or expanding the data for greater flexibility. Such data are needed in the design of building heating and cooling systems, particularly systems which utilize some form of energy storage. Screen Shots Keywords extreme weather, weather sequences, simulation, energy calculation Validation/Testing N/A Expertise Required Student or engineer of HVAC system design. Low level of computer literacy required. Users Worldwide distribution. Useful for U.S. and Canada locations Audience Researchers, Students, Engineers and Architects

393

Building Energy Software Tools Directory: Visual  

NLE Websites -- All DOE Office Websites (Extended Search)

Visual Visual Visual logo. Comprehensive lighting analysis software engineered for demanding interior and exterior applications. Visual lighting design software integrates an advanced 3-D modeling environment with an intuitive interface�providing a unique and powerful extension of the design process. Professional presentation capabilities enable you to quickly develop, analyze, and modify advanced lighting designs. Visual performs direct and interreflected component calculations and provides the ability to quickly compose professional presentations. Screen Shots Keywords lighting, lighting design, roadway lighting, visual, lumen method Validation/Testing The algorithms used by Visual lighting design software to calculate illuminance levels in diffuse architectural models follow commonly accepted

394

Building Energy Software Tools Directory: ecasys  

NLE Websites -- All DOE Office Websites (Extended Search)

ecasys ecasys ecasys logo. Large scale, low income, program management, web application. ecasys is best suited for use within an energy agency to gather disparate applications and processes together; or, for use in a Utility, to monitor the energy programs that they fund. Using a standard Internet Explorer browser, you can access the backend, fully relational SQL database from anywhere with an Internet connection. Modules within ecasys include contractors, customers, invoices, funders, programs, service, measure and auditing, with full online HTML reporting. Online HTML help is provided as a standalone module, that is also directly linked into the application's screens. Keywords energy program management Validation/Testing Tested with regression testing and completely retested (every field, every

395

Building Energy Software Tools Directory: SPACER  

NLE Websites -- All DOE Office Websites (Extended Search)

SPACER SPACER SPACER image Add-on tool for the THERM computer program that provides access to a comprehensive library of different spacer configurations including the sealants and desiccants from all leading spacer manufacturers. Drawing spacer geometries is an arduous and tedious process, and often the results are inaccurate models that produce wrong simulation results. With the SPACER program this process is made uniform and consistent, leading to consistent and accurate results. It allows for easy and consistent ways to specify spacers when modeling thermal performance of fenestration systems with THERM, a leading 2-D thermal performance analysis program. The SPACER program incorporates over 2000 different spacer models from number of spacer manufacturers. Screen Shots

396

Building Energy Software Tools Directory: PRISM  

NLE Websites -- All DOE Office Websites (Extended Search)

PRISM PRISM PRISM logo. Transforms run-of-the-mill billing data into statistically sound savings estimates. With PRISM (PRInceton Scorekeeping Method), utilities and energy analysts can systematically estimate total savings from a conservation or demand-side management program, for large samples of houses or buildings participating in the program, and for comparison groups as well. Enhanced model tuning and data pruning produce reliable savings estimates and statistics. Keywords utility billing data, demand-side management, statistical energy savings Validation/Testing N/A Expertise Required The package includes a Users' Guide to PRISM (Advanced Version 1.0) in two parts: 1) Getting Started, with tutorials to help those who have never used PRISM and to teach beginning and experienced PRISM users about the new

397

Building Energy Software Tools Directory: LESOCOOL  

NLE Websites -- All DOE Office Websites (Extended Search)

LESOCOOL LESOCOOL LESOCOOL logo. Calculates the airflow rate by stack effect, as well as the cooling potential and the overheating risk in a naturally or mechanically ventilated building, showing the temperature evolution, the air flow rate and the ventilation heat transfer. It take into account convective and radiative heat gains. Single zone modelling is sufficient for most purposes. However a multizone model is available for the evaluation of the temperature evolution along the air path. This model is applicable to a single air path through zones ventilated in series. The Windows interface and the small number of input parameters make Lesocool very user friendly. It has a standard interface for non experts in building physics and a professional edition allowing more functions. The

398

Building Energy Software Tools Directory: Utility Manager  

NLE Websites -- All DOE Office Websites (Extended Search)

Utility Manager Utility Manager Utility Manager logo Utility Manager™ captures data from historical and current utility bills every month into its centralized database, helping clients measure and energy costs and usage. Utility Manager™ provides energy, operational and financial managers with a series of customizable reports to help shape future decisions regarding energy costs and usage. Screen Shots Keywords Central capture of utility data for cost and energy usage reporting and reduction Validation/Testing Software has been rigorously tested internally throughout the course of its development and ongoing maintenance and enhancement (more than 15 years). Expertise Required Basic computer skills and understanding of energy accounting principles. Users 400-500 U.S. and Canada (primarily U.S.).

399

Building Energy Software Tools Directory: CONTAM  

NLE Websites -- All DOE Office Websites (Extended Search)

CONTAM CONTAM CONTAM logo. Multi-zone (nodal) airflow and contaminant transport analysis program. CONTAM consists of two components � a graphical user interface (GUI) and a simulation engine. The GUI is centered on a SketchPad that provides for the input of building topology via a set of drawing tools geared towards producing schematic representations of building floor plans. Drawing tools are used to draw walls, ducts and simplified control networks as well as to create iconic representations of building elements including flow paths, source/sinks and occupants. These drawing tools were designed to provide a robust means to create a well-formed multi-zone description of a building to be used by the simulation engine. Once a building representations is developed it is �passed� to the simulation engine to calculate zone

400

Building Energy Software Tools Directory: MOIST  

NLE Websites -- All DOE Office Websites (Extended Search)

MOIST MOIST MOIST logo. Program to predict combined transfer of heat and moisture in multi-layer building construction. Inputs hourly weather data from diskette and predicts the moisture content and temperature of the construction layers as a function of time of year. Can be used to develop guidelines and practices for controlling moisture in walls, flat roofs, and cathedral ceilings. Keywords combined heat and moisture transfer, envelope Validation/Testing N/A Expertise Required Low to moderate level of computer literacy; most users require about 3 hours to learn how to use the program. Users Over 1250. Audience Building engineers, architects, consultants. Input ASHRAE WYEC Weather Data (over 50 cities available at http://www.bfrl.nist.gov/863/moist.html); user-defined building

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


401

Building Energy Software Tools Directory: EED  

NLE Websites -- All DOE Office Websites (Extended Search)

EED EED EED logo. Program for borehole heat exchanger design. Its easy of use, short learning curve, quick calculation times and inherent databases make EED a useful tool in everyday engineering work for design of ground source heat pump system (GSHP) and borehole thermal storage. In very large and complex tasks EED allows for retrieving the approximate required size and layout before initiating more detailed analyses. Even for very small plants EED values the effort to do a calculation instead of using rules of thumb is worthwhile. In ground source heat pump system, heat is extracted from the fluid in the ground connection by a geothermal heat pump and distributed to the building. The fluid is then re-warmed as it flows through the ground. In cooling mode, the process is reversed. This is a renewable, environmentally

402

Building Energy Software Tools Directory: SIP Scheming  

NLE Websites -- All DOE Office Websites (Extended Search)

SIP Scheming SIP Scheming Energy analysis and cost estimating software specifically designed for stressed skin insulating core (SSIC) panel producers; calculates results within a matter of minutes. SIP (Structural Insulated Panel) Scheming also analyzes conventional framing and frame panels, and can be used for residential or commercial building types. Keywords stressed skin insulating core panels Validation/Testing N/A Expertise Required Relatively little technical knowledge required; knowledge of ArchiCad, Excel and DOE-2 necessary to use export features. Users Beta test version available. Audience Manufacturers of stressed skin insulating core panels. Input Drawings input either by scanning or imported from a CAD program, or drawn directly using a basic set of drawing tools; construction of elements such

403

Building Energy Software Tools Directory: Analysis Platform  

NLE Websites -- All DOE Office Websites (Extended Search)

Analysis Platform Analysis Platform Technical and economic performance estimation for building heating, cooling, and water heating equipment, including power generating options such as photovoltaics, fuel cells, and cogeneration. Based on representative loads in residential and commercial sectors. Focus on HVAC, aggregated electric, and integrated systems. Keywords heating, cooling, and SWH equipment, commercial buildings Validation/Testing N/A Expertise Required Moderate. Users N/A Audience Building end-use analysts, engineers, policy analysts. Input Building loads (selected from library, electric and fossil fuel rates, weather parameters, type of equipment, equipment operating parameters, and operating schedules. Allows detailed specification of equipment behavior, or use of default data. Data options correspond to selectable skills

404

Building Energy Software Tools Directory: DUCTSIZE  

NLE Websites -- All DOE Office Websites (Extended Search)

DUCTSIZE DUCTSIZE DUCTSIZE logo. Quickly calculates optimal duct sizes using either the static regain, equal friction, or constant velocity method. Data entry can be accomplished manually or taken graphically from either Drawing Board or AutoCAD.� Duct sizes can be calculated on a round, rectangular, and flat oval basis. Noise levels and required attenuation are printed for each runout duct. A library of fan data for noise calculations is built into the program.� DUCTSIZE allows an unlimited number of duct sections, and is suitable for both constant volume and VAV systems as diversity is accounted for.�� DUCTSIZE also has an option for specifying duct height and width constraints to control sizes. This feature is also useful for analyzing problems in existing systems where the duct sizes are already specified.�

405

Building Energy Software Tools Directory: ZEBO  

NLE Websites -- All DOE Office Websites (Extended Search)

ZEBO ZEBO ZEBO is a decision support tool for the study and design of net zero energy buildings (NZEBs) in hot climates during early design phases. The aim of this tool is to facilitate and integrate the use of energy building performance simulation for architects. The tool embraces a graphical user interface for EnergyPlus. It allows for sensitivity analysis of possible variations of NZEB design parameters and elements during the early design phases in hot climates. Its added values reside in its ability to inform the decision before decisions are made about NZEB design. The tool is contextual and is based on an embedded benchmark model and database for Egyptian residential buildings, which includes local materials and construction and allows the generation of code-compliant design

406

Building Energy Software Tools Directory: Maintenance Edge  

NLE Websites -- All DOE Office Websites (Extended Search)

Maintenance Edge Maintenance Edge Maintenance Edge logo Maintenance Edge is a suite of online Software as a Service (SaaS) facility management tools that gives control and management over buildings without a capital investment. Maintenance Edge enables you to combine work order, planned maintenance, work order wireless, and critical alarms with the option of adding inventory. Fully implemented, Maintenance Edge will cut labor time, increase energy efficiencies, save on capital expenditures, and save on budget and management time. Features include: easy/user-friendly work order requesting, unlimited users, seven different user roles (limits data users can see), no capital or hardware costs required, access to data anywhere anytime, easy-to-click reporting on all the data in your system,

407

Building Energy Software Tools Directory: Therm  

NLE Websites -- All DOE Office Websites (Extended Search)

Therm Therm Therm logo. Analysis of two-dimensional heat transfer through building products. Includes a graphical user interface that allows users to draw cross sections of fenestration and other building products, which can then be analyzed by an automatic mesh generator and finite-element heat transfer algorithms. Results are displayed graphically. Screen Shots Keywords two-D heat transfer, building products, fenestration Validation/Testing N/A Expertise Required Understanding of heat flows through building products; knowledge of properties of materials useful. Users Version 5.2 in use by over 1000 users internationally. Audience Building product developers, designers, analysts determining window ratings (NFRC). Input Graphic user interface; user enters cross sections of the building

408

Building Energy Software Tools Directory: ENFORMA  

NLE Websites -- All DOE Office Websites (Extended Search)

ENFORMA ENFORMA ENFORMA logo. Includes the MicroDataLogger portable data acquisition equipment and HVAC and Lighting Analyzer software. ENFORMA is designed to cost-effectively gather data and convert it into information about building performance. ENFORMA provides a unique solution that can gather the data at a minimal cost and help you determine solutions to typical building problems. This detailed diagnostic information is the key that allows you to improve upon your current services or expand into new business opportunities. ENFORMA solutions typically result in projects with paybacks of less than one year. ENFORMA solutions can help you improve upon or begin doing the following services: Performance Guarantees, Comfort Trouble Shooting, HVAC Operation Outsourcing, Commissioning, Accurate Equipment Tune-ups, and Energy

409

Building Energy Software Tools Directory: AAMASKY  

NLE Websites -- All DOE Office Websites (Extended Search)

AAMASKY AAMASKY Analysis of component and total heating, cooling, and lighting energy consumption attributable to skylights in commercial buildings, as well as peak demand impacts. Also provides hourly and monthly patterns of illumination levels from daylighting. The American Architectural Manufacturers Association's AAMASKY (AAMA SKYlight) consists of a Skylight Design Guidelines Handbook containing worksheet-based calculations, as well as a software spreadsheet that allows much more rapid determination of skylight impacts; all required data for analysis in ten U.S. climates is provided. Directly applicable to simple diffusing skylight designs for most types of commercial buildings. Helps achieve compliance with performance-based building codes. With experience, can be used for some

410

Building Energy Software Tools Directory: Umberto  

NLE Websites -- All DOE Office Websites (Extended Search)

Umberto Umberto Umberto logo. Software tool for material and energy flow calculation and analysis based on graphical modelling of process systems. It has been developed by ifu (Institute for Environmental Informatics) in cooperation with ifeu (Institute for Energy and Environmental Resarch) since 1993. Based on the concept of material flow networks, the powerful calculation algorithm of Umberto allows to determine all material and energy flows in the system under study. The user can define the system boundaries and can analyse the flows by "zooming" into the hierarchical model and the desired level of detail. Both site/process-oriented as well as product-related analysis are possible. Different technology alternatives can be compared by scenario comparison. Results can be displayed as tables or diagrams. The

411

Building Energy Software Tools Directory: Sunspec  

NLE Websites -- All DOE Office Websites (Extended Search)

Sunspec Sunspec Calculates clear sky direct beam and diffuse sky solar spectral irradiances and the sum of these two spectra for sun positions and atmospheric conditions specified by the user. Sunspec version 1.0 also calculates the spectral irradiances incident on an arbitrarily tilted plane due to the direct beam, diffuse sky, and ground reflections. Sunspec integrates these spectra to determine the total irradiances, illuminances, and luminous efficacies for each component. Version 2.0 is in preparation and should be available by late-1997. Version 2.0 will be mouse-driven with user friendly I/O. Sunspec offers the user a menu of typical atmospheric conditions to choose from and follows this with detailed editing screens permitting the user to change any input parameter. The input parameters include values for ozone

412

Building Energy Software Tools Directory: DIALux  

NLE Websites -- All DOE Office Websites (Extended Search)

DIALux DIALux DIALux logo A light planning program for calculation and visualization of indoor and outdoor lighting systems. DIALux can import from and export to all CAD programs (DXF, DWG, SAT,...) and has photorealistic visualization with an integrated ray tracer. More than 66 free electronic catalogues and photometric files (IES, EULUMDAT, CIBSE...) can be read in. It is available in 25 languages. DIALux is undergoing continuous refinement. The latest standards are always taken into consideration as well as planning regulations and customs of the specific country. DIALux can calculate daylight, interior and exterior lighting, road lighting and emergency lighting. It includes an easy to handle DIALux Light for simple projects and the possibility to create movies directly from the lighting design.

413

Building Energy Software Tools Directory: AWDABPT  

NLE Websites -- All DOE Office Websites (Extended Search)

AWDABPT AWDABPT AWDABPT logo Provides dynamic temperature simulation of 1- to 15- room buildings, shelters, and cabinets over the course of 20 days. Useful for accommodation of heat dissipating equipment. Cooling or power plant failure and later restoration can be simulated. Includes indicative external bush/forest fire mode. Screen Shots Keywords building temperature simulation, thermal performance Validation/Testing The Help document includes graphs that show estimated versus measured temperatures. It is freely available for download via the Website. Expertise Required Understanding of building thermal characteristics, conductivity, U-value, heat capacity, latent heat. Users Old DOS version - several. Current version - one, in Australia. Audience Building designers requiring estimates of room temperatures within

414

Building Energy Software Tools Directory: Polysun  

NLE Websites -- All DOE Office Websites (Extended Search)

Polysun Polysun Polysun logo Polysun 4 is renewable energy system simulation software for planners and installers of energy systems. Polysun 4 helps users to configure and optimize solar and heat pump systems. Generated reports facilitate communication and marketing tasks. Polysun 4 makes system design simple and professional. Reliable yield-forecasts generated from integrated meteorological data create trust and promote understanding. Detailed models of the systems within the simulation software serve as the foundation for targeted system optimisation and system comparisons. Polysun 4 accelerates the planning process; provides reliable yield forecasts; enables easy optimization of existing and new systems; provides relevant information when applying for subsidies; easily generates PDF reports for customers.

415

Building Energy Software Tools Directory: Solar Tool  

NLE Websites -- All DOE Office Websites (Extended Search)

Solar Tool Solar Tool Solar Tool logo. Makes the process of accurately sizing and positioning overhangs, shading devices and louvers easy. This software is a must for architects, planners and building services engineers, anyone who needs to quickly determine the extent of solar penetration into buildings, overshadowing or the most appropriate means of shading a window. The program uses a flexible, parametric model on which can be placed any number of horizontal, vertical and detached shades. You can select any date, time or location, seeing immediately the resulting shadows whilst interactively manipulating the geometry to show immediately the effects. You can also choose to automatically optimise the size and shape of any shading device over any range of dates and times you require. Screen Shots

416

Building Energy Software Tools Directory: PEAR  

NLE Websites -- All DOE Office Websites (Extended Search)

PEAR PEAR A simple PC spreadsheet program that estimates the total annual heating and cooling energy consumption of conventional houses in over 800 locations, using a database of thousands of DOE-2 computer simulations. PEAR (Program for Energy Analysis of Residences) Version 2.1 calculates the cost-benefit of conservation measured depending on user-input base case condition and costs. Used by architects and engineers to analyze the energy efficiency of house designs; used by utility companies and energy offices to evaluate retrofit measures; used by universities to teach energy-efficient design. Keywords design, retrofit, residential buildings Validation/Testing N/A Expertise Required Basic PC computer literacy; no specialized training required. Users 200 plus.

417

Building Energy Software Tools Directory: Acoustics Program  

NLE Websites -- All DOE Office Websites (Extended Search)

Acoustics Program Acoustics Program Developed to help designers accurately model the sound level reaching building tenant's ears, the Trane Acoustics Program (TAP) "projects" equipment sound power data through the surroundings (e.g., floors, ductwork, walls), to estimate the sound level that will be heard. Industry-standard calculations published by ASHRAE's 1991 Algorithms for HVAC Acoustics handbook are the basis for this estimate. In TAP, you can model the conditions of an HVAC system by choosing specific equipment and building component criteria. TAP will analyze the sound path and calculate the total effect for the enclosed space. You can continuously adjust the data and system design criteria to compare the results effortlessly. TAP will even plot presentation quality graphs of

418

Building Energy Software Tools Directory: Sefaira  

NLE Websites -- All DOE Office Websites (Extended Search)

Sefaira Sefaira tool_sefaira.jpg Sefaira allows architects to focus on performance from the beginning of their design process with software that provides them with real-time feedback for their buildingÂ’s design. Architects can directly use that feedback to influence their design, instead of validating a design at the end of their process. Architects can study form & facade design, compare design options and strategies, find the strategies with the biggest impact and optimize key design parameters, such as shading, glazing ratios, and orientation. Screen Shots Keywords Early-stage performance analysis of building envelope, HVAC, water & renewables , Real-time building performance analysis, Parametric analysis, Thermal comfort analysis Validation/Testing Sefaira leverages two energy analysis engines for different types of

419

Building Energy Software Tools Directory: SBEM  

NLE Websites -- All DOE Office Websites (Extended Search)

SBEM SBEM SBEM screen Simplified tool which provides an analysis of a building's energy consumption primarily for the purposes of assessing compliance with Part L (England & Wales), Section 6 (Scotland) and Part F (Northern Ireland) of Building Regulations and eventually for building performance certification EPBD in UK. SBEM (Simplified Building Energy Model) calculates monthly energy use and carbon dioxide emissions of a building given a description of the buildingÂ’s geometry, construction, use, and HVAC and lighting equipment. It was originally based on the Dutch methodology NEN 2916:1998 (Energy Performance of Non-Residential Buildings) and has since been modified to comply with the emerging CEN Standards. SBEM makes use of standard sets of data for different activity areas and calls on databases

420

Building Energy Software Tools Directory: System Analyzer  

NLE Websites -- All DOE Office Websites (Extended Search)

System Analyzer System Analyzer System Analyzer logo. Software package for load calculation and energy and economic comparative analysis. System Analyzer permits a quick evaluation of virtually any building, system, and equipment combination. Thus, it can be used either as a scoping tool to decide what systems may be appropriate for an initial design, or to get a general feeling of how one system/equipment combination may perform over another. If a certain combination seems especially promising, further analysis can be done by exporting inputs into TRACE 600. The possibilities are endless. And since the program is Windows-based, virtually anyone with minimal HVAC training and experience can use it. Keywords Energy analyses, load calculation, comparison of system and equipment

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


421

Building Energy Software Tools Directory: HVACSIM+  

NLE Websites -- All DOE Office Websites (Extended Search)

HVACSIM+ HVACSIM+ Simulation model of a building HVAC (heating, ventilation, and air-conditioning ) system plus HVAC controls, the building shell, the heating/cooling plant, and energy management and control system (EMCS) algorithms. The main program of HVACSIM+ (HVAC SIMulation PLUS other systems employs a hierarchical, modular approach and advanced equation solving techniques to perform dynamic simulations of building/HVAC/control systems. The modular approach is based upon the methodology used in the TRNSYS program. Keywords HVAC equipment, systems, controls, EMCS, complex systems Validation/Testing N/A Expertise Required High level of computer literacy. Users More than 100. Audience Building technology researchers, graduate schools, consultants. Input Building system component model configuration, simulation setup work file,

422

Building Energy Software Tools Directory: BLCC  

NLE Websites -- All DOE Office Websites (Extended Search)

BLCC BLCC BLCC logo. Provides comprehensive economic analysis of proposed capital investments that are expected to reduce long-term operating costs of buildings or buildings systems. BLCC5 and BLCC4 are the main programs in a set of six National Institute of Standards computer programs that are especially useful for evaluating energy and water conservation projects in buildings. The programs calculate Lowest Life-Cycle Cost, Net Savings, Savings-to-Investment Ratio, Adjusted Internal Rate of Return, and Payback Period. The recently released BLCC5 is a windowed version of the DOS-based BLCC4. It contains modules to evaluate agency-funded projects according to 10CFR436A and projects that are financed through ESPC or utility contracts as directed by Executive Order 13123. The remaining modules, now in BLCC4

423

Building Energy Software Tools Directory: GIHMS  

NLE Websites -- All DOE Office Websites (Extended Search)

GIHMS GIHMS A factory simulator designed to model production operations in an industrialized housing manufacturing facility; addresses typical questions such as: a) How will changes in staffing, process technology, procedures, and facility layout impact operations and costs in an existing facility? b) What are existing bottlenecks in operations and how can they best be resolved? c) As market share and product mix changes, when do new bottlenecks arise and should they be resolved prior to posing significant problems? d) How will a proposed new facility perform and how can the design be improved prior to actual construction? GIHMS (Generic Industrialized Housing Manufacturing Simulator) will be sufficiently generic to model a range of industry segments, factory configurations, and

424

Building Energy Software Tools Directory: REEP  

NLE Websites -- All DOE Office Websites (Extended Search)

REEP REEP REEP logo. Performs large scale (national, multi-installation, installation-wide) analysis of energy and water conservation projects in the Department of Defense (DOD). REEP (Renewables and Energy Efficiency Program) analyzes 104 energy- and water-efficiency technologies at 210 DOD installations. The technologies are evaluated for their energy savings potential, financial viability, and pollution abatement potential. A database contains over 100 entries of specific data for each installation. The financial analysis uses life-cycle costing methods and allows selection of ECIP and ESPC economic criteria. REEP is designed to be used in the strategic planning and budgeting phase of a project. The simplified engineering calculations work well for large scale analysis to target an plan the conservation actions

425

Building Energy Software Tools Directory: FRESA  

NLE Websites -- All DOE Office Websites (Extended Search)

FRESA FRESA A first-order screening tool to identify potentially cost-effective applications of renewable energy technology on a building and facility level. FRESA (Federal Renewable Energy Screening Assistant) is useful for determining which renewable energy applications require further investigation. Technologies represented include: active solar heating, active solar cooling, solar hot water, daylighting with windows, daylighting with skylights, photovoltaic, solar thermal electric (parabolic dish, parabolic trough, central power tower), wind electricity, small hydropower, biomass electricity (wood, waste, etc.), and cooling load avoidance (multiple glazing, window shading, increased wall insulation, infiltration control). Life-cycle cost calculations comply with 10 CFR 436.

426

Building Energy Software Tools Directory: FRAME4  

NLE Websites -- All DOE Office Websites (Extended Search)

FRAME4 FRAME4 FRAME4 logo. Uses two-dimensional finite-volume analysis to evaluate heat transfer through complex building components. FRAME is part of the FRAMEplus toolkit for analysis of windows, doors, walls, roofs and below-grade assemblies. Users draw building components as assemblies of cross-sections. Any interior or exterior environmental condition can be applied. .DXF files and VISION4 files can be imported to speed up data entry. Results are displayed graphically and are used to determine heat transfer, potential for thermal bridging and surface condensation. The FRAME4 simulations (when combined with VISION) are an equal alternative to testing to determine the U-value and solar heat gain coefficient of windows and doors. The U.S. National Fenestration Rating Council and Canadian Standard Association recognize

427

Building Energy Software Tools Directory: VISION4  

NLE Websites -- All DOE Office Websites (Extended Search)

VISION4 VISION4 VISION4 logo. Models the combined optical and thermal performance of glazing systems and provides information on the energy flow and temperatures which result from imposed environmental conditions. VISION4 is part of the FRAMEplus Toolkit for the thermal analysis of windows, walls and doors. VISION4 can also calculate the velocity field within window glazing cavities to better predict condensation resistance. VISION4 simulations (when combined with FRAME) are an equal alternative to testing to determine the U-value, condensation resistance and solar heat gain coefficient of windows and doors. VISION4 was used to produce the window information in the ASHRAE Handbook of Fundamentals and is referenced in several national window standards. Keywords fenestration, solar optical characteristics, thermal performance, windows,

428

Building Energy Software Tools Directory: HOMER  

NLE Websites -- All DOE Office Websites (Extended Search)

HOMER HOMER Evaluates design options for both off-grid and grid-connected power systems for remote, stand-alone, and distributed generation (DG) applications. HOMER's optimization and sensitivity analysis algorithms allow you to evaluate the economic and technical feasibility of a large number of technology options and to account for variation in technology costs and energy resource availability. HOMER models both conventional and renewable energy technologies. Screen Shots Keywords remote power, distributed generation, optimization, off-grid, grid-connected, stand-alone Validation/Testing Validation results are available upon request. Expertise Required Basic familiarity with Windows and the technology of small power systems. Users 3000 users in 142 countries. Approximately 1/3 are in the U.S., 1/3 in

429

Building Energy Software Tools Directory: EZDOE  

NLE Websites -- All DOE Office Websites (Extended Search)

EZDOE EZDOE EZDOE logo. An easy to use IBM PC version of DOE-2. EZDOE calculates the hourly energy use of a building and its life-cycle cost of operation given information on the building's location, construction, operation, and heating and air conditioning system. Using hourly weather data and algorithms developed by Lawrence Berkeley National Laboratory, EZDOE takes into account complex thermal storage effects of various building materials. In addition, it can also accurately simulate the operation of all types of heating and cooling plants including ice water thermal storage and cogeneration systems. Up to 22 different air handling systems each with multiple control options are supported. The types of heating and cooling plants allowed is nearly infinite as thousands of combinations of chillers, boilers, furnaces,

430

Building Energy Software Tools Directory: TAS  

NLE Websites -- All DOE Office Websites (Extended Search)

TAS TAS TAS logo Tas is an industry-leading building modelling and simulation tool. Capable of performing fast dynamic thermal simulation for the worldÂ’s largest and most complex buildings, Tas allows designers to accurately predict energy consumption, CO2 emissions, operating costs and occupant comfort. Tas is a complete solution for the thermal simulation of a building and a comprehensive tool for modelling plant and systems using itÂ’s graphical and component based analysis. Tas is a powerful design tool in the optimisation of a buildings environmental, energy and comfort performance. Tas can import gbXML, INP, and IDF files from 3rd party programs. There are also customisable report generation facilities. The Tas suite allows full automation available through visual basic. This

431

Building Energy Software Tools Directory: HPSIM  

NLE Websites -- All DOE Office Websites (Extended Search)

HPSIM HPSIM Detailed, fundamentals-based, steady-state simulation model of an air-to-air heat pump operating on the vapor-compression-cycle principle and charged with single-component refrigerant. HPSIM (Heat Pump SIMulation) includes tube-by-tube modeling of plate-fin air-to-refrigerant heat exchangers. Keywords heat pump, research Validation/Testing - Expertise Required High level of computer literacy; high level of technical understanding of vapor-compression heat pumps. Users 40 user organizations. Audience University engineering faculty and graduate students, for training in refrigeration and air conditioning; R&D and design engineers employed by manufacturers of air-conditioning equipment. Input Detailed design description of heat pump components; compressor performance

432

Building Energy Software Tools Directory: LESODIAL  

NLE Websites -- All DOE Office Websites (Extended Search)

LESODIAL LESODIAL LESODIAL logo. Gives architects relevant information regarding the use of daylight, at the very first stage of the design process. This software allows users to: Calculate daylight factor values on the work plane. Estimate daylighting autonomy (according to the lighting requirements, Leso-DIAL estimates the time during which artificial lighting could be switched off (mid-Europe climate). Optimise the daylighting performance. Based on the use of fuzzy logic rules, the diagnosis facility of Leso-DIAL indicates out the possible weak points of your design. Allows the user to compare his design with pre-simulated and/or existing real rooms stored in a database. Up to 30 openings can be described (6 for each facade and the roof). Keywords Daylighting, early design stage, user-friendliness

433

Building Energy Software Tools Directory: Recurve  

NLE Websites -- All DOE Office Websites (Extended Search)

Recurve Recurve Recurve logo Recurve enables residential energy professionals (auditors, contractors, program managers) to accelerate business success through profitable, scalable growth. Our six years experience have given us broad market awareness and intimate knowledge of the industry's greatest challenges, inner workings of policy, and latest in program innovation. Recurve Software enables contractors to perform in-home data collection, energy modeling, and on-the-spot delivery of predicted energy savings combined with professional estimates and reports that help turn more audits into retrofits. Screen Shots Keywords energy simulation, home performance, estimates, energy audit Validation/Testing RESNET BESTEST approved Expertise Required Windows familiarity. Users

434

Building Energy Software Tools Directory: FRAMEplus  

NLE Websites -- All DOE Office Websites (Extended Search)

FRAMEplus FRAMEplus FRAMEplus logo. The FRAMEplus toolkit has three modules: VISION4 (glazing heat transfer and solar optical properties), FRAME4 (heat transfer through building components), and FRAMEplus (combines VISION and FRAME results and reports total building product performance). FRAMEplus checks all VISION and FRAME input files for consistency, combines the building component cross-sections to compute total product properties, and produces a simulation report. The simulation reports are suitable to show compliance with National Fenestration Rating Council and Canadian Standards Association window and door standards. The FRAMEplus Toolkit is a low cost alternative to testing to determine the U-value and solar heat gain coefficient of walls, windows and doors.

435

Building Energy Software Tools Directory: Rehab Advisor  

NLE Websites -- All DOE Office Websites (Extended Search)

Rehab Advisor Rehab Advisor Rehab Advisor logo. Designed to help homeowners, contractors, architects, housing authorities, development agencies, facility managers and others to improve energy efficiency in existing residences during renovation and remodeling. In six clicks the Rehab Advisor provides recommendations for cost-effectively increasing the energy efficiency of a typical renovation project in single-family or multifamily housing. These recommendations are based on the building type, location, and specific project � and they are free. Rehab Advisor is the simplest tool available for estimating the costs and savings of incorporating cost-effective energy efficiency improvements into remodeling projects. The user does not have to do any computer modeling or other calculations. And, unlike any other user-friendly tool, the Rehab

436

Building Energy Software Tools Directory: RHVAC  

NLE Websites -- All DOE Office Websites (Extended Search)

RHVAC RHVAC RHVAC logo. Calculates peak heating and cooling loads for residential and small commercial buildings in accordance with ACCA Manual J. Heat Transfer Multipliers (HTM values) for all walls, windows, doors, and roofs listed in Manual J are stored and automatically looked up by the RHVAC program as needed. Although HTM values are taken directly from Manual J, users have the option of entering their own U-Value for each wall, roof, or glass section so that a modified HTM value is used. Design weather data for over 1500 cities is built-in to RHVAC. Users can revise existing weather data and add additional weather data as desired. Zoning CFM adjustments are automatically handled by the RHVAC program as needed. Other outstanding features include exterior glass shading, ventilation air, miscellaneous

437

Building Energy Software Tools Directory: STE  

NLE Websites -- All DOE Office Websites (Extended Search)

STE STE Software with two modules, one for the verification of the regulation aimed essentially at residential and small commercial buildings (RCCTE), and another for the verification of the regulation aimed essentially at buildings with HVAC power higher than 25 kW (RSECE). Both modules are single zone. The RCCTE module is based on steady state assumptions, while the method for RSECE is based on a dynamic hourly simulation for a complete year, in line with the methodology adopted by the newly revised EN ISO 13790. Screen Shots Keywords thermal regulations, residential and commercial buildings, energy certification Validation/Testing The hourly simulation module was compared to detailed ESP-r simulations and proven to be quite precise (within 5% for most cases).

438

Building Energy Software Tools Directory: HOT2000  

NLE Websites -- All DOE Office Websites (Extended Search)

HOT2000 HOT2000 HOT2000 logo. Easy-to-use energy analysis and design software for low-rise residential buildings. Utilizing current heat loss/gain and system performance models, the program aids in the simulation and design of buildings for thermal effectiveness, passive solar heating and the operation and performance of heating and cooling systems. Keywords energy performance, design, residential buildings, energy simulation, passive solar Validation/Testing N/A Expertise Required Basic understanding of the construction and operation of residential buildings. Users Over 1400 worldwide. HOT2000 is used mainly in Canada and the United States with a few users in Japan and Europe. Audience Builders, design evaluators, engineers, architects, building and energy code writers, Policy writers. HOT2000 is also used as the compliance

439

Building Energy Software Tools Directory: Tetti FV  

NLE Websites -- All DOE Office Websites (Extended Search)

Tetti FV Tetti FV Tetti FV logo Program for the simulation, design and calculation of grid connected photovoltaic systems. The system components are loaded from the system database. Tetti FV is a simple and efficient system design for all photovoltaic system configurations. Screen Shots Keywords photovoltaic, PV, energy performance, design, PV system sizing, PV system simulation, grid-connected PV systems Validation/Testing N/A Expertise Required High level of computer literacy not required. Basic knowledge about solar energy and photovoltaics. Some basic concepts are developed in the contextual help system. Users More than 100. Audience architects, engineers, researchers, federal agencies, research universities, research laboratories Input Very easy import of weather files (user defined). Easy choice of module,

440

Building Energy Software Tools Directory: HAP  

NLE Websites -- All DOE Office Websites (Extended Search)

HAP HAP HAP logo. A versatile system design tool and an energy simulation tool in one package, Carrier�s Hourly Analysis Program (HAP) provides the ease of use of a Windows-based graphical user interface and the computing power of modern 32-bit software. HAP�s design module uses a system-based approach to HVAC load estimating. This approach tailors sizing procedures and results to the specific type of system being considered. Central AHUs, packaged rooftop units, split systems, fan coils, water source heat pumps and PTACs can easily be sized, as can CAV, VAV and multiple-zone systems. Calculation rigor and integrity are provided by the ASHRAE Transfer Function Method for calculating building heat flow. HAP�s energy analysis module performs an hour-by-hour simulation of

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


441

Building Energy Software Tools Directory: flixo  

NLE Websites -- All DOE Office Websites (Extended Search)

flixo flixo flixo logo. flixo produces thermal-hygro analyses of the component and facade cross sections,and it also calculates frame U-values, Psi-values etc. flixo can detect thermal bridges in the planning stage that then can be eliminated through design changes. Consequently, building failures can be prevented and heating energy can also be saved. A further use of flixo is relevant to hygro-analysis, with which, for example, temperature minima on the internal surfaces of a cross-section can be determined in order to avoid the formation of condensed water or mildew. flixo analyzes two-dimensional component nodes based on free forms for steady state boundary conditions using the finite element method. Screen Shots Keywords 2D heat transfer, cold bridge, fenestration, frame U-value, thermal bridge

442

Building Energy Software Tools Directory: Quick Est  

NLE Websites -- All DOE Office Websites (Extended Search)

Est Est Quick Est logo Online indoor lighting fixture-estimating tool. Quick Est is extremely user-friendly and allows users to perform accurate quantity and footcandle calculations based upon pre-loaded IES photometric files and the information that users provide. After putting in requested information, the space being luminated can be viewed in a flat plane or an isometric 3D plan. Printing capabilities have been included in the program to make it easier to share the information. Quick Est includes indoor lighting fixture photometric files related to the Crescent/Stonco product line. Screen Shots Keywords lighting, 3d drawing, indoor lighting Validation/Testing Basic validation available upon request. Expertise Required A basic understanding of lighting principles are required to maximize the

443

Building Energy Software Tools Directory: SUNDI  

NLE Websites -- All DOE Office Websites (Extended Search)

SUNDI SUNDI SUNDI logo. Developed at the Electrical Machines Institute, SUNDI calculates the irradiance losses due to shading. A simple analysis can be done with sun orbit diagrams. An exact day analysis is possible with this program. Shading situations can be localized exactly. The results can be presented graphically. The irradiance losses can be also calculation for long periods of time. The calculation is very quick. The results are given in a tabular and can be used by other Windows applications. Keywords solar shading, solar irradiance, solar patterns Validation/Testing N/A Expertise Required General knowledge of sun patterns and building geometry. Users Unknown. Audience Building designers. Input Geometry of the shading configuration. Output Tabular and graphic irradiance losses due to shading.

444

Building Energy Software Tools Directory: DONKEY  

NLE Websites -- All DOE Office Websites (Extended Search)

DONKEY DONKEY Logo for DONKEY Determines the size of a duct network using the static regain, constant pressure gradient, or balanced pressure drop method. Duct sizes can also be fixed and the program handles rectangular, round or oval ducts. DONKEY can calculate duct leakage and heat loss/gain and automatically locate balancing dampers throughout the duct system. The sound power levels throughout the entire network are calculated at each of the seven octave band frequencies from 63 to 4000 Hz taking into account self generated noise by the fan, ducts, fittings, VAV boxes, registers, grilles and the attenuation of ducts, fittings, plenums and any duct silencers specified. Account is taken of noise transmitted both from the fan down to the terminals and from the terminals back up the network.

445

Building Energy Software Tools Directory: GLASTRUCT  

NLE Websites -- All DOE Office Websites (Extended Search)

GLASTRUCT GLASTRUCT GLASTRUCT Analyzes structural performance of glass and glazing systems. The calculations are done using industry standard ASTM E1300-02. GLASTRUCT's main screen includes support for single or double glazed units, glass thicknesses up to 22 mm, laminated glass, heat strengthened glass, etc. GLASTRUCT calculates glazing load resistance and deflection and also displays Pass/Fail criteria. Calculations are done for short and long load durations, which are determined from the wind loading or other static and dynamic loadings. Standard reports are generated and are available for printing or pdf file generation. Screen Shots Keywords structural performance, fenestration, deflection, stress, ASTM Validation/Testing Compliant with ASTM E1300-02 standard.

446

Building Energy Software Tools Directory: Benchmata  

NLE Websites -- All DOE Office Websites (Extended Search)

Benchmata Benchmata Benchmata logo BENCHMATA is an advanced system that can help utility companies, municipalities, local and state governments, and energy billing companies to automatically benchmark their customer's energy usage in ENERGY STAR® Portfolio Manager. It is the first commercially available system powerful enough to automate any organization's energy benchmarking needs. Software can put your organization on the fast track for bulk benchmarking of your customers in ENERGY STAR Portfolio Manager. It helps in accomplishing ESP’s goal to provide benchmarking of energy data on a bigger scale. It helps organizations create processes for automatic authentication of customers using custom id values. The system provided a powerful GUI to allow a user to create customer, building, meter, and space data and all

447

Building Energy Software Tools Directory: PUtility Psychrometric  

NLE Websites -- All DOE Office Websites (Extended Search)

PUtility Psychrometric PUtility Psychrometric The name of software is "PUtility Psychrometric". It is utility software which calculates moist air state and draws a psychrometric chart. Users can plot their data on the chart by giving the value of dry-bulb temperature and absolute humidity through a CSV formatted file. PUtility Psychrometric can give a graphic representation of comfortable air state with drawing region. Which PMV takes a specific value. Diagrams can be exported to vector image files (EMF). "PUtility Psychrometric" is released under GPL, and all the source codes can be freely downloaded from the Web site. Screen Shots Keywords Moist air, Psychrometric chart, GPL, Free source Validation/Testing Calculation result of PMV and PPD are verified with the BASIC code given in

448

Building Energy Software Tools Directory: TREAT  

NLE Websites -- All DOE Office Websites (Extended Search)

TREAT TREAT TREAT logo. Performs hourly simulations for single family, multifamily, and mobile homes. Comprehensive analysis tool includes tools for retrofitting heating and cooling systems, building envelopes (insulation and infiltration), windows and doors, hot water, ventilation, lighting and appliances, and more. Weather normalizes utility bills for comparison to performance of model. Highly accurate calculations which consider waste heat (baseload), solar heat gain, and fully interacted energy savings calculations. Create individual energy improvements or packages of interactive improvements. Also performs load sizing. Generates XML file for upload to online database tracking systems. Complies with HERS BESTEST. Approved by the U.S. Department of Energy for use in Weatherization Assistance Programs. Screen

449

Building Energy Software Tools Directory: DPClima  

NLE Websites -- All DOE Office Websites (Extended Search)

DPClima DPClima DPClima logo. Helps size any system for heating and air conditioning of a building, i.e., the terminal units, the zone units and the total capacity of the cooling or heating plants. DPClima performs a 24 hour calculation of the steady state value of the cooling and heating loads of a building for a typical day of each month (either the coldest or the hottest). DPClima organizes the spaces into several zones inside the building so that the designer is able to adapt its system best to the thermal response of those zones. The calculations are done using the heat transfer functions methodology. Inside the spaces schedules are defined for; occupancy, lights and other loads. A database is distributed with information about types of walls, glasses, human activities, type of lights, etc. Screen Shots

450

Building Energy Software Tools Directory: SOLAR-5  

NLE Websites -- All DOE Office Websites (Extended Search)

SOLAR-5 SOLAR-5 SOLAR-5 logo. Displays 3-D plots of hourly energy performance for the whole building or for 9 schemes and any of 40 different components. SOLAR-5 also plots heat flow into/out of thermal mass, and indoor air temperature, daylighting, output of the HVAC system, cost of electricity and heating fuel, and the corresponding amount of air pollution. It uses hour-by-hour weather data. It contains an expert system to design an initial base case building for any climate and any building type, that an architect can copy and redesign. Contains a variety of decision-making aids, including combination and comparison options, color overlays, and bar charts that show for any hour exactly where the energy flows. Keywords design, residential and small commercial buildings

451

Building Energy Software Tools Directory: AGI32  

NLE Websites -- All DOE Office Websites (Extended Search)

AGI32 AGI32 AGI32 logo. 3D lighting design and rendering software package for electric lighting and daylight analysis. AGI32 produces full-color renderings and predictive lighting system calculations simultaneously for all applications of electric lighting and daylighting in interior and exterior design projects. AGI32 displays dramatic calculation and rendering speeds making repetitive visualizations realistic, and dramatically shortening the conceptual part of the design process. Complex architectural environments are easily created internally, or externally created 3D environments can be imported via DWG or DXF format files. A comprehensive library of manufacturers� lighting product data is included. Screen Shots Keywords lighting, daylighting, rendering, roadway

452

Building Energy Software Tools Directory: Solar Rater  

NLE Websites -- All DOE Office Websites (Extended Search)

Solar Rater Solar Rater Solar Rater logo Solar Rater app for Android devices makes it easy to determine the solar energy potential for any location on Earth, and calculates the appropriate size for a photovoltaic (PV) system at that location. Key features include: Automatic location detection with GPS, Wi-Fi, or cell tower identification Automatic orientation detection measures the azimuth and pitch of solar panels Automatic magnetic declination conversion gives azimuth based on true north Automatic solar radiation determination based on location and orientation (model result) Outputs the appropriate size of a PV system in DC Watts Data can also be entered manually for offsite use Great teaching tool for novices Accurate results for solar energy professionals Outputs environmental benefits (e.g., greenhouse gas emissions,

453

Building Energy Software Tools Directory: PVcad  

NLE Websites -- All DOE Office Websites (Extended Search)

PVcad PVcad PVcad logo. Program for planning PV facades (grip coupled system). PVcad version 1.2.1 offers interfaces to civil engineering CAD systems (DXF-Import) as well as extensive databases for weather data at many different locations, modules and inverters. Specially adapted algorithms ensure a fast calculation of the electrical energy yield. Shading of modules is calculated (direct and diffuse light). Ease of use and a graphical presentation of the calculated results give further support to the user. Keywords photovoltaic, facade, yield, electrical Validation/Testing N/A Expertise Required Basic know how in electrical engineering and grid-connected photovoltaics. Users Approximately 100, mostly in Germany. Audience Electrical engineers planning grid-connected photovoltaic systems,

454

Building Energy Software Tools Directory: Star Perfomer  

NLE Websites -- All DOE Office Websites (Extended Search)

Star Perfomer Star Perfomer Star Perfomer logo. Outlines simple steps to help office building owners, managers and tenants improve their greenhouse and energy efficiency performance, simply by asking some straightforward questions about the size, operating hours, current performance and equipment standards of the building. Star Performer is a diagnostic tool that uses the current operational energy performance of the building measured against a national benchmark, obtained through the Australian Building Greenhouse Rating scheme (see links below), as a basis for making recommendations. The tool covers all areas of the building which affect operational energy performance, including building fabric, equipment and operational practices. Star Perfomer will point you in the right direction and give

455

Building Energy Software Tools Directory: SPOT  

NLE Websites -- All DOE Office Websites (Extended Search)

SPOT SPOT SPOT screen image Quantifies existing or intended electric lighting performance, evaluate annual daylighting characteristics and help establish the optimal photosensor placement in a given space relative to annual performance and annual energy savings. The Sensor Placement and Optimization Tool, or SPOT, was developed with classroom daylighting in mind, but can be used for all types of spaces. Screen Shots Keywords daylighting, electric lighting, photosensor, energy savings Validation/Testing Various individuals have tested the software. Testing and validation continues. Documentation of the test and validation results are available on the web site. Expertise Required Energy engineering or lighting design background is helpful for analysis of results. A working familiarity with Excel may be helpful, but it is not

456

Building Energy Software Tools Directory: BEAVER  

NLE Websites -- All DOE Office Websites (Extended Search)

BEAVER BEAVER Logo for BEAVER WINDOWS environment for the ESPII Fortran program which estimates the energy consumption of buildings using the ASHRAE Response Factor Method. BEAVER building energy simulation provides for user friendly input of data, processing and viewing of the results. BEAVER estimates the energy consumption of a building hourly over a given period of time taking into account the site location, the building structure and the type of building services installed to maintain the desired environmental conditions. It enables a designer to investigate alternatives and make energy comparisons quickly and effectively for a very wide range of building configurations and air conditioning systems using actual measured climatic data. A comprehensive range of air handling systems, primary plant and control

457

Building Energy Software Tools Directory: FASER  

NLE Websites -- All DOE Office Websites (Extended Search)

FASER FASER FASER logo. Energy information management and analysis software. Identify utility bill errors, system problems and recover overcharges using FASER's Energy Alarm bill-checking engine. Interface with accounting and reduce bill-processing costs using the FASER AP Link module. Audit the cost avoidance of demand side management projects and performance contracts. Powerful 1000 plus utility rate schedule library for rate comparison using actual metered history. Create your own custom rate schedules. Create formula based virtual sub-meters for recharge accounting needs. Input and maintain raw meter reading data into FASER using a powerful handheld recorder. Establish energy budgets. Determine the impact building activities have on energy consumption. Informative, customizable reports with batch report processing

458

Building Energy Software Tools Directory: Micropas6  

NLE Websites -- All DOE Office Websites (Extended Search)

Micropas6 Micropas6 Micropas6 logo. Easy to use detailed energy simulation program which performs hourly calculations to estimate annual energy usage for heating, cooling and water heating in residential buildings. In addition to its purpose as a compliance tool for California�s Title 24 Energy Efficiency Standards, Micropas can be used to demonstrate that a home meets Energy Star requirements in California (15% above Title 24). The program includes a load calculation for use in sizing heating and cooling equipment. Micropas6 has been in wide use in California since the early 1980s as a building energy code compliance tool and is growing in use elsewhere under the Model Energy Code. The last survey showed that about 75% of the single-family homes permitted in California used Micropas to determine code

459

Building Energy Software Tools Directory: COLDWIND Pro  

NLE Websites -- All DOE Office Websites (Extended Search)

COLDWIND Pro COLDWIND Pro Computes coldroom and freezer refrigeration loads, in either Imperial or SI units, for projects drawn directly on-screen, with any number of walls, in any number of rooms, arranged at any angles, with any mix of insulation materials, organized into any number of zones and located anywhere in the world. Automatic and correctly weighted energy profiling at 30-minute intervals for every day of the year. Dynamically links to correctly weighted refrigeration equipment selection and balancing programs. Screen Shots Keywords Refrigeration, Heat Load Calculation Validation/Testing Designed to ASHRAE and CIBSE standards. Standard curriculum teaching aid in leading colleges and universities throughout Europe and Far East. Expertise Required Totally intuitive and dynamically error trapped. Suitable for novices and

460

Building Energy Software Tools Directory: Physibel  

NLE Websites -- All DOE Office Websites (Extended Search)

Physibel Physibel Physibel logo. Suite of heat and mass transfer programs: 2-D /3-D steady state heat transfer for building details, thermal bridges, window frames and enclosures:� KOBRU86, CYLI86, TRISCO, BISCO, RADCON, KOBRA. 2-D /3-D transient heat transfer for ground heat losses, building details, and efficiency of thermal capacity: SECTRA, VOLTRA. improved Glaser method for vapour transfer, condensation, and drying: GLASTA. multi-zone transient heat transfer for heating, cooling, overheating, sunscreens, and passive solar energy: CAPSOL. Screen Shots Keywords heat transfer, mass transfer, radiation, convection, steady-state, transient, 2-D, 3-D Validation/Testing N/A Expertise Required A basic knowledge about heat and mass transfer is sufficient for most programs, but a knowledge in depth of heat transfer mechanisms is helpful

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


461

Building Energy Software Tools Directory: Roanakh  

NLE Websites -- All DOE Office Websites (Extended Search)

Roanakh Roanakh Logo for Roanakh Web-based application with the theory and embedded calculations required to completely design any PV system. Novices and advanced users can use the automated calculations to design and validate their PV systems. It is the goal of Roanakh.com to spread the knowledge and techniques required to build PV systems to a vast majority of the people looking for such information free of cost. Using the latest in web design techniques and with built in libraries of PV system components, Roanakh.com allows users to completely design and/or validate their PV system. Screen Shots Keywords photovoltiac system design, grid-tie, grid-interactive, solar electric system design Validation/Testing Reviewed by GLREA, Solar Living Institute, Oakland University, MI.

462

Building Energy Software Tools Directory: Be06  

NLE Websites -- All DOE Office Websites (Extended Search)

Be06 Be06 Be06 logo Calculates the energy demand of buildings in relation to the new energy requirements in the 2006 additions to the Danish Building Regulations 1995 implementing the EU EPBD, Energy Performance of Building Directive. Be06 calculations are performed in accordance with the mandatory calculation procedure described in SBi-direction 213: Energy Demand of Buildings (In Danish: SBi-anvisning 213: Bygningers Energibehov). The software uses the mandatory calculation core also developed by the Danish Building Research Institute, SBi. Be06 calculates the expected energy demand to operate the heating and climate conditioning systems in all types of buildings e.g. houses, block of flats, offices, institutions, schools, shops and workshops. The Be06 software calculates the needed energy supply to a building for room

463

Building Energy Software Tools Directory: Photovoltaics Economics  

NLE Websites -- All DOE Office Websites (Extended Search)

Photovoltaics Economics Calculator Photovoltaics Economics Calculator Web-based tool which allows you to describe your solar system in detail and provides a detailed breakdown of what sort of power you'll get out of it and how economical of a investment the system will be. It uses the TMY2 solar data from the NREL Renewable Resource Data Center. This calculator allows users to customize their setup, providing greater feedback on how much power is provided when, and most importantly, a detailed economics breakdown of how the investment works out. It also keeps track of battery charge states for off-grid users. Screen Shots Keywords solar, photovoltaic, economics Validation/Testing Validated against PVWatts, a widely recognized solar power output calculator. When given the exact same conditions, power production is

464

Building Energy Software Tools Directory: DOE-2  

NLE Websites -- All DOE Office Websites (Extended Search)

DOE-2 DOE-2 Hourly, whole-building energy analysis program calculating energy performance and life-cycle cost of operation. Can be used to analyze energy efficiency of given designs or efficiency of new technologies. Other uses include utility demand-side management and rebate programs, development and implementation of energy efficiency standards and compliance certification, and training new corps of energy-efficiency conscious building professionals in architecture and engineering schools. Keywords energy performance, design, retrofit, research, residential and commercial buildings Validation/Testing N/A Expertise Required Recommend 3 days of formal training in basic and advanced DOE-2 use. Users 800 user organizations in U.S., 200 user organizations internationally;

465

Building Energy Software Tools Directory: CHVAC  

NLE Websites -- All DOE Office Websites (Extended Search)

CHVAC CHVAC CHVAC logo. Quickly and accurately calculates the maximum heating and cooling loads for commercial buildings. CHVAC allows an unlimited number of zones which can be grouped into as many as 100 air handling systems. CHVAC automatically looks up all CLTD cooling load and correction factors necessary for computing loads. In addition, the programs can look up outdoor design weather data for over 1500 cities located around the world. There is also provision for editing the weather data as well as adding data for other cities. Comprehensive reports list the general project data, detailed zone loads, air handler summary loads, outside air loads, total building loads, building envelope analysis, tonnage requirements, CFM air quantities, chilled water flow rates (if applicable), and complete psychrometric data

466

Building Energy Software Tools Directory: ENMAT  

NLE Websites -- All DOE Office Websites (Extended Search)

ENMAT ENMAT ENMAT (Energy Monitoring & Targeting) is a web based Energy Monitoring and Targeting system. It presents energy management data in a way that is relevant, meaningful and useful to users. The purpose of Monitoring and Targeting is to relate your energy consumption data to the appropriate energy drivers, such as weather and production, so that you get a better understanding of how energy is being used. In particular, it will identify if there are signs of avoidable waste or other opportunities to reduce consumption. Envantage offer a Monitoring and Targeting (M&T) service to enable organisations to save energy and cut costs. The use of this platform means that we can deliver a bespoke solutions to meet your needs. Aimed at industrial/commercial SMEs and multi-site retailers, the Envantage ENMAT

467

Building Energy Software Tools Directory: ISOVER Energi  

NLE Websites -- All DOE Office Websites (Extended Search)

ISOVER Energi ISOVER Energi ISOVER Energi logo Calculates: U-value, for constructions with and without thermal bridges; total heat loss for buildings; and energy demand for buildings. ISOVER Energi compares heat loss to the heat loss frame in the Danish Building Regulations. The energy demand is compared to the energy frame in the Danish Building Regulations. Furthermore ISOVER Energi calculates the profitability of activities e.g. retrofit, renewing of windows, to improve the energy performance of existing buildings. The profitability is compared to the criteria in the Danish Building Regulations. Access to databases with characteristics for common building materials and with linear heat losses for typical solutions for connections. The database facility is planned to be enlarged with databases for windows, boilers,

468

Building Energy Software Tools Directory: TRACE 700  

NLE Websites -- All DOE Office Websites (Extended Search)

700 700 TRACE 700 logo. Trane's TRACE 700 software - the latest version of Trane Air Conditioning Economics - brings the algorithms recommended by the American Society of Heating, Refrigerating, and Air-Conditioning Engineers (ASHRAE) to the familiar Windows operating environment. Use it to assess the energy and economic impacts of building-related selections such as architectural features, comfort-system design, HVAC equipment selections, operating schedules, and financial options. Flexible data entry, coupled with multiple views and "drag-and-drop" load assignments, simplify the modeling process and help you identify optimal zoning and plant configurations. Compare up to four alternatives for a single project by modeling various air distribution and mechanical

469

Building Energy Software Tools Directory: Radiance  

NLE Websites -- All DOE Office Websites (Extended Search)

Radiance Radiance Radiance logo. Advanced lighting simulation and rendering package; calculates spectral radiance values (illuminance & color) and spectral irradiance (illuminance & color) for interior and exterior spaces considering electric lighting, daylight and interreflection. Used by architects and designers to predict illumination, visual quality and appearance of design spaces. Used by researchers to evaluate new lighting and daylighting technologies and study visual comfort and similar quantities related to the visual environment. Keywords lighting, daylighting, rendering Validation/Testing N/A Expertise Required High level of computer literacy required; 4 days training, minimum. Users Over 200. Audience Daylighting, lighting, and architectural designers.

470

Building Energy Software Tools Directory: RESEM  

NLE Websites -- All DOE Office Websites (Extended Search)

RESEM RESEM RESEM logo. A simulation-based tool developed to allow the DOE Institutional Conservation Program (ICP) staff and participants to reliably determine the energy savings directly attributable to ICP-supported retrofit measures implemented in a building. RESEM (Retrofit Energy Savings Estimation Model) calculates long-term energy savings directly from actual utility data, with corrections for weather and use variations between the pre-retrofit and post-retrofit utility data collection periods. Keywords retrofit, institutional buildings Validation/Testing N/A Expertise Required Moderate level of computer literacy; familiarity with building energy concepts. Users Over 50. Audience Building managers and energy retrofit engineers. Input Minimal required input includes: original year of building construction,

471

Building Energy Software Tools Directory: AIRWIND Pro  

NLE Websites -- All DOE Office Websites (Extended Search)

AIRWIND Pro AIRWIND Pro Computes building air conditioning cooling and heating loads, in either Imperial or SI units, for projects drawn directly on-screen, with any number of walls, in any number of rooms, arranged at any angle, with any mix of construction materials and fenestration, organized into any number of zones and located anywhere in the world. Automatic and correctly weighted energy profiling at 30-minute intervals for every day of the year. Dynamically links to correctly weighted air conditioning equipment selection programs. Screen Shots Keywords Air Conditioning Load Calculation Validation/Testing Designed to ASHRAE and CIBSE standards. Standard curriculum teaching aid in leading colleges and universities throughout Europe and Far East. Expertise Required

472

State of Louisiana Toll Free Directory  

E-Print Network (OSTI)

Center Aimee Sibley Student Assistant Dr. Aaron K. Lusby Assistant Professor Funded By: Special Research................................................................................................................ 4 Natural Disaster Assistance ........................................................................................ 4 Road and Weather Conditions

Selmic, Sandra

473

RUTGERSCAMDEN MEDIA GUIDE: BUSINESS EXPERTS DIRECTORY  

E-Print Network (OSTI)

Economics 3 Economic Development 4 Employee Health 4 Energy Efficiency 4 Entrepreneurship 5 Finance 5, 6 in organizational settings. Phone: (856) 225-6709 (office) Email: rabinowi@camden.rutgers.edu Online bio: business at the intersection of organizational behavior and human resource management. It focuses on how managers can maximize

Garfunkel, Eric

474

Networked Hierarchies for Web Directories Nazli Goharian  

E-Print Network (OSTI)

that the hierarchical characteristics of parent, child, and sibling relationships were, in part, lost. A networked information if they are further enriched by incorporating additional links besides parents, and siblings and generate links among categories that do not share the same parents. An effort to utilize non

475

2012 Directory As of May 25, 2012  

E-Print Network (OSTI)

+ 1 (800) 222-1222. MBL Watch Staff -- Call ext. 7217. 1. Remember to wear safety glasses, goggles, or exotic marine animals must be cremated. Contact the EH&S Office at x7424 for instructions. 12. SCUBA

Vallino, Joseph J.

476

Environmental/Radiological Assistance Directory (ERAD) | Department...  

Office of Environmental Management (EM)

Brookhaven Graphite Research Reactor (BGRR), D&D Authorized Limits for Portsmith Oil Inventory Clearance of Real and Personal Property RESRAD Family of Codes Knowledge...

477

Directory of Small Business Program Managers (SBPMs)  

Office of Environmental Management (EM)

Business Program Manager W: (720) 962-7154 F: (720) 962-7161 tetrault@wapa.gov Frank Armstrong Alternate Small Business Program Manager W: (720) 962-7163 F: (720) 962-7161...

478

Project Directories File System at NERSC  

NLE Websites -- All DOE Office Websites (Extended Search)

Project File System Project File System Overview The project file system is a global file system available to all NERSC computational systems. It allows groups of NERSC users to...

479

Publications A Directory of Fisheries Agencies,  

E-Print Network (OSTI)

, and selected U.S. legislation bearing on fis heries, fis hi ng or boa ti ng, etc. National and international

480

Fort Worth Regional Science Fair Winners Directory  

E-Print Network (OSTI)

Of Mathematics & Science Tom Cundari Methane-methanol Conversion: Designing An Efficient Organometallic Catalyst Akpinar Producing Bioethanol From Starch Plants I AdvisorSchool Division: Project: Second Place: Patrick A

Chiao, Jung-Chih

Note: This page contains sample records for the topic "directory traversal flaw" from the National Library of EnergyBeta (NLEBeta).
While these samples are representative of the content of NLEBeta,
they are not comprehensive nor are they the most current set.
We encourage you to perform a real-time search of NLEBeta
to obtain the most current and comprehensive results.


481

FFCAct Clearinghouse, Directory of abstracts. Revision 1  

SciTech Connect

The Federal Facility Compliance Act (FFCAct) Clearinghouse is a card catalog of information about the FFCAct and its requirements for developing Site Treatment Plans (STP). The information available in the clearinghouse includes abstracts describing computer applications, technical reports, and a list of technical experts. Information can be accessed for use in responding to FFCAct requirements, and the clearinghouse provides search capabilities on particular topics and issues related to STP development. Appendix A includes: contacts from each site, for which contact has been made, who are developing STPs; the FFCAct Clearinghouse Fact Sheet and; additional hard copy forms to be used to populate the database. This report contains 50 abstracts related to the Radioactive Waste Technical Support Program.

Harwood, T.

1994-05-01T23:59:59.000Z

482

Building Energy Software Tools Directory: TREAT  

NLE Websites -- All DOE Office Websites (Extended Search)

TREAT TREAT TREAT logo. Performs hourly simulations for single family, multifamily, and mobile homes. Comprehensive analysis tool includes tools for retrofitting heating and cooling systems, building envelopes (insulation and infiltration), windows and doors, hot water, ventilation, lighting and appliances, and more. Weather normalizes utility bills for comparison to performance of model. Highly accurate calculations which consider waste heat (baseload), solar heat gain, and fully interacted energy savings calculations. Create individual energy improvements or packages of interactive improvements. Also performs load sizing. Generates XML file for upload to online database tracking systems. Complies with HERS BESTEST. Approved by the U.S. Department of Energy for use in Weatherization Assistance Programs. Screen

483

Building Energy Software Tools Directory: solacalc  

NLE Websites -- All DOE Office Websites (Extended Search)

solacalc solacalc solacalc logo. Simulates passive solar houses by calculating heat losses and solar gains in residential buildings, using interlinked worksheets and very extensive help. Based on New Method 5000, 'solacalc' uses UK climate data to easily and quickly calculate thermal balances and financial analysis. A reference calculation concurrently offers a design comparison without solar features. A Net Present Value calculation provides economic analysis. Keywords passive solar, house design, building design, building services, design tools Validation/Testing N/A. Expertise Required None, but knowledge of spreadsheets and basic building thermodynamics is helpful. Users More than 30. Audience Architects, Builders, homeowners, technicians in architectural practices,

484

Building Energy Software Tools Directory: Duct Calculator  

NLE Websites -- All DOE Office Websites (Extended Search)

Duct Calculator Duct Calculator Duct Calculator logo. Provides access to duct calculation and sizing capabilities either as a standalone Windows program or from within the Autodesk Building Mechanical, the new HVAC-oriented version of AutoCAD. Based on the engineering data and procedures outlined in the ASHRAE Fundamentals Handbook Calculation Methods, Duct Calculator features an advanced and fully interactive user interface. Slide controls for air flow, velocity, friction and duct size provide real-time, interactive feedback; as you spin one, the others dynamically respond in real time. When used with Autodesk Building Mechanical, Duct Calculator streamlines the design process by automatically re-sizing whole branches of ductwork. Screen Shots Keywords duct-sizing, design, engineering, calculation

485

Building Energy Software Tools Directory: AFT Fathom  

NLE Websites -- All DOE Office Websites (Extended Search)

AFT Fathom AFT Fathom AFT Fathom logo. AFT Fathom is a general-purpose pipe network analysis tool that can be used to simulate any incompressible fluid flow problem. Fathom is widely used to design chilled water and hot water systems, fire suppression systems, water distribution, chemical process plants, and HVAC duct systems. Fathom includes extensive built-in databases of fluids (liquids and gases), pipe materials, pipe fittings, and insulation materials. Fathom includes integrated heat transfer capabilities to model piping heat transfer and heat exchangers. Screen Shots Keywords design, pump selection, pipe analysis, duct design, duct sizing, chilled water systems, hot water system Validation/Testing N / A Expertise Required Engineering background in piping or duct design required to use software

486

Building Energy Software Tools Directory: EEM Suite  

NLE Websites -- All DOE Office Websites (Extended Search)

EEM Suite EEM Suite EEM Suite Logo Enables large companies to proactively monitor, analyze and manage energy costs and consumption. EEM Suite combines analysis and reporting tools; real-time, event-driven alerts; and Web-based enterprise visibility into a single solution so users can control their energy costs and usage. EEM Suite leverages meter, billing, production, real-time price, rate and weather information to drive significant energy and water reductions. Users can control utility costs through timely identification of billing errors and overcharges, drive accountability through accurate cost allocation and tenant rebilling, monitor performance against budgets, predict energy requirements to assist in key operational activities planning, improve operational efficiency through continuous facility and

487

Building Energy Software Tools Directory: Window  

NLE Websites -- All DOE Office Websites (Extended Search)

Window Window WINDOW screenshot. Calculates thermal performance of fenestration products; heat transfer analysis method consistent with the rating procedure developed by the National Fenestration Rating Council (NFRC). Screen Shots Keywords fenestration, thermal performance, solar optical characteristics, windows, glazing Validation/Testing N/A Expertise Required Some knowledge about windows. Users 2000+ in the U.S. and abroad. Audience Manufacturers, engineers, architects, researchers, sales personnel. Input Interactive program: user-provided data files for frames (from the THERM program) and glazing layers (from the Optics program) optional. Output Reports for the total window can be saved to disk or printed; files can be generated to be used as input to the DOE-2 and EnergyPlus programs;

488

Building Energy Software Tools Directory: Eco Lumen  

NLE Websites -- All DOE Office Websites (Extended Search)

Eco Lumen Eco Lumen Eco Lumen logo. Lighting design software, structured to recommend lighting designs that optimize the electricity bills while ensuring appropriate illumination levels in the facility as per ISI standards. The software is built around a user-friendly interface and requires elementary inputs such as room dimensions and usage parameters. The software can then recommend the most appropriate lighting equipment for the facility as well as the optimum number of fittings required. For existing facilities, Eco Lumen recommends the most appropriate upgrade options, for replacing the existing lighting products with more energy efficient ones. Eco Lumen also offers the option of re-using any applicable fittings for the room being designed, thus reducing the renovation cost for the facility. Screen Shots

489

Building Energy Software Tools Directory: AVReporter  

NLE Websites -- All DOE Office Websites (Extended Search)

AVReporter AVReporter tool_avreporter.jpg Energy management systems can measure data via installed hardware and turn it into valuable information. The AVReporter Energy Management software then will turn this information into reports and analytical information aiding energy efficiency, helping to realize where and when to change user platform in order to reduce consumption. Screen Shots Keywords Energy management, energy monitoring, reducing CO2, increase energy efficency, ISO50001 Validation/Testing Compatible with ISO50001 Standards and LEED Certifications. Expertise Required For users: none. For system integrators: electrical engineer and IT specialist. Users Users over 100 in Hungary and international Audience Production companies, building complexes, logistic centers and shopping

490

Building Energy Software Tools Directory: CLIMATE 1  

NLE Websites -- All DOE Office Websites (Extended Search)

CLIMATE 1 CLIMATE 1 CLIMATE 1 logo. Global climate data atlas consisting of a data base and a software for data access and visualization. The data base contains more than 1200 station data sets distributed all over the globe. Station data consist of 16 monthly mean data sets: Temperature: mean, min., max., extreme min. and max. rel. humidity, precipitation: mean, min., max., day maximum, days with precipitation, potential evaporation, global radiation, sunshine hours, wind speed and direction. Once a station is selected, its data are displayed graphically on the screen, and the data can be exported for other applications. A graphical user interface with topographic and climatic maps makes the tool easy to handle. Screen Shots Keywords climate data, climatic maps, sun chart

491

Building Energy Software Tools Directory: Delphin  

NLE Websites -- All DOE Office Websites (Extended Search)

Delphin Delphin Delphin logo Delphin is a comprehensive numerical simulation tool for the combined heat, moisture, and matter (e.g. salt) transport in porous building materials. It is mostly applied to calculate transient processes in building envelopes and construction details, and predict condensation problems and durability risks in general. Screen Shots Keywords Coupled heat, air and moisture transport, porous materials, building envelope Validation/Testing The software was tested according to HAMSTAD Benchmarks 1 to 5, EN 15026:2007. The software is also validated to conform with both two-dimensional cases of ISO 10211:2007, Annex A. The testcases are available on http://www.bauklimatik-dresden.de/delphin/benchmarks/en-10211_2007.php The parameterization and transport models are also tested against

492

Building Energy Software Tools Directory: TAPS  

NLE Websites -- All DOE Office Websites (Extended Search)

TAPS TAPS Allows users to size hot and cold water services by specifying the properties of pipe work branches connected to one another via nodes. As an option, you can also specify a secondary return pipe work system in the same manner, and TAPS will size the pipe work and the pump required to provide the required flow around the return circuit. Different types of cold-water supply can be specified, such as gravity feed or pressurised. The user can also specify items such as different pipe materials, lagging properties and surface emissivity. Both the outflow circuit and the secondary return circuit are balanced by resizing the non-index runs. Velocity limits can be defined for the system, and if required, the dimensions of certain pipes in the system can be fixed.

493

Building Energy Software Tools Directory: BUS++  

NLE Websites -- All DOE Office Websites (Extended Search)

BUS++ BUS++ New generation platform for building energy, ventilation, noise level and indoor air quality simulations. A network assumption is adopted, and BUS++ allows both steady-state and dynamic simulations on a desired level of accuracy. BUS++ includes modern solution routines and has passed the most commonly used rigorous air flow and heat transfer test cases. However, only a limited number of special applications are completed. Keywords energy performance, ventilation, air flow, indoor air quality, noise level Validation/Testing N/A Expertise Required Special expertise needed for utilizing all potential calculation features. Common knowledge of building components needed for using special applications with graphical user interfaces. Users 20 users in VTT Building Technology and other companies in Finland.

494

Building Energy Software Tools Directory: Frame Simulator  

NLE Websites -- All DOE Office Websites (Extended Search)

Frame Simulator Frame Simulator Frame Simulator logo Frame Simulator makes calculation of the thermal transmittance in windows and building components an extremely easy process. It can be used to: analyze how heat flows through building components and fenestrations estimate surface temperatures and predict condensation problems discover weak points in window frames calculate thermal transmittance Uf and linear conductance Lf2d of any type of window frame as well as the Uw thermal transmittance of entire complex fenestration. Precise simulation of the heat transfer is performed using a two-dimensional numerical method for steady state boundary conditions conforming to ISO 10077-2 (finite elements). Screen Shots Keywords 2D, heat transfer, thermal analysis, thermal transmittance, thermal

495

Traverse County, Minnesota: Energy Resources | Open Energy Information  

Open Energy Info (EERE)

Minnesota: Energy Resources Minnesota: Energy Resources Jump to: navigation, search Equivalent URI DBpedia Coordinates 45.8030256°, -96.365147° Loading map... {"minzoom":false,"mappingservice":"googlemaps3","type":"ROADMAP","zoom":14,"types":["ROADMAP","SATELLITE","HYBRID","TERRAIN"],"geoservice":"google","maxzoom":false,"width":"600px","height":"350px","centre":false,"title":"","label":"","icon":"","visitedicon":"","lines":[],"polygons":[],"circles":[],"rectangles":[],"copycoords":false,"static":false,"wmsoverlay":"","layers":[],"controls":["pan","zoom","type","scale","streetview"],"zoomstyle":"DEFAULT","typestyle":"DEFAULT","autoinfowindows":false,"kml":[],"gkml":[],"fusiontables":[],"resizable":false,"tilt":0,"kmlrezoom":false,"poi":true,"imageoverlays":[],"markercluster":false,"searchmarkers":"","locations":[{"text":"","title":"","link":null,"lat":45.8030256,"lon":-96.365147,"alt":0,"address":"","icon":"","group":"","inlineLabel":"","visitedicon":""}]}

496

Traverse City, Michigan: Energy Resources | Open Energy Information  

Open Energy Info (EERE)

7630567°, -85.6206317° 7630567°, -85.6206317° Loading map... {"minzoom":false,"mappingservice":"googlemaps3","type":"ROADMAP","zoom":14,"types":["ROADMAP","SATELLITE","HYBRID","TERRAIN"],"geoservice":"google","maxzoom":false,"width":"600px","height":"350px","centre":false,"title":"","label":"","icon":"","visitedicon":"","lines":[],"polygons":[],"circles":[],"rectangles":[],"copycoords":false,"static":false,"wmsoverlay":"","layers":[],"controls":["pan","zoom","type","scale","streetview"],"zoomstyle":"DEFAULT","typestyle":"DEFAULT","autoinfowindows":false,"kml":[],"gkml":[],"fusiontables":[],"resizable":false,"tilt":0,"kmlrezoom":false,"poi":true,"imageoverlays":[],"markercluster":false,"searchmarkers":"","locations":[{"text":"","title":"","link":null,"lat":44.7630567,"lon":-85.6206317,"alt":0,"address":"","icon":"","group":"","inlineLabel":"","visitedicon":""}]}

497

Time machines and traversable wormholes in modified theories of gravity  

E-Print Network (OSTI)

We review recent work on wormhole geometries in the context of modified theories of gravity, in particular, in f(R) gravity and with a nonminimal curvature-matter coupling, and in the recently proposed hybrid metric-Palatini theory. In principle, the normal matter threading the throat can be shown to satisfy the energy conditions and it is the higher order curvatures terms that sustain these wormhole geometries. We also briefly review the conversion of wormholes into time-machines, explore several of the time travel paradoxes and possible remedies to these intriguing side-effects in wormhole physics.

Francisco S. N. Lobo

2012-12-05T23:59:59.000Z

498

Oversnow Traverse from McMurdo to the South Pole  

Science Journals Connector (OSTI)

...of the new large diesel-driven ve-hicles...Chrysler industrial engine. Be-cause of the...it is powered by a diesel unit. This vehicle...500 gallons of fuel could be carried...with an over-all fuel consumption of about 4 gallons...

A. P. Crary; Edwin S. Robinson

1962-01-26T23:59:59.000Z

499

Traversing the mountaintop: world fossil fuel production to 2050  

Science Journals Connector (OSTI)

...the decline in prices during the mid-1980s...essentially the USA. By 1970, North...leading source of energy for the world...order to keep oil prices declining to ruinous...discovered early in the history of exploration...market and oil prices would have collapsed...which begun in the USA in the early 1930s...

2009-01-01T23:59:59.000Z

500

Traversing the mountaintop: world fossil fuel production to 2050  

Science Journals Connector (OSTI)

...Constraints on oil field development have...informal systems of production controls. These...in order to keep oil prices declining...2050, the sum of cumulative production and proved reserves...relatively few oil resources to be...

2009-01-01T23:59:59.000Z