what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 41 RSS Feed

Files Date: 2011-10-12

Ubuntu Security Notice USN-1228-1
Posted Oct 12, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1228-1 - Timo Warns discovered that the EFI GUID partition table was not correctly parsed. A physically local attacker that could insert mountable devices could exploit this to crash the system or possibly gain root privileges. Dan Rosenberg discovered that the IPv4 diagnostic routines did not correctly validate certain requests. A local attacker could exploit this to consume CPU resources, leading to a denial of service. Various other issues were also addressed.

tags | advisory, denial of service, local, root
systems | linux, ubuntu
advisories | CVE-2011-1776, CVE-2011-2213, CVE-2011-2497, CVE-2011-2695, CVE-2011-2700, CVE-2011-2723, CVE-2011-2928, CVE-2011-3188, CVE-2011-3191
SHA-256 | 7a796facfbdbd4810efed8d348e53d29c7acf6784437937e622860655741e4f6
Google App Engine Code Execution
Posted Oct 12, 2011
Authored by Adi Sharabani

The Google App Engine SDK for Python suffers from a code execution vulnerability that can be leveraged by a CSRF vulnerability.

tags | exploit, code execution, python
advisories | CVE-2011-1364
SHA-256 | 519d4382361dcafef4cd129e1fe1de30dc932146ee9e653e859c5c913ba55657
Hacking WebLogic
Posted Oct 12, 2011
Authored by Sysmox | Site sysmox.com

Whitepaper called Hacking WebLogic. It gives a brief overview of how to hack a default WebLogic server using a web browser.

tags | paper, web
SHA-256 | 77477751376cbf1dd5937b193eca2afb67787fcb5a3e0c217ea0c52936c41806
Secunia Security Advisory 46359
Posted Oct 12, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for gnutls. This fixes multiple vulnerabilities, which can be exploited by malicious people to manipulate certain data and conduct spoofing attacks.

tags | advisory, spoof, vulnerability
systems | linux, gentoo
SHA-256 | b9c9df4f2808f6fada9b0ed6384c7db055cb9c3c0dd08a211bb3c3c59b604804
Secunia Security Advisory 46352
Posted Oct 12, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been discovered in the Advanced Forum Signatures plugin for MyBB, which can be exploited by malicious users to conduct SQL injection attacks.

tags | advisory, vulnerability, sql injection
SHA-256 | dc6e7887dce3d26375fa7d5d45ad78ec1d6957ef499649c716ba338fe15ecad5
Secunia Security Advisory 46358
Posted Oct 12, 2011
Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for php. This fixes multiple vulnerabilities, where some have unknown impacts and others can be exploited by malicious users to bypass certain security restrictions and by malicious people to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.

SHA-256 | de0f6990ba8780c63c3f66604687a3cec91eff1939cc4fd72a5be3d3c3634239
Secunia Security Advisory 46358
Posted Oct 12, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for php. This fixes multiple vulnerabilities, where some have unknown impacts and others can be exploited by malicious users to bypass certain security restrictions and by malicious people to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.

tags | advisory, denial of service, php, vulnerability
systems | linux, gentoo
SHA-256 | de0f6990ba8780c63c3f66604687a3cec91eff1939cc4fd72a5be3d3c3634239
Secunia Security Advisory 46360
Posted Oct 12, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in the MyStatus plugin for MyBB, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
SHA-256 | 66c1fc1ca568c1b053557c0b5b8b4773763053b78ad83c97f4706090bf8d9601
Secunia Security Advisory 46396
Posted Oct 12, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Stefan Schurtz has discovered a vulnerability in Contao, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
SHA-256 | acb4dc595eae8076305ac95bafb64b29577b53855a14273c7a568c5097997865
Secunia Security Advisory 46383
Posted Oct 12, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for kdelibs. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.

tags | advisory, spoof
systems | linux, redhat
SHA-256 | 195b42dade2a6732c1bb59bc63deab3cc79046248d39055517332690c64d1edd
Secunia Security Advisory 46354
Posted Oct 12, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been discovered in POSH, which can be exploited by malicious users to disclose potentially sensitive information and by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
SHA-256 | f305d8f86481a11fd55a2f73c80055a1b4f272c1b102c5f20a4d3309f8c9b4fb
Secunia Security Advisory 46339
Posted Oct 12, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Apple has reported multiple vulnerabilities in Apple iTunes, which can be exploited by malicious people to disclose sensitive information, manipulate certain data, conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, and compromise a user's system.

tags | advisory, spoof, vulnerability, xss
systems | apple
SHA-256 | 57358351a538cfbbce8838640f67e4d9acb6caafd4afcd29d3c40c8a4f33b2e8
Secunia Security Advisory 46370
Posted Oct 12, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in BlackBerry Enterprise Server, which can be exploited by malicious users to impersonate other users.

tags | advisory
SHA-256 | e25d61c6fb9a7ec9eb61a0d5bedb1213697b4b0a55d6564ea2698abdd52f7739
Secunia Security Advisory 46411
Posted Oct 12, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in Hitachi JP1/Cm2/Network Node Manager, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.

tags | advisory, denial of service, vulnerability
SHA-256 | c5d850592389e8e01847904ed1b281f26cf41bec52245f715815c49984376104
Secunia Security Advisory 46357
Posted Oct 12, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Google App Engine SDK for Python, which can be exploited by malicious people to conduct cross-site request forgery attacks.

tags | advisory, python, csrf
SHA-256 | b32f73bda3521d1b39a813988a7dd99c60da72c09485d69e2526673e22a9f877
Secunia Security Advisory 46410
Posted Oct 12, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for Qt. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.

tags | advisory, denial of service, vulnerability
systems | linux, suse
SHA-256 | a8e6fba3cada46f59fbed4538b09400fa06e3e9122ad6ab2432c09e23770fe6c
Secunia Security Advisory 46407
Posted Oct 12, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for tomcat5. This fixes a vulnerability, which can be exploited by malicious people to disclose potentially sensitive information and bypass certain security restrictions.

tags | advisory
systems | linux, suse
SHA-256 | 553024aa86462ef218719c53062391b53cc8eb6db2d05a828d5666f81278eeed
Secunia Security Advisory 46422
Posted Oct 12, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in the Light Post plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
SHA-256 | 0d829ae8d362fe8ae23eb23d8d55ddcb919bcb83fa4b8619b08a98bb64179dab
Secunia Security Advisory 46381
Posted Oct 12, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Roberto Paleari has reported a vulnerability in ManageEngine ADSelfService Plus, which can be exploited by malicious users to bypass certain security restrictions.

tags | advisory
SHA-256 | a8162f141c0a2017b8aed54bbbb46d1b2d3f07e9df462a2b4755ca10169c57f3
Secunia Security Advisory 46390
Posted Oct 12, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in SilverStripe, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
SHA-256 | f59de64a3a2df4bc1eef99ced566bb26137276d325cb724dd406e6ab42551c61
Secunia Security Advisory 46371
Posted Oct 12, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for libqt4. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.

tags | advisory, denial of service, vulnerability
systems | linux, suse
SHA-256 | 7c0206d5dc6756c560d6348d1228d8eda595f1768db4e80b730e98c0195c44b4
Technical Cyber Security Alert 2011-284A
Posted Oct 12, 2011
Authored by US-CERT | Site us-cert.gov

Technical Cyber Security Alert 2011-284A - There are multiple vulnerabilities in Microsoft Windows, .NET Framework, Silverlight, Internet Explorer, Forefront Unified Access Gateway, and Host Integration Server. Microsoft has released updates to address these vulnerabilities.

tags | advisory, vulnerability
systems | windows
SHA-256 | de59413da740d5efa1911fce8554c2d926b1a108171a00573c8a35b404224e95
Microsoft Security Bulletin Summary For October, 2011
Posted Oct 12, 2011
Site microsoft.com

This bulletin summary lists 8 Microsoft security bulletins released for October, 2011.

tags | advisory
SHA-256 | 9cad8acac48c2a754450433d568cce508dfa732934c2515e7ce2e800567f6910
Apple Security Advisory 2011-10-11-1
Posted Oct 12, 2011
Authored by Apple | Site apple.com

Apple Security Advisory 2011-10-11-1 - iTunes 10.5 has been released and addresses CoreFoundation, ColorSync, CoreAudio, CoreMedia, ImageIO, WebKit, and various other vulnerabilities.

tags | advisory, vulnerability
systems | apple
advisories | CVE-2010-1823, CVE-2011-0164, CVE-2011-0200, CVE-2011-0204, CVE-2011-0215, CVE-2011-0218, CVE-2011-0221, CVE-2011-0222, CVE-2011-0223, CVE-2011-0225, CVE-2011-0232, CVE-2011-0233, CVE-2011-0234, CVE-2011-0235, CVE-2011-0237, CVE-2011-0238, CVE-2011-0240, CVE-2011-0253, CVE-2011-0254, CVE-2011-0255, CVE-2011-0259, CVE-2011-0981, CVE-2011-0983, CVE-2011-1109, CVE-2011-1114, CVE-2011-1115, CVE-2011-1117, CVE-2011-1121
SHA-256 | d0a286d451ab2c0a3000ad357ce8ad5ae2a9909ab9c359f0f3163cd19b82dcb8
Mandriva Linux Security Advisory 2011-148
Posted Oct 12, 2011
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2011-148 - Multiple vulnerabilities has been discovered and corrected in samba/cifs-utils. smbfs in Samba 3.5.8 and earlier attempts to use mount.cifs to append to the /etc/mtab file and umount.cifs to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089. The check_mtab function in client/mount.cifs.c in mount.cifs in smbfs in Samba 3.5.10 and earlier does not properly verify that the mountpoint strings are composed of valid characters, which allows local users to cause a denial of service via a crafted string. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-0547. Additionally for Mandriva Linux 2010.2 the cifs-utils package has been upgraded to the 4.8.1 version that brings numerous additional fixes.

tags | advisory, denial of service, local, vulnerability
systems | linux, mandriva
advisories | CVE-2011-1678, CVE-2011-2724
SHA-256 | 91640800ce2136b96dfd389b427321e0b3185f315f748dcc3abb4044c1b1d06c
Page 1 of 2
Back12Next

File Archive:

May 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    44 Files
  • 2
    May 2nd
    5 Files
  • 3
    May 3rd
    11 Files
  • 4
    May 4th
    0 Files
  • 5
    May 5th
    0 Files
  • 6
    May 6th
    28 Files
  • 7
    May 7th
    3 Files
  • 8
    May 8th
    4 Files
  • 9
    May 9th
    54 Files
  • 10
    May 10th
    12 Files
  • 11
    May 11th
    0 Files
  • 12
    May 12th
    0 Files
  • 13
    May 13th
    17 Files
  • 14
    May 14th
    11 Files
  • 15
    May 15th
    17 Files
  • 16
    May 16th
    13 Files
  • 17
    May 17th
    22 Files
  • 18
    May 18th
    0 Files
  • 19
    May 19th
    0 Files
  • 20
    May 20th
    17 Files
  • 21
    May 21st
    18 Files
  • 22
    May 22nd
    7 Files
  • 23
    May 23rd
    0 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close