seeing is believing
Showing 1 - 25 of 622 RSS Feed

Files

ZRCSA-200504.txt
Posted Dec 2, 2005
Authored by Siegfried | Site zone-h.fr

dotclear version 1.2.2 and below suffer from a remote SQL injection flaw.

tags | advisory, remote, sql injection
MD5 | a9e75774cb55c285c1da33383656bab8
Debian Linux Security Advisory 912-1
Posted Dec 2, 2005
Authored by Debian | Site security.debian.org

Debian Security Advisory DSA 912-1 - Wernfried Haas discovered that centericq, a text-mode multi-protocol instant messenger client, can crash when it receives certain zero length packets and is directly connected to the Internet.

tags | advisory, protocol
systems | linux, debian
advisories | CVE-2005-3694
MD5 | b462d1b23e1eedf239a39dd01fbb0911
galleryFlaws.txt
Posted Dec 2, 2005
Authored by Bharat Mediratta

Gallery versions below 2.0.2 are susceptible to cross site scripting, arbitrary file viewing, and more.

tags | advisory, arbitrary, xss
MD5 | 65d80cb9bb3372ddffe7b9e099747fc3
Apple Security Advisory 2005-11-29
Posted Dec 2, 2005
Authored by Apple | Site apple.com

Apple Security Advisory - Apple has released a security update which addresses over a dozen vulnerabilities.

tags | advisory, vulnerability
systems | apple
advisories | CVE-2005-2088, CVE-2005-2700, CVE-2005-2757, CVE-2005-3185, CVE-2005-3700, CVE-2005-2969, CVE-2005-3701, CVE-2005-2491, CVE-2005-3702, CVE-2005-3703, CVE-2005-3705, CVE-2005-1993, CVE-2005-3704
MD5 | 00a5666bc4aeb1e3ee170e51604b41ac
opera850DoS.txt
Posted Dec 2, 2005
Authored by Marc Schoenefeld

Opera 8.50 is susceptible to a denial of service condition via an applet.

tags | advisory, denial of service
MD5 | 4127abd26949b8d4f5affb8a92ee8c41
panda.pdf
Posted Dec 2, 2005

The Panda Antivirus Library is vulnerable to a heap overflow during decompression of ZOO files.

tags | advisory, overflow
MD5 | 10ad95169bd5d9c198d4d0396901d0a3
Cisco Security Advisory 20051129-csa
Posted Dec 2, 2005
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - A vulnerability exists in CSA agents that can allow a privilege escalation through locally executed software, providing a normal user or attacker with local system level privileges on a Windows workstation or server running managed or standalone CSA 4.5.0 or 4.5.1 agents.

tags | advisory, local
systems | cisco, windows
MD5 | c196f024c8953a7543f679b06c261c2f
Debian Linux Security Advisory 911-1
Posted Dec 2, 2005
Authored by Debian | Site security.debian.org

Debian Security Advisory DSA 911-1 - Several vulnerabilities have been found in gtk+2.0, the Gtk+ GdkPixBuf XPM image rendering library.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2005-2975, CVE-2005-2976, CVE-2005-3186
MD5 | fed76a51e18c6ede5d5a6d205e979551
webminFormat.txt
Posted Dec 1, 2005
Site dyadsecurity.com

The Webmin miniserv.pl code suffers from a format string vulnerability.

tags | advisory
MD5 | 7c25d3ce7077a864a585cd9dd45ecdab
msDoS.txt
Posted Dec 1, 2005
Authored by Luigi Mori | Site symbolic.it

It is possible to mount a denial of service attack against Windows 2000/2003 hosts where the SYN attack protection has been enabled.

tags | advisory, denial of service
systems | windows, 2k
MD5 | 30f518d23805f8d7f614a1160e6683b8
WebCalendar Multiple Vulnerabilities
Posted Dec 1, 2005
Authored by Francesco Ongaro | Site ush.it

WebCalendar 1.0.1 is susceptible to SQL injection attacks.

tags | advisory, sql injection
MD5 | 174c731d21acd08ee55c9e9493cb0e8e
PHP Web Statistik Multiple Vulnerabilities
Posted Dec 1, 2005
Authored by Francesco Ongaro | Site ush.it

PHP Web Statistik version 1.4 suffers from injection vulnerabilities.

tags | advisory, web, php, vulnerability
MD5 | db896fef23b6cadf087fe6af44603b0e
apcClear.txt
Posted Dec 1, 2005

APC PowerChute Network Shutdown's web interface only supports HTTP, forcing credentials to be passed in the clear.

tags | advisory, web
MD5 | b7f2c0e10fd17cc40d16690e00166bcf
googleTalk.txt
Posted Dec 1, 2005
Authored by pagvac aka Adrian Pastor | Site ikwt.com

Google Talk Beta Messenger stores all credentials in clear text in the process memory.

tags | advisory
MD5 | 5fce4868cbb6000404dc2d6cbd79e239
Gentoo Linux Security Advisory 200511-23
Posted Nov 30, 2005
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200511-23 - Sven Tantau reported about a buffer overflow vulnerability in chmlib. The function _chm_decompress_block() does not properly perform boundary checking, resulting in a stack-based buffer overflow. Versions less than 0.37.4 are affected.

tags | advisory, overflow
systems | linux, gentoo
MD5 | 3149fe1483f4683cc97bc1bb9232e732
Gentoo Linux Security Advisory 200511-22
Posted Nov 30, 2005
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200511-22 - Joxean Koret has discovered that Inkscape incorrectly allocates memory when opening an SVG file, creating the possibility of a buffer overflow if the SVG file being opened is specially crafted. Versions less than 0.43 are affected.

tags | advisory, overflow
systems | linux, gentoo
MD5 | 638841014799547e168aa1549ce11e5a
ZRCSA-200503.txt
Posted Nov 30, 2005
Authored by Siegfried, deepfear

ktools versions 0.3 and below suffer from a buffer overflow vulnerability.

tags | advisory, overflow
MD5 | c03933cc28bfc06827878bd17de37045
Gentoo Linux Security Advisory 200511-21
Posted Nov 30, 2005
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200511-21 - When handling a SWF file, the Macromedia Flash Player incorrectly validates the frame type identifier stored in the SWF file which is used as an index to reference an array of function pointers. A specially crafted SWF file can cause this index to reference memory outside of the scope of the Macromedia Flash Player, which in turn can cause the Macromedia Flash Player to use unintended memory address(es) as function pointers. Versions less than 7.0.61 are affected.

tags | advisory
systems | linux, gentoo
MD5 | 03fab18f2b73a4f494fe8eac11581787
secunia-SpeedProject.txt
Posted Nov 30, 2005
Authored by Tan Chew Keong | Site secunia.com

Secunia Research has discovered two boundary error vulnerabilities in various SpeedProject products, which can be exploited by malicious people to compromise a user's system.

tags | advisory, vulnerability
MD5 | 92044cce241edb57efa5f54490a44f55
Debian Linux Security Advisory 910-1
Posted Nov 30, 2005
Authored by Debian | Site security.debian.org

Debian Security Advisory DSA 910-1 - A vulnerability has been discovered in zope 2.7, as Open Source web application server, that allows remote attackers to insert arbitrary files via include directives in reStructuredText functionality.

tags | advisory, remote, web, arbitrary
systems | linux, debian
advisories | CVE-2005-3323
MD5 | 97cb6fe303acc57f016b7d5cefb1aaa9
Mandriva Linux Security Advisory 2005.215
Posted Nov 30, 2005
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Integer overflows in various applications in the binutils package may allow attackers to execute arbitrary code via a carefully crafted object file.

tags | advisory, overflow, arbitrary
systems | linux, mandriva
advisories | CVE-2005-1704
MD5 | 6fae237406dea7692c9fcf77bbea015e
Debian Linux Security Advisory 909-1
Posted Nov 30, 2005
Authored by Debian | Site security.debian.org

Debian Security Advisory DSA 909-1 - Daniel Schreckling discovered that the MIME viewer in horde3, a web application suite, does not always sanitize its input leaving a possibility to force the return of malicious code that could be executed on the victim's machine.

tags | advisory, web
systems | linux, debian
MD5 | e0d2e0091d7c22cba754a971d41c6d70
Debian Linux Security Advisory 908-1
Posted Nov 30, 2005
Authored by Debian | Site security.debian.org

Debian Security Advisory DSA 908-1 - Colin Leroy discovered several buffer overflows in a number of importer routines in sylpheed-claws, an extended version of the Sylpheed mail client, that could lead to the execution of arbitrary code.

tags | advisory, overflow, arbitrary
systems | linux, debian
MD5 | 8a99efd178d1f74bc82160e39d980b48
Debian Linux Security Advisory 907-1
Posted Nov 30, 2005
Authored by Debian | Site security.debian.org

Debian Security Advisory DSA 907-1 - Akira Yoshiyama noticed that ipmenu, an cursel iptables/iproute2 GUI, creates a temporary file in an insecure fashion allowing a local attacker to overwrite arbitrary files utilising a symlink attack.

tags | advisory, arbitrary, local
systems | linux, debian
MD5 | 13e644fa69f5c5af1e6fe1d6da66c984
Gentoo Linux Security Advisory 200511-20
Posted Nov 30, 2005
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200511-20 - The Horde Team reported a potential XSS vulnerability. Horde fails to properly escape error messages which may lead to displaying unsanitized error messages via Notification_Listener::getMessage() Versions less than 2.2.9 are affected.

tags | advisory
systems | linux, gentoo
MD5 | e87508d4af67ce51e91e811f276d8112
Page 1 of 25
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Microsoft Mocks Google For Failed Security Fix Deployment Methodology
Posted Oct 19, 2017

tags | headline, microsoft, flaw, google, chrome
Malicious Mineraft Apps In Google Play Enslave Your Device To A Botnet
Posted Oct 19, 2017

tags | headline, malware, microsoft, phone, botnet, google
OAIC Received 114 Voluntary Data Breach Notifications In Two Years
Posted Oct 19, 2017

tags | headline, hacker, privacy, australia, data loss
US-CERT Predicts Machine Learning To Become Security Risk
Posted Oct 19, 2017

tags | headline, flaw
ATM Malware Available Online For Online $5,000
Posted Oct 18, 2017

tags | headline, malware, bank, cybercrime, fraud
Oracle Swats 252 Bugs In Patch Update
Posted Oct 18, 2017

tags | headline, flaw, patch, oracle
Child Safety Smartwatches Easy To Hack, Watchdog Says
Posted Oct 18, 2017

tags | headline, privacy, flaw
Domino's Pizza Delivers User Details To Spammers
Posted Oct 18, 2017

tags | headline, privacy, email, spam, fraud
Microsoft Never Disclosed 2013 Hack Of Secret Vulnerability Database
Posted Oct 18, 2017

tags | headline, hacker, microsoft, data loss, flaw
Adobe Patches Zero-Day Used To Plant Gov't Spying Software
Posted Oct 17, 2017

tags | headline, hacker, government, usa, flaw, cyberwar, adobe, zero day, nsa
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close