seeing is believing
Showing 1 - 25 of 560 RSS Feed

Files

Debian Linux Security Advisory 1883-2
Posted Sep 15, 2009
Authored by Debian | Site debian.org

Debian Security Advisory 1883-2 - The previous nagios2 update introduced a regression, which caused status.cgi to segfault when used directly without specifying the 'host' variable. This update fixes the problem.

tags | advisory, cgi
systems | linux, debian
advisories | CVE-2007-5624, CVE-2007-5803, CVE-2008-1360
MD5 | 53d166fa5a305cc2caea3ee34165ca11
Gentoo Linux Security Advisory 200601-15
Posted Jan 30, 2006
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200601-15 - Andrew Christensen discovered that in older versions of Paros the database component HSQLDB is installed with an empty password for the database administrator sa. Versions less than or equal to 3.2.5 are affected.

tags | advisory
systems | linux, gentoo
MD5 | 89c98e04f637d9f855db5e59f9aad074
Gentoo Linux Security Advisory 200601-14
Posted Jan 30, 2006
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200601-14 - Michael Jennings discovered an exploitable buffer overflow in the configuration engine of LibAST. Versions less than 0.7 are affected.

tags | advisory, overflow
systems | linux, gentoo
MD5 | a0deb13fa89cb6641fea43edb09fc761
communiLDAP.txt
Posted Jan 29, 2006
Site gleg.net

Multiple vulnerabilities in the LDAP component of CommuniGate Pro Server version 5.0.6 have been uncovered.

tags | advisory, vulnerability
MD5 | 74f6699d822dec4b4cfa6267fa505b4d
Debian Linux Security Advisory 958-1
Posted Jan 29, 2006
Authored by Debian | Site debian.org

Debian Security Advisory DSA 958-1 - Several security related problems have been discovered in Drupal. Several cross-site scripting vulnerabilities allow remote attackers to inject arbitrary web script or HTML. When running on PHP5, Drupal does not correctly enforce user privileges, which allows remote attackers to bypass the 'access user profiles' permission. An interpretation conflict allows remote authenticated users to inject arbitrary web script or HTML via HTML in a file with a GIF or JPEG file extension.

tags | advisory, remote, web, arbitrary, vulnerability, xss
systems | linux, debian
advisories | CVE-2005-3973, CVE-2005-3974, CVE-2005-3975
MD5 | eb5b4e351da8b6ef8da44b58032ac3da
CAID33778.txt
Posted Jan 29, 2006
Authored by Ken Williams | Site supportconnect.ca.com

The CA iGateway common component, which is included with several CA products for UNIX/Linux/Windows platforms, contains a buffer overflow vulnerability that can allow arbitrary code to be executed remotely with SYSTEM privileges on Windows, and cause iGateway component failure on UNIX and Linux platforms.

tags | advisory, overflow, arbitrary
systems | linux, windows, unix
MD5 | 6d70db55dc4c564b0ec58ee8e5214e32
ARGENISS-ADV-010601.txt
Posted Jan 29, 2006
Authored by Esteban Martinez Fayo | Site argeniss.com

Argeniss Security Advisory - Oracle Database Server provides the DBMS_XMLSCHEMA and DBMS_XMLSCHEMA_INT Packages that include procedures to register and delete XML schemas. These packages contain the public procedures GENERATESCHEMA and GENERATESCHEMAS that are vulnerable to buffer overflow attacks.

tags | advisory, overflow
MD5 | cb100bd23a668c0e0a5f2bfb1ca14f7e
whitedustTranslate.txt
Posted Jan 29, 2006
Site whitedust.net

A severe problem with the way browsers translate the soft-hyphen (alt + 0173) character has been brought to light which malicious users could utilise alongside a multitude of injection methods as a way to gain unauthorized access and or to spoof content on websites. Both Microsoft Internet Explorer and Mozilla Firefox are affected.

tags | advisory, spoof
MD5 | b28909e7213b7f085cd4ec456fcacb06
Secunia Security Advisory 18614
Posted Jan 27, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in nfs-server, which can be exploited by malicious users to compromise a vulnerable system.

tags | advisory
MD5 | a785ccd3afb640718d03465281d62a1a
Secunia Security Advisory 18628
Posted Jan 27, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Aliaksandr Hartsuyeu has discovered a vulnerability in My Little Forum, My Little Guestbook, and My Little Weblog, which can be exploited by malicious people to conduct script insertion attacks.

tags | advisory
MD5 | 221e40633545f14ca4f94ae90ad1a21e
Secunia Security Advisory 18629
Posted Jan 27, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Cisco VPN 3000 Concentrator, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
systems | cisco
MD5 | 3cbef3d6a982a80370318528d76e6d6c
Secunia Security Advisory 18630
Posted Jan 27, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for drupal. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, and conduct script insertion and HTTP response splitting attacks.

tags | advisory, web, vulnerability
systems | linux, debian
MD5 | f8c7903a60df6156fbb41c1bda4f1035
Secunia Security Advisory 18635
Posted Jan 27, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Mandriva has issued an update for net-snmp. This fixes some vulnerabilities, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges, or by malicious users to cause a DoS (Denial of Service).

tags | advisory, denial of service, local, vulnerability
systems | linux, mandriva
MD5 | 36c4b7bf262c5433592d3bb1f8884978
Secunia Security Advisory 18638
Posted Jan 27, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for nfs-server. This fixes a vulnerability, which can be exploited by malicious users to compromise a vulnerable system.

tags | advisory
systems | linux, suse
MD5 | 314c14a8058584b35de33e527bbe89ed
Secunia Security Advisory 18639
Posted Jan 27, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Mandriva has issued an update for perl-Net_SSLeay. This fixes a vulnerability, which can be exploited by malicious, local users to weaken certain cryptographic operations.

tags | advisory, local, perl
systems | linux, mandriva
MD5 | 387c8052bb4b0621d94b22e26268c094
Secunia Security Advisory 18617
Posted Jan 27, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - imei has discovered two vulnerabilities in MyBB, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | 2609295c1f4d0ab241efb9e625049ce9
Secunia Security Advisory 18627
Posted Jan 27, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for gallery. This fixes a vulnerability, which potentially can be exploited by malicious people to conduct script insertion attacks.

tags | advisory
systems | linux, gentoo
MD5 | 4eae3ce6a7be75e30111ccd8f991c4c7
Secunia Security Advisory 18633
Posted Jan 27, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Aliaksandr Hartsuyeu has discovered a vulnerability in AndoNET Blog, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | 50fab8c91acf29e900893601421c2844
shareaza_advisory.pdf
Posted Jan 27, 2006
Site hustlelabs.com

Shareaza, a P2P file sharing product, suffers from a remote vulnerability that allows code execution.

tags | advisory, remote, code execution
MD5 | 81d0a720e23809562ec54ccb4b874013
evuln-mylittlehomepage.txt
Posted Jan 27, 2006
Authored by Aliaksandr Hartsuyeu | Site evuln.com

my little homepage v2004.04.20 is vulnerable to XSS

tags | advisory
MD5 | b45b86521b12da4c27fd7a66264c044f
AndoNET-2004.09.02.txt
Posted Jan 27, 2006
Authored by Aliaksandr Hartsuyeu | Site evuln.com

AndoNET Blog v2004.09.02 suffers from SQL injection in comentarios.php via the "entrada" variable.

tags | advisory, php, sql injection
MD5 | a7f498b6bc40509b055df87fb29702aa
Cisco Security Advisory 20060126-vpn
Posted Jan 27, 2006
Authored by Cisco Systems, Cisco | Site cisco.com

Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack

tags | advisory, web
systems | cisco
MD5 | 79ebb963f37da2d2fdc2651c86544d31
SUSE-SA-2006-004.txt
Posted Jan 27, 2006
Authored by Ludwig Nussel | Site suse.com

Stefan Esser discovered a bug in in the register_globals emulation of phpMyAdmin that allowes to overwrite variables. An attacker could exploit the bug to ultimately execute code (CVE-2005-4079). Additionally several cross-site-scripting bugs were discovered (CVE-2005-3787, CVE-2005-3665).

tags | advisory
MD5 | 5540d4c1518e4fd77b1b8597f5b4585c
Mandriva Linux Security Advisory 2006.021
Posted Jan 27, 2006
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - GUI display truncation vulnerability in Mozilla Thunderbird 1.0.2, 1.0.6, and 1.0.7 allows user-complicit attackers to execute arbitrary code via an attachment with a filename containing a large number of spaces ending with a dangerous extension that is not displayed by Thunderbird, along with an inconsistent Content-Type header, which could be used to trick a user into downloading dangerous content by dragging or saving the attachment.

tags | advisory, arbitrary
systems | linux, mandriva
MD5 | 078c68b8c6af5529d5e0bbd7da18bdad
Mandriva Linux Security Advisory 2006.020
Posted Jan 27, 2006
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in ipsec-tools racoon before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service (null dereference and crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.

tags | advisory, remote, denial of service
systems | linux, mandriva
MD5 | eaa52f05e291fd353a374be6b0bf962e
Page 1 of 23
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Microsoft Mocks Google For Failed Security Fix Deployment Methodology
Posted Oct 19, 2017

tags | headline, microsoft, flaw, google, chrome
Malicious Mineraft Apps In Google Play Enslave Your Device To A Botnet
Posted Oct 19, 2017

tags | headline, malware, microsoft, phone, botnet, google
OAIC Received 114 Voluntary Data Breach Notifications In Two Years
Posted Oct 19, 2017

tags | headline, hacker, privacy, australia, data loss
US-CERT Predicts Machine Learning To Become Security Risk
Posted Oct 19, 2017

tags | headline, flaw
ATM Malware Available Online For Online $5,000
Posted Oct 18, 2017

tags | headline, malware, bank, cybercrime, fraud
Oracle Swats 252 Bugs In Patch Update
Posted Oct 18, 2017

tags | headline, flaw, patch, oracle
Child Safety Smartwatches Easy To Hack, Watchdog Says
Posted Oct 18, 2017

tags | headline, privacy, flaw
Domino's Pizza Delivers User Details To Spammers
Posted Oct 18, 2017

tags | headline, privacy, email, spam, fraud
Microsoft Never Disclosed 2013 Hack Of Secret Vulnerability Database
Posted Oct 18, 2017

tags | headline, hacker, microsoft, data loss, flaw
Adobe Patches Zero-Day Used To Plant Gov't Spying Software
Posted Oct 17, 2017

tags | headline, hacker, government, usa, flaw, cyberwar, adobe, zero day, nsa
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close