HP Security Bulletin - A potential security vulnerability has been identified with HP-UX mkdir(1). The vulnerability could be exploited by a local user to gain unauthorized access.
57e9c4b390b967fa083ef946b86858693eae423f55868f2ae8d46ec2ee333746All versions under the 4.2 release of Hobbit prior to 2006-Jun-30 suffer from a flaw where the logfetch utility can be used to read any file on the filesystem.
337360288f55afa7c676f60c1cb2467173030b6f20a3ccbf046e251a50a5a76fApple iTunes suffers from an integer overflow vulnerability when performing AAC file parsing.
939b55f9122be19112fc571d7e4c12deeb6e8017369be0fdeeeb87957b641efaGentoo Linux Security Advisory GLSA 200606-30 - The iax_net_read function in the iaxclient library fails to properly handle IAX2 packets with truncated full frames or mini-frames. These frames are detected in a length check but processed anyway, leading to buffer overflows. Versions less than 0.8.5_p1 are affected.
81b05ce4c4aebb8684998fbbba6904a7c945539ace3fa76f64c7d233482e8f3cThe NCP VPN/PKI client version 8.30 suffers from a UDP bypass vulnerability in its provided firewall functionality.
0e50b70bed9f72501c61a0a43c6b1d570b5941d9c2d3be52bf78cf23a278143alibwmf version 0.2.8.4 has been found susceptible to an integer overflow in memory allocation that leads to a heap overflow.
bd8dadf074afb77c1e1dcaff5970a2d24b3b85d8a32148d37d67bb55551bbb06Debian Security Advisory 1104-1 - Several vulnerabilities have been discovered in OpenOffice.org, a free office suite. It turned out to be possible to embed arbitrary BASIC macros in documents in a way that OpenOffice.org does not see them but executes them anyway without any user interaction. It is possible to evade the Java sandbox with specially crafted Java applets. Loading malformed XML documents can cause buffer overflows and cause a denial of service or execute arbitrary code.
deaefe6a689b0fc91e62a203448262cff8dbb4cb8432ae2e8ca49302d8c8b26fHP Security Bulletin - Potential security vulnerabilities have been identified in Perl 5.8.2 and earlier running on HP Tru64 UNIX. These vulnerabilities could be exploited by a local user to execute unauthorized code.
d23a8ee6f8d087198ee77c28904792640cf69c9be7a9730cfe5d3211938739c9Secunia Research has discovered some vulnerabilities in phpRaid, which can be exploited by malicious people to conduct SQL injection attacks or to compromise a vulnerable system. Versions 3.0.4, 3.0.5, and 3.0.6 are affected.
beef01385464473240bd9b603ae42c76d7b04f74bbe01d935c99809f807eaa26Speedstream routers have UPnP/1.0 support. An attacker can access protected files and bypass the password protection without logging in using the UPnP part of the tree.
adcbe15b0873b77fb9f2f8bf776bd17519a1fda5e7ba3687a950a745bd51a80eGentoo Linux Security Advisory GLSA 200606-29 - Tikiwiki fails to properly sanitize user input before processing it, including in SQL statements. Versions less than 1.9.4 are affected.
abd8d7cefc568784ec38b358455748d65517ca129339a9ee1f554b5007fc2703Gentoo Linux Security Advisory GLSA 200606-28 - Michael Marek discovered that the Horde Web Application Framework performs insufficient input sanitizing. Versions less than 3.1.1-r1 are affected.
7efa420895759d1944d66c09922ff0dbf620b79c1bc88f505554933948705ad3Mac OS X versions 10.4.6 and below are susceptible to a vulnerability in launchd's syslog() function.
ebe05c1d233358f6cc47cf20ff34ce80da5d2fbaea89f2ca9ece03f88113cdf0Secunia Security Advisory - Secunia Research has discovered some vulnerabilities in phpRaid, which can be exploited by malicious people to conduct SQL injection attacks or compromise a vulnerable system.
fbfda9dea5d67f813faf388656b17ac033d62bbd3a3ba05f2aea549a86853c1aSecunia Security Advisory - Bartek Ryniec has discovered a vulnerability in MyBB, which can be exploited by malicious people to conduct cross-site request forgery attacks.
87dd32394197146ac6f7a9d28b19b8fcddbcaa339b383992782f21d98eab2e95Secunia Security Advisory - Persian-Defacer has reported a vulnerability in phpMySms, which can be exploited by malicious people to compromise a vulnerable system.
3820bdc2e6efd28a6011e93e7813810457d92d81f774b2a7ba226867aa1d9af3Secunia Security Advisory - Gentoo has issued an update for horde. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks.
6b5eb7175ea9740f6f03d614dc1e498bbbd5b1a33220f2d28a3e691b0adce748Secunia Security Advisory - Gentoo has issued an update for tikiwiki. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
50f18dbeb27cc979c8c20c306acf5446d1f7c86dbd12b204978b631dfa331d88Secunia Security Advisory - Gentoo has issued an update for mutt. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
9fd9ce2104c5c40bbddb692dcdd4342a784e1b824271e4e4cb45dd313bd3f93fSecunia Security Advisory - rgod has discovered a vulnerability in BLOG:CMS, which can be exploited by malicious people to conduct SQL injection attacks.
536013223242f77e12d705c70264354bcedaafa61d8b83a48cd81269f667acafSecunia Security Advisory - A vulnerability has been reported in Cisco Wireless Access Point, which can be exploited by malicious people to bypass certain security restrictions.
50e1612fd67b073f4cb11226374cadaa7f403cbceb26c8a0c9459d43fd44f80aSecunia Security Advisory - Claus Berghammer has discovered a vulnerability in QuickZip, which potentially can be exploited by malicious people to compromise a user's system.
e129addd971379ffe23bfdf9df455d4c93081bcf24dc5d917eaf1e6a25ca3631Secunia Security Advisory - Secunia Research has discovered some vulnerabilities in phpRaid, which can be exploited by malicious people to conduct SQL injection attacks or compromise a vulnerable system.
f1af56c48bacb29ebb4857b3b2589502ea2736f57a31bad57d1cdaf858ea7247Secunia Security Advisory - Some vulnerabilities and a security issue have been reported in Cisco Wireless Control System (WCS), which can be exploited by malicious, local users to gain knowledge of sensitive information, and by malicious people to gain knowledge of sensitive information, conduct cross-site scripting attacks, bypass certain security restrictions and potentially compromise a vulnerable system.
657a0de0a33b0b5bf8181d65d907bcf3202f9c42c340715e23ccfdbee1391bd4Secunia Security Advisory - Some vulnerabilities have been reported in MyBB, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks, and manipulate certain information.
32365d856d5991a4dce9c0c45e12e728abd1b5b916589c6d890c30826322a9c7
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed