Airscanner Mobile Security Advisory - FlexiSpy.com's user administration web application contains a critical bug that allows anyone to view anyone else's captured voice, SMS, email, or location.
c13cb03b6110135f989a5f61f63a3af5e9fe114511706eaca72c4a642f86583aDebian Security Advisory 1325-1 - Ulf Harnhammer discovered that a format string vulnerability in the handling of shared calendars may allow the execution of arbitrary code. It was discovered that the IMAP code in the Evolution Data Server performs insufficient sanitizing of a value later used an array index, which can lead to the execution of arbitrary code.
68f3b62dbf023e6af4b70073b35b3629fbe220a2bf210b9990f274e68a88c888Ubuntu Security Notice 479-1 - Multiple flaws in the MadWifi driver were discovered that could lead to a system crash. A physically near-by attacker could generate specially crafted wireless network traffic and cause a denial of service. A flaw was discovered in the MadWifi driver that would allow unencrypted network traffic to be sent prior to finishing WPA authentication. A physically near-by attacker could capture this, leading to a loss of privacy, denial of service, or network spoofing. A flaw was discovered in the MadWifi driver's ioctl handling. A local attacker could read kernel memory, or crash the system, leading to a denial of service.
344a3da22f67f8247b5e7468372fb07f84115ab5a533a61eb8d0ae2979db1a75flac123 version 0.0.9, also known as flac-tools, is vulnerable to a buffer overflow in vorbis comment parsing. This allows for the execution of arbitrary code.
fbdbfb43d8d10a141ddcf38dde21dce4b80167794cf7f32c32d0d917efcdc4a2SAP NetWeaver Nw04 versions SP15 to SP 19 and SAP NetWeaver Nw04s versions SP7 to SP 11 suffer from a cross site scripting flaw.
4ebd94bbe293d722e95baa581b6c4c280840eb4ccb010abf55a0d2e971ceaf75Mandriva Linux Security Advisory - David Coffey discovered an uninitialized pointer free flaw in the RPC library used by kadmind. A remote unauthenticated attacker who could access kadmind could trigger the flaw causing kadmind to crash or possibly execute arbitrary code. David Coffey also discovered an overflow flaw in the same RPC library. A remote unauthenticated attacker who could access kadmind could trigger the flaw causing kadmind to crash or possibly execute arbitrary code. Finally, a stack buffer overflow vulnerability was found in kadmind that allowed an unauthenticated user able to access kadmind the ability to trigger the vulnerability and possibly execute arbitrary code.
6ee203dc438b51c0afd01d5826b729097fcdc9c2dfdd7f7bbb346792c992045fSecunia Security Advisory - A vulnerability has been reported in Sun JavaDoc, which can be exploited by malicious people to conduct cross-site scripting attacks.
0e75cc5ccf1ca2493162fadb05f92f77ea6396039dde40ab60cbf648e8beb191Secunia Security Advisory - A vulnerability has been reported in Sun Java Web Start, which can be exploited by malicious people to bypass certain security restrictions.
3110f66eeee09e51608c64958764a55880e91e95ceb9d2db2cbf250a66d24737Secunia Security Advisory - Two vulnerabilities have been reported in Coppermine Photo Gallery, which can be exploited by malicious people and malicious users to conduct SQL injection attacks.
ef6d5756c8052b2bc4cc2e90f5cb86cf2810fe29f1290d35b17ff3e56babd89fSecunia Security Advisory - Ubuntu has issued an update for MadWifi. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and by malicious people to gain knowledge of potentially sensitive information or to cause a DoS.
715ab5256545a7ae8d04e1b34fd159ecba18ae74eed17cec186172b0f14ebca8Secunia Security Advisory - SUSE has issued an update for OpenOffice_org. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
0a992c910fbace81419843c712d05489dd5f02e4c191215f2e87403fe48d0ae1Secunia Security Advisory - Sun has acknowledged a vulnerability in Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service).
f47fadf28b0689bb5665f82131f728dce00f81ec8fce63b711017b0a8532d95fSecunia Security Advisory - Debian has issued an update for hiki. This fixes a vulnerability, which can be exploited by malicious people to delete arbitrary files.
21afe2a03366cff274deb829058a03f7dfc8bfdb88285bbd2a72bc17324a353aSecunia Security Advisory - r0t has reported a vulnerability in DirectAdmin, which can be exploited by malicious people to conduct cross-site scripting attacks.
62ccb130095ea6daeedc303a08b4d37797f65d48a1b07a81db6a9d97bf2f2877Secunia Security Advisory - A vulnerability has been reported in 3Com IntelliJack Switch NJ220, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
0854cc083f2c17fa21cafa51e2255186b75ee8b5b2fd6387e654aae9cda18ea6Secunia Security Advisory - A vulnerability has been reported in FreeType, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
2caec92d8e3e871cabd4c30e36ca831dd8a0bcd89da9a10d4c5cc462127eca73Secunia Security Advisory - A security issue has been reported in IBM OS/400, which potentially can be exploited by malicious people to bypass certain security restrictions.
e0c808646b74d02bafd20a58143e734666fea9e7e4f171e060861370ff5bc8fcSecunia Security Advisory - Trustix has issued an update for kerberos5. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to compromise a vulnerable system.
743227f334991cd498adb29718c3959187d7186a43bee70b219a6391937f93e6Secunia Security Advisory - Some vulnerabilities have been reported in Xerox ESS/ Network Controller, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
2c668d9c3e7f5ce4c5773ed2fea0741d780cf5e4e20fb472dfabb85a8dc9dde3Secunia Security Advisory - Debian has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to compromise a vulnerable system.
1fbb6731924f6a5145f9c5b38c24035226fc38620ac69484fe6121a4b6f5e40dSecunia Security Advisory - rgod has discovered some vulnerabilities in AMX VNC ActiveX Control, which can be exploited by malicious people to compromise a user's system.
808058e830b2c7480a011551a8ecbdb437d3d1cd433e8e10eb1c6fe46929a517Secunia Security Advisory - R00T[ATI] has discovered a vulnerability in WebChat, which can be exploited by malicious people to conduct SQL injection attacks.
743c06142f127c2381d57e8acb4167a0e2ebcc3dda5d51c1a2815caf829ff708Secunia Security Advisory - Katatafish has discovered two vulnerabilities in GL-SH Deaf Forum, which can be exploited by malicious people to disclose sensitive information.
a1fff6230e5b51a1d198091d6e46503025096e465ab63017af4f50b27ec2e786Secunia Security Advisory - SGI has issued multiple updates for SGI Advanced Linux Environment. These fix some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions or to perform certain actions with escalated privileges, by malicious users to bypass certain security restrictions or to compromise a vulnerable system, and by malicious people to disclose potentially sensitive information, to cause a DoS (Denial of Service), or to compromise a vulnerable system.
e6e72181501d646f14f879f9140ecd9aaa72e5ff4781b28dc31e7693db932ae8Secunia Security Advisory - Avaya has acknowledged a security issue in various Avaya products, which potentially can be exploited by malicious, local users to perform certain actions with escalated privileges.
20ed66b953fabbbfd3a9b57d37a9fecfc59285f843e77d5475e10ab1302ebac3
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed