Debian Security Advisory 1342-1 - It was discovered that a race condition in the init.d script of the X Font Server allows the modification of file permissions of arbitrary files if the local administrator can be tricked into restarting the X font server.
74f07a9a1e40524a44f01816569d7cd3125eb33ab433f9b3200ad7ccf0f74ee3iBON 2006 suffers from a memory corruption vulnerability.
cb34fdda96b4a929a750e0a61e96b50c9aeca9c874a46a50db35c0f7c1e03decAsterisk Project Security Advisory - The IAX2 channel driver in Asterisk is vulnerable to a denial of service attack when configured to allow unauthenticated calls.
a0b5106b8836479565cb2062ecc245c6c9ec7e134d97b1a2dc470e13cb1d6bc4Drupal security advisory - Drupal versions 4.7.x before version 4.7.7 and 5.x versions before version 5.2 suffer from cross site scripting vulnerabilities.
41a5f374d5205819d26273f6854b9a4c964586d0a41ed65fd13b71eb76688a3dDrupal security advisory - Several parts in Drupal core are not protected against cross site request forgeries due to improper use of the Forms API, or by taking action solely on GET requests. Malicious users are able to delete comments and content revisions and disable menu items by enticing a privileged users to visit certain URLs while the victim is logged-in to the targeted site. Drupal versions 5.x below 5.2 are affected.
46f0c7caa6742d83818685617d68d77ee84321da3ab65a8147df22b8fc719a1dTemplate Security has discovered a serious denial of service vulnerability in the BlueCat Networks Adonis DNS/DHCP Appliance. When XHA is configured to place two Adonis servers in an active-passive pair to provide high availability, a remote attacker can transmit a single UDP datagram to crash the heartbeat control process. This can be used for example to create an active/active condition in the cluster pair.
cc3a0e1f01e8c577869fec6643baaacbf4c0c356f0b25da7cd5cad08f003d024Gentoo Linux Security Advisory GLSA 200707-14 - mu-b from Digital Labs discovered that the return value of a snprintf() call is not properly checked before being used. This could lead to an integer overflow. Versions less than 3.9.5-r3 are affected.
1c8620801048b4006c81388bc623603e25ca3a79e200f500d41fd2852a2418deGentoo Linux Security Advisory GLSA 200707-13 - A vulnerability has been discovered in Fail2ban when parsing log files. Versions less than 0.8.0-r1 are affected.
1f005ed65f0c2acddd05ee750ef62cc0b7f613c74247a72c6e1994736140a290Gentoo Linux Security Advisory GLSA 200707-12 - David Thiel from iSEC Partners Inc. discovered format string errors in various plugins when parsing data. The affected plugins include Vorbis, Theora, CDDA and SAP. Versions less than 0.8.6c are affected.
ab25fee6aff2555965b79212b3bc5ededec6f819eb34df14ee98c3224473f5faSecunia Security Advisory - rPath has issued an update for libvorbis. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.
d34676b9059c0c37af9d9ca29ee5e0ed6935a36d5c2ecf8664c5a47ab65b672fSecunia Security Advisory - xssvgamer has discovered a vulnerability in IndexScript, which can be exploited by malicious people to conduct SQL injection attacks.
7bb8226d65d00429e10120bc80e829bda8063da5f7ae592a194a3eca3b911fb3Secunia Security Advisory - Trustix has issued an update for multiple packages. This fixes some vulnerabilities and a weakness, which can be exploited by malicious, local users to bypass certain security restrictions, and by malicious people to bypass certain security restrictions, gain escalated privileges, poison the DNS cache, cause a DoS (Denial of Service), and potentially compromise a user's system.
03ec305585487ae34d0aab1c2fb4cc814e2905fc3ff6206e9e1d9de10004ccdeSecunia Security Advisory - Aria-Security Team has reported a vulnerability in WebStore, which can be exploited by malicious people to conduct SQL injection attacks.
537af1bbda4b71e5380dbc5b8b7b54187f9346088cdcfe587884d8d57892cbf3Secunia Security Advisory - Some vulnerabilities have been reported in Joomla!, which can be exploited by malicious people to conduct session fixation attacks, cross-site scripting attacks or HTTP response splitting attacks.
3fef25cf15e40f3c19b54527ba58f743129596768280e3c67b8fe05386ba9184Secunia Security Advisory - Hamid Ebadi has reported a vulnerability in t1lib, which can be exploited by malicious users to potentially compromise a vulnerable system.
b344c709ad3a6fb39a7869e9f143b6ac1d2504f27274afacabc062f9e77914c8Secunia Security Advisory - t0pP8uZz & xprog have discovered a vulnerability in WSN Links, which can be exploited by malicious people to conduct SQL injection attacks.
a85081f94c56f57902d87f65f217bbb53494d7815bbfc17800fac8c2961d0dcbSecunia Security Advisory - Aria-Security Team has reported a vulnerability in WebEvents, which can be exploited by malicious people to conduct SQL injection attacks.
fab6ea7dc2f79cd7799bd0a056a855541b46dedd85908a200b5ea351b2a2421bSecunia Security Advisory - Cr@zy_King has discovered a vulnerability in Metyus Forum Portal, which can be exploited by malicious people to conduct SQL injection attacks.
4a4214ac8eb083a6b1e1521f4a292b51ce93c3df481f9619a8f3f4b69f2392eeSecunia Security Advisory - Fortinet Global Security Research Team has reported a vulnerability in Baidu Soba, which can be exploited by malicious people to compromise a user's system.
5ccbbcdabd930e810ac73f7c0968c0001fbdfaf7921db810652e21b6660e64b7Secunia Security Advisory - EgiX has discovered a vulnerability in LinPHA, which can be exploited by malicious people to conduct SQL injection attacks.
055011d4c2d69f1df05c754fff622ffa9508cdd3a958389a602cc7b81be013b6Secunia Security Advisory - Yollubunlar has discovered some vulnerabilities in SuskunDuygular
0b1521d17fc011e21fdc6e0a01e7675912a34cab3d0eb238d226f8b447e13458Secunia Security Advisory - darthballs has discovered a security issue in PHP-Blogger, which can be exploited by malicious people to disclose sensitive information.
3ca5ad0ec46655af625df3e981e4ca15ef4d524a5cf0ffac90bb2ea3a548d08cSecunia Security Advisory - Gentoo has issued an update for tcpdump. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
7d083c9c68b5660d6e0be20477d61545f966d0caac41645a09705633c3b1e06cSecunia Security Advisory - Aria-Security Team has reported a vulnerability in Real Estate listing website application template, which can be exploited by malicious people to conduct SQL injection attacks.
0097ded60da1efd7c226fc8b36d7b6c6e0445eca0ae93261bc8624a59d9d7e8dSecunia Security Advisory - Gentoo has issued an update for vlc. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
3e64833577d2fe4e85ac6840870270f1397c28392b7c81453b55b5852e872a07
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed