Debian Security Advisory 1632-1 - Drew Yao discovered that libTIFF, a library for handling the Tagged Image File Format, is vulnerable to a programming error allowing malformed tiff files to lead to a crash or execution of arbitrary code.
d67d4eb8e9b19dde12725793fb6a0732fccdcb9fc65aeee6f513e69a7726a14eZoneMinder versions 1.23.3 and below suffer from command injection, SQL injection, and cross site scripting vulnerabilities.
55a64e531a978647b9439767a88f9de3c18cf64e5e2d817d8d467293e12ac55dUbuntu Security Notice 637-1 - It was discovered that there were multiple NULL-pointer function dereferences in the Linux kernel terminal handling code. A local attacker could exploit this to execute arbitrary code as root, or crash the system, leading to a denial of service. The do_change_type routine did not correctly validation administrative users. A local attacker could exploit this to block mount points or cause private mounts to be shared, leading to denial of service or a possible loss of privacy. Tobias Klein discovered that the OSS interface through ALSA did not correctly validate the device number. A local attacker could exploit this to access sensitive kernel memory, leading to a denial of service or a loss of privacy. Zoltan Sogor discovered that new directory entries could be added to already deleted directories. A local attacker could exploit this, filling up available memory and disk space, leading to a denial of service.
ca0426c0a769cfea0d004df111f7bc27965eadeb0ea4026d54fcf6f94868702fSecunia Security Advisory - A security issue has been reported in Swimage Encore, which can be exploited by malicious, local users to disclose potentially sensitive information.
9b7f71d2c8815880e0bdaa2bb3068501a1116e83fdef503e9b7a2fb7f4124562Secunia Security Advisory - InATeam has discovered a vulnerability in BtitTracker (BTI-Tracker) and xbtit, which can be exploited by malicious people to conduct SQL injection attacks.
540ee4b2c5e8e3b84bafc22591836ab0157782c4c98001fdde11c815930d65cbSecunia Security Advisory - ~!Dok_tOR!~ has reported a vulnerability in CCMS Gaming, which can be exploited by malicious people to conduct SQL injection attacks.
4a0a41c83f49bde006115dd6065a148a96a895bf4154047a3d6a43080c355537Secunia Security Advisory - Eric BEAULIEU has reported a vulnerability in Accellion File Transfer Appliance, which can be exploited by malicious people to conduct cross-site scripting attacks.
4947faf05080b1f9b8165085630bc1394765d931fd6f6da0d472f85dd230a6ebSecunia Security Advisory - James Bercegay has discovered two vulnerabilities in Crafty Syntax Live Help, which can be exploited by malicious people to conduct SQL injection attacks.
3382bd59eeef0803eea657f7ee9b498b4968c66b2ad0bdcc15a70f1c58d6f218Secunia Security Advisory - A vulnerability has been reported in OpenVMS, which can be exploited by malicious, local users to gain escalated privileges.
1c50371b903b9e57daae6a49b45f3c6ebc9f73fdf1504d10afc46ba96beb3108Secunia Security Advisory - ~!Dok_tOR!~ has discovered some vulnerabilities in MiaCMS, which can be exploited by malicious people to conduct SQL injection attacks.
66dc8fcf77ef42fa52459c41dd4242bb62b3cfecc42769d6d1a7c4b9bbf1dac0Secunia Security Advisory - A vulnerability has been reported in NetBSD, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
dd86708373beec55143f2114a2f230cd2a756b735328e260017512822b59ff0eSecunia Security Advisory - A security issue has been reported in Samba, which can be exploited by malicious, local users to bypass certain security restrictions.
596d7ff993a6dc7453efb2dd0a1ee4562ea308db7409fe6091ef7a2b92185dd2Secunia Security Advisory - Digital Security Research Group have discovered some vulnerabilities in ezContents, which can be exploited by malicious people to disclose sensitive information.
16f6b015d38c35ecec322f6e23fad8eca48ffb6e5c7f3ec0dc30c074edfac7b8Secunia Security Advisory - Digital Security Research Group have reported two vulnerabilities in Pluck, which can be exploited by malicious people to disclose sensitive information.
1fac131403005e5a65e19ed8ef2e188afd6baa5a36d1100155cedf01ee6990d8Secunia Security Advisory - Some vulnerabilities have been reported in AN Guestbook, which can be exploited by malicious people to conduct cross-site scripting attacks.
3930c7717ae1d81bf941bf893a107bddd028c603d84c0f7782daf17e276890c6Secunia Security Advisory - Some vulnerabilities have been reported in Civic Website Manager, which can be exploited by malicious people to conduct cross-site scripting attacks.
555b3dbc8430d3d6466d9ae4298526fa66c6c541c32577bdde3adb4a66a04394Secunia Security Advisory - A vulnerability has been reported in LibTIFF, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a user's system.
dcde274aedc3f1db920a46961cf1b986b950aecae8d999d8f60b0b9f06bc5e09Secunia Security Advisory - A vulnerability has been reported in mysql-lists, which can be exploited by malicious people to conduct cross-site scripting attacks.
416dd709cadc427f91ba56cdbbbd72684a6e7eac2534a95d3ce13059221ff400Secunia Security Advisory - Ubuntu has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, cause a DoS (Denial of Service), and potentially gain escalated privileges.
d1cf65e58e1a4ea610699c7ab72103c5fe164516e165de74b863ea4b8ec4b7a9Secunia Security Advisory - Will Dormann has reported some vulnerabilities in SoftArtisans XFile, which can be exploited by malicious people to compromise a user's system.
97f521ab6b518f9d1c067573921ca3be611e122d017e6b5d1406953a65c2c4caSecunia Security Advisory - Some vulnerabilities have been reported in multiple TIBCO products, which can be exploited by malicious people to disclose sensitive information, cause a DoS (Denial of Service), or to compromise a vulnerable system.
237627e49cf7e71be6d16ae7ad93e6888f61d761952f2e2fcf67ae3fac953613Secunia Research has discovered two vulnerabilities in Calendarix Basic, which can be exploited by malicious people to conduct SQL injection attacks. Input passed to the "catsearch" parameter in cal_search.php and "catview" in cal_cat.php is not properly sanitized before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. Calendarix Basic 0.8.20071118 is affected.
358d37fecd8acb96000a176d4f4e2d18a9dfcb997de501582c7456288498588dSecunia Research has discovered a security issue in Novell iPrint Client, which can be exploited by malicious people to gain knowledge of potentially sensitive information. Novell iPrint Client 4.36 and Novell iPrint Client for Windows Vista 5.04 are affected. The insecurity lies in GetFileList().
2c3c2243ebc9b5ac67f52da83e31f5e81556363c6029b2679375d9ac3b7e40a5Secunia Research has discovered multiple vulnerabilities in Novell iPrint Client, which can be exploited by malicious people to compromise a user's system. These include boundary errors and buffer overflow issues. Novell iPrint Client 4.36 is affected.
e1d4ec43ab4fff51d3a1817235f89f3457a927d567c596a2f6258abe63091fb0Pardus Linux Security Advisory - Insufficient sanitization can lead to Vim executing arbitrary commands when performing keyword or tag lookup.
1af038f49dd7be46df684cca00b19f3590775e4fc513b99292bcdeb1e65d3219
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed