Secunia Security Advisory - A vulnerability has been reported in Ruby, which can be exploited by malicious people to cause a DoS (Denial of Service).
a7a771c052676e794e406cb3b45b176db4bec73577caa5caaeeba6b5ee41aca9Secunia Security Advisory - Avaya has acknowledged a vulnerability in various Avaya products, which can potentially be exploited by malicious people to compromise a vulnerable system.
8624a1e7ccf2e7d8e3d2fcef362be3c89b0b25a3eb2c1da6eb02f9336face6f2libc inet_net_pton.c suffers from an integer overflow vulnerability.
73a87e7d6e45fb5773c857eca94b0121310ffdceb1a3c01934fd0c624d94aab5Secunia Security Advisory - Secunia Research has discovered a vulnerability in Trend Micro OfficeScan, which can be exploited by malicious people to bypass authentication.
00d5e659a255eb32a488ab3356538ab2d5a3346bcb4b136b8e5f056c83440926Secunia Security Advisory - Debian has issued an update for linux-2.6. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), or potentially gain escalated privileges, and by malicious people to cause a DoS.
ff6fd3b72338737fc607db1fec2a8709277340eab70cbdd1082e2879e43f94afSecunia Security Advisory - A vulnerability has been reported in Libxml2, which can be exploited by malicious people to cause a DoS (Denial of Service).
a01477aa554adacfeeeb75e23895162138a3e69ebf6a5e8b9a6fa691abd6c5dcSecunia Security Advisory - Beenu Arora has discovered a vulnerability in FAR-PHP, which can be exploited by malicious people to disclose sensitive information.
9a775a69d694dd36fb400d910844d4706779e76ff9068470410655131b355c7bSecunia Security Advisory - Red Hat has issued an update for libxml2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
2104bc7f563f3610b7aabd5898e0a3e830c137273a031d16829453ec6f1a138bSecunia Security Advisory - Avaya has acknowledged some vulnerabilities in various Avaya products, which can be exploited by malicious people to spoof authenticated SNMPv3 packets or to potentially compromise a vulnerable system.
4437c6d923c6be7cb92b62097ca9bc95961c483f0e8879edc72cfeb897c3cbcfSecunia Security Advisory - cOndemned has discovered a vulnerability in TinyCMS, which can be exploited by malicious people to disclose sensitive information.
08cf5e4bc036ad28a52b6a82b321274289bc7fbbb55611ce040b1c5862bbe0e6Secunia Security Advisory - Mr.SQL has reported a vulnerability in Pars4u Videosharing V1, which can be exploited by malicious people to conduct SQL injection attacks.
fa59efcf9e0ed7c9eaf219f62c45e520db4c4bf3d900f7fc8c1bf7a42e522452Secunia Security Advisory - Astaro has issued an update for ClamAV. This fixes some vulnerabilities, which potentially can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), or compromise a vulnerable system.
d5fb6a480ab863ab2ddf5ed9b862512bbe1d9c26ab2b7b3a7ea355c4ffdc3050Secunia Security Advisory - Avaya has acknowledged some vulnerabilities in Avaya Communication Manager, which potentially can be exploited by malicious people to compromise an application using the FreeType library.
d1073ee7f405dc65afb46c2c963a7d49381a18f48d80482e9bfe2502a5f286daSecunia Security Advisory - Some vulnerabilities have been reported in LacoodaST, which can be exploited by malicious people to conduct cross-site scripting and, cross-site request forgery, or session fixation attacks, and malicious users to compromise a vulnerable system.
0d15d7f4cb7741742294157ff3c3d15489e86985bce84e9effa05252f7ec528cDebian Security Advisory 1631-1 - Andreas Solberg discovered that libxml2, the GNOME XML library, could be forced to recursively evaluate entities, until available CPU & memory resources were exhausted.
6c9094554c9bda05ea0527025db2031ca7ecdcbbd3fbd883d35e2efbd4657bd8The xine free multimedia player suffers from a number of vulnerabilities ranging in severity. The worst of these vulnerabilities results in arbitrary code execution and the least, in unexpected process termination. xine-lib versions 1.1.14 and below are affected.
6ca037f9e8d51e3f07cc53661d3f13706366e6df2b215a8e1e7ad67c75a07c41Secunia Security Advisory - Some vulnerabilities have been reported in La!cooda WIZ, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks, and malicious users to compromise a vulnerable system.
dddce2566ca62ebf43305489e657b15b449fc0e6bd919b159536de6783de3ab9Microsoft ASP.NET ValidateRequest filters can be bypassed allowing for cross site scripting and HTML injection attacks.
991d123ab5c384f1961576752ae8de0178e17504175d1d5b7d6c72a0c878c48bSecunia Research has discovered a vulnerability in certain Trend Micro products, which can be exploited by malicious people to bypass authentication. The vulnerability is caused by insufficient entropy being used to create a random session token for identifying an authenticated manager using the web management console. The entropy in the session token comes solely from the system time when the real manager logs in with a granularity of one second. This can be exploited to impersonate a currently logged on manager by brute forcing the authentication token. Successful exploitation further allows execution of arbitrary code via manipulation of the configuration.
ca4e60fcbf1cd56bcfc9d59316819297548491779e2e6b28a1bfa5e6428c35cdSecunia Security Advisory - Some vulnerabilities have been reported in Uniwin eCart Professional, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
64d1ea95b532d350e1f3917c6cb8b48c8e7ec8ca44fcdfef869dc476e99f712fSecunia Security Advisory - e.wiZz! has discovered a vulnerability in phpBazar, which can be exploited by malicious people to conduct SQL injection attacks.
761fa4d60c1d2b1ec30d44bec7b23b2468f1fa3af0697914fa0492a9082dde8dSecunia Security Advisory - Doz has discovered two vulnerabilities in TimeTrex, which can be exploited by malicious people to conduct cross-site scripting attacks.
30fd1519a195ddc0ca12be11a80e14a8df9442a91d4e788676341841fe6931e4Secunia Security Advisory - A vulnerability has been reported in Xen, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or potentially bypass certain security restrictions.
c4b8d901e7dc1770dd557f04bb11f4d032e42a8739d26e8e8bfd954a6cd9631dSecunia Security Advisory - SirGod has discovered two vulnerabilities in Easy Site, which can be exploited by malicious people to disclose sensitive information.
cba64fa0703e020df75bf072ad8c7d5cdc71c21dcf9494b7145a7da9477628a4Secunia Security Advisory - Red Hat has issued an update for openssh, which corrects a small number of OpenSSH packages that have been tampered with.
cd7d275235c1f477c544de546d82937b5e30ea3baf51fed2c84c991eb3bfbbee
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed