Ubuntu Security Notice 648-1 - Philipp Thomas discovered that the ppscan function of nasm contained an off-by-one error. If a user or automated system were tricked into assembling a specially crafted ASM file, a remote attacker could execute arbitrary commands with user privileges.
8ff0b6989029f3467b1e8586823c19d468bfd75b057534870e07e361145f789cWhite Wolf Labs #080922-1 - ActiveSync 4.x allows full TCP/IP access via the RNDIS protocol over USB.
dc415e5a8fb54a642aed07308e128922035fbb42030f66c4fce38f467fca6773Mandriva Linux Security Advisory - pam_mount 0.10 through 0.45, when luserconf is enabled, does not verify mountpoint and source ownership before mounting a user-defined volume, which allows local users to bypass intended access restrictions via a local mount. The updated packages have been patched to fix the issue.
88f64007e07ce27c4073d0a45eea45c638c255edb6baf467f57563d6b69711daMandriva Linux Security Advisory - A race condition in OpenAFS 1.3.40 through 1.4.5 allowed remote attackers to cause a denial of service (daemon crash) by simultaneously acquiring and giving back file callbacks. The updated packages have been patched to prevent this issue.
48ae0c9abe1b364b65cd7495b1c27e77093f14e6d689602e60fe6da182ea547cSecunia Security Advisory - Crackers_Child has reported a vulnerability in Post Comments Script, which can be exploited by malicious people to bypass certain security restrictions.
307b077bb6ac43343d6a5b6f07ddd46e7804f95c5340fc9c85bb4fe9633aa581Secunia Security Advisory - A vulnerability has been reported in tnftpd, which can be exploited by malicious people to conduct cross-site request forgery attacks.
e61fb4359bbfd6f420cd26a06d8d6aee432552b36af41283ce5658206ec454d5Secunia Security Advisory - S.W.A.T. has reported a vulnerability in Pilot Group eTraining, which can be exploited by malicious people to conduct SQL injection attacks.
3d8ceadc9f406a1fb0f915afce3dbedf38559fb1fafeee2df6f6da9562b3d366Secunia Security Advisory - bruiser has discovered a vulnerability in Autodesk Design Review, which can be exploited by malicious people to compromise a user's system.
aecc310aeaf4014b308da4fc4f3518dd556137f3f6271b7b15df984dae2ccc9dSecunia Security Advisory - Super Cristal has reported some vulnerabilities in PG MatchMaking Script, which can be exploited by malicious people to conduct SQL injection attacks.
79b51b3cb9552cca3d4e80baf3232ffb394fe06ec98261d11021305bd40fe7b3Secunia Security Advisory - A vulnerability has been reported in Citrix Presentation Server, which can be exploited by malicious, local users to gain escalated privileges.
0edc097cc60b78e28cc524128ea0453a248df1922f71ca4af52e9c6782e6559eSecunia Security Advisory - David Vieira-Kurz has reported some vulnerabilities in moziloCMS, which can be exploited by malicious people to conduct cross-site scripting and session fixation attacks and disclose sensitive information.
4ec5cb9565267ed05e8fff96f4cb3d3da9bbccb6ecaf1016b86b49245c3c4197Secunia Security Advisory - David Vieira-Kurz has reported some vulnerabilities in moziloWiki, which can be exploited by malicious people to conduct cross-site scripting and session fixation attacks and disclose sensitive information.
b2a939a72e9b895c8bdd7ece7757aab3198676a0192f9b51c62ad2cbdac346bfSecunia Security Advisory - dun has discovered a vulnerability in PlugSpace, which can be exploited by malicious people to disclose sensitive information.
04182f4a105c7a897b4396ad1c72f9ff70b89afc19c228b0741581557d9bd5eaSecunia Security Advisory - r45c4l has reported a vulnerability in MyCard, which can be exploited by malicious users to conduct SQL injection attacks.
eb6b8936be122dcb5eaf52579ced35db79655fe8467f35aed47a5cefd1cdf3bbSecunia Security Advisory - Some vulnerabilities have been reported in MPlayer, which potentially can be exploited by malicious people to compromise a user's system.
04015f4c43ed1779ed5fb699b0eb52f74d4ec09a7224a5c1b3c354f100067784Secunia Security Advisory - CraCkEr has reported a vulnerability in Real Estate Manager, which can be exploited by malicious people to conduct SQL injection attacks.
036ec3105df2fc2dcae6ff7eb2e381491a001ccb04f9aebb7042cd5a95064d92Secunia Security Advisory - Two vulnerabilities have been discovered in The Gemini Portal, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, and compromise a vulnerable system.
2c1a7d9c553622085aab50d2f74ac01d3507dbe1912da575271218af3b06d6c4Secunia Security Advisory - Pepelux has discovered a vulnerability in Crux Gallery, which can be exploited by malicious people to bypass certain security restrictions.
1f5a73bc0e2fd3c497344b091a5cebc7acb362835bc1c843bbe39d653dfb21ddSecunia Security Advisory - Juan Galiana Lara has reported a vulnerability in Wordpress MU, which can be exploited by malicious people to conduct cross-site scripting attacks.
107118f6fa08081f5b8ab8032de0493fee7d75dd3c6f6e1f086109fea90a8b27Secunia Security Advisory - A vulnerability has been reported in HP Insight Diagnostics, which can be exploited by malicious people to disclose sensitive information.
28eedf9e6402c3617583a39c8fe9287e889985cc3182102e7fb6a654421a92faSecunia Security Advisory - A vulnerability has been reported in MailMarshal SMTP, which can be exploited by malicious users to conduct script insertion attacks.
25f960796eadb29962d213e707f357d00c5dd1e0e2340d3091bb8fef213982e5Secunia Security Advisory - Maksymilian Arciemowicz has reported a vulnerability in NetBSD ftpd, which can be exploited by malicious people to conduct cross-site request forgery attacks.
1d5386677d56955d19c04125ee5c3db16a37d2b04ef220b7ec016287e5c2e853Secunia Security Advisory - A vulnerability has been reported in lighttpd, which can be exploited by malicious people to cause a DoS (Denial of Service).
8cd5f468235350aaafa682a64fc01c4cb268b3fda2af378ff82f4fb54c2e5241Secunia Security Advisory - Maksymilian Arciemowicz has reported a vulnerability in OpenBSD ftpd, which can be exploited by malicious people to conduct cross-site request forgery attacks.
09ba3781fe8cc220d30115300d287123bcb8f30d8b59d0416ad0133fcb179e24Secunia Security Advisory - Ghost Hacker has discovered a security issue in hyBook Guestbook Script, which can be exploited by malicious people to disclose potentially sensitive information.
82f6074df5509094ebe88ca7cf21c7d72f7f64110b110435b6fb91252e81d77a
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed