Novell GroupWise WebAccess suffers from a cross site scripting vulnerability. Version 7.0.3 is affected.
8348d6de98893f1fbe8f491cb7e3dbf8a1f1b7c208a476cf8a27a8b3c4e972c9Novell GroupWise WebAccess suffers from a cross site scripting vulnerability. Version 7.0.3 is affected.
8c6f6fe9e4d988f1180099d2a613b38e803523f9b1e5b972d27ba0320dec08c6Novell GroupWise WebAccess suffers from a cross site request forgery vulnerability. Version 7.0.3 is affected.
720e54a18ca643bcc529127da3cfa1c3758769a635c402db883befa22705bec0OpenX versions 2.4.9 and below and versions 2.6.3 and below suffer from cross site scripting, SQL injection, and directory traversal vulnerabilities.
1832f2bf4c9549691dc54114426b945ebc52efd40a6911f23a26b27c4143a951Ubuntu Security Notice USN-716-1 - Fernando Quintero discovered than MoinMoin did not properly sanitize its input when processing login requests, resulting in cross-site scripting (XSS) vulnerabilities. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain. Fernando Quintero discovered that MoinMoin did not properly sanitize its input when attaching files, resulting in cross-site scripting vulnerabilities. It was discovered that MoinMoin did not properly sanitize its input when processing user forms, editing pages, relaying error messages, or when attaching files.
3cf813802484b2e1dd4008c636dbd66d0098aaba73a35e91aab0e08180c8c49cUbuntu Security Notice USN-715-1 - Hugo Dias discovered that the ATM subsystem did not correctly manage socket counts. It was discovered that the inotify subsystem contained watch removal race conditions. Dann Frazier discovered that in certain situations sendmsg did not correctly release allocated memory. Helge Deller discovered that PA-RISC stack unwinding was not handled correctly. It was discovered that the ATA subsystem did not correctly set timeouts. It was discovered that the ib700 watchdog timer did not correctly check buffer sizes.
38c520869098e9813d93864d6c37bc8de4fe7d2bc92f3b2be53a69a2c73f4c00Debian Security Advisory DSA 1704-2 - The update in DSA 1704-1 was incomplete as it missed to escape a few important characters which enabled an attacker to overwrite arbitrary files.
a53dde812a55df0e6191af651858f7f511c485436ae9c37e4f3c81409cb7e605Secunia Security Advisory - SUSE has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and by malicious people to cause a DoS or to potentially compromise a vulnerable system.
fb3323dceadfb59e8acf45de839d316aa952ca1258d3f23b7ad7bbeae810b1c5Secunia Security Advisory - Fedora has issued an update for gedit. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
d820d11e455dd7d1cfddd37d43c2258e0e2b00122f2d69cbecddd535ce19bd8aSecunia Security Advisory - A vulnerability has been reported in gedit, which can be exploited by malicious, local users to gain escalated privileges.
0a9038a1e49a4b0195cb30cd05870e2d97c4e5cf26639b9f36ad10891cd97790Secunia Security Advisory - Michael Brooks has discovered a vulnerability in Coppermine Photo Gallery, which can be exploited by malicious people to bypass certain security restrictions and compromise a vulnerable system.
63425a81fb1ab39ffe2f39ac6f0b511d15b48cebe937b1296eeb3f0545273575Secunia Security Advisory - A vulnerability has been discovered in ManageEngine Firewall Analyzer, which can be exploited by malicious people to conduct cross-site request forgery attacks.
b92f1eefba90156d493d5773ec1cdbd466b2a1aa10619bbf4b7a381bb0df5a95Secunia Security Advisory - Ubuntu has issued an update for moinmoin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass security restrictions, manipulate certain data, or potentially compromise a vulnerable system.
64d22797c7e2b8533c15df12fcdb656a355f41c264d42dc524a7ef3fc5a462fcSecunia Security Advisory - Fedora has issued an update for glpi. This fixes some vulnerabilities, which can be exploited by malicious users to conduct SQL injection attacks.
911aef3c4c30d4f289aadee91202c65fe4b11864b85e047ca7b2c356276df35cSecunia Security Advisory - Ubuntu has issued an update for linux. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
4357fe3318f53601af5c39c58d140d5f35218cdac053c0ea047705dffbf5bf1aSecunia Security Advisory - Sun has acknowledged a vulnerability in Sun Solaris, which can be exploited by malicious people to conduct spoofing attacks.
a4d26f0172a0956053fbef0b3dafa82032f22828747f8b041ab90867a4de3ff6Secunia Security Advisory - IBM has acknowledged a security issue in IBM AIX, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
57eadc1ede471af0c2252a4b8981456259d0c656fcaa30dce854fbe71a23c157Secunia Security Advisory - Michael Brooks has discovered some vulnerabilities in Profense Web Application Firewall, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
fe0f9557ce7a1977832ce5fe1a7afe79c553d67d02b70d2a85bf5e9bb651cab2Secunia Security Advisory - A vulnerability has been reported in WebSphere Application Server, which can potentially be exploited by malicious people to disclose sensitive information.
2f20ea84853f9ee10fe423dec4af54cdeeb60e6736376df6bfefe9e606ec225dSecunia Security Advisory - Debian has issued an update for rt2400, rt2500, and rt2570. This fixes a vulnerability, which can be exploited to cause a DoS (Denial of Service) or compromise a vulnerable system.
df8ead6bab202acf0af89e728976d9689938395cc849772659bf5150a86b5decSecunia Security Advisory - Ubuntu has issued an update for openjdk-6. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, cause a DoS (Denial of service), or compromise a vulnerable system.
f0e1a6fe408c47536327079fc37d7fba4e505a26b04b8bccb294a21b0660e728Secunia Security Advisory - A security issue has been reported in No-IP Dynamic Update Client, which can be exploited by malicious people to disclose sensitive information.
b0b86b1e2571701f87a471b143c1bf5aec8697a7ea201c17e3e08fc786f13b01Secunia Security Advisory - Ubuntu has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users and malicious people to cause a DoS (Denial of Service).
60ad6f8f8de0a92bb855d94e9f65313732e5312a46a91eb3780e7e7298160095Secunia Security Advisory - HP has acknowledged a vulnerability in MPE/iX, which can be exploited by malicious people to poison the DNS cache.
58cd387a0fd71e47dff89f449469cfa7516e1738ffd39c1d333a589d1d192b8fSecunia Security Advisory - A vulnerability has been reported in HP Select Access, which can be exploited by malicious people to conduct cross-site scripting attacks.
65c85ed9f94219c549127ed26f182b043376d5591f3baa8d77e45d1c1716786e
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed