Positive Technologies Research Team has discovered multiple privilege escalation vulnerabilities in Trend Micro products. The IOCTL handler in tmactmon.sys uses the METHOD_NEITHER communication method for IOCTLs and does not properly validate buffer data associated with the Irp object, which allows local users to gain SYSTEM privileges.
55ea736f59fb7ae8994b65029d905f7cae968eb2e5909d99df231a466897d933Debian Security Advisory 1760-1 - Two vulnerabilities have been discovered in openswan, an IPSec implementation for linux.
2c2aa3345edfeb4b31239b8671abeebadc6d458161424f2e9b565f1d82a519daDebian Security Advisory 1759-1 - Gerd v. Egidy discovered that the Pluto IKE daemon in strongswan, an IPSec implementation for linux, is prone to a denial of service attack via a malicious packet.
e50f4c4bdee473b2d0a12ed6e6e7f625f317c6e610e2d3965a17d7d06d62af8dSecunia Security Advisory - A vulnerability has been reported in strongSwan, which can be exploited by malicious people to cause a DoS (Denial of Service).
c213f285311f8255728c4b94e27fff513e2c6615e38480352a20d31fe70cc04cSecunia Security Advisory - BugsNotHugs has reported some vulnerabilities in Aurora FoodPro, which can be exploited by malicious people to conduct cross-site scripting attacks.
1d299c2192c1bd46a9807320ba50486ba47a6191ccee5b60a338c2178c04ec4bSecunia Security Advisory - Encrypt3d.M!nd has discovered a vulnerability in Abee Chm eBook Creator, which can be exploited by malicious people to compromise a user's system.
6546065f95bf420a72206cd1d40b68844e6ecb164a5d0360d18f6413588a970dSecunia Security Advisory - Gentoo has issued an update for gedit. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
7d050d6969d494e469fd5ed93967b4df07c2e13e7f43f8ef3a453f8007749319Secunia Security Advisory - Some vulnerabilities have been reported in Arcadwy Arcade Script, which can be exploited by malicious people to conduct SQL injection and script insertion attacks.
e628e56517c93c1d6c0fa1dd601539feaf8353b8855054f0c6409d38e1fda6e7Secunia Security Advisory - A vulnerability has been reported in Openswan, which can be exploited by malicious people to cause a DoS (Denial of Service).
700e086bd7dcbe2a37312739a60d4639d730a1106a2ec6aa63c614cc637c54ebSecunia Security Advisory - Alfons Luja has discovered a vulnerability in Amaya, which can be exploited by malicious people to compromise a user's system.
f3110364a3f1545b83dacb4c2f93b574c0fb78c82fddf8c522d2331ec7133caeSecunia Security Advisory - Red Hat has issued an update for openswan. This fixes a vulnerability and a security issue, which can be exploited by malicious people to cause a DoS (Denial of Service), and by malicious, local users to perform certain actions with escalated privileges.
25fa027a5df7c242391d4353f5e6bf084f45bfc200c9a4794adf3ca5ab5dc8faSecunia Security Advisory - Debian has issued an update for nss-ldapd. This fixes a security issue, which can be exploited by malicious, local users to disclose potentially sensitive information.
ba51bf668626cb5a9d5caa3a82939dd25c4ca66dfd1b3795778a6c449e5d98bcSecunia Security Advisory - Fedora has issued an update for seamonkey. This fixes a weakness and some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, or compromise a user's system.
9591c0950503fd796b49f0ec2099ad18fa9748e9d0cfcd407943fa3ce9469fa4Secunia Security Advisory - Some vulnerabilities have been discovered in Family Connections, which can be exploited by malicious users and people to conduct SQL injection attacks.
888b02517a170ed0117ef6fe82d2c40911722f75d9e60dbda98d6f1ea8f3efdfSecunia Security Advisory - Ubuntu has issued an update for libsndfile. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library.
a18ac2a8721782183f7d59de7d176ca93cbb98dd210c5b430bbe8f5a86e3b4a2Secunia Security Advisory - A vulnerability has been reported in Bugzilla, which can be exploited by malicious people to conduct cross-site request forgery attacks.
ae56609784850d7f59e644cbd448c16d63f0c2908e0456a89e54f2e561bff1c8Secunia Security Advisory - A vulnerability has been reported in Bugzilla, which can be exploited by malicious people to conduct cross-site request forgery attacks.
bcd520c8559e195a97cd6395c3d636770a21b6347a0716bc9982c0c6a2df6841Secunia Security Advisory - A vulnerability has been discovered in JobHut, which can be exploited by malicious people to conduct SQL injection attacks.
901f6db554da6b518eaded101655cb36eb604e3eb7ef15aec1b1a903e97899aaSecunia Security Advisory - AnGeL25dZ has reported some vulnerabilities in Diskos CMS, which can be exploited by malicious people to disclose sensitive information or conduct SQL injection attacks.
266ab815c8736029b59f9f0e22fbd54086a5b414438d30d19b9a4e3c3a9206ffSecunia Security Advisory - Ubuntu has issued an update for openssl. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions or cause a DoS (Denial of Service).
6783466d9a60591e558e5722c385c8b3fe46dbc91e02f855f977dbb7152c2483Secunia Security Advisory - Debian has issued an update for strongswan. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
6e96a0caac0ad68f2444a2d8cf83e460357c8c8938b25c2120653e2dc7df3bf8Secunia Security Advisory - Debian has issued an update for openswan. This fixes a vulnerability and a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges and by malicious people to cause a DoS (Denial of Service).
590c9000d292b46c9a8346103d499a94241b1565f72b34dc3eab16baef30d165Secunia Security Advisory - Some vulnerabilities have been reported in Ingate Firewall and SIParator, which can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, or cause a DoS (Denial of Service).
c6e8fe8782b01d5083bf3c21911b227416f20904ade89a96c62e09089d734798Secunia Security Advisory - Christian J. Eibl has discovered a security issue in Moodle, which can be exploited by malicious users to disclose sensitive information.
679fe86d2c71e68c6c9fa633dadbc9db767a5078db82b846b4d20c5ca038f16cSecunia Security Advisory - Some vulnerabilities and a weakness have been reported in MapServer, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), and potentially to compromise a vulnerable system.
c285416e9cd8951910d655b3a9ec0748d362a2b80bd31e7440e01e14028a22f6
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed