Debian Linux Security Advisory 2331-1 - It has been discovered by "frosty_un" that a design flaw in Tor, an online privacy tool, allows malicious relay servers to learn certain information that they should not be able to learn. Specifically, a relay that a user connects to directly could learn which other relays that user is connected to directly. In combination with other attacks, this issue can lead to deanonymizing the user.
8b1672be4f3678af70341ab391fb0860e4fa8be12f8eab0fcba0112843133bf1OneOrZero AIMS versions 2.7.0 and below suffer from an authorization bypass via cookie manipulation.
8b2bc60bbeac2e06504b2cc636356cc144ed4226558db470f91e9b90fc270dc4HP Security Bulletin HPSBUX02715 SSRT100623 2 - A potential vulnerability has been identified in HP-UX Containers, formerly HP-UX Secure Resource Partitions (SRP), when used in conjunction with patch PHKL_42310. The vulnerability could lead to a local unauthorized access and increased privileges. Revision 2 of this advisory.
ae2b19b706a5c426cd8fd892f1641e0f33ba70f0d1c0d9b9b4d0174dc8d21f08HP Security Bulletin HPSBUX02719 SSRT100658 - A potential security vulnerability has been identified with HP-UX running BIND. This vulnerability could be exploited remotely to create a Denial of Service (DoS). Revision 1 of this advisory.
774db6775a59b7788cb23a7b0d5bf46638a9659e8b3bcfe7c873f28a32870bfbApple Security Advisory 2011-10-26-1 - QuickTime 7.7.1 is now available and addresses memory disclosure, arbitrary code execution, script injection, and various other vulnerabilities.
151e9a6bdb019b931ecf77d87bbf59eb16ed9d92b2e975ee1c0e5a7b931ccf76VMware Security Advisory 2011-0013 - Update 2 for vCenter Server 4.1, vCenter Update Manager 4.1, vSphere Hypervisor (ESXi) 4.1 and ESX 4.1 addresses several security issues.
bfa44b90a996832dc4d48ee3d88431651288c9f75d7f7f82d502411d95c5dce3Debian Linux Security Advisory 2330-1 - Issues were found in the handling of XML encryption in simpleSAMLphp, an application for federated authentication. It may be possible to use an SP as an oracle to decrypt encrypted messages sent to that SP. It may be possible to use the SP as a key oracle which can be used to forge messages from that SP by issuing 300000-2000000 queries to the SP.
b5d9425932e0feb4a25dd77fa76dc553a555f1e16510d1363101ca4aea163bdfSecunia Security Advisory - A security issue has been reported in Tor, which can be exploited by malicious people to disclose potentially sensitive information.
8051c4c1c72f1ff96f763f5f6e030949cec80dd6c7c1264b322a9c7e9a6de2a9Secunia Security Advisory - A vulnerability has been reported in Enspire, which can be exploited by malicious people to conduct SQL injection attacks.
70d68b30f36ab51c594b042b0a0b82ff1bdb5b1a856716aaf5c381e3c4d2ed48Secunia Security Advisory - Ubuntu has issued an update for backuppc. This fixes two vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks.
c3040fbad716b47c8bbd4c5b3c00f8906e9c2838ef4d845f966faa6c5fb78052Secunia Security Advisory - A vulnerability has been reported in Novell iPrint Client, which can be exploited by malicious people to compromise a user's system.
785e381ebfde5cb0efaa978629c1187dac50944d54bc7e3b3758f881bd44b93eSecunia Security Advisory - A vulnerability has been reported in OpenLDAP, which can be exploited by malicious users to cause a DoS (Denial of Service).
4edc1ee8735d407f429003e8a14c64bc047dc64ea07d32835eee6b043826b802Secunia Security Advisory - A vulnerability has been reported in Cisco Video Surveillance IP Cameras, which can be exploited by malicious people to cause a DoS (Denial of Service).
3359e7ca246fe2d995d3426096d761ee2e4ae318f307f38698415211eae2b9c5Secunia Security Advisory - A vulnerability has been reported in multiple Cisco products, which can be exploited by malicious people to disclose sensitive information.
0c37b851746af5992df25eb113ec30f7551568fd0a50a3edb9bef7b0b2dc8281Secunia Security Advisory - A vulnerability has been reported in the YJ Contact Us component for Joomla!, which can be exploited by malicious people to disclose sensitive information.
c484213a614776d5d1370388e68e1d19326f9116556d804857cc8e6746c7cc81Secunia Security Advisory - A vulnerability has been reported in multiple Cisco Video Surveillance IP Cameras, which can be exploited by malicious people to cause a DoS (Denial of Service).
a3ed0db8227d96eb9746aaf40f199858f615dcc283e2e6781783b15e77f62478Secunia Security Advisory - M.Jock3R has discovered a vulnerability in Online Subtitles Workshop, which can be exploited by malicious people to conduct script insertion attacks.
893d853600f150471e300ce2f8dca1b403767eef6ab756f4236905f345428d02Secunia Security Advisory - Oracle has acknowledged a vulnerability in Solaris, which can be exploited by malicious users to cause a DoS (Denial of Service).
aa1aff30deb6df495f39cadbbf6ed2e693ffb55aec15888267bb35f798f4a0b0Secunia Security Advisory - Two vulnerabilities have been reported in Cisco WebEx Player, which can be exploited by malicious people to compromise a user's system.
56319a2c18a32837c8c367e0df74d42df8389b18e1f335bd7ec78f018de98c83Secunia Security Advisory - Hossein Lotfi has discovered some vulnerabilities in Winamp, which can be exploited by malicious people to compromise a user's system.
ccdca99aeeaa82b914c541c1379566bbe0ba4fb13e8e6547cc83c16cd38710e1Secunia Security Advisory - Buguroo Offensive Security has discovered a vulnerability in Trend Micro InterScan Web Security Suite for Linux, which can be exploited by malicious, local users to gain escalated privileges.
89d702a56a5140306f8ff4f3d4ec434772a07bdeeb4ab8c74ffe06047720cb15Secunia Security Advisory - A vulnerability has been reported in HP-UX Containers (SRP), which can be exploited by malicious, local users to gain escalated privileges.
a894bbd1d217ca3c7b895e0624d249de4b1601f13b046dfe06b49e9467df7797Secunia Security Advisory - Peter Adkins has reported two vulnerabilities in Cisco NX-OS and Cisco Unified Computing System, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
6686d898cd3caac848851cef3d7d2708bdf8c75873dd00bbbb7e7671ff02a194Secunia Security Advisory - Gentoo has issued an update for libxml2. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
8b0e10987b9cf64ffdc76016aab1cd65d9753e12026b2b4d1d726dd99c047ca8Secunia Security Advisory - VMware has acknowledged a vulnerability in VMware ESXi Server, which can be exploited by malicious people to potentially compromise a vulnerable system.
98dd59d998348e618bf896665cbd90d1fdef3a834e57944f5c38d670d8e7c636
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed