Secunia Security Advisory - A vulnerability has been reported in Apache Tomcat, which can be exploited by malicious people to cause a DoS (Denial of Service).
08c0280a9ff85e6fd069d436ab1c1f23e00ed9d8f5e0f052c9e106308493d17cSecunia Security Advisory - A vulnerability has been reported in Oracle GlassFish Server, which can be exploited by malicious people to cause a DoS (Denial of Service).
f61871365d524e8b0a0ff24f5279735c30e01edd6c869fb411dc850438e5bd8aSecunia Security Advisory - Four vulnerabilities have been reported in Microsoft .NET Framework, which can be exploited by malicious people to cause a DoS (Denial of Service), conduct spoofing attacks, or bypass certain security restrictions.
4d893e59b9c1cbbbeb9cb4b05bd8e43586e4b79fb7dfa422f8d144817d5170b2Secunia Security Advisory - A vulnerability has been reported in PHP, which can be exploited by malicious people to cause a DoS (Denial of Service).
2c02379ed6f6fdd8de049e687e56697a316b224a5535ce1607bc74ae70c91803Secunia Security Advisory - A vulnerability has been reported in JRuby, which can be exploited by malicious people to cause a DoS (Denial of Service).
ed9c84dffba1ea292dbbbc5d9411b592b85f71e8d0da7c7803913019a754c0e9Secunia Security Advisory - A vulnerability has been reported in Jetty, which can be exploited by malicious people to cause a DoS (Denial of Service).
1adb979689c901a0f2bcf916d5ddfcfa7800d33613e2066e730e04a7bb62d59dSecunia Security Advisory - A vulnerability has been reported in Bugzilla, which can be exploited by malicious people to conduct cross-site request forgery attacks.
1efc4be93bba7b1297f52c07eb7378127baa150bc37561173ac567aecac404c1Secunia Security Advisory - A vulnerability has been reported in Ruby, which can be exploited by malicious people to cause a DoS (Denial of Service).
421558ea44bb65ddcec9df865ac6bd89cf357a35175178b01baf8486dfed1c49Microsoft ASP.NET Forms suffers from a null byte termination authentication bypass vulnerability that exists in the CopyStringToUnAlingnedBuffer() function of the webengine4.dll library used by the .NET framework. The unicode string length is determined using the lstrlenW function. The lstrlenW function returns the length of the string, in characters not including the terminating null character. If the unicode string containing a null byte is passed, its length is incorrectly calculated, so only characters before the null byte are copied into the buffer.
294ae2596a2c31be82519bf63b2272b2e6a249e186db2e1ca5fab9dfb9f605e6Mandriva Linux Security Advisory 2011-197 - Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offset_val value in an EXIF header in a JPEG file, a different vulnerability than CVE-2011-0708. PHP before 5.3.9 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service by sending many crafted parameters. The updated packages have been patched to correct this issue.
65c4b018cdfd49592c9f7dbcf34ecabd28e6273c44adf4c53cd71a54905612c5Debian Linux Security Advisory 2263-2 - Advisory DSA 2363-1 did not include a package for the Debian 5.0 'Lenny' suite at that time. This update adds that package.
b6fd5f67db4288edf661bbc8943258fa17410cbc92bcad67c9f6da86124d49ceDebian Linux Security Advisory 2376-1 - It was discovered that OpenIPMI, the Intelligent Platform Management Interface library and tools, used too wide permissions PID file, which allows local users to kill arbitrary processes by writing to this file.
1792cce81ebb6c50f256dc4d012b7bb7f95b15fee06cdf02d505666c659648caSecunia Security Advisory - Multiple vulnerabilities have been discovered in the Blog module for DiY-CMS, which can be exploited by malicious people to conduct SQL injection attacks.
07f1f300ddfbb6478b51a2a7a7621c85f5c6ee6b7e6bca783ddd9a09af94e18bSecunia Security Advisory - A vulnerability has been reported in Bugzilla, which can be exploited by malicious people to conduct cross-site request forgery attacks.
a2fce17c9cf03464633726694af6295906e5650b87b9b63aa6df3f74720b330dSecunia Security Advisory - A vulnerability has been reported in Plone, which can be exploited by malicious people to cause a DoS (Denial of Service).
4a2ac19c6da13d24fad94b3772255813440486cb2bb53265c54ecf6462b2d393Secunia Security Advisory - A vulnerability with unknown impact has been reported in the Connections plugin for WordPress.
28be9d52b8bd3c09de12140b4a5072e9d012e792e2052823fb61d05935414c59Secunia Security Advisory - Two vulnerabilities have been reported in op5 Monitor, where one has an unknown impact and the other can be exploited by malicious users to disclose certain sensitive information.
55b5faf29df0e97c988be26cdda20aab0c6de521037659c4b45e6a0b06cb3778Secunia Security Advisory - A weakness and two vulnerabilities have been reported in Bugzilla, which can be exploited by malicious users to bypass certain security restrictions and conduct script insertion attacks and by malicious people to conduct cross-site scripting attacks.
a277cea7af4b387deb5cb0236404c6595b15b62839d7df3259e49a762b1deae9Secunia Security Advisory - Two vulnerabilities have been reported in op5 Appliance, which can be exploited by malicious people to compromise a vulnerable system.
c7f3e961fc39ff594fe6fce250ca26f3902271954cd5e2eca01f0adefeba389bSecunia Security Advisory - Oracle has acknowledged a weakness in Oracle iPlanet Web Server, which can be exploited by malicious people to disclose potentially sensitive information and hijack a user's session.
77d35fadfdce866909ddc3ae63459e420634532769f2b400a421e7399064677dSecunia Security Advisory - A vulnerability has been reported in Neturf eCommerce Shopping Cart, which can be exploited by malicious people to conduct cross-site scripting attacks.
6f998b2b51ca3296875bdcec7ba68cc145be56bdb81f3c86ddfc38ea09f5fb00Secunia Security Advisory - Alexander Fuchs has reported a vulnerability in Akiva WebBoard, which can be exploited by malicious people to conduct SQL injection attacks.
4302f066e5f240a0cc634f90c970cb52e67116fdb96d6de3c9183cf31bbda206Secunia Security Advisory - A vulnerability has been discovered in Winn Guestbook, which can be exploited by malicious people to conduct script insertion attacks.
06108cba32738d8b4803ec2e61f25bf4b8fe84cb5613b324d1ab0637d920e4dbSecunia Security Advisory - Multiple vulnerabilities have been discovered in the Blog module for DiY-CMS, which can be exploited by malicious people to conduct SQL injection attacks.
07f1f300ddfbb6478b51a2a7a7621c85f5c6ee6b7e6bca783ddd9a09af94e18bSecunia Security Advisory - A vulnerability has been reported in Bugzilla, which can be exploited by malicious people to conduct cross-site request forgery attacks.
a2fce17c9cf03464633726694af6295906e5650b87b9b63aa6df3f74720b330d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed