BIG-IQ version 0.0.7028 appears to disclose user passwords that are encrypted via an insecure direct object reference vulnerability and allows for user enumeration.
618c281cd293dfb71e842366efeeddc1f0dae18a8875e74149d2084d9cb32a1eiDefense Security Advisory 07.20.11 - Remote exploitation of a use-after-free vulnerability in WebKit, as included with Apple Inc.'s Safari Web browser, could allow an attacker to execute arbitrary code with the privileges of the current user. Safari versions prior to 5.1 and 5.0.6 are vulnerable.
39374d59c6744df1acd9d024f26b7ac639e74b9c9f0cf1837c63f04ecdcb573bTrend Micro OfficeScan Client for Windows 8.0 SP1 suffers from a denial of service vulnerability. Proof of concept is in the zip file.
102f9c7f326d84e4b68901f071b8f3e0572d7ea01db81a6f006c8f951eece852BitDefender Internet Security 2009 suffers from a cross site scripting vulnerability.
cbc5a5ad08caad0126f74533bccd87cddb09e4964c446d6f9c7869926c30f560Nokia N95-8 proof of concept denial of service exploit code.
71dd237f8ecb597f72073dd3324da7dd83d88104e46a51e038dd188cef472453Nokia N95-8 browser crashing denial of service exploit. Apparently this vulnerability also affects Firefox 3.06 causing a stack overflow.
86dfd323b43887238748e4a0706ff35c4404cb91073d28fa6fd5e401195533faMicrosoft Internet Explorer 7.0 suffers from a stack overflow vulnerability when accepting a very large payload for any form variable.
04c28a2e489f7f974c91bd9f44d1683672b451a1bcb121885ef732f143930f2aThe Blue Coat web filter suffers from a cross site scripting vulnerability.
c6ce475310d0979cdec5f5c66e2061b17b92179f920559a05fc3924b4cf1156eZoneAlarm Security Suite suffers from a buffer overflow condition.
b9752e4371506f7c4fd130c903d13e79aa3338413ce9d17aa137ae345801ebe8Google Chrome Browser version 0.2.149.27 denial of service exploit.
1ad05cd417aa7ee15ec56254090b37d182770779546d2c273c3fc686ca51a9b7Outpost Security Suite Pro version 2009 suffers from multiple bypass vulnerabilities when using special characters.
b396180aa65991839dda6612e4c68b4f3a03a102acaa5076ff8c4c4699963ebeEvolution version 2.22.2 suffers from a denial of service vulnerability.
17516bcf26c8d4f0da268aaddf236dd26adb91ee465e294179e93456aaf583dfThe Pidgin instant message program version 2.4.1 suffers from a denial of service vulnerability.
a4442db581be6647a0efcf10c971130def9a826cb75acaba12bb078cdfdb65f8Rhythmbox MP3 player version 0.11.5 suffers from a denial of service vulnerability.
28948fe257a03fcc2ea0f6ac3f91d2e7023078afb6bac611a512bc6c0aafbe17Microsoft Word versions 2003 and 2007 are susceptible to crash and cross site scripting vulnerabilities via malicious javascript execution.
9450a478f4400a7b5a60736110807c1fa7a8a05c22051c2435fab168d53fed6eThe mailto: functionality in GroupWise 7.0 appears susceptible to a buffer overflow vulnerability.
bf0f7fe20c84be8a59cd99be935142f8f3bdfdf6df1820a503ec98426cf9e858Excel may suffer from cross site scripting issues if launched within the DOM.
b686f1a7166f96e3237ed288f046a75e9d96d5ae124d80de6fd05aedee8ec5faIt appears that Internet Explorer 7 may have an address bar spoofing vulnerability.
c2f099b1e957ea9fc84dce9b9a2509835c81dfe944c0e3fb7455aa7afb74d1a0SmarterMail Enterprise version 4.3 suffers from a cross site scripting vulnerability.
00f0b57b17d9f5329c18ab386b23343742217fc1849bb66ceac031ba34cd06e7Bitcomet Resource Browser version 1.1 is susceptible to cross site scripting attacks.
bb253b72304239075c116c21c56021bc3916ca6b332c5c9d8c7f1e98166a6160
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed